zengzy / rps · Files

import { z } from 'zod'
import { authenticateMockUser, createMockSession, toPublicUser } from '../../utils/mock-auth'

const loginPayloadSchema = z.object({
  username: z.string().trim().min(1),
  password: z.string().trim().min(1)
})

export default eventHandler(async (event) => {
  const body = await readBody(event)
  const parsed = loginPayloadSchema.safeParse(body)

  if (!parsed.success) {
    return {
      success: false,
      state: 'failed',
      nextAction: 'retry',
      errorCode: 'VALIDATION_ERROR',
      message: '用户名和密码不能为空。'
    }
  }

  const user = authenticateMockUser(parsed.data.username, parsed.data.password)

  if (!user) {
    return {
      success: false,
      state: 'failed',
      nextAction: 'retry',
      errorCode: 'INVALID_CREDENTIALS',
      message: '用户名或密码错误。'
    }
  }

  const session = createMockSession(user.username)

  return {
    success: true,
    state: 'authenticated',
    nextAction: 'enter_dashboard',
    errorCode: null,
    message: '登录成功。',
    token: session.token,
    expiresAt: new Date(session.expiresAt).toISOString(),
    user: toPublicUser(user)
  }
})