fix: update authentication layer for GORM repository integration

- Update auth.go to use new repository interfaces - Fix test compilation errors in auth_test.go - Maintain compatibility with existing authentication flows - Update mock implementations for repository pattern 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-06-30 22:09:36 +12:00
parent 88c996a383
commit b5ea2095e4
2 changed files with 118 additions and 14 deletions
--- a/core/auth/auth.go
+++ b/core/auth/auth.go
@@ -14,6 +14,22 @@ type AuthService struct {
 	bcrypt util.Bcrypt
 }

+// AuthRepository interface for dependency injection
+type AuthRepository interface {
+	GetVerifiedUserByEmail(string) (*types.User, error)
+	GetUserByActiveSession(string) (*types.User, error)
+	GetUserByApiKey(string) (*types.User, error)
+	GetUserByEmailVerifyCode(string) (*types.User, error)
+	UpdateSessionActivity(string) error
+	UpdateApiKeyActivity(string) error
+}
+
+// GormAuthService uses the repository pattern
+type GormAuthService struct {
+	repository AuthRepository
+	bcrypt     util.Bcrypt
+}
+
 type Interface interface {
 	Authenticate(string, string) (*types.User, error)
 	AuthenticateUser(email string, password string) (*types.User, error)
@@ -28,6 +44,12 @@ func NewAuthService(db db.Datastore, bcrypt util.Bcrypt) *AuthService {
 	return authService
 }

+func NewGormAuthService(repository AuthRepository, bcrypt util.Bcrypt) *GormAuthService {
+	authService := &GormAuthService{repository: repository, bcrypt: bcrypt}
+	Instance = authService
+	return authService
+}
+
 func (auth *AuthService) Authenticate(emailOrKey string, password string) (*types.User, error) {
 	// authenticate via session, apikey or user
 	user, err := auth.AuthenticateSession(emailOrKey)
@@ -106,3 +128,83 @@ func (auth *AuthService) AuthenticateEmailVerifyCode(code string) (*types.User,

 	return u, nil
 }
+
+// GormAuthService implementations
+func (auth *GormAuthService) Authenticate(emailOrKey string, password string) (*types.User, error) {
+	// authenticate via session, apikey or user
+	user, err := auth.AuthenticateSession(emailOrKey)
+
+	if err == nil {
+		return user, nil
+	}
+
+	user, err = auth.AuthenticateApiKey(emailOrKey)
+
+	if err == nil {
+		return user, nil
+	}
+
+	user, err = auth.AuthenticateUser(emailOrKey, password)
+
+	if err == nil {
+		return user, nil
+	}
+
+	user, err = auth.AuthenticateEmailVerifyCode(emailOrKey)
+
+	if err == nil {
+		return user, nil
+	}
+
+	return nil, errors.New("Unauthorized")
+}
+
+func (auth *GormAuthService) AuthenticateUser(email string, password string) (*types.User, error) {
+	u, err := auth.repository.GetVerifiedUserByEmail(email)
+
+	if err != nil {
+		return nil, errors.New("Invalid email or password")
+	}
+
+	err = auth.bcrypt.CompareHashAndPassword([]byte(u.PasswordHash), []byte(password))
+
+	if err != nil {
+		return nil, errors.New("Invalid email or password")
+	}
+
+	return u, nil
+}
+
+func (auth *GormAuthService) AuthenticateSession(id string) (*types.User, error) {
+	u, err := auth.repository.GetUserByActiveSession(id)
+
+	if err != nil {
+		return nil, errors.New("Invalid session")
+	}
+
+	auth.repository.UpdateSessionActivity(id)
+
+	return u, nil
+}
+
+func (auth *GormAuthService) AuthenticateApiKey(id string) (*types.User, error) {
+	u, err := auth.repository.GetUserByApiKey(id)
+
+	if err != nil {
+		return nil, errors.New("Access denied")
+	}
+
+	auth.repository.UpdateApiKeyActivity(id)
+
+	return u, nil
+}
+
+func (auth *GormAuthService) AuthenticateEmailVerifyCode(code string) (*types.User, error) {
+	u, err := auth.repository.GetUserByEmailVerifyCode(code)
+
+	if err != nil {
+		return nil, errors.New("Access denied")
+	}
+
+	return u, nil
+}