fix: add admin

2026-02-14 10:14:49 +01:00
parent 2e02d6d763
commit f2b690f3f5
86 changed files with 1057 additions and 1939 deletions
--- a/server/api/admin/login.post.ts
+++ b/server/api/admin/login.post.ts
@@ -0,0 +1,28 @@
+import { signToken } from "../../middleware/adminAuth";
+
+export default defineEventHandler(async (event) => {
+  const body = await readBody<{ password?: string }>(event);
+  const adminPassword = useRuntimeConfig().adminPassword;
+
+  if (!adminPassword) {
+    throw createError({ statusCode: 500, statusMessage: "Admin password not configured" });
+  }
+
+  if (!body?.password || body.password !== adminPassword) {
+    throw createError({ statusCode: 401, statusMessage: "Invalid password" });
+  }
+
+  const payload = Date.now().toString(36);
+  const signature = signToken(payload);
+  const token = `${payload}.${signature}`;
+
+  setCookie(event, "admin-session", token, {
+    httpOnly: true,
+    secure: process.env.NODE_ENV === "production",
+    sameSite: "strict",
+    maxAge: 60 * 60 * 24, // 24 hours
+    path: "/",
+  });
+
+  return { ok: true };
+});