Merge pull request #2 from joshsoftware/feat/login-service

Implement login service

Author: VishakhaSainani-Josh

.gitignore

@@ -0,0 +1 @@
+local.yaml

cmd/main.go

@@ -0,0 +1,75 @@
+package main
+
+import (
+	"context"
+	"fmt"
+	"log/slog"
+	"net/http"
+	"os"
+	
+	"os/signal"
+	"syscall"
+	"time"
+
+	"github.com/joshsoftware/code-curiosity-2025/internal/app"
+	"github.com/joshsoftware/code-curiosity-2025/internal/config"
+)
+
+func main() {
+	ctx := context.Background()
+
+	cfg,err := config.LoadAppConfig()
+	if err != nil {
+		slog.Error("error loading app config", "error", err)
+		return
+	}
+
+
+	db, err := config.InitDataStore(cfg)
+	if err != nil {
+		slog.Error("error initializing database", "error", err)
+		return
+	}
+	defer db.Close()
+
+	dependencies := app.InitDependencies(db,cfg)
+
+	router := app.NewRouter(dependencies)
+
+	server := http.Server{
+		Addr:    fmt.Sprintf(":%s", cfg.HTTPServer.Port),
+		Handler: router,
+	}
+
+	serverRunning := make(chan os.Signal, 1)
+
+	signal.Notify(
+		serverRunning,
+		syscall.SIGABRT,
+		syscall.SIGALRM,
+		syscall.SIGBUS,
+		syscall.SIGINT,
+		syscall.SIGTERM,
+	)
+
+	go func() {
+		slog.Info("server listening at", "port", cfg.HTTPServer.Port)
+
+		if err := server.ListenAndServe(); err != nil && err != http.ErrServerClosed {
+			slog.Error("server error", "error", err)
+			serverRunning <- syscall.SIGINT
+		}
+	}()
+
+	<-serverRunning
+
+	slog.Info("shutting down the server")
+	ctx, cancel := context.WithTimeout(ctx, 10*time.Second)
+	defer cancel()
+
+	if err := server.Shutdown(ctx); err != nil {
+		slog.Error("cannot shut HTTP server down gracefully", "error", err)
+	}
+
+	slog.Info("server shutdown successfully")
+}

go.mod

@@ -0,0 +1,21 @@
+module github.com/joshsoftware/code-curiosity-2025
+
+go 1.23.4
+
+require (
+	github.com/golang-jwt/jwt/v4 v4.5.2
+	github.com/ilyakaznacheev/cleanenv v1.5.0
+	github.com/jmoiron/sqlx v1.4.0
+	github.com/lib/pq v1.10.9
+	golang.org/x/oauth2 v0.29.0
+)
+
+require (
+	github.com/BurntSushi/toml v1.2.1 // indirect
+	github.com/google/go-cmp v0.6.0 // indirect
+	github.com/joho/godotenv v1.5.1 // indirect
+	github.com/kr/pretty v0.3.1 // indirect
+	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
+	olympos.io/encoding/edn v0.0.0-20201019073823-d3554ca0b0a3 // indirect
+)

