node-go/packages/server/controllers/auth.js

const { validationResult } = require("express-validator");

const userQueries = require("../data/queries/user");
const { hashPassword, compareHash } = require("../services/bcrypt");
const signToken = require("../services/signToken");
const guestServices = require("../services/guestServices");

const checkValidationErrors = (req, res) => {
  const errors = validationResult(req);
  if (!errors.isEmpty()) {
    return res.status(422).json({ errors: errors.array() });
  }
};

const signup = async (req, res, next) => {
  checkValidationErrors(req, res);
  const user = req.body;
  try {
    delete user.confirmPassword;
    const existingUser = await userQueries.findUserByNameOrEmail(user);
    const hashedPassword = await hashPassword(user.password);
    const secureUser = { ...user, password: hashedPassword };
    if (existingUser.length) {
      return res
        .status(409)
        .json({ errors: [{ auth: "User already exists!" }] });
    }

    const newUser = await userQueries.insertUser(secureUser);
    signToken(res, newUser);
    res.status(201).json({ ...newUser });
  } catch (err) {
    res.status(500).json(err);
  }
};

const login = async (req, res, next) => {
  checkValidationErrors(req, res);
  const user = req.body;

  try {
    const queryResults = await userQueries.findUserByNameOrEmail(user);
    const savedUser = queryResults[0] || null;

    if (!savedUser) {
      return res.status(401).send({ errors: "bad credentials" });
    }

    const hashedPassword = savedUser.password;
    const passwordMatch = await compareHash(user.password, hashedPassword);

    if (!passwordMatch) {
      return res.status(401).send({ errors: "bad credentials" });
    }

    const authorizedUser = { ...savedUser };
    delete authorizedUser.password;

    signToken(res, authorizedUser);
    res.send({ ...authorizedUser }).status(200);
  } catch (e) {
    res.status(500).send({ errors: e });
  }
};

const guest = async (req, res, next) => {
  try {
    // username generator returns `Guest-${num}`
    const { username, password } = guestServices.generateGuest();
    // generateGuestUser();
    const email = null;
    // id generator returns `
    const id = null;
    const user = { username, email, id, password };
    signToken(res, user);
    delete user.password;
    res.send(user);
  } catch (e) {
    console.log(e);
    res.status(500).send({ errors: e });
  }
};

