-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathserver.js
executable file
·176 lines (155 loc) · 5.03 KB
/
server.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
// server.js
// set up ======================================================================
// get all the tools we need
var express = require('express')
var app = express()
var port = process.env.PORT || 8080
var bodyParser = require('body-parser')
var methodOverride = require('method-override')
var http = require('http')
var passport = require('passport')
var LocalStrategy = require('passport-local').Strategy;
var MongoClient = require('mongodb').MongoClient;
_Grid = MongoClient.Grid;
var dbConfig = require('./app/db.js');
var User = require('./models/user.js');
var mongoose = require('mongoose');
var flash = require('connect-flash')
mongoose.connect(dbConfig.url);
var bCrypt = require('bcrypt');
// Configuring Passport
var passport = require('passport');
var expressSession = require('express-session');
app.use(expressSession({
secret: 'mySecretKey'
}));
app.use(passport.initialize());
app.use(passport.session());
// DATBASE CRUMS ======================================
if (err) throw err;
console.log("Connected to Database");
_db = db //this is our global database object
})
app.use(bodyParser.json()) // get information from html forms
app.use(bodyParser.urlencoded({
extended: true
}))
app.use(express.static(__dirname + '/public'))
app.engine('html', require('ejs').renderFile);
// LOGIN ======================================
passport.serializeUser(function(user, done) {
done(null, user._id);
});
passport.deserializeUser(function(id, done) {
User.findById(id, function(err, user) {
done(err, user);
});
});
passport.use('login', new LocalStrategy({
passReqToCallback: true
},
function(req, username, password, done) {
// check in mongo if a user with username exists or not
User.findOne({
'username': username
},
function(err, user) {
// In case of any error, return using the done method
if (err)
return done(err);
// Username does not exist, log error & redirect back
if (!user) {
console.log('User Not Found with username ' + username);
return done(null, false,
flash('message', 'User Not found.'));
}
// User exists but wrong password, log the error
if (!isValidPassword(user, password)) {
console.log('Invalid Password');
return done(null, false,
flash('message', 'Invalid Password'));
}
// User and password both match, return user from
// done method which will be treated like success
return done(null, user);
}
);
}));
// comment back in to add new user
// passport.use('signup', new LocalStrategy({
// passReqToCallback: true
// },
// function(req, username, password, done) {
// findOrCreateUser = function() {
// // find a user in Mongo with provided username
// User.findOne({
// 'username': username
// }, function(err, user) {
// // In case of any error return
// if (err) {
// console.log('Error in SignUp: ' + err);
// return done(err);
// }
// // already exists
// if (user) {
// console.log('User already exists');
// return done(null, false,
// req.flash('message', 'User Already Exists'));
// } else {
// // if there is no user with that email
// // create the user
// var newUser = new User();
// // set the user's local credentials
// newUser.username = username;
// newUser.password = createHash(password);
// // save the user
// newUser.save(function(err) {
// if (err) {
// console.log('Error in Saving user: ' + err);
// throw err;
// }
// console.log('User Registration succesful');
// return done(null, newUser);
// });
// }
// });
// };
// // Delay the execution of findOrCreateUser and execute
// // the method in the next tick of the event loop
// process.nextTick(findOrCreateUser);
// }));
var isValidPassword = function(user, password) {
return bCrypt.compareSync(password, user.password);
}
// Generates hash using bCrypt
var createHash = function(password) {
return bCrypt.hashSync(password, bCrypt.genSaltSync(10), null);
}
/* Handle Login POST */
app.post('/login', passport.authenticate('login', {
successRedirect: '/admin',
failureRedirect: '/',
failureFlash: true
}));
isAuthenticated = function (req, res, next) {
if (req.isAuthenticated())
return next();
res.redirect('/');
}
app.get('/logout', isAuthenticated, function(req, res){ // SECURE ++++++
console.log('logging user out')
req.logout();
res.redirect('/');
});
// comment back in to add new user
// app.post('/signup', passport.authenticate('signup', {
// successRedirect: '/home',
// failureRedirect: '/signup',
// failureFlash: true
// }));
// routes ======================================================================
require('./app/routes.js')(app) // load our routes and pass in our app and fully configured passport
// launch ======================================================================
app.listen(port, '127.0.0.1')
console.log('The magic happens on 127.0.0.1:' + port)