passport-init.js

var LocalStrategy   = require('passport-local').Strategy;
var bCrypt = require('bcrypt-nodejs');
var mongoose = require('mongoose');
var User = mongoose.model('User');
var Post = mongoose.model('Post');


module.exports = function(passport){

    // Passport needs to be able to serialize and deserialize users to support persistent login sessions

    passport.serializeUser(function(user, done) {
        console.log('serializing user:',user.username);
        done(null, user._id);
    });

    passport.deserializeUser(function(id, done) {

        User.findById(id, function(err, user){
            if(err){
                return done(err, false)
            }
            return done(null, user)
        })
    });

    passport.use('login', new LocalStrategy({
            passReqToCallback : true
        },
        function(req, username, password, done) {

            User.findOne({username: username}, function(err, user){
                if(err){
                    return done(err, false);
                }
                if(!user){
                    return done('user not exists', false);
                }
                if(!isValidPassword(user, password)){
                    return done('password incorrect', false)
                }

                return done(null, user);
            });

        }
    ));

    passport.use('signup', new LocalStrategy({
            passReqToCallback : true // allows us to pass back the entire request to the callback
        },
        function(req, username, password, done) {

            User.findOne({username : username}, function(err, user){
                if(err){
                    return done(err, false);
                }

                if(user){
                    return done('Username already exists', false)
                }

                var user = new User();
                user.username = username;
                user.password = createHash(password);

                user.save(function(err, user){
                    if(err){
                        return done(err, false);
                    }
                    console.log('successfully signedup ' + username);
                    return done(null, user)
                })
            });
        })
    );

    var isValidPassword = function(user, password){
        return bCrypt.compareSync(password, user.password);
    };
    // Generates hash using bCrypt
    var createHash = function(password){
        return bCrypt.hashSync(password, bCrypt.genSaltSync(10), null);
    };

};