From bd2ebe456996a51ad4230ea9c69f2d7c0879cf9d Mon Sep 17 00:00:00 2001
From: bt <bt@rctt.net>
Date: Sun, 24 May 2026 19:17:10 +0200
Subject: [daemon] Authorize using database

---
 server/user.go | 19 +++++++++++++------
 1 file changed, 13 insertions(+), 6 deletions(-)

(limited to 'server/user.go')

diff --git a/server/user.go b/server/user.go
index 5b8049f..c27c6a1 100644
--- a/server/user.go
+++ b/server/user.go
@@ -84,15 +84,16 @@ func (s *Server) performUserAuth(conn net.Conn) (string, error) {
 		return "", core.ErrUnexpectedPayloadType
 	}
 
-	// For testing ---
-	if clientAuth.Pass != "valid" {
-		if err := core.Send(conn, core.Error{core.ErrorAuthFailed}); err != nil {
-			log.Println("cannot send auth error:", err)
-		}
+	hash, err := s.Storage.GetUserPass(clientAuth.Name)
+	if err != nil {
+		s.authFail(conn)
+		return "", core.ErrAuthInvalidUser
+	}
 
+	if !core.CheckPass(clientAuth.Pass, hash) {
+		s.authFail(conn)
 		return "", core.ErrAuthInvalidPassword
 	}
-	// ---
 
 	if err := core.Send(conn, core.Success{}); err != nil {
 		return "", err
@@ -101,6 +102,12 @@ func (s *Server) performUserAuth(conn net.Conn) (string, error) {
 	return clientAuth.Name, nil
 }
 
+func (s *Server) authFail(conn net.Conn) {
+	if err := core.Send(conn, core.Error{core.ErrorAuthFailed}); err != nil {
+		log.Println("cannot send auth error:", err)
+	}
+}
+
 func (s *Server) readUserInput(user *User, conn net.Conn) error {
 	for {
 		payload, err := core.Decode(conn)
-- 
cgit v1.2.3