node-ng-contacts-tutorial/accounts.js at master · sergous/node-ng-contacts-tutorial · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
var express = require('express'),
    bodyParser = require('body-parser'),
    session = require('express-session'),
    Bourne = require('bourne'),
    crypto = require('crypto');

var router = express.Router(),
    db = new Bourne('users.json');

function hash (password) {
    return crypto.createHash('sha256').update(password).digest('hex');
}


router
    .use(bodyParser.urlencoded())
    .use(bodyParser.json())
    .use(session({secret: 'sdfhlsdhfkjshdkfjhskdfhkjshdkfjhsdkjfh'}))
    .get('/login', function (req, res) {
        res.sendFile('public/login.html', {root: __dirname + '/'});
    })
    .post('/login', function (req, res) {
        var user = {
            username: req.body.username,
            password: hash(req.body.password)
        };

        db.findOne(user, function (err, data) {
            if (data) {
                req.session.userId = data.id;
                res.redirect('/');
            } else {
                res.redirect('/login');
            }
        });
    })
    .post('/register', function (req, res) {
        var user = {
            username: req.body.username,
            password: hash(req.body.password),
            options: {}
        };

        db.find({ username: user.username }, function (err, data) {
            if (!data.length) {
                db.insert(user, function (err, data) {
                    req.session.userId = data.id;
                    res.redirect('/contacts');
                });
            } else {
                res.redirect('/login');
            }
        });
    })
    .get('/logout', function (req, res) {
        req.session.userId = null;
        res.redirect('/');
    })
    .use(function (req, res, next) {
        if (req.session.userId) {
            db.findOne({ id: req.session.userId }, function (err, data) {
                req.user = data;
            });
        }
        next();
    })
    .get('/options/displayed_fields', function(req, res) {
        if (!req.user) {
            res.json([]);
        } else {
            res.json(req.user.options.displayed_fields || []);
        }
    })
    .post('/options/displayed_fields', function (req, res) {
        //TODO: fix workaroud of not existing req.user
        if (req.user) {
            req.user.options.displayed_fields = req.body.fields;
            db.update({id: req.user.id}, req.user, function (err, data) {
                res.json(data[0].options.displayed_fields);
            });
        } else {
            if (req.session.userId) {
                db.findOne({ id: req.session.userId }, function (err, data) {
                    req.user.options.displayed_fields = req.body.fields;
                    db.update({id: req.user.id}, req.user, function (err, data) {
                        res.json(data[0].options.displayed_fields);
                    });
                });
            } else res.json({});
        }
        // TODO_END
    });

module.exports = router;