module.exports = {
  signup,
  login,
  guest,
};
stub guest creation on server 2020-06-27 00:35:13 +00:00			`const { validationResult } = require("express-validator");`
patch signup post for existing user to return 409 2020-01-17 08:23:18 +00:00
stub guest creation on server 2020-06-27 00:35:13 +00:00			`const userQueries = require("../data/queries/user");`
			`const { hashPassword, compareHash } = require("../services/bcrypt");`
			`const signToken = require("../services/signToken");`
add service to generate guest account on server 2020-06-27 06:22:17 +00:00			`const guestServices = require("../services/guestServices");`
add validation and sanitization for auth/. posts 2020-01-15 21:52:01 +00:00
			`const checkValidationErrors = (req, res) => {`
			`const errors = validationResult(req);`
			`if (!errors.isEmpty()) {`
			`return res.status(422).json({ errors: errors.array() });`
			`}`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`};`
stub auth routes and controllers 2020-01-10 01:44:58 +00:00
add login verification of user 2020-01-15 07:09:01 +00:00			`const signup = async (req, res, next) => {`
add validation and sanitization for auth/. posts 2020-01-15 21:52:01 +00:00			`checkValidationErrors(req, res);`
add sign jwt function and hook to auth/signup 2020-01-13 22:47:45 +00:00			`const user = req.body;`
			`try {`
debug password hashing function 2020-01-16 04:04:55 +00:00			`delete user.confirmPassword;`
serve room with message data from api/v1/rooms/:id 2020-01-22 01:02:54 +00:00			`const existingUser = await userQueries.findUserByNameOrEmail(user);`
add password hash to new user 2020-01-14 22:22:42 +00:00			`const hashedPassword = await hashPassword(user.password);`
patch signup post for existing user to return 409 2020-01-17 08:23:18 +00:00			`const secureUser = { ...user, password: hashedPassword };`
			`if (existingUser.length) {`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`return res`
			`.status(409)`
			`.json({ errors: [{ auth: "User already exists!" }] });`
patch signup post for existing user to return 409 2020-01-17 08:23:18 +00:00			`}`
debug password hashing function 2020-01-16 04:04:55 +00:00
serve room with message data from api/v1/rooms/:id 2020-01-22 01:02:54 +00:00			`const newUser = await userQueries.insertUser(secureUser);`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`signToken(res, newUser);`
			`res.status(201).json({ ...newUser });`
			`} catch (err) {`
debug password hashing function 2020-01-16 04:04:55 +00:00			`res.status(500).json(err);`
add sign jwt function and hook to auth/signup 2020-01-13 22:47:45 +00:00			`}`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`};`
stub auth routes and controllers 2020-01-10 01:44:58 +00:00
add login verification of user 2020-01-15 07:09:01 +00:00			`const login = async (req, res, next) => {`
add validation and sanitization for auth/. posts 2020-01-15 21:52:01 +00:00			`checkValidationErrors(req, res);`
add login verification of user 2020-01-15 07:09:01 +00:00			`const user = req.body;`
stub guest creation on server 2020-06-27 00:35:13 +00:00
add login verification of user 2020-01-15 07:09:01 +00:00			`try {`
patch signup post for existing user to return 409 2020-01-17 08:23:18 +00:00			`const queryResults = await userQueries.findUserByNameOrEmail(user);`
add login verification of user 2020-01-15 07:09:01 +00:00			`const savedUser = queryResults[0] \|\| null;`
stub guest creation on server 2020-06-27 00:35:13 +00:00
patch signup post for existing user to return 409 2020-01-17 08:23:18 +00:00			`if (!savedUser) {`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`return res.status(401).send({ errors: "bad credentials" });`
patch signup post for existing user to return 409 2020-01-17 08:23:18 +00:00			`}`
stub guest creation on server 2020-06-27 00:35:13 +00:00
add login verification of user 2020-01-15 07:09:01 +00:00			`const hashedPassword = savedUser.password;`
			`const passwordMatch = await compareHash(user.password, hashedPassword);`
patch signup post for existing user to return 409 2020-01-17 08:23:18 +00:00
			`if (!passwordMatch) {`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`return res.status(401).send({ errors: "bad credentials" });`
patch signup post for existing user to return 409 2020-01-17 08:23:18 +00:00			`}`
stub guest creation on server 2020-06-27 00:35:13 +00:00
			`const authorizedUser = { ...savedUser };`
add login verification of user 2020-01-15 07:09:01 +00:00			`delete authorizedUser.password;`
stub guest creation on server 2020-06-27 00:35:13 +00:00
add login verification of user 2020-01-15 07:09:01 +00:00			`signToken(res, authorizedUser);`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`res.send({ ...authorizedUser }).status(200);`
			`} catch (e) {`
			`res.status(500).send({ errors: e });`
add login verification of user 2020-01-15 07:09:01 +00:00			`}`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`};`

			`const guest = async (req, res, next) => {`
			`try {`
			// username generator returns `Guest-${num}`
add service to generate guest account on server 2020-06-27 06:22:17 +00:00			`const { username, password } = guestServices.generateGuest();`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`// generateGuestUser();`
			`const email = null;`
			// id generator returns `
			`const id = null;`
add random password to guest 2020-06-27 06:33:56 +00:00			`const user = { username, email, id, password };`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`signToken(res, user);`
add random password to guest 2020-06-27 06:33:56 +00:00			`delete user.password;`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`res.send(user);`
			`} catch (e) {`
add service to generate guest account on server 2020-06-27 06:22:17 +00:00			`console.log(e);`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`res.status(500).send({ errors: e });`
add login verification of user 2020-01-15 07:09:01 +00:00			`}`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`};`
stub auth routes and controllers 2020-01-10 01:44:58 +00:00
			`module.exports = {`
add login verification of user 2020-01-15 07:09:01 +00:00			`signup,`
stub guest creation on server 2020-06-27 00:35:13 +00:00			`login,`
			`guest,`
			`};`