albert/mrfrys-node-server
1
0
Fork 0
mirror of https://gitlab.com/MrFry/mrfrys-node-server synced 2025-04-01 20:24:18 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Added exceptions to auth middleware, basic redirects

Browse source
This commit is contained in:
MrFry 2020-04-03 10:09:59 +02:00
parent feb9eab5ad
commit 840f64c66b
3 changed files with 33 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

19
modules/api/api.js
View file

@ -88,13 +88,19 @@ app.use(session({
saveUninitialized: true saveUninitialized: true
})) }))
app.use(cookieParser()) app.use(cookieParser())
app.use(bodyParser.urlencoded({
limit: '10mb',
extended: true
}))
app.use(bodyParser.json({
limit: '10mb'
}))
app.set('view engine', 'ejs') app.set('view engine', 'ejs')
app.set('views', [ app.set('views', [
'./modules/api/views', './modules/api/views',
'./sharedViews' './sharedViews'
]) ])
app.use(auth({ app.use(auth({
debugLog: true,
authDB: authDB authDB: authDB
})) }))
app.use(express.static('public')) app.use(express.static('public'))
@ -103,13 +109,6 @@ app.use(busboy({
fileSize: 50000 * 1024 * 1024 fileSize: 50000 * 1024 * 1024
} }
})) }))
app.use(bodyParser.urlencoded({
limit: '10mb',
extended: true
}))
app.use(bodyParser.json({
limit: '10mb'
}))
var data = actions.LoadJSON(dataFile) var data = actions.LoadJSON(dataFile)
var version = '' var version = ''
@ -143,12 +142,12 @@ Load()
app.post('/login', (req, res) => { app.post('/login', (req, res) => {
logger.LogReq(req) logger.LogReq(req)
console.log(req.body) const pw = req.body.pw
// FIXME: redirect to original url // FIXME: redirect to original url
const user = 'u' const user = 'u'
// TODO: get user // TODO: get user
// TODO: check if pw is correct // TODO: check if pw is correct
res.cookie('pw', req.query.pw).redirect('/') res.cookie('pw', pw).redirect('/')
req.session.user = user req.session.user = user
}) })

30
modules/api/auth.middleware.js
View file

@ -3,14 +3,25 @@ const dbtools = require('../../utils/dbtools.js')
const usersDBName = 'users' const usersDBName = 'users'
const exceptions = [
'favicon',
'/login'
]
// TODO: session // TODO: session
module.exports = function (options) { module.exports = function (options) {
const { debugLog, authDB } = options const { authDB } = options
return function (req, res, next) { return function (req, res, next) {
if (debugLog) { logger.DebugLog(`AUTH: ${req.url}`, 'auth', 1)
logger.Log('AUTH: ' + req.url) const isException = exceptions.some((exc) => {
return req.url === exc
})
if (isException) {
next()
return
} }
const user = GetUserByPW(authDB, req.cookies.pw) const user = GetUserByPW(authDB, req.cookies.pw)
@ -24,7 +35,14 @@ module.exports = function (options) {
} }
function GetUserByPW (db, password) { function GetUserByPW (db, password) {
return dbtools.Select(db, usersDBName, { if (password === undefined) {
pw: password return
})[0] }
const res = dbtools.Select(db, usersDBName, {
pw: password
})
if (res) {
return res[0]
}
} }

1
server.js
View file

@ -38,6 +38,7 @@ const loggableKeywords = [
] ]
let modules = JSON.parse(utils.ReadFile(modulesFile)) let modules = JSON.parse(utils.ReadFile(modulesFile))
console.clear()
logger.Load() logger.Load()
try { try {