feat(codev): M1 - NocoDB table schema + 3 endpoints API + runtimeConfig

2026-05-06 15:56:19 +02:00
parent 5eda4bd53d
commit 5103942698
5 changed files with 146 additions and 0 deletions
--- a/server/api/codev/auth.post.ts
+++ b/server/api/codev/auth.post.ts
@@ -0,0 +1,31 @@
+import { z } from 'zod'
+
+const AuthSchema = z.object({
+  password: z.string().min(1).max(100),
+})
+
+export default defineEventHandler(async (event) => {
+  const body = await readBody(event)
+  const parsed = AuthSchema.safeParse(body)
+
+  if (!parsed.success) {
+    throw createError({ statusCode: 422, statusMessage: 'Mot de passe invalide' })
+  }
+
+  const config = useRuntimeConfig()
+  const expected = config.codevPassword || 'merci'
+
+  if (parsed.data.password.trim().toLowerCase() !== expected.trim().toLowerCase()) {
+    throw createError({ statusCode: 401, statusMessage: 'Mauvais mot de passe' })
+  }
+
+  setCookie(event, 'codev_session', 'ok', {
+    httpOnly: true,
+    sameSite: 'lax',
+    secure: process.env.NODE_ENV === 'production',
+    maxAge: 60 * 60 * 24, // 24h
+    path: '/',
+  })
+
+  return { status: 200, ok: true }
+})