7e7a692521
- DB-Migration 002_auth.sql (users + sessions Tabellen) - AuthStore mit Session-Management, bcrypt, EnsureAdminUser - Login/Logout Handler mit Cookie-Session (HttpOnly, SameSite=Lax) - Login-Template (Bulma-Card, deutsche Labels) - Config: AdminPassword, DefaultTenantSlug, DevMode - Fallback-Texte: "Netzwerk offline" → "Server nicht erreichbar" - TENANT-FEATURE-PLAN.md mit 46 Checkboxen als Steuerungsdatei Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
105 lines
2.8 KiB
Go
105 lines
2.8 KiB
Go
package app
|
|
|
|
import (
|
|
"context"
|
|
"crypto/rand"
|
|
"encoding/hex"
|
|
"errors"
|
|
"log"
|
|
"net/http"
|
|
"os"
|
|
|
|
"git.az-it.net/az/morz-infoboard/server/backend/internal/config"
|
|
"git.az-it.net/az/morz-infoboard/server/backend/internal/db"
|
|
"git.az-it.net/az/morz-infoboard/server/backend/internal/httpapi"
|
|
"git.az-it.net/az/morz-infoboard/server/backend/internal/mqttnotifier"
|
|
"git.az-it.net/az/morz-infoboard/server/backend/internal/store"
|
|
)
|
|
|
|
type App struct {
|
|
Config config.Config
|
|
server *http.Server
|
|
notifier *mqttnotifier.Notifier
|
|
}
|
|
|
|
func New() (*App, error) {
|
|
cfg := config.Load()
|
|
logger := log.New(os.Stdout, "backend ", log.LstdFlags|log.LUTC)
|
|
|
|
// Ensure upload directory exists.
|
|
if err := os.MkdirAll(cfg.UploadDir, 0755); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// Connect to database and run migrations.
|
|
pool, err := db.Connect(context.Background(), cfg.DatabaseURL, logger)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// Status store (existing in-memory/file store).
|
|
statusStore, err := httpapi.NewStoreFromConfig(cfg.StatusStorePath)
|
|
if err != nil {
|
|
pool.Close()
|
|
return nil, err
|
|
}
|
|
|
|
// Domain stores.
|
|
tenants := store.NewTenantStore(pool.Pool)
|
|
screens := store.NewScreenStore(pool.Pool)
|
|
media := store.NewMediaStore(pool.Pool)
|
|
playlists := store.NewPlaylistStore(pool.Pool)
|
|
authStore := store.NewAuthStore(pool.Pool)
|
|
|
|
// Ensure admin user exists — generate a random password if none is configured.
|
|
adminPassword := cfg.AdminPassword
|
|
if adminPassword == "" {
|
|
buf := make([]byte, 16)
|
|
if _, err := rand.Read(buf); err != nil {
|
|
pool.Close()
|
|
return nil, err
|
|
}
|
|
adminPassword = hex.EncodeToString(buf)
|
|
logger.Printf("event=admin_password_generated password=%s", adminPassword)
|
|
}
|
|
if err := authStore.EnsureAdminUser(context.Background(), cfg.DefaultTenantSlug, adminPassword); err != nil {
|
|
logger.Printf("event=ensure_admin_user_failed err=%v", err)
|
|
// Non-fatal: server starts even if admin setup fails.
|
|
}
|
|
|
|
// MQTT notifier (no-op when broker not configured).
|
|
notifier := mqttnotifier.New(cfg.MQTTBroker, cfg.MQTTUsername, cfg.MQTTPassword)
|
|
if cfg.MQTTBroker != "" {
|
|
logger.Printf("event=mqtt_notifier_enabled broker=%s", cfg.MQTTBroker)
|
|
} else {
|
|
logger.Printf("event=mqtt_notifier_disabled reason=no_broker_configured")
|
|
}
|
|
|
|
handler := httpapi.NewRouter(httpapi.RouterDeps{
|
|
StatusStore: statusStore,
|
|
TenantStore: tenants,
|
|
ScreenStore: screens,
|
|
MediaStore: media,
|
|
PlaylistStore: playlists,
|
|
AuthStore: authStore,
|
|
Notifier: notifier,
|
|
Config: cfg,
|
|
UploadDir: cfg.UploadDir,
|
|
Logger: logger,
|
|
})
|
|
|
|
return &App{
|
|
Config: cfg,
|
|
server: &http.Server{Addr: cfg.HTTPAddress, Handler: handler},
|
|
notifier: notifier,
|
|
}, nil
|
|
}
|
|
|
|
func (a *App) Run() error {
|
|
defer a.notifier.Close()
|
|
err := a.server.ListenAndServe()
|
|
if errors.Is(err, http.ErrServerClosed) {
|
|
return nil
|
|
}
|
|
return err
|
|
}
|