wip session auth

Femto.Modules.Auth/Application/Interface/Register/RegisterCommandHandler.cs

@@ -6,30 +6,38 @@ using Microsoft.EntityFrameworkCore;
 
 namespace Femto.Modules.Auth.Application.Interface.Register;
 
-internal class RegisterCommandHandler(AuthContext context) : ICommandHandler<RegisterCommand, RegisterResult>
+internal class RegisterCommandHandler(AuthContext context)
+    : ICommandHandler<RegisterCommand, RegisterResult>
 {
-    public async Task<RegisterResult> Handle(RegisterCommand request, CancellationToken cancellationToken)
+    public async Task<RegisterResult> Handle(
+        RegisterCommand request,
+        CancellationToken cancellationToken
+    )
     {
+        
         var now = DateTimeOffset.UtcNow;
-        var code = await context.SignupCodes
-            .Where(c => c.Code == request.SignupCode)
+     
+        var code = await context
+            .SignupCodes.Where(c => c.Code == request.SignupCode)
             .Where(c => c.ExpiresAt == null || c.ExpiresAt > now)
             .Where(c => c.RedeemingUserId == null)
             .SingleOrDefaultAsync(cancellationToken);
 
         if (code is null)
             throw new DomainError("invalid signup code");
-        
+
         var user = new UserIdentity(request.Username);
+
+        await context.AddAsync(user, cancellationToken);
         
         user.SetPassword(request.Password);
 
-        var session = user.StartNewSession();
+        var session = Session.Strong(user.Id);
         
-        await context.AddAsync(user, cancellationToken);
+        await context.AddAsync(session, cancellationToken);
         
         code.Redeem(user.Id);
-        
-        return new(new Session(session.Id, session.Expires), new UserInfo(user));    
+
+        return new(new SessionDto(session), new UserInfo(user));
     }
-}
+}