zenn/planner.sori.studio
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

v0.1.10 - 플래너 저장 API 추가

Browse Source
This commit is contained in:
zenn
2026-04-21 18:02:03 +09:00
parent 20095a79db
commit 5b1c4bcfca
9 changed files with 260 additions and 82 deletions
Download Patch File Download Diff File Expand all files Collapse all files

71
backend/src/routes/auth.js
View File

@@ -1,14 +1,9 @@
import { eq } from 'drizzle-orm'
import { z } from 'zod'
import { db } from '../db/client.js'
import { authSessions, users } from '../db/schema.js'
import { env } from '../config.js'
import {
createSessionToken,
hashPassword,
hashSessionToken,
verifyPassword,
} from '../lib/password.js'
import { users } from '../db/schema.js'
import { hashPassword, verifyPassword } from '../lib/password.js'
import { createSession, findAuthenticatedUser } from '../lib/authSession.js'
const signupSchema = z.object({
email: z.string().trim().email(),
@@ -31,66 +26,6 @@ function sanitizeUser(user) {
}
}
function getBearerToken(request) {
const authorization = request.headers.authorization
if (!authorization?.startsWith('Bearer ')) {
return null
}
return authorization.slice('Bearer '.length).trim()
}
async function createSession(userId) {
const token = createSessionToken()
const tokenHash = hashSessionToken(token)
const now = Date.now()
const expiresAt = now + env.SESSION_TTL_DAYS * 24 * 60 * 60 * 1000
const [session] = await db
.insert(authSessions)
.values({
userId,
tokenHash,
expiresAt: new Date(expiresAt),
createdAt: new Date(now),
})
.returning()
return {
token,
session,
}
}
async function findAuthenticatedUser(request) {
const token = getBearerToken(request)
if (!token) {
return null
}
const tokenHash = hashSessionToken(token)
const [session] = await db
.select()
.from(authSessions)
.where(eq(authSessions.tokenHash, tokenHash))
.limit(1)
if (!session || new Date(session.expiresAt).getTime() <= Date.now()) {
return null
}
const [user] = await db
.select()
.from(users)
.where(eq(users.id, session.userId))
.limit(1)
return user ?? null
}
export async function registerAuthRoutes(app) {
app.post('/api/auth/signup', async (request, reply) => {
const payload = signupSchema.safeParse(request.body)

165
backend/src/routes/planner.js Normal file
View File

@@ -0,0 +1,165 @@
import { and, asc, eq, gte, lte } from 'drizzle-orm'
import { z } from 'zod'
import { db } from '../db/client.js'
import { plannerEntries } from '../db/schema.js'
import { findAuthenticatedUser } from '../lib/authSession.js'
const dateSchema = z.string().regex(/^\d{4}-\d{2}-\d{2}$/)
const plannerPayloadSchema = z.object({
payload: z.record(z.any()),
})
const plannerRangeQuerySchema = z.object({
from: dateSchema.optional(),
to: dateSchema.optional(),
})
async function requireAuthenticatedUser(request, reply) {
const user = await findAuthenticatedUser(request)
if (!user) {
reply.code(401).send({
message: '인증이 필요합니다.',
})
return null
}
return user
}
export async function registerPlannerRoutes(app) {
app.get('/api/planner', async (request, reply) => {
const user = await requireAuthenticatedUser(request, reply)
if (!user) {
return
}
const query = plannerRangeQuerySchema.safeParse(request.query ?? {})
if (!query.success) {
return reply.code(400).send({
message: '조회 범위가 올바르지 않습니다.',
issues: query.error.flatten(),
})
}
const filters = [eq(plannerEntries.userId, user.id)]
if (query.data.from) {
filters.push(gte(plannerEntries.entryDate, query.data.from))
}
if (query.data.to) {
filters.push(lte(plannerEntries.entryDate, query.data.to))
}
const entries = await db
.select({
entryDate: plannerEntries.entryDate,
payload: plannerEntries.payload,
createdAt: plannerEntries.createdAt,
updatedAt: plannerEntries.updatedAt,
})
.from(plannerEntries)
.where(and(...filters))
.orderBy(asc(plannerEntries.entryDate))
return {
entries: entries.map((entry) => ({
...entry,
payload: JSON.parse(entry.payload),
})),
}
})
app.get('/api/planner/:entryDate', async (request, reply) => {
const user = await requireAuthenticatedUser(request, reply)
if (!user) {
return
}
const dateResult = dateSchema.safeParse(request.params.entryDate)
if (!dateResult.success) {
return reply.code(400).send({
message: '날짜 형식이 올바르지 않습니다.',
})
}
const [entry] = await db
.select()
.from(plannerEntries)
.where(
and(
eq(plannerEntries.userId, user.id),
eq(plannerEntries.entryDate, dateResult.data),
),
)
.limit(1)
return {
entry: entry
? {
...entry,
payload: JSON.parse(entry.payload),
}
: null,
}
})
app.put('/api/planner/:entryDate', async (request, reply) => {
const user = await requireAuthenticatedUser(request, reply)
if (!user) {
return
}
const dateResult = dateSchema.safeParse(request.params.entryDate)
if (!dateResult.success) {
return reply.code(400).send({
message: '날짜 형식이 올바르지 않습니다.',
})
}
const payloadResult = plannerPayloadSchema.safeParse(request.body)
if (!payloadResult.success) {
return reply.code(400).send({
message: '플래너 저장 데이터가 올바르지 않습니다.',
issues: payloadResult.error.flatten(),
})
}
const now = new Date()
const [entry] = await db
.insert(plannerEntries)
.values({
userId: user.id,
entryDate: dateResult.data,
payload: JSON.stringify(payloadResult.data.payload),
createdAt: now,
updatedAt: now,
})
.onConflictDoUpdate({
target: [plannerEntries.userId, plannerEntries.entryDate],
set: {
payload: JSON.stringify(payloadResult.data.payload),
updatedAt: now,
},
})
.returning()
return {
message: '플래너가 저장되었습니다.',
entry: {
...entry,
payload: JSON.parse(entry.payload),
},
}
})
}