1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
|
var passport = require('passport'),
LocalStrategy = require('passport-local').Strategy,
crypto = require('crypto'),
db = require('../db');
var auth = module.exports = {
init: function(){
passport.serializeUser(auth.serializeUser)
passport.deserializeUser(auth.deserializeUser)
passport.use(new LocalStrategy(auth.verifyLocalUser))
},
serializeUser: function (user, done) {
done(null, user.id);
},
deserializeUser: function (id, done) {
db.getUser(id).then(function(user){
done(! user, user)
})
},
validPassword: function(user, pw){
var shasum = crypto.createHash('sha1')
shasum.update(pw)
return user.get('password') === shasum.digest('hex');
},
verifyLocalUser: function (username, password, done) {
// handle passwords!!
db.getUserByUsername(username).then(function(user){
// if (err) { return done(err); }
if (! user) { return done("no user") }
return done(null, user)
if (! user) {
return done(null, false, { error: { errors: { username: { message: 'No such username.' } }}})
}
if (! auth.validPassword(user, password)) {
return done(null, false, { error: { errors: { password: { message: 'Incorrect password.' } }}})
}
return done(null, user);
})
},
loggedInLocal: function (req, res, next) {
passport.authenticate("local", function(err, user, info){
if (err) {
return res.json({ error: err });
}
if (! user) {
return info ? res.json(info) : res.redirect("/login");
}
// user.last_seen = new Date ()
// user.save(function(err, data){ if (err) console.err('error setting ip for user') })
req.logIn(user, function(err) {
if (err) { return next(err); }
var returnTo = req.session.returnTo
delete req.session.returnTo
return res.json({ status: "OK", returnTo: returnTo || "/index" })
});
})(req, res, next)
},
logout: function (req, res) {
req.logout();
res.redirect('/');
},
}
|