go.sum

@@ -0,0 +1,40 @@
+filippo.io/edwards25519 v1.1.0 h1:FNf4tywRC1HmFuKW5xopWpigGjJKiJSV0Cqo0cJWDaA=
+filippo.io/edwards25519 v1.1.0/go.mod h1:BxyFTGdWcka3PhytdK4V28tE5sGfRvvvRV7EaN4VDT4=
+github.com/BurntSushi/toml v1.2.1 h1:9F2/+DoOYIOksmaJFPw1tGFy1eDnIJXg+UHjuD8lTak=
+github.com/BurntSushi/toml v1.2.1/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
+github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
+github.com/go-sql-driver/mysql v1.8.1 h1:LedoTUt/eveggdHS9qUFC1EFSa8bU2+1pZjSRpvNJ1Y=
+github.com/go-sql-driver/mysql v1.8.1/go.mod h1:wEBSXgmK//2ZFJyE+qWnIsVGmvmEKlqwuVSjsCm7DZg=
+github.com/golang-jwt/jwt/v4 v4.5.2 h1:YtQM7lnr8iZ+j5q71MGKkNw9Mn7AjHM68uc9g5fXeUI=
+github.com/golang-jwt/jwt/v4 v4.5.2/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
+github.com/ilyakaznacheev/cleanenv v1.5.0 h1:0VNZXggJE2OYdXE87bfSSwGxeiGt9moSR2lOrsHHvr4=
+github.com/ilyakaznacheev/cleanenv v1.5.0/go.mod h1:a5aDzaJrLCQZsazHol1w8InnDcOX0OColm64SlIi6gk=
+github.com/jmoiron/sqlx v1.4.0 h1:1PLqN7S1UYp5t4SrVVnt4nUVNemrDAtxlulVe+Qgm3o=
+github.com/jmoiron/sqlx v1.4.0/go.mod h1:ZrZ7UsYB/weZdl2Bxg6jCRO9c3YHl8r3ahlKmRT4JLY=
+github.com/joho/godotenv v1.5.1 h1:7eLL/+HRGLY0ldzfGMeQkb7vMd0as4CfYvUVzLqw0N0=
+github.com/joho/godotenv v1.5.1/go.mod h1:f4LDr5Voq0i2e/R5DDNOoa2zzDfwtkZa6DnEwAbqwq4=
+github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
+github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
+github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
+github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
+github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
+github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
+github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
+github.com/lib/pq v1.10.9 h1:YXG7RB+JIjhP29X+OtkiDnYaXQwpS4JEWq7dtCCRUEw=
+github.com/lib/pq v1.10.9/go.mod h1:AlVN5x4E4T544tWzH6hKfbfQvm3HdbOxrmggDNAPY9o=
+github.com/mattn/go-sqlite3 v1.14.22 h1:2gZY6PC6kBnID23Tichd1K+Z0oS6nE/XwU+Vz/5o4kU=
+github.com/mattn/go-sqlite3 v1.14.22/go.mod h1:Uh1q+B4BYcTPb+yiD3kU8Ct7aC0hY9fxUwlHK0RXw+Y=
+github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
+github.com/rogpeppe/go-internal v1.9.0 h1:73kH8U+JUqXU8lRuOHeVHaa/SZPifC7BkcraZVejAe8=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+golang.org/x/oauth2 v0.29.0 h1:WdYw2tdTK1S8olAzWHdgeqfy+Mtm9XNhv/xJsY65d98=
+golang.org/x/oauth2 v0.29.0/go.mod h1:onh5ek6nERTohokkhCD/y2cV4Do3fxFHFuAejCkRWT8=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+olympos.io/encoding/edn v0.0.0-20201019073823-d3554ca0b0a3 h1:slmdOY3vp8a7KQbHkL+FLbvbkgMqmXojpFUO/jENuqQ=
+olympos.io/encoding/edn v0.0.0-20201019073823-d3554ca0b0a3/go.mod h1:oVgVk4OWVDi43qWBEyGhXgYxt7+ED4iYNpTngSLX2Iw=

internal/app/auth/domain.go

@@ -0,0 +1,37 @@
+package auth
+
+import "database/sql"
+
+const (
+	LoginWithGithubFailed = "LoginWithGithubFailed"
+	AccessTokenCookieName = "AccessToken"
+	GitHubOAuthState      = "state"
+	GithubOauthScope      = "read:user"
+	GetUserGithubUrl      = "https://api.github.com/user"
+	GetUserEmailUrl       = "https://api.github.com/user/emails"
+)
+
+type User struct {
+	Id                  int           `json:"user_id"`
+	GithubId            int           `json:"github_id"`
+	GithubUsername      string        `json:"github_username"`
+	Email               string        `json:"email"`
+	AvatarUrl           string        `json:"avatar_url"`
+	CurrentBalance      int           `json:"current_balance"`
+	CurrentActiveGoalId sql.NullInt64 `json:"current_active_goal_id"`
+	IsBlocked           bool          `json:"is_blocked"`
+	IsAdmin             bool          `json:"is_admin"`
+	Password            string        `json:"password"`
+	IsDeleted           bool          `json:"is_deleted"`
+	DeletedAt           sql.NullInt64 `json:"deleted_at"`
+	CreatedAt           int64         `json:"created_at"`
+	UpdatedAt           int64         `json:"updated_at"`
+}
+
+type GithubUserResponse struct {
+	GithubId       int    `json:"id"`
+	GithubUsername string `json:"login"`
+	AvatarUrl      string `json:"avatar_url"`
+	Email          string `json:"email"`
+	IsAdmin        bool   `json:"is_admin"`
+}

