defmodule ArchitexWeb.Client.LoginController do use ArchitexWeb, :controller import ArchitexWeb.Error alias Architex.{Repo, Account, Device} alias ArchitexWeb.Client.Request.Login @login_type "m.login.password" @doc """ Gets the homeserver's supported login types to authenticate users. Action for GET /_matrix/client/r0/login. """ def login_types(conn, _params) do data = %{flows: [%{type: @login_type}]} conn |> put_status(200) |> json(data) end @doc """ Authenticates the user, and issues an access token they can use to authorize themself in subsequent requests. Action for POST /_matrix/client/r0/login. """ def login( conn, %{"type" => @login_type, "identifier" => %{"type" => "m.id.user"}} = params ) do with {:ok, request} <- Login.parse(params) do case Account.login(request) |> Repo.transaction() do {:ok, {%Account{localpart: localpart}, %Device{access_token: access_token, id: device_id}}} -> data = %{ user_id: Architex.get_mxid(localpart), access_token: access_token, device_id: device_id } conn |> put_status(200) |> json(data) {:error, error} when is_atom(error) -> put_error(conn, error) {:error, _} -> put_error(conn, :unknown) end else _ -> put_error(conn, :bad_json) end end def login(conn, _params) do # Other login types and identifiers are unsupported for now. put_error(conn, :unrecognized, "Only m.login.password is supported currently.") end end