Improve frontend auth handling

backend/app/handlers/user.go

@@ -267,3 +267,23 @@ func (h *UserHandler) DeleteUser(c fiber.Ctx) error {
 
 	return c.SendStatus(fiber.StatusNoContent)
 }
+
+// GetMe returns the currently authenticated user's details
+func (h *UserHandler) GetMe(c fiber.Ctx) error {
+	uid, ok := c.Locals("user_id").(string)
+	if !ok || uid == "" {
+		return c.Status(fiber.StatusUnauthorized).JSON(&models.APIError{Message: "Unauthorized"})
+	}
+
+	user, err := h.Repo.GetUserById(uid)
+	if err != nil {
+		if errors.Is(err, sql.ErrNoRows) {
+			return c.Status(fiber.StatusNotFound).JSON(&models.APIError{Message: "User not found"})
+		}
+		log.Println("Error getting user: ", err)
+		return c.Status(fiber.StatusInternalServerError).JSON(&models.APIError{Message: "Unexpected error while getting user"})
+	}
+
+	user.HashedPassword = ""
+	return c.JSON(user)
+}

backend/app/middleware/auth.go

@@ -1,11 +1,11 @@
 package middleware
 
 import (
-    "strings"
+	"strings"
 
-    "quay/internal/security"
+	"quay/internal/security"
 
-    "github.com/gofiber/fiber/v3"
+	"github.com/gofiber/fiber/v3"
 )
 
 func RequireAuth() fiber.Handler {

backend/app/routes/routes.go

@@ -75,6 +75,7 @@ func Register(app *fiber.App, cfg *config.Config, envCfg *envconfig.EnvConfig, d
 	protected.Get("/users", userHandler.GetAllUsers)
 	protected.Get("/users/:id", userHandler.GetUserById)
 	protected.Get("/users/by-name/:name", userHandler.GetUserByName)
+	protected.Get("/me", userHandler.GetMe)
 
 	// Allow creating the very first admin user without auth (bootstrap).
 	// If an admin already exists, require auth to create users.