internal/app/auth/handler.go

@@ -0,0 +1,74 @@
+package auth
+
+import (
+	"fmt"
+	"log/slog"
+	"net/http"
+
+	"github.com/joshsoftware/code-curiosity-2025/internal/config"
+	"github.com/joshsoftware/code-curiosity-2025/internal/pkg/apperrors"
+	"github.com/joshsoftware/code-curiosity-2025/internal/pkg/response"
+)
+
+type handler struct {
+	authService Service
+	appConfig config.AppConfig
+}
+
+type Handler interface {
+	GithubOAuthLoginUrl(w http.ResponseWriter, r *http.Request)
+	GithubOAuthLoginCallback(w http.ResponseWriter, r *http.Request)
+	GetLoggedInUser(w http.ResponseWriter, r *http.Request)
+}
+
+func NewHandler(authService Service, appConfig config.AppConfig) Handler {
+	return &handler{
+		authService: authService,
+		appConfig: appConfig,
+	}
+}
+
+func (h *handler) GithubOAuthLoginUrl(w http.ResponseWriter, r *http.Request) {
+	ctx := r.Context()
+
+	url := h.authService.GithubOAuthLoginUrl(ctx)
+
+	http.Redirect(w, r, url, http.StatusTemporaryRedirect)
+}
+
+func (h *handler) GithubOAuthLoginCallback(w http.ResponseWriter, r *http.Request) {
+	ctx := r.Context()
+
+	code := r.URL.Query().Get("code")
+
+	token, err := h.authService.GithubOAuthLoginCallback(ctx, code)
+	if err != nil {
+		slog.Error("failed to login with github", "error", err)
+		http.Redirect(w, r, fmt.Sprintf("%s?authError=%s", h.appConfig.ClientURL, LoginWithGithubFailed), http.StatusTemporaryRedirect)
+		return
+	}
+
+	cookie := &http.Cookie{
+		Name:  AccessTokenCookieName,
+		Value: token,
+		//TODO set domain before deploying to production
+		// Domain: "yourdomain.com",
+		HttpOnly: true,
+	}
+	http.SetCookie(w, cookie)
+	http.Redirect(w, r, h.appConfig.ClientURL, http.StatusPermanentRedirect)
+}
+
+func (h *handler) GetLoggedInUser(w http.ResponseWriter, r *http.Request) {
+	ctx := r.Context()
+
+	userInfo, err := h.authService.GetLoggedInUser(ctx)
+	if err != nil {
+		slog.Error("error getting logged in user")
+		status, errorMessage := apperrors.MapError(err)
+		response.WriteJson(w, status, errorMessage, nil)
+		return
+	}
+
+	response.WriteJson(w, http.StatusOK, "logged in user fetched successfully", userInfo)
+}

