xtablo-source

arthur/xtablo-source

Fork 0

Commit graph

Author	SHA1	Message	Date
Arthur Belleville	efdc16babe	feat(02-04): signup handler, router wiring, and integration tests - Add handlers_auth.go: SignupPageHandler + SignupPostHandler (validate -> hash -> insert -> session -> redirect) - Add AuthDeps struct; wire argon2id hash, InsertUser, Store.Create, SetSessionCookie - Update router.go: NewRouter accepts AuthDeps; mount ResolveSession (D-24); wire /signup routes behind RedirectIfAuthed - Update cmd/web/main.go: build AuthDeps (sqlc.Queries + auth.Store + secure flag) and pass to NewRouter - Add nil-Store guard to auth.ResolveSession for Phase 1 unit-test compatibility - Update handlers_test.go: pass AuthDeps{} zero value to NewRouter (Phase 1 routes unaffected) - Add testdb_test.go: isolated-schema test helper for web package integration tests - Add handlers_auth_test.go: 8 TestSignup_* integration tests (all pass against real Postgres)	2026-05-14 22:17:50 +02:00
Arthur Belleville	1d07830954	feat(02-03): ResolveSession + RequireAuth + RedirectIfAuthed middleware - ResolveSession: reads cookie, SHA-256 lookup, MaybeExtend best-effort, attaches Session+User to ctx - RequireAuth: 303 /login for plain requests; HX-Redirect: /login for HTMX (D-23, Pattern 5) - RedirectIfAuthed: bounces authed users to / from login/signup pages - Authed(ctx): typed context accessor for session + user - redirect helper centralizes 303 vs HX-Redirect logic (Pitfall 9: no 302) - 9 tests: 3 real-DB (ResolveSession) + 6 pure ctx/routing (RequireAuth, RedirectIfAuthed)	2026-05-14 22:09:58 +02:00

Author

SHA1

Message

Date

Arthur Belleville

efdc16babe

feat(02-04): signup handler, router wiring, and integration tests

- Add handlers_auth.go: SignupPageHandler + SignupPostHandler (validate -> hash -> insert -> session -> redirect)
- Add AuthDeps struct; wire argon2id hash, InsertUser, Store.Create, SetSessionCookie
- Update router.go: NewRouter accepts AuthDeps; mount ResolveSession (D-24); wire /signup routes behind RedirectIfAuthed
- Update cmd/web/main.go: build AuthDeps (sqlc.Queries + auth.Store + secure flag) and pass to NewRouter
- Add nil-Store guard to auth.ResolveSession for Phase 1 unit-test compatibility
- Update handlers_test.go: pass AuthDeps{} zero value to NewRouter (Phase 1 routes unaffected)
- Add testdb_test.go: isolated-schema test helper for web package integration tests
- Add handlers_auth_test.go: 8 TestSignup_* integration tests (all pass against real Postgres)

2026-05-14 22:17:50 +02:00

Arthur Belleville

1d07830954

feat(02-03): ResolveSession + RequireAuth + RedirectIfAuthed middleware

- ResolveSession: reads cookie, SHA-256 lookup, MaybeExtend best-effort, attaches Session+User to ctx
- RequireAuth: 303 /login for plain requests; HX-Redirect: /login for HTMX (D-23, Pattern 5)
- RedirectIfAuthed: bounces authed users to / from login/signup pages
- Authed(ctx): typed context accessor for session + user
- redirect helper centralizes 303 vs HX-Redirect logic (Pitfall 9: no 302)
- 9 tests: 3 real-DB (ResolveSession) + 6 pure ctx/routing (RequireAuth, RedirectIfAuthed)

2026-05-14 22:09:58 +02:00

2 commits