Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- const path = require('path');
- const express = require('express');
- const session = require('express-session');
- const app = express();
- const router = express.Router();
- const cors = require('cors');
- const numeral = require('numeral');
- const alasql = require('alasql');
- const receipt = require('receipt');
- const passport = require('passport');
- const LocalStrategy = require('passport-local').Strategy;
- //const hbs = require('hbs');
- const bodyParser = require('body-parser');
- const users = require('./public/js/users');
- var sessionuser;
- const ip = require("ip");
- app.use(cors());
- app.use(bodyParser.urlencoded({extended: true}));
- app.use(bodyParser.json({limit:1024*1024*20, type:'application/json'}));
- //app.use(session({ secret: 'keyboard cat', resave: false, saveUninitialized: true }));
- var db = require("./public/js/db_config");
- var date = new Date();
- var now = new Date(date.getFullYear(), date.getMonth(), 1);
- var ipserver=ip.address();
- var ispusat="";
- var cookieParser = require('cookie-parser');
- app.set('views',path.join(__dirname,'views'));//set views file
- app.set('view engine', 'html');//set view engine
- app.engine('html', require('hbs').__express);
- app.use('/assets',express.static(__dirname + '/public'));
- app.use(cookieParser());
- app.use(session({ secret: 'keyboard cat', resave: true, saveUninitialized: false,cookie: { path: '/', httpOnly: true, maxAge: 30 * 30000 },rolling: true}));
- app.use(checkAuth);
- //login
- function checkAuth (req, res, next) {
- //console.log('checkAuth ' + req.url);
- // don't serve /secure to those not logged in,you should add to this list, for each and every secure url
- if (req.url === '/home' && (!req.session || !req.session.authenticated)) {
- //console.log(req.session+'xxx'+req.session.authenticated);
- res.render('login', { status: 403 });
- return;
- }
- next();
- }
- app.post('/login', function (req, res, next) {
- db.getConnection(function (err, connection) {
- SQL="SELECT TMU.*,TTS.ROLE FROM muser TMU CROSS JOIN tsetting TTS WHERE TMU.USER = ? and TMU.PASSWORD = ?";
- connection.query(SQL, [req.body.username, req.body.password], function (err, rows) {
- connection.release();
- if(err) return done(err);
- // if user not found
- if (rows.length <= 0) {
- console.log('gagal');
- res.redirect('/login');
- }
- req.session.authenticated = true;
- req.session.user=rows;
- res.redirect('/home');
- });
- });
- });
- app.get('/home',(req,res)=>{ => this one I still get session value
- if (req.session.user) {
- console.log('- sessionhome -');
- console.log(req.session.user);
- console.log('---------------');
- res.render('home',{username: req.session.user[0].USER,level:req.session.user[0].IDLEVEL,role:req.session.user[0].ROLE,ip:ipserver});
- }else {
- res.redirect('/login');
- }
- });
- app.get('/getcart',(req,res)=>{ => this one i cant get session value
- console.log(req.session.authenticated);
- if (req.session.user) {
- var userdata=sessionuser;
- SQL="SELECT TC.ID,TC.IDITEM,TC.KODEBARANG,TC.NAMA,SUM(TC.QTY) AS QTY,TC.PRICE, TC.SUBTOTAL"+'\n'+
- "FROM cart TC "+'\n'+
- "WHERE TC.IDUSER="+req.session.user[0].ID+'\n'+
- "GROUP BY TC.KODEBARANG,TC.IDITEM,TC.KODEBARANG,TC.NAMA,TC.PRICE,TC.SUBTOTAL,TC.IDUSER";
- rowsalasql=alasql(SQL);
- res.send(JSON.stringify(rowsalasql));
- }else {
- console.log('session undefined');
- }
- });
- //
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement