Kyle Isom
115802cbe2
All import paths updated to git.wntrmute.dev/mc/. Bumps mcdsl to v1.2.0. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
39 lines
1.1 KiB
Go
39 lines
1.1 KiB
Go
package grpcserver
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
|
|
mcdslauth "git.wntrmute.dev/mc/mcdsl/auth"
|
|
"google.golang.org/grpc/codes"
|
|
"google.golang.org/grpc/status"
|
|
|
|
pb "git.wntrmute.dev/mc/mcns/gen/mcns/v1"
|
|
)
|
|
|
|
type authService struct {
|
|
pb.UnimplementedAuthServiceServer
|
|
auth *mcdslauth.Authenticator
|
|
}
|
|
|
|
func (s *authService) Login(_ context.Context, req *pb.LoginRequest) (*pb.LoginResponse, error) {
|
|
token, _, err := s.auth.Login(req.Username, req.Password, req.TotpCode)
|
|
if err != nil {
|
|
if errors.Is(err, mcdslauth.ErrInvalidCredentials) {
|
|
return nil, status.Error(codes.Unauthenticated, "invalid credentials")
|
|
}
|
|
if errors.Is(err, mcdslauth.ErrForbidden) {
|
|
return nil, status.Error(codes.PermissionDenied, "access denied by login policy")
|
|
}
|
|
return nil, status.Error(codes.Unavailable, "authentication service unavailable")
|
|
}
|
|
return &pb.LoginResponse{Token: token}, nil
|
|
}
|
|
|
|
func (s *authService) Logout(_ context.Context, req *pb.LogoutRequest) (*pb.LogoutResponse, error) {
|
|
if err := s.auth.Logout(req.Token); err != nil {
|
|
return nil, status.Error(codes.Internal, "logout failed")
|
|
}
|
|
return &pb.LogoutResponse{}, nil
|
|
}
|