node-go/server/controllers/auth.js

const knex = require('../data/db')

const { hashPassword, compareHash } = require('../services/bcrypt');
const signToken = require('../services/signToken');
const { validateSignup, validateLogin } = require('../services/userValidate');

const signup = async (req, res, next) => {
  
  const user = req.body;
  if (!validateSignup(user)) return;
  
  try {
    
    const hashedPassword = await hashPassword(user.password);
    const secureUser = { ...user, password: hashedPassword }
    
    knex('user')
    .insert(secureUser)
    .then(queryResults => {
      const newUser = queryResults[0];
      signToken(res, newUser);
      res.send('ok').status(200);
    })
  } 
  catch (err) {
    res.status(500).json(err)
  }
}

const login = async (req, res, next) => {
  
  const user = req.body;
  if (!validateLogin(user)) return;

  try {

    const queryResults = await knex('user')
    .where({username: user.username})
    .select('username', 'email', 'password')
    .then(queryResults => queryResults);
    
    const savedUser = queryResults[0] || null;
    if (!savedUser) return res.status(401).json({err: 'bad credentials'});
    
    const hashedPassword = savedUser.password;
    const passwordMatch = await compareHash(user.password, hashedPassword);
    
    if (!passwordMatch) return res.status(401).json({err: 'bad credentials'});
    
    const authorizedUser = {...savedUser};
    delete authorizedUser.password;
    
    signToken(res, authorizedUser);
    res.send('ok').status(200);
  }
  catch (err) {
    res.status(500).json(err);
  }
}

module.exports = {
  signup,
  login
}
stub new user sign up 2020-01-14 20:06:25 +00:00			`const knex = require('../data/db')`
add password hash to new user 2020-01-14 22:22:42 +00:00
add login verification of user 2020-01-15 07:09:01 +00:00			`const { hashPassword, compareHash } = require('../services/bcrypt');`
add sign jwt function and hook to auth/signup 2020-01-13 22:47:45 +00:00			`const signToken = require('../services/signToken');`
add login verification of user 2020-01-15 07:09:01 +00:00			`const { validateSignup, validateLogin } = require('../services/userValidate');`
stub auth routes and controllers 2020-01-10 01:44:58 +00:00
add login verification of user 2020-01-15 07:09:01 +00:00			`const signup = async (req, res, next) => {`
add sign jwt function and hook to auth/signup 2020-01-13 22:47:45 +00:00
			`const user = req.body;`
add login verification of user 2020-01-15 07:09:01 +00:00			`if (!validateSignup(user)) return;`

add sign jwt function and hook to auth/signup 2020-01-13 22:47:45 +00:00			`try {`
add password hash to new user 2020-01-14 22:22:42 +00:00
			`const hashedPassword = await hashPassword(user.password);`
			`const secureUser = { ...user, password: hashedPassword }`

stub new user sign up 2020-01-14 20:06:25 +00:00			`knex('user')`
add password hash to new user 2020-01-14 22:22:42 +00:00			`.insert(secureUser)`
			`.then(queryResults => {`
			`const newUser = queryResults[0];`
			`signToken(res, newUser);`
			`res.send('ok').status(200);`
			`})`
add sign jwt function and hook to auth/signup 2020-01-13 22:47:45 +00:00			`}`
			`catch (err) {`
			`res.status(500).json(err)`
			`}`
stub auth routes and controllers 2020-01-10 01:44:58 +00:00			`}`

add login verification of user 2020-01-15 07:09:01 +00:00			`const login = async (req, res, next) => {`

			`const user = req.body;`
			`if (!validateLogin(user)) return;`

			`try {`
stub auth routes and controllers 2020-01-10 01:44:58 +00:00
add login verification of user 2020-01-15 07:09:01 +00:00			`const queryResults = await knex('user')`
			`.where({username: user.username})`
			`.select('username', 'email', 'password')`
			`.then(queryResults => queryResults);`

			`const savedUser = queryResults[0] \|\| null;`
			`if (!savedUser) return res.status(401).json({err: 'bad credentials'});`

			`const hashedPassword = savedUser.password;`
			`const passwordMatch = await compareHash(user.password, hashedPassword);`

			`if (!passwordMatch) return res.status(401).json({err: 'bad credentials'});`

			`const authorizedUser = {...savedUser};`
			`delete authorizedUser.password;`

			`signToken(res, authorizedUser);`
			`res.send('ok').status(200);`
			`}`
			`catch (err) {`
			`res.status(500).json(err);`
			`}`
stub auth routes and controllers 2020-01-10 01:44:58 +00:00			`}`

			`module.exports = {`
add login verification of user 2020-01-15 07:09:01 +00:00			`signup,`
stub auth routes and controllers 2020-01-10 01:44:58 +00:00			`login`
			`}`