femto-backend/Femto.Api/Controllers/Auth/AuthController.cs

using Femto.Api.Sessions;
using Femto.Modules.Auth.Application;
using Femto.Modules.Auth.Application.Commands.Login;
using Femto.Modules.Auth.Application.Commands.Register;
using Microsoft.AspNetCore.Mvc;

namespace Femto.Api.Controllers.Auth;

[ApiController]
[Route("auth")]
public class AuthController(IAuthModule authModule) : ControllerBase
{
    [HttpPost("login")]
    public async Task<ActionResult<LoginResponse>> Login([FromBody] LoginRequest request)
    {
        var result = await authModule.PostCommand(
            new LoginCommand(request.Username, request.Password)
        );

        HttpContext.SetSession(result.Session);

        return new LoginResponse(result.UserId, result.Username);
    }

    [HttpPost("register")]
    public async Task<ActionResult<RegisterResponse>> Register([FromBody] RegisterRequest request)
    {
        var result = await authModule.PostCommand(
            new RegisterCommand(request.Username, request.Password)
        );

        HttpContext.SetSession(result.Session);

        return new RegisterResponse(result.UserId, result.Username);
    }

    [HttpDelete("session")]
    public async Task<ActionResult> DeleteSession()
    {
        HttpContext.Response.Cookies.Delete("session");
        return Ok(new { });
    }
}