ideacave/auth.js at master · nhoss2/ideacave · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
var passport = require('passport');
var LocalStrategy = require('passport-local').Strategy;
var NeDB = require('nedb');
var scrypt = require('scrypt');
var check = require('validator').check;
var sanitize = require('validator').sanitize;

// set up local strategy
passport.use(new LocalStrategy(function(email, pass, done){
  find({email: email}, function(login){

    if (!login){
      done(null, false, {message: 'incorrect username or password'});
    } else {
      scrypt.verifyHash(login.password, pass, function(err, result){
        if (result){
          done(null, login);
        } else {
          done(null, false, {message: 'incorrect username or password'});
        }
      });
    }

  });
}));

var database = new NeDB({
  filename: __dirname + '/database/users.db',
  autoload: true
});

var find = function(search, callback){
  database.findOne(search, function(err, doc){
    if (err) throw err;
    callback(doc);
  });
};

passport.serializeUser(function(user, done){
  return done(null, user._id);
});

passport.deserializeUser(function(id, done){
  find({_id: id}, function(user){
    if (user) return done(null, user);
    else return done(null, false);
  });
});

module.exports = {

  // callback function takes two inputs:
  //   - a string if there is an error, or null.
  //   - the user object if registration successful
  newUser: function(email, name, password, callback){

    // check if valid email
    try{
      check(email, 'Please enter valid email').isEmail();
    } catch (err) {
      return callback(err.message);
    }

    // make sure password is at least 6 characters
    try{
      check(password, 'Password needs to be a minimum of 6 characters').len(6, 1000);
    } catch (err) {
      return callback(err.message);
    }

    // check for name
    try{
      check(name, 'Please enter name').len(1, 500);
    } catch (err) {
      return callback(err.message);
    }

    // check if user exists already
    find({ $or: [{email: email}, {name: name}] }, function(user){
      if (user) {
        return callback('User with this email address or username already exists');
      } else {
        // create password hash and save new user into database
        scrypt.passwordHash(password, 0.1, function(err, hash){
          if (err) throw err;

          database.insert({
            email: email,
            password: hash,
            name: String(sanitize(name).xss())
          }, function(err, newDoc){
            if (err) {
              throw err;
            } else {
              return callback(null, newDoc);
            }
          });

        });
      }
    });

  },

  // add an attribute to a user, like giving them admin
  addAttributes: function(userId, attribute){
    database.update({_id: userId}, {$set: attribute}, {}, function(err){
      if (err) throw err;
    });
  },

  // middleware for pages which need user to be logged in
  ensureAuthenticated: function(req, res, next){
    if (req.isAuthenticated()){
      return next();
    }
    return res.redirect(403, '/login');
  }
}