yess

dromzeh · dromzeh · commit 65caa8912a46 · 2025-07-23T20:54:34.000+01:00
diff --git a/src/routes/auth/login.ts b/src/routes/auth/login.ts
@@ -5,6 +5,7 @@ import { GenericResponses } from '~/lib/response-schemas'
 import { getConnection } from '~/lib/db/connection'
 import { user } from '~/lib/db/schema'
 import { eq } from 'drizzle-orm'
+import { setCookie } from 'hono/cookie'
 
 const bodySchema = z.object({
     email: z.string().email().openapi({
@@ -70,9 +71,12 @@ export const AuthLoginRoute = (handler: AppHandler) => {
                     email,
                     password,
                 },
+                asResponse: true,
             })
 
-            if (!result.user) {
+            const authData = (await result.json()) as any
+
+            if (!authData.user) {
                 return ctx.json(
                     {
                         success: false,
@@ -82,25 +86,40 @@ export const AuthLoginRoute = (handler: AppHandler) => {
                 )
             }
 
-            const dbUser = await drizzle.select().from(user).where(eq(user.id, result.user.id)).limit(1)
+            const dbUser = await drizzle.select().from(user).where(eq(user.id, authData.user.id)).limit(1)
 
             const username = dbUser.length > 0 ? dbUser[0]!.username : null
 
+            const cookieHeaders = result.headers.get('set-cookie')
+            if (cookieHeaders) {
+                const cookieMatches = cookieHeaders.match(/([^=]+)=([^;]+)/)
+                if (cookieMatches && cookieMatches[1] && cookieMatches[2]) {
+                    const name = cookieMatches[1].trim()
+                    const value = cookieMatches[2].trim()
+                    setCookie(ctx, name, value, {
+                        httpOnly: true,
+                        secure: true,
+                        sameSite: 'Lax',
+                        path: '/',
+                        maxAge: 60 * 60 * 24 * 7,
+                    })
+                }
+            }
+
             return ctx.json(
                 {
                     success: true,
                     message: 'Login successful',
                     user: {
-                        id: result.user.id,
-                        email: result.user.email,
-                        name: result.user.name,
+                        id: authData.user.id,
+                        email: authData.user.email,
+                        name: authData.user.name,
                         username: username,
                     },
                 },
                 200,
             )
         } catch (error: any) {
-            console.error('Login error:', error)
             return ctx.json(
                 {
                     success: false,
diff --git a/src/routes/auth/logout.ts b/src/routes/auth/logout.ts
@@ -3,14 +3,15 @@ import { AppHandler } from '~/lib/handler'
 import { createRoute } from '@hono/zod-openapi'
 import { GenericResponses } from '~/lib/response-schemas'
 import { requireAuth } from '~/lib/auth/middleware'
+import { deleteCookie } from 'hono/cookie'
 
 const responseSchema = z.object({
     success: z.boolean(),
     message: z.string(),
 })
 
 const openRoute = createRoute({
-    path: '/auth/logout',
+    path: '/logout',
     method: 'post',
     summary: 'Logout user',
     description: 'Logout the current user session.',
@@ -46,6 +47,12 @@ export const AuthLogoutRoute = (handler: AppHandler) => {
                 headers,
             })
 
+            deleteCookie(ctx, 'better-auth.session_token', {
+                path: '/',
+                secure: true,
+                sameSite: 'Lax',
+            })
+
             return ctx.json(
                 {
                     success: true,
@@ -54,7 +61,6 @@ export const AuthLogoutRoute = (handler: AppHandler) => {
                 200,
             )
         } catch (error: any) {
-            console.error('Logout error:', error)
             return ctx.json(
                 {
                     success: false,
diff --git a/src/routes/auth/profile.ts b/src/routes/auth/profile.ts
@@ -38,7 +38,7 @@ const openRoute = createRoute({
 })
 
 export const AuthProfileRoute = (handler: AppHandler) => {
-    handler.use('/auth/profile', requireAuth)
+    handler.use('/profile', requireAuth)
 
