refactor: add fields

2025-06-26 18:27:59 +00:00 · 2025-02-13 01:42:58 -06:00
parent 74ee024cf9
commit 7c0d223e17
12 changed files with 10726 additions and 2 deletions
--- a/packages/server/src/auth/auth.ts
+++ b/packages/server/src/auth/auth.ts
@@ -16,6 +16,7 @@ export const lucia = new Lucia(adapter, {
 			secure: false,
 		},
 	},
+	
 	sessionExpiresIn: new TimeSpan(1, "d"),
 	getUserAttributes: (attributes) => {
 		return {
--- a/packages/server/src/db/schema/user.ts
+++ b/packages/server/src/db/schema/user.ts
@@ -73,14 +73,15 @@ export const users_temp = pgTable("user_temp", {
 		.primaryKey()
 		.$defaultFn(() => nanoid()),
 	name: text("name").notNull().default(""),
-	token: text("token").notNull(),
+	token: text("token").notNull().default(""),
 	isRegistered: boolean("isRegistered").notNull().default(false),
 	expirationDate: text("expirationDate")
 		.notNull()
 		.$defaultFn(() => new Date().toISOString()),
-	createdAt: text("createdAt")
+	createdAt2: text("createdAt")
 		.notNull()
 		.$defaultFn(() => new Date().toISOString()),
+	createdAt: timestamp("created_at").defaultNow(),
 	canCreateProjects: boolean("canCreateProjects").notNull().default(false),
 	canAccessToSSHKeys: boolean("canAccessToSSHKeys").notNull().default(false),
 	canCreateServices: boolean("canCreateServices").notNull().default(false),
--- a/packages/server/src/lib/auth.ts
+++ b/packages/server/src/lib/auth.ts
@@ -5,6 +5,9 @@ import { admin, createAuthMiddleware, organization } from "better-auth/plugins";
 import { eq } from "drizzle-orm";
 import { db } from "../db";
 import * as schema from "../db/schema";
+import { Scrypt } from "lucia";
+const scrypt = new Scrypt();
+
 export const auth = betterAuth({
 	database: drizzleAdapter(db, {
 		provider: "pg",
@@ -12,6 +15,10 @@ export const auth = betterAuth({
 	}),
 	emailAndPassword: {
 		enabled: true,
+		password: {
+			hash: scrypt.hash,
+			verify: scrypt.verify,
+		},
 	},
 	hooks: {
 		after: createAuthMiddleware(async (ctx) => {
--- a/packages/server/src/lib/crypto.ts
+++ b/packages/server/src/lib/crypto.ts
@@ -0,0 +1,94 @@
+// import {
+// 	decodeHex,
+// 	encodeBase32LowerCaseNoPadding,
+// 	encodeHexLowerCase,
+// } from "@oslojs/encoding";
+// import { generateRandomString } from "@oslojs/crypto/random";
+// import { constantTimeEqual } from "@oslojs/crypto/subtle";
+// import { scrypt } from "./scrypt/index";
+
+// import type { RandomReader } from "@oslojs/crypto/random";
+
+// async function generateScryptKey(
+// 	data: string,
+// 	salt: string,
+// 	blockSize = 16,
+// ): Promise<Uint8Array> {
+// 	const encodedData = new TextEncoder().encode(data);
+// 	const encodedSalt = new TextEncoder().encode(salt);
+// 	const keyUint8Array = await scrypt(encodedData, encodedSalt, {
+// 		N: 16384,
+// 		r: blockSize,
+// 		p: 1,
+// 		dkLen: 64,
+// 	});
+// 	return new Uint8Array(keyUint8Array);
+// }
+
+// const random: RandomReader = {
+// 	read(bytes: Uint8Array): void {
+// 		crypto.getRandomValues(bytes);
+// 	},
+// };
+
+// export function generateId(length: number): string {
+// 	const alphabet = "abcdefghijklmnopqrstuvwxyz0123456789";
+// 	return generateRandomString(random, alphabet, length);
+// }
+
+// export function generateIdFromEntropySize(size: number): string {
+// 	const buffer = crypto.getRandomValues(new Uint8Array(size));
+// 	return encodeBase32LowerCaseNoPadding(buffer);
+// }
+
+// export class Scrypt implements PasswordHashingAlgorithm {
+// 	async hash(password: string): Promise<string> {
+// 		const salt = encodeHexLowerCase(crypto.getRandomValues(new Uint8Array(16)));
+// 		const key = await generateScryptKey(password.normalize("NFKC"), salt);
+// 		return `${salt}:${encodeHexLowerCase(key)}`;
+// 	}
+// 	async verify(hash: string, password: string): Promise<boolean> {
+// 		const parts = hash.split(":");
+// 		if (parts.length !== 2) return false;
+
+// 		const [salt, key] = parts;
+// 		const targetKey = await generateScryptKey(password.normalize("NFKC"), salt);
+// 		return constantTimeEqual(targetKey, decodeHex(key));
+// 	}
+// }
+
+// export class LegacyScrypt implements PasswordHashingAlgorithm {
+// 	async hash(password: string): Promise<string> {
+// 		const salt = encodeHexLowerCase(crypto.getRandomValues(new Uint8Array(16)));
+// 		const key = await generateScryptKey(password.normalize("NFKC"), salt);
+// 		return `s2:${salt}:${encodeHexLowerCase(key)}`;
+// 	}
+// 	async verify(hash: string, password: string): Promise<boolean> {
+// 		const parts = hash.split(":");
+// 		if (parts.length === 2) {
+// 			const [salt, key] = parts;
+// 			const targetKey = await generateScryptKey(
+// 				password.normalize("NFKC"),
+// 				salt,
+// 				8,
+// 			);
+// 			const result = constantTimeEqual(targetKey, decodeHex(key));
+// 			return result;
+// 		}
+// 		if (parts.length !== 3) return false;
+// 		const [version, salt, key] = parts;
+// 		if (version === "s2") {
+// 			const targetKey = await generateScryptKey(
+// 				password.normalize("NFKC"),
+// 				salt,
+// 			);
+// 			return constantTimeEqual(targetKey, decodeHex(key));
+// 		}
+// 		return false;
+// 	}
+// }
+
+// export interface PasswordHashingAlgorithm {
+// 	hash(password: string): Promise<string>;
+// 	verify(hash: string, password: string): Promise<boolean>;
+// }
--- a/packages/server/src/lib/scrypt/index.ts
+++ b/packages/server/src/lib/scrypt/index.ts
@@ -0,0 +1 @@
+//