aodhan/professor
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial commit — AI-powered coding tutor (Professor)

Browse Source 
Next.js 16, React 19, Monaco editor, Anthropic SDK, multi-provider AI,
Wandbox Python execution, iframe HTML preview, SQLite auth + session persistence.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Aodhan Collins
2026-03-04 21:48:34 +00:00
commit f644937604
56 changed files with 14012 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

68
lib/auth.ts Normal file
View File

@@ -0,0 +1,68 @@
import { SignJWT, jwtVerify } from 'jose';
import bcrypt from 'bcryptjs';
import { cookies } from 'next/headers';
const JWT_SECRET = new TextEncoder().encode(
process.env.JWT_SECRET ?? 'dev-secret-change-in-production-please'
);
const COOKIE_NAME = 'professor_auth';
const COOKIE_MAX_AGE = 60 * 60 * 24 * 30; // 30 days
export interface JWTPayload {
userId: string;
email: string;
}
// ─── Password helpers ────────────────────────────────────────────────────────
export async function hashPassword(password: string): Promise<string> {
return bcrypt.hash(password, 12);
}
export async function verifyPassword(password: string, hash: string): Promise<boolean> {
return bcrypt.compare(password, hash);
}
// ─── JWT helpers ─────────────────────────────────────────────────────────────
export async function signToken(payload: JWTPayload): Promise<string> {
return new SignJWT(payload as unknown as Record<string, unknown>)
.setProtectedHeader({ alg: 'HS256' })
.setIssuedAt()
.setExpirationTime('30d')
.sign(JWT_SECRET);
}
export async function verifyToken(token: string): Promise<JWTPayload | null> {
try {
const { payload } = await jwtVerify(token, JWT_SECRET);
return payload as unknown as JWTPayload;
} catch {
return null;
}
}
// ─── Cookie helpers ───────────────────────────────────────────────────────────
export async function setAuthCookie(token: string): Promise<void> {
const cookieStore = await cookies();
cookieStore.set(COOKIE_NAME, token, {
httpOnly: true,
secure: process.env.NODE_ENV === 'production',
sameSite: 'lax',
maxAge: COOKIE_MAX_AGE,
path: '/',
});
}
export async function clearAuthCookie(): Promise<void> {
const cookieStore = await cookies();
cookieStore.delete(COOKIE_NAME);
}
export async function getAuthUser(): Promise<JWTPayload | null> {
const cookieStore = await cookies();
const token = cookieStore.get(COOKIE_NAME)?.value;
if (!token) return null;
return verifyToken(token);
}