     handler.openapi(openRoute, async ctx => {
         const user = ctx.get('user')
@@ -61,7 +61,6 @@ export const AuthProfileRoute = (handler: AppHandler) => {
                 200,
             )
         } catch (error: any) {
-            console.error('Profile error:', error)
             return ctx.json(
                 {
                     success: false,
diff --git a/src/routes/auth/register.ts b/src/routes/auth/register.ts
@@ -5,6 +5,7 @@ import { GenericResponses } from '~/lib/response-schemas'
 import { getConnection } from '~/lib/db/connection'
 import { user } from '~/lib/db/schema'
 import { eq } from 'drizzle-orm'
+import { setCookie } from 'hono/cookie'
 
 const bodySchema = z.object({
     email: z.string().email().openapi({
@@ -17,11 +18,11 @@ const bodySchema = z.object({
     }),
     name: z.string().min(1).openapi({
         description: "User's display name",
-        example: 'John Doe',
+        example: 'display name',
     }),
     username: z.string().min(3).openapi({
         description: "User's unique username (required)",
-        example: 'johndoe',
+        example: 'username',
     }),
 })
 
@@ -98,9 +99,12 @@ export const AuthRegisterRoute = (handler: AppHandler) => {
                     password,
                     name,
                 },
+                asResponse: true,
             })
 
-            if (!result.user) {
+            const authData = (await result.json()) as any
+
+            if (!authData.user) {
                 return ctx.json(
                     {
                         success: false,
@@ -116,26 +120,41 @@ export const AuthRegisterRoute = (handler: AppHandler) => {
                     username,
                     updatedAt: new Date(),
                 })
-                .where(eq(user.id, result.user.id))
+                .where(eq(user.id, authData.user.id))
                 .returning()
 
             const finalUsername = updatedUsers.length > 0 ? updatedUsers[0]!.username : username
 
+            const cookieHeaders = result.headers.get('set-cookie')
+            if (cookieHeaders) {
+                const cookieMatches = cookieHeaders.match(/([^=]+)=([^;]+)/)
+                if (cookieMatches && cookieMatches[1] && cookieMatches[2]) {
+                    const name = cookieMatches[1].trim()
+                    const value = cookieMatches[2].trim()
+                    setCookie(ctx, name, value, {
+                        httpOnly: true,
+                        secure: true,
+                        sameSite: 'Lax',
+                        path: '/',
+                        maxAge: 60 * 60 * 24 * 30,
+                    })
+                }
+            }
+
             return ctx.json(
                 {
                     success: true,
                     message: 'User registered successfully',
                     user: {
-                        id: result.user.id,
-                        email: result.user.email,
-                        name: result.user.name,
+                        id: authData.user.id,
+                        email: authData.user.email,
+                        name: authData.user.name,
                         username: finalUsername,
                     },
                 },
                 201,
             )
         } catch (error: any) {
-            console.error('Registration error:', error)
             return ctx.json(
                 {
                     success: false,
diff --git a/src/routes/auth/update-profile.ts b/src/routes/auth/update-profile.ts
@@ -65,7 +65,7 @@ const openRoute = createRoute({
 })
 
 export const AuthUpdateProfileRoute = (handler: AppHandler) => {
-    handler.use('/auth/profile', requireAuth)
+    handler.use('/profile', requireAuth)
 
     handler.openapi(openRoute, async ctx => {
         const { name, username, image } = ctx.req.valid('json')
@@ -101,8 +101,6 @@ export const AuthUpdateProfileRoute = (handler: AppHandler) => {
                 .where(eq(user.id, currentUser.id))
                 .returning()
 
-            // TODO: PLEASEE add R2 support to upload images. donm't forget
-
             const updatedUser = updatedUsers[0]!
 
