WebAuthN auth

lib/sso_bsn_web/router.ex

@@ -1,6 +1,8 @@
 defmodule SsoBsnWeb.Router do
   use SsoBsnWeb, :router
 
+  import SsoBsnWeb.UserAuth
+
   pipeline :browser do
     plug :accepts, ["html"]
     plug :fetch_session
@@ -8,6 +10,7 @@ defmodule SsoBsnWeb.Router do
     plug :put_root_layout, html: {SsoBsnWeb.Layouts, :root}
     plug :protect_from_forgery
     plug :put_secure_browser_headers
+    plug :fetch_current_user
   end
 
   pipeline :api do
@@ -25,7 +28,7 @@ defmodule SsoBsnWeb.Router do
   #   pipe_through :api
   # end
 
-  # Enable LiveDashboard and Swoosh mailbox preview in development
+  # Enable LiveDashboard in development
   if Application.compile_env(:sso_bsn, :dev_routes) do
     # If you want to use the LiveDashboard in production, you should put
     # it behind authentication and allow only admins to access it.
@@ -38,7 +41,36 @@ defmodule SsoBsnWeb.Router do
       pipe_through :browser
 
       live_dashboard "/dashboard", metrics: SsoBsnWeb.Telemetry
-      forward "/mailbox", Plug.Swoosh.MailboxPreview
     end
   end
+
+  ## Authentication routes
+
+  scope "/", SsoBsnWeb do
+    pipe_through [:browser, :redirect_if_user_is_authenticated]
+
+    live_session :redirect_if_user_is_authenticated,
+      on_mount: [{SsoBsnWeb.UserAuth, :redirect_if_user_is_authenticated}] do
+      live "/users/register", UserRegistrationLive, :new
+      live "/users/log_in", UserLoginLive, :new
+    end
+
+    get "/users/log_in/:token", UserSessionController, :login
+    post "/users/log_in", UserSessionController, :create
+  end
+
+  scope "/", SsoBsnWeb do
+    pipe_through [:browser, :require_authenticated_user]
+
+    live_session :require_authenticated_user,
+      on_mount: [{SsoBsnWeb.UserAuth, :ensure_authenticated}] do
+      live "/users/settings", UserSettingsLive, :edit
+    end
+  end
+
+  scope "/", SsoBsnWeb do
+    pipe_through [:browser]
+
+    delete "/users/log_out", UserSessionController, :delete
+  end
 end