feat: add auth flow and login guard for api/web

memora-api/internal/router/router.go

@@ -7,18 +7,26 @@ import (
 	"github.com/gin-gonic/gin"
 )
 
-func New(wordHandler *handler.WordHandler) *gin.Engine {
+func New(wordHandler *handler.WordHandler, authHandler *handler.AuthHandler) *gin.Engine {
 	r := gin.Default()
 	r.Use(middleware.CORS())
 
 	api := r.Group("/api")
 	{
-		api.POST("/words", wordHandler.AddWord)
-		api.GET("/words", wordHandler.GetWords)
-		api.GET("/review", wordHandler.GetReviewWords)
-		api.POST("/review", wordHandler.SubmitReview)
-		api.GET("/stats", wordHandler.GetStatistics)
-		api.GET("/audio", wordHandler.GetAudio)
+		api.POST("/auth/register", authHandler.Register)
+		api.POST("/auth/login", authHandler.Login)
+		api.GET("/auth/me", authHandler.Me)
+
+		protected := api.Group("")
+		protected.Use(middleware.AuthRequired())
+		{
+			protected.POST("/words", wordHandler.AddWord)
+			protected.GET("/words", wordHandler.GetWords)
+			protected.GET("/review", wordHandler.GetReviewWords)
+			protected.POST("/review", wordHandler.SubmitReview)
+			protected.GET("/stats", wordHandler.GetStatistics)
+			protected.GET("/audio", wordHandler.GetAudio)
+		}
 	}
 
 	return r