             return ctx.json(
diff --git a/src/routes/user/save-asset.ts b/src/routes/user/save-asset.ts
@@ -7,8 +7,12 @@ import { getConnection } from '~/lib/db/connection'
 import { eq, and } from 'drizzle-orm'
 import { asset, savedAsset } from '~/lib/db/schema'
 
-const bodySchema = z.object({
-    assetId: z.string().openapi({
+const paramsSchema = z.object({
+    id: z.string().openapi({
+        param: {
+            name: 'id',
+            in: 'path',
+        },
         description: 'ID of the asset to save',
         example: 'asset_123',
     }),
@@ -27,19 +31,13 @@ const responseSchema = z.object({
 })
 
 const openRoute = createRoute({
-    path: '/saved-assets',
+    path: '/saved-assets/{id}',
     method: 'post',
     summary: 'Save asset',
     description: "Save an asset to the current user's collection.",
     tags: ['User'],
     request: {
-        body: {
-            content: {
-                'application/json': {
-                    schema: bodySchema,
-                },
-            },
-        },
+        params: paramsSchema,
     },
     responses: {
         201: {
@@ -55,10 +53,10 @@ const openRoute = createRoute({
 })
 
 export const UserSaveAssetRoute = (handler: AppHandler) => {
-    handler.use('/user/saved-assets', requireAuth)
+    handler.use('/saved-assets/*', requireAuth)
 
     handler.openapi(openRoute, async ctx => {
-        const { assetId } = ctx.req.valid('json')
+        const { id: assetId } = ctx.req.valid('param')
         const currentUser = ctx.get('user')
         const { drizzle } = getConnection(ctx.env)
 
diff --git a/src/routes/user/saved-assets-list.ts b/src/routes/user/saved-assets-list.ts
@@ -52,7 +52,7 @@ const openRoute = createRoute({
 })
 
 export const UserSavedAssetsListRoute = (handler: AppHandler) => {
-    handler.use('/user/saved-assets', requireAuth)
+    handler.use('/saved-assets', requireAuth)
 
     handler.openapi(openRoute, async ctx => {
         const currentUser = ctx.get('user')
diff --git a/src/routes/user/unsave-asset.ts b/src/routes/user/unsave-asset.ts
@@ -47,7 +47,7 @@ const openRoute = createRoute({
 })
 
 export const UserUnsaveAssetRoute = (handler: AppHandler) => {
-    handler.use('/user/saved-assets/*', requireAuth)
+    handler.use('/saved-assets/*', requireAuth)
 
     handler.openapi(openRoute, async ctx => {
         const { assetId } = ctx.req.valid('param')
diff --git a/src/scripts/db/seed.ts b/src/scripts/db/seed.ts
@@ -123,6 +123,7 @@ async function seed() {
                 downloadCount: faker.number.int({ min: 0, max: 10000 }),
                 viewCount: faker.number.int({ min: 0, max: 50000 }),
                 hash: faker.string.alphanumeric(32),
+                status: 'approved',
                 isSuggestive: faker.datatype.boolean(),
                 size: faker.number.int({ min: 100000, max: 10000000 }),
                 extension: randomExtension,

Original file line number	Diff line number	Diff line change
`@@ -38,7 +38,7 @@ const openRoute = createRoute({`
`38`	`38`	`})`
`39`	`39`
`40`	`40`	`export const AuthProfileRoute = (handler: AppHandler) => {`
`41`		`- handler.use('/auth/profile', requireAuth)`
	`41`	`+ handler.use('/profile', requireAuth)`
`42`	`42`
`43`	`43`	`handler.openapi(openRoute, async ctx => {`
`44`	`44`	`const user = ctx.get('user')`
`@@ -61,7 +61,6 @@ export const AuthProfileRoute = (handler: AppHandler) => {`
`61`	`61`	`200,`
`62`	`62`	`)`
`63`	`63`	`} catch (error: any) {`
`64`		`- console.error('Profile error:', error)`
`65`	`64`	`return ctx.json(`
`66`	`65`	`{`
`67`	`66`	`success: false,`