init

Author: duyphanz

.gitignore

@@ -0,0 +1,2 @@
+config.js
+node_modules

access.log

@@ -0,0 +1,21 @@
+const mongoose = require('mongoose');
+const {config} = require('./config')
+const URL = config.urlDB;
+mongoose.connect(URL);
+
+
+//event handler
+mongoose.connection.once('connected', () => {
+    console.log('Connected DB to: ', URL);
+})
+
+mongoose.connection.on('error', (err) => {
+    console.log('DB error connection:', err);
+    
+})
+
+mongoose.connection.on('Disconnected', () => {
+    console.log('Dissconnected to DB');
+    
+})
+

config/db.js

@@ -0,0 +1,49 @@
+
+const passport = require('passport');
+const LocalStrategy = require('passport-local').Strategy;
+const { User } = require('../models/user');
+
+
+
+passport.serializeUser((user, done) => {
+    console.log('Serialize passport: ')
+    if(typeof user.name != 'string') return done(null, user.displayName)
+    done(null, user.name)
+})
+
+passport.deserializeUser((name, done) => {
+    console.log('Deserialize', name);
+    User.findOne({ name: name})
+    .then( user => {
+        if(!user) return done(null, false)
+        return done(null, user)
+    })
+    .catch( err => done(err))
+})
+
+passport.use(new LocalStrategy({
+    usernameField: 'email',
+},
+    (username, password, done) => {
+        console.log('Passport config');
+        
+        User.findOne({ email: username })
+            .then(user => {
+                if (!user) {
+                    console.log('Passport error: Incorrect username');
+                    return done(null, false, { message: 'Incorrect username' });
+                }
+                //console.log('Find User: ', user);
+                
+                if (!user.validPassword(password, user.salt, user.hash)) {
+                    console.log('Passport error: Incorrect password');
+                    return done(null, false, { message: 'Incorrect password' })}
+
+                return done(null, user)
+            })
+            .catch(err => {
+                console.log('Loi config passport: ', err);
+                
+                done(err)
+            })
+    }))

config/passport.js

@@ -0,0 +1,45 @@
+
+const passport = require('passport')
+const passportfb = require('passport-facebook').Strategy
+const { User } = require('../models/user');
+
+passport.serializeUser((user, done) => {
+    console.log('Serialize passport Fb: ', user)
+    done(null, user.id)
+})
+
+passport.deserializeUser((fbid, done) => {
+    User.findOne({fbid}, (err, user) => {
+        if(err) return console.log(err)
+        done(null, user);
+    })
+})
+
+passport.use(new passportfb({
+    clientID: '394814394294763',
+    clientSecret: 'bdd916fac40827aaaae4cf18ebb30551',
+    callbackURL: 'http://localhost:3000/auth/fb/cb',
+    profileFields: ['id', 'displayName', 'photos', 'email']
+}, (accessToken, refeshToken, profile, done) => {
+    //console.log(profile);
+    const {id, name, email} = profile._json;
+    User.findOne({fbid: id}, (err, user) =>{
+        if(err) return done(err);
+        if(user) return done(null, user);
+        const newUser = new User({
+            fbid: id,
+            name,
+            email
+        })
+        
+        newUser.save((err, user) => {
+            if(err) return done(err);
+            done(null, newUser)
+        })
+
+    })
+
+   
+
+}))
+

config/passportfb.js

@@ -0,0 +1,59 @@
+var { User } = require('../models/user')
+const passport = require('passport');
+
+const ctrlRegister = (req, res, next) => {
+    res.render('register');
+}
+
+const ctrlAddUser = (req, res, next) => {
+    const { name, email, password } = req.body;
+    var user = new User({
+        name,
+        email
+    });
+    user.setPassword(password);
+    // console.log('Set user', user);
+    // res.send('User set')
+    user.save()
+        .then(user => {
+            console.log('Add user successfull: ', user);
+            res.send('User set');
+        })
+        .catch(err => {
+            console.log('Add user error: ', err);
+            res.send('Add user error: ', err)
+        })
+}
+
+const ctrlLogin = (req, res, next) => {
+    console.log('ctrlLogin');
+
+    passport.authenticate('local', (err, user, message) => {
+        if (err) {
+            console.log('loi chung thuc: ', err);
+            res.status(404);
+            res.json({
+                message: err
+            })
+            return
+        }
+        if (message) {
+            console.log('Message: ', message);
+            res.status(404);
+            res.json({
+                message: err
+            })
+            return
+        }
+        res.redirect('/');
+    })(req, res);
+}
+
+function isloggedIn( req, res, next){
+    if(req.isAuthenticated()){
+        return next()
+    }
+    res.redirect('/login')
+}
+
+module.exports = { ctrlRegister, ctrlAddUser, ctrlLogin, isloggedIn }

