summaryrefslogtreecommitdiff
path: root/src/db/rest/login/api_login.sql
diff options
context:
space:
mode:
Diffstat (limited to 'src/db/rest/login/api_login.sql')
-rw-r--r--src/db/rest/login/api_login.sql41
1 files changed, 41 insertions, 0 deletions
diff --git a/src/db/rest/login/api_login.sql b/src/db/rest/login/api_login.sql
new file mode 100644
index 0000000..0cf0535
--- /dev/null
+++ b/src/db/rest/login/api_login.sql
@@ -0,0 +1,41 @@
+CREATE FUNCTION api.login(
+ username TEXT,
+ password TEXT
+)
+RETURNS sys.JWT
+LANGUAGE plpgsql VOLATILE
+AS $BODY$
+DECLARE
+ _role NAME;
+ _user_id INTEGER;
+ _token sys.JWT;
+BEGIN
+ SELECT role INTO _role
+ FROM admin.user u
+ WHERE u.username = login.username
+ AND u.password = login.password;
+
+ IF _role IS NULL THEN
+ PERFORM _api.raise(
+ _msg => 'api_invalid_login'
+ );
+ RETURN NULL;
+ END IF;
+
+ SELECT id INTO _user_id
+ FROM admin.user u
+ WHERE u.username = login.username;
+
+ _token = _api.sign_jwt(
+ _role,
+ _user_id
+ );
+
+ RETURN _token;
+END
+$BODY$;
+
+GRANT EXECUTE ON FUNCTION api.login(TEXT, TEXT)
+ TO rest_anon, rest_user;
+GRANT SELECT ON TABLE admin.user
+ TO rest_anon, rest_user;
generated by cgit v1.2.3-freya (git 2.51.1) at 2025-12-26 02:43:04 +0000