BCN-FT-ADRI-POL

Middlewares/appMiddlewares.js

@@ -0,0 +1,30 @@
+'use strict'
+
+const isLoggedIn = (req, res, next) => {
+  if (req.session.currentUser) {
+    return res.redirect('/')
+  }
+  next()
+}
+
+const isNotLoggedIn = (req, res, next) => {
+  if (!req.session.currentUser) {
+    return res.redirect('/')
+  }
+  next()
+}
+
+const isFormFilled = (req, res, next) => {
+  const { username, password } = req.body
+  if (!username || !password) {
+    return res.redirect(req.path)
+  }
+  next()
+}
+
+module.exports = {
+  isLoggedIn,
+  isNotLoggedIn,
+  isFormFilled
+}
+

app.js

@@ -1,49 +1,69 @@
-const createError = require('http-errors');
-const express = require('express');
-const path = require('path');
-const cookieParser = require('cookie-parser');
-const logger = require('morgan');
-const mongoose = require('mongoose');
+'use strict'
 
-const indexRouter = require('./routes/index');
+const express = require('express')
+const path = require('path')
+const cookieParser = require('cookie-parser')
+const logger = require('morgan')
+const mongoose = require('mongoose')
+const hbs = require('hbs')
+const session = require('express-session')
+const MongoStore = require('connect-mongo')(session)
 
-const app = express();
+const indexRouter = require('./routes/index')
+const authRouter = require('./routes/auth')
 
-mongoose.connect('mongodb://localhost/basic-auth', {
+const app = express()
+
+mongoose.connect('mongodb://localhost/labAuth', {
   keepAlive: true,
   useNewUrlParser: true,
   reconnectTries: Number.MAX_VALUE
-});
-// view engine setup
-app.set('views', path.join(__dirname, 'views'));
-app.set('view engine', 'hbs');
+})
+
+app.use(session({
+  store: new MongoStore({
+    mongooseConnection: mongoose.connection,
+    ttl: 24 * 60 * 60
+  }),
+  secret: '-b&$ll..´´//%99$jou--jou/Grizzly$$@',
+  resave: true,
+  saveUninitialized: true,
+  cookie: {
+    httpOnly: true,
+    maxAge: 24 * 60 * 60 * 1000
+  }
+}))
+
+app.use((req, res, next) => {
+  app.locals.currentUser = req.session.currentUser
+  next()
+})
 
-app.use(logger('dev'));
-app.use(express.json());
-app.use(express.urlencoded({ extended: false }));
-app.use(cookieParser());
-app.use(express.static(path.join(__dirname, 'public')));
+app.set('views', path.join(__dirname, 'views'))
+app.set('view engine', 'hbs')
+hbs.registerPartials(path.join(__dirname, '/views/partials'))
 
-app.use('/', indexRouter);
+app.use(logger('dev'))
+app.use(express.json())
+app.use(express.urlencoded({ extended: false }))
+app.use(cookieParser())
+app.use(express.static(path.join(__dirname, 'public')))
 
-// -- 404 and error handler
+app.use('/', indexRouter)
+app.use('/auth', authRouter)
 
-// NOTE: requires a views/not-found.ejs template
 app.use((req, res, next) => {
-  res.status(404);
-  res.render('not-found');
-});
+  res.status(404)
+  res.redirect('/')
+})
 
-// NOTE: requires a views/error.ejs template
 app.use((err, req, res, next) => {
-  // always log the error
-  console.error('ERROR', req.method, req.path, err);
+  console.error('ERROR', req.method, req.path, err)
 
-  // only render if the error ocurred before sending the response
   if (!res.headersSent) {
-    res.status(500);
-    res.render('error');
+    res.status(500)
+    res.render('error')
   }
-});
+})
 
-module.exports = app;
+module.exports = app

models/User.js

@@ -0,0 +1,20 @@
+'use strict';
+
+const mongoose = require('mongoose');
+const Schema = mongoose.Schema;
+
+const userSchema = new Schema({
+  username: {
+    type: String,
+    required: true,
+    unique: true
+  },
+  password: {
+    type: String,
+    required: true
+  }
+});
+
+const User = mongoose.model('Event', userSchema);
+
+module.exports = User;