summaryrefslogtreecommitdiff
path: root/src/db/rest/login/_api_verify_jwt.sql
diff options
context:
space:
mode:
Diffstat (limited to 'src/db/rest/login/_api_verify_jwt.sql')
-rw-r--r--src/db/rest/login/_api_verify_jwt.sql47
1 files changed, 47 insertions, 0 deletions
diff --git a/src/db/rest/login/_api_verify_jwt.sql b/src/db/rest/login/_api_verify_jwt.sql
new file mode 100644
index 0000000..9e63cc9
--- /dev/null
+++ b/src/db/rest/login/_api_verify_jwt.sql
@@ -0,0 +1,47 @@
+CREATE FUNCTION _api.verify_jwt(
+ _token TEXT
+)
+RETURNS INTEGER
+LANGUAGE plpgsql VOLATILE
+AS $BODY$
+DECLARE
+ _payload JSON;
+ _valid BOOLEAN;
+ _jwt_secret TEXT;
+ _user_id INTEGER;
+BEGIN
+ SELECT jwt_secret INTO _jwt_secret
+ FROM sys.database_info
+ WHERE name = current_database();
+
+ SELECT payload, valid
+ INTO _payload, _valid
+ FROM public.verify(
+ _token,
+ _jwt_secret
+ );
+
+ IF NOT FOUND THEN
+ RETURN NULL;
+ END IF;
+
+ IF _valid <> TRUE THEN
+ RETURN NULL;
+ END IF;
+
+ _user_id = _payload->>'user_id';
+
+ UPDATE admin.user
+ SET seen = clock_timestamp()
+ WHERE id = _user_id;
+
+ RETURN _user_id;
+END
+$BODY$;
+
+GRANT EXECUTE ON FUNCTION _api.verify_jwt(TEXT)
+ TO rest_anon, rest_user;
+GRANT SELECT ON TABLE sys.database_info
+ TO rest_anon, rest_user;
+GRANT UPDATE ON TABLE admin.user
+ TO rest_anon, rest_user;
generated by cgit v1.2.3-freya (git 2.51.1) at 2025-12-26 10:05:28 +0000