jennie/ghostguild-org
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ghostguild-org/server/api/dev/test-login.get.js
Jennie Robinson Faber bab53cec9e
Some checks failed
Test / vitest (push) Successful in 12m45s
Details
Test / playwright (push) Failing after 10m5s
Details
Test / visual (push) Failing after 9m16s
Details
merge: worktree-a11y-fixes into main 
Accessibility fixes (aria-labels, color contrast, html lang, inline link
underlines), atomic dev login endpoints, and E2E test hardening.
2026-04-05 22:05:00 +01:00

47 lines
1.3 KiB
JavaScript
Raw Blame History

import jwt from "jsonwebtoken";
import Member from "../../models/member.js";
import { connectDB } from "../../utils/mongoose.js";
export default defineEventHandler(async (event) => {
// Only allow in development, unless explicitly enabled for Playwright preview runs
if (
process.env.NODE_ENV === "production" &&
process.env.ALLOW_DEV_TEST_ENDPOINTS !== "true"
) {
throw createError({ statusCode: 404, statusMessage: "Not found" });
}
await connectDB();
// Find or create a test admin user (atomic to avoid race conditions in parallel tests)
const member = await Member.findOneAndUpdate(
{ email: "test-admin@ghostguild.dev" },
{
$setOnInsert: {
name: "Test Admin",
circle: "founder",
contributionTier: "0",
role: "admin",
status: "active",
},
},
{ upsert: true, new: true },
);
const config = useRuntimeConfig(event);
const token = jwt.sign(
{ memberId: member._id, email: member.email, tv: member.tokenVersion || 0 },
config.jwtSecret,
{ expiresIn: "7d" },
);
setCookie(event, "auth-token", token, {
httpOnly: true,
secure: false,
sameSite: "lax",
path: "/",
maxAge: 60 * 60 * 24 * 7,
});
await sendRedirect(event, "/admin", 302);
});
Reference in a new issue View git blame Copy permalink