-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.js
130 lines (114 loc) · 4.02 KB
/
server.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
require('dotenv').config();
const express = require('express'),
cookieParser = require('cookie-parser'),
session = require('express-session'),
api = require('./api'),
statusCode = require('./api/lib/httpStatusCodes'),
bodyParser = require('body-parser'),
path = require('path'),
morgan = require('morgan'),
Cloudant = require('@cloudant/cloudant'),
crypto = require('crypto'),
passport = require('passport'),
LocalStrategy = require('passport-local').Strategy;
const user = process.env.CLOUDANT_USER,
pw = process.env.CLOUDANT_PW,
client = Cloudant({ account: user, password: pw }),
database = client.use('chatbot_admins');
const app = express();
let sessionConfiguration = {
secret: process.env.SESSION_SECRET,
resave: true,
saveUninitialized: true,
cookie: { secure: true, maxAge: 3600000 }
};
if (process.env.ENVIRONMENT !== 'prod')
sessionConfiguration.cookie.secure = false;
app.use(session(sessionConfiguration));
app.use(cookieParser(process.env.SESSION_SECRET));
app.use(passport.initialize());
app.use(passport.session());
app.use(bodyParser.urlencoded({ extended: false }));
app.use(bodyParser.json());
app.use(morgan('dev'));
passport.use(new LocalStrategy(
(username, password, done) => {
password = crypto.createHash('md5').update(password).digest('hex');
database.find({
selector: {
email: username
}
}, (err, result) => {
if (err) return done(null, false, {
message: 'Error while authenticating.'
});
if (result.docs.length === 1) {
if (!result.docs[0].active)
return done(null, false, {
message: 'User does not have an active account.'
});
if (result.docs[0].password !== password)
return done(null, false, {
message: 'Invalid password.'
});
return done(null, result.docs[0]);
}
return done(null, false, {
message: 'Invalid credentials.'
});
})
}
));
passport.serializeUser(function (user, done) {
return done(null, user._id);
});
passport.deserializeUser(function (userId, done) {
database.get(userId, (err, user) => {
if (err) return done(err, null);
return done(null, user);
});
});
app.use(express.static(path.join(__dirname, 'client/build')));
app.post('/login',
passport.authenticate('local'),
function (req, res) {
let attachments = Object.keys(req.user._attachments);
res.cookie('_id', req.user._id);
res.cookie('username', req.user.user.name);
res.cookie('surname', req.user.user.surname);
res.cookie('master', req.user.master);
res.cookie('photo', attachments[0]);
return res.status(statusCode.OK)
.json({ message: 'Login completed successfully' });
}
);
app.post('/logout', function (req, res) {
res.cookie('_id', '');
res.cookie('username', '');
res.cookie('surname', '');
res.cookie('master', '');
res.cookie('photo', '');
req.logout();
return res.status(statusCode.OK)
.json({ message: 'Logout completed successfully' });
});
app.use('/api', AuthenticatedorNot, api);
app.get('*', (req, res) => {
return res.status(statusCode.NOT_FOUND)
.json({ ERROR: `Oops... I don't have this page!` });
})
app.listen(process.env.PORT, () =>
console.log(`Server listening at port ${process.env.PORT}`)
);
function AuthenticatedorNot(req, res, next) {
if (req.url === '/v1/admins/reset') return next();
if (req.url === '/v1/admins/' && req.method === 'POST') return next();
if (req.isAuthenticated()) return next();
res.cookie('_id', '');
res.cookie('username', '');
res.cookie('surname', '');
res.cookie('master', '');
res.cookie('photo', '');
return res.status(statusCode.UNAUTHORIZED)
.json({ message: 'You must log in to use the app' });
}