internal/app/auth/service.go

@@ -0,0 +1,105 @@
+package auth
+
+import (
+	"context"
+	"encoding/json"
+	"log/slog"
+
+	"github.com/joshsoftware/code-curiosity-2025/internal/app/user"
+	"github.com/joshsoftware/code-curiosity-2025/internal/config"
+	"github.com/joshsoftware/code-curiosity-2025/internal/pkg/apperrors"
+	"github.com/joshsoftware/code-curiosity-2025/internal/pkg/jwt"
+	"github.com/joshsoftware/code-curiosity-2025/internal/pkg/middleware"
+	"golang.org/x/oauth2"
+	"golang.org/x/oauth2/github"
+)
+
+type service struct {
+	githubOAuth2 oauth2.Config
+	userService  user.Service
+	appCfg       config.AppConfig
+}
+
+type Service interface {
+	GithubOAuthLoginUrl(ctx context.Context) string
+	GithubOAuthLoginCallback(ctx context.Context, code string) (string, error)
+	GetLoggedInUser(ctx context.Context) (User, error)
+}
+
+func NewService(userService user.Service, appCfg config.AppConfig) Service {
+	oauth2Config := oauth2.Config{
+		ClientID:     appCfg.GithubOauth.ClientID,
+		ClientSecret: appCfg.GithubOauth.ClientSecret,
+		RedirectURL:  appCfg.GithubOauth.RedirectURL,
+		Endpoint:     github.Endpoint,
+		Scopes:       []string{GithubOauthScope},
+	}
+
+	return &service{
+		githubOAuth2: oauth2Config,
+		userService:  userService,
+		appCfg:       appCfg,
+	}
+}
+
+func (s *service) GithubOAuthLoginUrl(ctx context.Context) string {
+	return s.githubOAuth2.AuthCodeURL(GitHubOAuthState, oauth2.AccessTypeOffline)
+}
+
+func (s *service) GithubOAuthLoginCallback(ctx context.Context, code string) (string, error) {
+	token, err := s.githubOAuth2.Exchange(ctx, code)
+	if err != nil {
+		slog.Error("failed to exchange token", "error", err)
+		return "", apperrors.ErrGithubTokenExchangeFailed
+	}
+
+	client := s.githubOAuth2.Client(ctx, token)
+	resp, err := client.Get(GetUserGithubUrl)
+	if err != nil {
+		slog.Error("failed to get user info", "error", err)
+		return "", apperrors.ErrFailedToGetGithubUser
+	}
+	defer resp.Body.Close()
+
+	var userInfo GithubUserResponse
+	err = json.NewDecoder(resp.Body).Decode(&userInfo)
+	if err != nil {
+		slog.Error("failed to unmarshal user info", "error", err)
+		return "", apperrors.ErrInternalServer
+	}
+
+	userData, err := s.userService.GetUserByGithubId(ctx, userInfo.GithubId)
+	if err != nil {
+		userData, err = s.userService.CreateUser(ctx, user.CreateUserRequestBody(userInfo))
+		if err != nil {
+			slog.Error("failed to create user", "error", err)
+			return "", apperrors.ErrUserCreationFailed
+		}
+	}
+
+	jwtToken, err := jwt.GenerateJWT(userData.Id, userInfo.IsAdmin, s.appCfg)
+	if err != nil {
+		slog.Error("error generating jwt", "error", err)
+		return "", apperrors.ErrInternalServer
+	}
+
+	return jwtToken, nil
+}
+
+func (s *service) GetLoggedInUser(ctx context.Context) (User, error) {
+	userIdValue := ctx.Value(middleware.UserIdKey)
+
+	userId, ok := userIdValue.(int)
+	if !ok {
+		slog.Error("error obtaining user id from context")
+		return User{}, apperrors.ErrInternalServer
+	}
+
+	user, err := s.userService.GetUserById(ctx, userId)
+	if err != nil {
+		slog.Error("failed to get logged in user", "error", err)
+		return User{}, apperrors.ErrInternalServer
+	}
+
+	return User(user), nil
+}

internal/app/dependencies.go

@@ -0,0 +1,35 @@
+package app
+
+import (
+	"github.com/jmoiron/sqlx"
+	"github.com/joshsoftware/code-curiosity-2025/internal/app/auth"
+	"github.com/joshsoftware/code-curiosity-2025/internal/app/user"
+	"github.com/joshsoftware/code-curiosity-2025/internal/config"
+	"github.com/joshsoftware/code-curiosity-2025/internal/repository"
+)
+
+type Dependencies struct {
+	AuthService auth.Service
+	UserService user.Service
+	AuthHandler auth.Handler
+	UserHandler user.Handler
+	AppCfg      config.AppConfig
+}
+
+func InitDependencies(db *sqlx.DB, appCfg config.AppConfig) Dependencies {
+	userRepository := repository.NewUserRepository(db)
+
+	userService := user.NewService(userRepository)
+	authService := auth.NewService(userService, appCfg)
+
+	authHandler := auth.NewHandler(authService, appCfg)
+	userHandler := user.NewHandler(userService)
+
+	return Dependencies{
+		AuthService: authService,
+		UserService: userService,
+		AuthHandler: authHandler,
+		UserHandler: userHandler,
+		AppCfg:      appCfg,
+	}
+}