feat(login): add local users functionality (#591)

server/routes/auth.ts

@@ -6,6 +6,7 @@ import { isAuthenticated } from '../middleware/auth';
 import { Permission } from '../lib/permissions';
 import logger from '../logger';
 import { getSettings } from '../lib/settings';
+import { UserType } from '../../src/hooks/useUser';
 
 const authRoutes = Router();
 
@@ -126,6 +127,53 @@ authRoutes.post('/login', async (req, res, next) => {
   }
 });
 
+authRoutes.post('/local', async (req, res, next) => {
+  const userRepository = getRepository(User);
+  const body = req.body as { email?: string; password?: string };
+
+  if (!body.email || !body.password) {
+    return res
+      .status(500)
+      .json({ error: 'You must provide an email and a password' });
+  }
+  try {
+    const user = await userRepository.findOne({
+      select: ['id', 'password'],
+      where: { email: body.email, userType: UserType.LOCAL },
+    });
+
+    const isCorrectCredentials = await user?.passwordMatch(body.password);
+
+    // User doesn't exist or credentials are incorrect
+    if (!isCorrectCredentials) {
+      logger.info('Failed login attempt from user with incorrect credentials', {
+        label: 'Auth',
+        account: {
+          email: body.email,
+          password: '__REDACTED__',
+        },
+      });
+      return next({
+        status: 403,
+        message: 'You do not have access to this Plex server',
+      });
+    }
+
+    // Set logged in session
+    if (user && req.session) {
+      req.session.userId = user.id;
+    }
+
+    return res.status(200).json(user?.filter() ?? {});
+  } catch (e) {
+    logger.error(e.message, { label: 'Auth' });
+    return next({
+      status: 500,
+      message: 'Something went wrong.',
+    });
+  }
+});
+
 authRoutes.get('/logout', (req, res, next) => {
   req.session?.destroy((err) => {
     if (err) {