BradNut/node-auth
1
0
Fork 0
mirror of https://github.com/BradNut/node-auth synced 2025-09-08 17:40:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Cleanup plus logging and log in on signup.

Browse source
This commit is contained in:
Bradley Shellnut 2021-03-08 20:57:19 -08:00
parent 594cd52866
commit 15993b4cec
7 changed files with 86 additions and 20 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
src/accounts/logUserIn.js
View file

@ -1,5 +1,5 @@
import { createSession } from './session.js' import { createSession } from './session.js'
import { createTokens } from './tokens.js' import { refreshTokens } from './user.js'
export async function logUserIn(userId, request, reply) { export async function logUserIn(userId, request, reply) {
const connectionInformation = { const connectionInformation = {
@ -8,20 +8,8 @@ export async function logUserIn(userId, request, reply) {
} }
// Create Session // Create Session
const sessionToken = await createSession(userId, connectionInformation) const sessionToken = await createSession(userId, connectionInformation)
// Create JWT // Create JWT
const { accessToken, refreshToken } = await createTokens(sessionToken, userId)
// Set Cookie // Set Cookie
const now = new Date() await refreshTokens(sessionToken, userId, reply)
// Get date, 30 days in the future
const refreshExpires = now.setDate(now.getDate() + 30)
reply.setCookie('refreshToken', refreshToken, {
path: "/",
domain: "localhost",
httpOnly: true,
expires: refreshExpires,
}).setCookie('accessToken', accessToken, {
path: "/",
domain: "localhost",
httpOnly: true,
})
} }

21
src/accounts/logUserOut.js Normal file
View file

@ -0,0 +1,21 @@
import jwt from 'jsonwebtoken'
const JWTSignature = process.env.JWT_SIGNATURE
export async function logUserOut(request, reply) {
try {
const { session } = await import("../session/session.js")
if (request?.cookies?.refreshToken) {
const { refreshToken } = request.cookies
// Decode refresh token
const { sessionToken } = jwt.verify(refreshToken, JWTSignature)
// Delete database record for session
await session.deleteOne({ sessionToken })
}
// Remove cookies
reply.clearCookie('refreshToken').clearCookie('accessToken')
} catch (e) {
console.error(e);
}
}

1
src/accounts/user.js
View file

@ -34,7 +34,6 @@ export async function getUserFromCookies(request, reply) {
const currentUser = await user.findOne({ const currentUser = await user.findOne({
_id: ObjectId(currentSession.userId) _id: ObjectId(currentSession.userId)
}) })
console.log('currentUser', currentUser);
// Refresh tokens // Refresh tokens
await refreshTokens(sessionToken, currentUser._id, reply) await refreshTokens(sessionToken, currentUser._id, reply)
// Retrun current user // Retrun current user

48
src/index.js
View file

@ -8,6 +8,7 @@ import { connectDb } from './db.js'
import { registerUser } from './accounts/register.js' import { registerUser } from './accounts/register.js'
import { authorizeUser } from './accounts/authorize.js' import { authorizeUser } from './accounts/authorize.js'
import { logUserIn } from './accounts/logUserIn.js' import { logUserIn } from './accounts/logUserIn.js'
import { logUserOut } from './accounts/logUserOut.js'
import { getUserFromCookies } from './accounts/user.js' import { getUserFromCookies } from './accounts/user.js'
// ESM specific "features" // ESM specific "features"
@ -32,11 +33,44 @@ async function startApp() {
request.body.email, request.body.email,
request.body.password request.body.password
) )
if (userId) {
await logUserIn(userId, request, reply)
reply.send({
data: {
status: "SUCCESS",
userId,
},
})
}
} catch (e) { } catch (e) {
console.error('e', e); console.error('e', e);
reply.send({
data: {
status: "FAILED",
userId,
},
})
} }
}) })
app.post('/api/logout', {}, async (request, reply) => {
try {
await logUserOut(request, reply)
reply.send({
data: {
status: "SUCCESS",
},
})
} catch (e) {
console.error('e', e);
reply.send({
data: {
status: "FAILED",
userId,
},
})
}
})
app.post('/api/authorize', {}, async (request, reply) => { app.post('/api/authorize', {}, async (request, reply) => {
try { try {
@ -48,14 +82,20 @@ async function startApp() {
if (isAuthorized) { if (isAuthorized) {
await logUserIn(userId, request, reply) await logUserIn(userId, request, reply)
reply.send({ reply.send({
data: "User Logged In", data: {
status: "SUCCESS",
userId,
},
}) })
} }
reply.send({
data: "Auth Failed",
})
} catch (e) { } catch (e) {
console.error('e', e); console.error('e', e);
reply.send({
data: {
status: "FAILED",
userId,
},
})
} }
}) })

16
src/public/index.html
View file

@ -24,7 +24,23 @@
<button type="submit">Login</button> <button type="submit">Login</button>
</form> </form>
<br/>
<hr />
<br/>
<button onclick="logout()">Logout</button>
<script> <script>
async function logout() {
try {
const res = await fetch('/api/logout', {
method: "POST",
})
} catch (e) {
console.error(e);
}
}
;(() => { ;(() => {
const registerForm = document.getElementById("register-form") const registerForm = document.getElementById("register-form")

1
src/session/session.js
View file

@ -2,3 +2,4 @@ import { client } from '../db.js'
export const session = client.db("test").collection("session") export const session = client.db("test").collection("session")
session.createIndex({ sessionToken: 1 })

1
src/user/user.js
View file

@ -2,3 +2,4 @@ import { client } from '../db.js'
export const user = client.db("test").collection("user") export const user = client.db("test").collection("user")
user.createIndex({ "email.address": 1 })