Skip to content

BE-FE/Implements-JWT-Authentication #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
RamiroGonzalez89 wants to merge 52 commits into
base: master
Choose a base branch
from
Open

BE-FE/Implements-JWT-Authentication #1

RamiroGonzalez89 wants to merge 52 commits into from

Conversation

@RamiroGonzalez89
Copy link
Contributor

@RamiroGonzalez89 RamiroGonzalez89 commented Aug 22, 2018
edited
Loading

Background

  • Protect Rest API with JWT token

Changes Done

  • Backend
    • Implement jwt middleware in TSOA
    • Add AuthController with login exposed method that signs the credentials with token
    • Add jwt security to protect Rest endpoints
    • Removes migrate and seeds broken commands
  • Frontend
    • ApiService module
    • Added support to run different environments for backend service

Pending

  • Adds validation to form - Almost done
  • Adds Error handler - Done
  • Adds Tests
  • Saves token in localStorage and pass them in each request made in headers. (ApiService request method) - Done

Persist Login when token

security-interceptor-keepslogged-when-token

Login Case

backend-frontend-jwt-working

@RamiroGonzalez89 RamiroGonzalez89 self-assigned this Aug 22, 2018
@RamiroGonzalez89 RamiroGonzalez89 changed the title Develop BE/Implements-JWT-Authentication Aug 28, 2018
@RamiroGonzalez89 RamiroGonzalez89 changed the title BE/Implements-JWT-Authentication BE-FE/Implements-JWT-Authentication Aug 28, 2018
mravinale
mravinale reviewed Aug 28, 2018
View reviewed changes
backend/src/models/UserModel.js Outdated
return function (d, b) {
extendStatics(d, b);
function __() { this.constructor = d; }
d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
Copy link
Member

@mravinale mravinale Aug 28, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please let's try to avoid single letter variables, is very difficult to understand the code in this way
why do we need to use proto ?

Copy link
Contributor Author

@RamiroGonzalez89 RamiroGonzalez89 Aug 28, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is re utilized from react-backend repository which was wrote like this, I can do a deep research to refactor the backend and be more descriptive from a intent perspective

backend/src/utils/generalUtils.js Outdated
config = parseDatabaseArguments(process.argv);
}
return config;
};
Copy link
Member

@mravinale mravinale Aug 28, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why do we need this file? seems part of some code generator?, is necessary?

Copy link
Contributor Author

@RamiroGonzalez89 RamiroGonzalez89 Aug 28, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I wrote this before in the react-backend repository in order to be able to run the localDatabase with arguments passed to the npm script, something like... npm run start:local dbname=localhost dbusername=myDbUser dbpassword=myDbPass

@RamiroGonzalez89
Frontend: Fixes error handling from service response
daf3d2c
@RamiroGonzalez89
Shows logged routes when user logins successfully
cd6de63
@RamiroGonzalez89
Adds navbar to show routes either user is logged or not. Creates getU…
492feaa 
…ser sagas to retrieve all users from service. Starting CRUD
@RamiroGonzalez89
Adds Users and Auth action/reducers, views in CRUD application.
46b7fb5
@RamiroGonzalez89
Integrate Create service with backend
808f320
@RamiroGonzalez89
Adds SecurityInterceptor to authenticate every reload page with token…
7c2ae9a 
…. Validate token in backend and hits service with token in ApiService
@RamiroGonzalez89
Adds JWT secret in env config, receives Auth token from request heade…
fa03e23 
…r to enable verificatoin properly
@RamiroGonzalez89
Adds user to dashboard table when Created
d966351
@RamiroGonzalez89
Removes types from FormSelect which is not used since type is select
513bc1d
@RamiroGonzalez89
Adds toastr as async notifier
0248fa7
@RamiroGonzalez89
Implements delete service with toastr
90ceba1
@RamiroGonzalez89
Implements update service with toastr
2818f62
@RamiroGonzalez89
Implements error Boundary to capture errors
6f8d9d3
@RamiroGonzalez89
Removes error and info from error boundary
6d36161
@RamiroGonzalez89
Implements logout button that reset credentials
662e5ba
@RamiroGonzalez89
Implements Signup Page with auth/signup rest endpoint to add user wit…
c63d203 
…hout token
@RamiroGonzalez89
WIP forgot pass
97b3db4
@RamiroGonzalez89
WIP: Backend/implements MailChimp API as email sender client service …
c2ab2b0 
…- Implements forgotPass request in frontend
@RamiroGonzalez89
Adds forgot page with loading bar
700bb2b
@RamiroGonzalez89
Fixes middleware to catch required scopes
a0fa8af
@RamiroGonzalez89
Sets MAILCHIMP settings
b1b74c1
@RamiroGonzalez89
Implements forgot password with gmail-send
0f80644
@RamiroGonzalez89
Implements forgot password success response page
52a0fa8
@RamiroGonzalez89
Removes mailchimp from package backend
3a2c13f
@RamiroGonzalez89
Implements capture error handling for sagas and redirects when token …
60a1447 
…expired
@RamiroGonzalez89
Starts formHOC enhancement
4a79fc8
@RamiroGonzalez89
Applies formHOC to all forms
970e1a6
@RamiroGonzalez89
Updates token session time to two minutes
d3375ec
@RamiroGonzalez89
Unifiy Formhocs and move structure folders where they should be from …
16a2307 
…a Domain Driven design perspective
@RamiroGonzalez89
Fixes actions path in Header component which was moved
04b9ac4
@RamiroGonzalez89
Normalize actionTypes in constants file
7bd6001
@RamiroGonzalez89
Fixes error and info messages in ErrorBoundary Component Page
89df886
@RamiroGonzalez89
Implements FormHOC in Home Modal
aee7fc7
@RamiroGonzalez89
Applies Settings files for config constants
6e5a443
@RamiroGonzalez89
Centralize Form and fields form in Form/Templates directory
540559e
@RamiroGonzalez89
Unify tests to .spec. form and removing unnecesary tests for the moment
542a93f
@RamiroGonzalez89
Adds config file per environment, add logger and translation utilities
8f0d961
@RamiroGonzalez89
Adds action reducers to be able to test Auth reducers state change
fd65907
@RamiroGonzalez89
Adds user action reducers to be able to test Users reducers state change
895e694
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mravinale mravinale mravinale left review comments

@emanuelmetal emanuelmetal Awaiting requested review from emanuelmetal

@lacosta-makingsense lacosta-makingsense Awaiting requested review from lacosta-makingsense

Assignees

@RamiroGonzalez89 RamiroGonzalez89

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@RamiroGonzalez89 @mravinale