krgamestudios/MERN-template
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Implemented cookie-based logins

Browse Source
This commit is contained in:
Kayne Ruse
2021-01-25 14:23:03 +11:00
parent 60cabd1936
commit 9e5c4034d3
9 changed files with 429 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files
server/accounts/index.js
+1
View File
@@ -4,5 +4,6 @@ const router = express.Router();
//basic account management
router.post('/signup', require('./signup'));
router.get('/validation', require('./validation'));
router.post('/login', require('./login'));
module.exports = router;
server/accounts/login.js
+71
View File
@@ -0,0 +1,71 @@
//libraries
const utils = require('util');
const bcrypt = require('bcryptjs');
const Sequelize = require('sequelize');
const Op = Sequelize.Op;
const { bannedEmails, accounts } = require('../database/models');
//utilities
const validateEmail = require('../../common/utilities/validate-email.js');
//api/accounts/login
const route = async (req, res) => {
//validate the given details
const validateErr = await validateDetails(req.fields);
if (validateErr) {
return res.status(401).send(validateErr);
}
//get the existing account
const account = await accounts.findOne({
where: {
email: req.fields.email
}
});
//compare passwords
const compare = utils.promisify(bcrypt.compare);
const match = await compare(req.fields.password, account.hash);
if (!match) {
return res.status(401).send('passwords don\'t match');
}
//save the session and cookie data
req.session.account = account;
res.cookie('loggedin', process.env.WEB_ADDRESS);
//finally
res.status(200).send('login succeeded');
};
const validateDetails = async (fields) => {
//basic formatting
if (!validateEmail(fields.email)) {
return 'invalid email';
}
//check for existing (banned)
const banned = await bannedEmails.findAll({
where: {
[Op.and]: {
email: fields.email,
expiry: {
[Op.or]: {
[Op.gt]: Sequelize.fn('NOW'),
[Op.eq]: null
}
}
}
}
});
if (banned.length > 0) {
return 'banned email';
}
return null;
}
module.exports = route;
server/server.js
+4
View File
@@ -9,8 +9,12 @@ const server = require('http').Server(app);
//libraries used here
const path = require('path');
const formidable = require('express-formidable');
const cookieParser = require('cookie-parser');
const session = require('express-session');
app.use(formidable());
app.use(cookieParser());
app.use(session({ secret: 'secret', resave: true, saveUninitialized: true }));
//database connection
const database = require('./database');