jonaszbigda/menui_backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0db1d5117ef25f81c979e3abebaf63637258c06a
menui_backend/routes/routeUser.js
Jonasz Bigda 9dd4d10396 fixes
2021-02-08 15:48:33 +01:00

146 lines
4.1 KiB
JavaScript
Raw Blame History

const express = require("express");
const {
changeUserPass,
fetchUser,
} = require("../services/databaseServices.js");
const {
createUser,
prepareSafeUser,
} = require("../services/dataPrepServices.js");
const {
newError,
handleError,
checkPassword,
generateAuthToken,
checkEmailTaken,
validateUserToken,
hashPass,
generateRefreshToken,
validateRefreshToken,
} = require("../services/services.js");
const { resetPassword } = require("../services/mailServices.js");
const cookie = require("cookie");
const { validateLogin, validateRegister, validatePassword } = require("../services/validations.js");
var router = express.Router();
// LOGIN
router.post("/login", async (req, res) => {
try {
if (!req.body.password || !req.body.email) {
throw newError("Niepełne dane.", 403);
}
validateLogin(req.body);
const user = await fetchUser(req.body.email);
await checkPassword(req.body.password, user.password);
const safeUser = await prepareSafeUser(user);
var token = generateAuthToken(safeUser);
var refreshToken = generateRefreshToken(user);
res.header("x-auth-token", token)
.header("Set-Cookie", cookie.serialize("refreshToken", refreshToken, { httpOnly: true }))
.status(202).send(safeUser);
} catch (error) {
handleError(error, res);
}
});
//REFRESH_TOKEN
router.post("/refreshtoken", async (req, res) => {
try {
const cookies = cookie.parse(req.headers.cookie);
const user = validateRefreshToken(cookies.refreshToken);
const newAccessToken = generateAuthToken(user);
const newRefreshToken = generateRefreshToken(user);
res.header("x-auth-token", newAccessToken)
.header("Set-Cookie", cookie.serialize("refreshToken", newRefreshToken, { httpOnly: true }))
.status(202).send("Auth token refreshed.");
} catch (error) {
handleError(error, res);
}
})
// REFRESH
router.post("/refresh", async (req, res) => {
try {
const token = req.headers["x-auth-token"];
const user = validateUserToken(token);
const freshUser = await fetchUser(user.email);
const safeUser = await prepareSafeUser(freshUser);
res.send(safeUser);
} catch (error) {
handleError(error, res);
}
});
// REGISTER
router.post("/register", async (req, res) => {
try {
validateRegister(req.body);
await checkEmailTaken(req.body.email);
const user = await createUser(req);
await user.save().catch((e) => {
throw newError("Niewłaściwe dane.", 500);
});
res.sendStatus(201);
} catch (e) {
handleError(e, res);
}
});
// CHANGE USER DATA
router.post("/edit", async (req, res) => {
try {
console.log("23")
} catch (error) {
handleError(error, res)
}
})
// CHANGE PASSWORD
router.post("/changepass", async (req, res) => {
try {
if (!req.body.password || !req.body.email || !req.body.newPass) {
throw newError("Niepełne dane.", 204);
}
validateLogin(req.body);
const token = req.headers["x-auth-token"];
validateUserToken(token);
const user = await fetchUser(req.body.email);
await checkPassword(req.body.password, user.password);
const newPassword = await hashPass(req.body.newPass);
await changeUserPass(user._id, newPassword);
res.status(200).send("Hasło zostało zmienione.");
} catch (error) {
handleError(error, res);
}
});
// REQUEST PASSWORD RESET
router.post("/forgotpassword", async (req, res) => {
try {
await resetPassword(req.body.email);
res.send(
"Link do utworzenia nowego hasła został wysłany na adres email powiązany z kontem. Sprawdź również folder SPAM."
);
} catch (error) {
handleError(error, res);
}
});
// RESET PASS
router.post("/resetpass", async (req, res) => {
try {
decodedToken = validateUserToken(req.body.token);
validatePassword(req.body.newPass)
const user = await fetchUser(decodedToken.email);
const newPassword = await hashPass(req.body.newPass);
await changeUserPass(user._id, newPassword);
res.send("Hasło zostało zmienione.");
} catch (error) {
console.log(error);
handleError(error, res);
}
});
module.exports = router;
Reference in New Issue View Git Blame Copy Permalink