-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathapp.js
103 lines (89 loc) · 2.63 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
require('dotenv').config();
require('./config/database').connect();
const express = require('express');
const jwt = require('jsonwebtoken');
const bcrypt = require('bcryptjs');
const auth = require('./middleware/auth');
// console.log('process.env', process.env);
const app = express();
app.use(express.json());
// Logic goes here
// importing user context
const User = require('./model/user');
// Register
app.post('/register', async (req, res) => {
// our register logic goes here...
try {
// 1 Get user input. the key is the same with user model
const { first_name, last_name, password, email } = req.body;
// 2 Validate user input.
if (!(email && password && first_name && last_name)) {
res.status(400).send('All input is required');
}
// 3 Validate if the user already exists.
const oldUser = await User.findOne({ email });
if (oldUser) {
//https://developer.mozilla.org/zh-CN/docs/Web/HTTP/Status/409
return res.status(409).send('User Already Exist. Please Login');
}
// 4 Encrypt the user password.
let encryptedPassword = await bcrypt.hash(password, 10);
// 5 Create a user in our database.
const user = await User.create({
first_name,
last_name,
email: email.toLowerCase().trim(),
password: encryptedPassword,
});
//create token
const token = jwt.sign(
{ user_id: user._id, email },
process.env.TOKEN_KEY,
{
expiresIn: '2h',
}
);
// save user token
user.token = token;
// 6 And finally, create a signed JWT token.
// return new user
console.log('user', user);
res.status(201).json(user);
} catch (error) {}
});
// Login
app.post('/login', async (req, res) => {
try {
// Get user input
const { email, password } = req.body;
// Validate user input
if (!(email && password)) {
res.status(400).send('All input is required');
}
// Validate if user exist in our database
const user = await User.findOne({ email });
if (user && (await bcrypt.compare(password, user.password))) {
// Create token
const token = jwt.sign(
{ user_id: user._id, email },
process.env.TOKEN_KEY,
{
expiresIn: '2h',
}
);
// save user token
user.token = token;
// user
res.status(200).json(user);
}
res.status(400).send('Invalid Credentials');
} catch (err) {
console.log(err);
}
});
//Welcome use auth middleware
//不加auth 直接就会返回 加了就会要求传入token
app.post('/welcome', auth, (req, res) => {
res.status(200).send('Welcome 🙌 ');
});
module.exports = app;