Devlog 3
You're viewing a Gemini article on the web
It's much better to view it on Gemini!
I managed to catch some sleep this morning, so I've been back on it again today. I needed a break from applying to jobs I know I won't get. Let's see what I did today.
Today's work
Today has mostly been about setting up auth for the different endpoints. I have a naïve JWT implementation that works for a single user deployment, but I still need to add checks to ensure that the requesting user is authorized to see the content they're looking at. I'll probably need to think about admin routes as well at some point.
In addition to setting up JWT I've also implemented a rudimentary token refresh mechanism for the frontend client. Users will be assigned an access token and a refresh token when they log in. The access token will expire every hour and a new one will be generated as long as the refresh token is valid. Once it's not, they get kicked out. I need to think about how I want to handle this so that the refresh token can be renewed if the session is still valid. That's for another day.
I now have a working register/login/logout flow that will enable people to create accounts and authenticate themselves. This bit was surprisingly easy to do (which probably means I did it wrong), but at least I can now test my middleware to make sure it works as expected.
Apart from that, I'm really just working through my handlers at the moment. Georg has done some CI work so we now have a functioning build pipeline. I have some consolidation and refactoring to do around the project setup and some of the error handling I've got set up. Apart from that, it's going better than expected.
What's next
The frontend is the elephant in the room. The whole point of the app is the kanban mechanism, so I need to get the list management endpoints up-and-running so I can try to build a POC. I'm not looking forward to having to use CSS again, if I'm honest.
https://codeberg.org/sporiff/eigakanban
Tell me what you think.