controllers/auth.js

@@ -0,0 +1,104 @@
+const express = require('express');
+const app = express();
+const mongoose = require('mongoose');
+require('./config/db')
+const bParser = require('body-parser');
+const cookieParser = require('cookie-parser');
+const session = require('express-session');
+const mongoDBStore = require('connect-mongo')(session);
+const logger = require('morgan');
+const path = require('path');
+const fs = require('fs');
+var accessLogStream = fs.createWriteStream(path.join(__dirname, 'access.log'), { flags: 'a', encoding: null });
+var passport = require('passport');
+const {config} = require('./config/config')
+//express setting
+app.set('views', './views');
+app.set('view engine', 'ejs')
+//middleware
+app.use(logger('dev', { stream: accessLogStream }));
+app.use(bParser.json())
+app.use(bParser.urlencoded({ extended: true })) // req.body object contains string, array or any type
+app.use(express.static(__dirname + 'public'))
+//app.use(cookieParser('thisIsSecret'));
+app.use(session({
+    name: 'connect.sid.duy',
+    secret: config.secret,
+    saveUninitialized: false, // don't create session until something store // default true: luu session du chua tao bien session
+    resave: false, // don't save session if unmodifiled
+    store: new mongoDBStore({
+        mongooseConnection: mongoose.connection,
+        touchAfter: 60 * 60 * 24
+    }),
+    cookie: { 
+        maxAge: 15 * 60 * 1000
+     }
+}))
+//passport
+require('./config/passport');
+require('./config/passportfb')
+app.use(passport.initialize());
+app.use(passport.session());
+
+//routes
+const {ctrlRegister, ctrlAddUser, ctrlLogin, isloggedIn} = require('./controllers/auth')
+app.get('/', isloggedIn, (req, res, next) => {
+    console.log(req.user);
+    
+    if (!req.session.count) {
+        req.session.count = 1;
+        return res.render('home', { 
+            varSession: req.session.count,
+            user: req.user
+         });
+    } else {
+        req.session.count++;
+    }
+    res.render('home', { 
+        varSession: req.session.count,
+        user: req.user
+     });
+    // res.render('home', {varSession: 1})
+
+})
+//
+
+app
+    .get('/error', (req, res, next) => res.render('error'))
+    .get('/register', ctrlRegister)
+    .post('/register', ctrlAddUser)
+    .get('/login', (req, res, next) => res.render('login'))
+    .post('/login', passport.authenticate('local', {
+        successRedirect: '/',
+        failureRedirect: '/error'
+    }))
+
+app
+    .get('/auth/fb', passport.authenticate('facebook', {scope: ['email']}))
+    .get('/auth/fb/cb', passport.authenticate('facebook', {
+        successRedirect: '/',
+        failureRedirect: '/error'
+    }))
+    // .get('/auth/fb/cb', (req, res) => {
+    //     passport.authenticate('facebook', (err, user, message) => {
+    //         if(err) return console.log(err)
+    //         if(user) res.redirect('/')
+    //     })(req, res)
+    // })
+
+app.get('/logout', (req, res, next) => {
+    req.logout();
+    req.session.destroy();
+    res.redirect('/login')
+})
+
+app.use((err, req, res, next) => {
+    res.status(404);
+    res.json({
+        message: err
+    })
+})
+app.listen(3000, (err) => {
+    if (err) console.log('Server error: ', err);
+    console.log('Server started.');
+})

index.js

@@ -0,0 +1,48 @@
+const mongoose = require('mongoose');
+const crypto = require('crypto');
+
+const userSchema = new mongoose.Schema({
+    fbid: {
+        type: String
+    },
+    email: {
+        type: String,
+        trim: true,
+        //required: true,
+        unique: true
+    },
+    name: {
+        type: String,
+        required: true,
+        trim: true
+    },
+    salt: {
+        type: String,
+        //required: true
+    },
+    hash: {
+        type: String,
+        //required: true
+    }
+})
+
+userSchema.methods.setPassword = function(password) {
+
+    this.salt = crypto.randomBytes(16).toString('hex');
+    this.hash = crypto.pbkdf2Sync(password, new Buffer(salt), 1000, 64, 'sha1').toString('hex');
+    
+}
+
+userSchema.methods.validPassword = function(password) {
+    // console.log('Password: ', password);
+    // console.log('Salt validPassword', userSalt);
+    const hash = crypto.pbkdf2Sync(password, new Buffer(this.salt), 1000, 64, 'sha1').toString('hex');
+    // console.log('Hash value: ', hash);
+    
+    
+    return hash == this.hash;
+}
+
+const User = mongoose.model('User', userSchema);
+
+module.exports = { User };

models/user.js

@@ -0,0 +1,20 @@
+{
+  "name": "auth-session",
+  "version": "1.0.0",
+  "main": "index.js",
+  "license": "MIT",
+  "dependencies": {
+    "body-parser": "^1.18.2",
+    "connect-mongo": "^2.0.1",
+    "cookie-parser": "^1.4.3",
+    "crypto": "^1.0.1",
+    "ejs": "^2.5.7",
+    "express": "^4.16.3",
+    "express-session": "^1.15.6",
+    "mongoose": "^5.0.10",
+    "morgan": "^1.9.0",
+    "passport": "^0.4.0",
+    "passport-facebook": "^2.1.1",
+    "passport-local": "^1.0.0"
+  }
+}

package.json

@@ -0,0 +1,29 @@
+const mongoose = require('mongoose');
+
+const userSchema = new mongoose.Schema({
+    email: {
+        type: String,
+        trim: true,
+        required: true,
+        unique: true
+    },
+    name: {
+        type: String,
+        required: true,
+        trim: true
+    }
+
+})
+
+userSchema.methods.setEmail = function(email) {
+    console.log(this);
+    this.email = email;
+}
+
+var User = mongoose.model('User', userSchema);
+var user = new User({ name: 'Teo' });
+user.setEmail('teo96@gmail.com');
+
+console.log('Print user: ', user);
+
+