Refactor token generation and remove unused endpoints.

2025-02-20 22:13:13 +01:00
parent 7f5b57516e
commit dea0d33185
4 changed files with 5 additions and 47 deletions
@@ -19,7 +19,7 @@

 package de.steamwar.routes

-import de.steamwar.routes.v2.configureNewAuth
+import de.steamwar.routes.v2.*
 import io.ktor.server.application.*
 import io.ktor.server.auth.*
 import io.ktor.server.routing.*
@@ -35,9 +35,7 @@ fun Application.configureRoutes() {
            configurePage()
            configureSchematic()
            configureAuthRoutes()
-            route("/v2") {
-                configureNewAuth()
-            }
+            configureNewAuth()
        }
    }
 }
@@ -21,7 +21,6 @@ package de.steamwar.routes

 import de.steamwar.plugins.SWAuthPrincipal
 import de.steamwar.plugins.SWPermissionCheck
-import de.steamwar.plugins.getUser
 import de.steamwar.sql.*
 import io.ktor.http.*
 import io.ktor.server.application.*
@@ -61,32 +61,6 @@ fun SteamwarUser.createAccessAndRefreshToken(keepLoggedIn: Boolean = false): Aut

 fun Route.configureNewAuth() {
    route("/auth") {
-        route("/enroll") {
-            post("/{userId}") {
-                if (call.request.headers.contains("X-Forwarded-For") || call.request.header("Host") != "localhost:1337") {
-                    SWException.log("Request to /auth/register from", "Invalid IP")
-                    call.respond(HttpStatusCode.Forbidden, ResponseError("Invalid IP", "F_U"))
-                    return@post
-                }
-
-                val userId = call.parameters["userId"]?.toInt()
-                if (userId == null) {
-                    call.respond(HttpStatusCode.BadRequest, ResponseError("Missing or invalid userId"))
-                    return@post
-                }
-
-                val user = SteamwarUser.get(userId)
-                if (user == null) {
-                    call.respond(HttpStatusCode.BadRequest, ResponseError("Invalid userId"))
-                    return@post
-                }
-
-                val token = Token.createToken("PT-${user.userName}", user)
-
-                call.respond(HttpStatusCode.OK, ResponseToken(token, TokenType.RESET_PASSWORD.lifetime))
-            }
-        }
-
        post("/register") {
            val requester = call.request.header("X-Forwarded-For") ?: call.request.origin.remoteAddress