From 4dbd96ec697196d43ad41eca4fd43d53da46a081 Mon Sep 17 00:00:00 2001
From: bndw <ben@bdw.to>
Date: Sat, 14 Feb 2026 14:54:30 -0800
Subject: refactor: use AuthStore interface and remove type assertions

Replace runtime type assertions with compile-time safe AuthStore interface.
Add connState struct for cleaner per-connection state management instead
of mutable pointer parameters. Reduce auth challenge TTL from 10min to 2min.

- Add AuthStore interface with CreateAuthChallenge and ValidateAndConsumeChallenge
- Add connState struct for authenticatedPubkey and authChallenge
- Remove fragile type assertion pattern in requireAuth and handleAuth
- Add nil checks for auth store with clear error messages
- Update Handler to have separate auth field
- Wire auth store in main.go when auth is enabled
---
 internal/storage/auth.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'internal/storage')

diff --git a/internal/storage/auth.go b/internal/storage/auth.go
index 6eefa41..e17ffeb 100644
--- a/internal/storage/auth.go
+++ b/internal/storage/auth.go
@@ -10,7 +10,7 @@ import (
 
 const (
 	ChallengeLength = 32 // bytes
-	ChallengeTTL    = 10 * time.Minute
+	ChallengeTTL    = 2 * time.Minute
 )
 
 func generateChallenge() (string, error) {
-- 
cgit v1.2.3