const express = require('express');const app = express();const session = req

1. const express = require('express');
2. const app = express();
3. const session = require('express-session')
4. const port = 8080;
5. let sql = require("mssql/msnodesqlv8");
6. app.use(express.static("public"));
7.  
8. const bodyParser = require("body-parser");
9. app.use(bodyParser.urlencoded({
10. extended: true
11. }));
12. app.use(bodyParser.json());
13.  
14. app.use(session({
15. secret: '2C44-4D44-WppQ38S',
16. resave: true,
17. saveUninitialized: true
18. }));
19.  
20. let dbConfig = {
21. driver: 'msnodesqlv8',
22. connectionString: 'Driver={SQL Server Native Client 11.0};Server={db-mssql};Database={s15831};Trusted_Connection={yes};'
23. };
24. sql.connect(dbConfig, function (err) {
25. if (err) {
26. console.log("Error while connecting database :- " + err);
27. res.send(err);
28. sql.close();
29. }
30. });
31.  
32. var auth = function (req, res, next) {
33. if (req.session && req.session.user === "amy" && req.session.admin)
34. return next();
35. else
36. return res.sendStatus(401);
37. };
38. //register
39. app.post("/registerForm", function (req, res) {
40. let name = req.body.name;
41. let secondName = req.body.secondName;
42. let email = req.body.email;
43. let password = req.body.password;
44. let request = new sql.Request();
45. console.log(req.body.name);
46. console.log(req.body.secondName);
47. console.log(req.body.email);
48. console.log(req.body.password);
49. var queryTmp = 'SELECT * FROM osoba WHERE email = \'' + email + '\'';
50. console.log(queryTmp);
51. request.query(queryTmp, function (err, result) {
52. console.log(result.recordsets.length);
53. if (err) {
54. console.log('error')
55. throw err;
56. }
57. else if (result.recordsets.length >= 2) {
58. //istnieje
59. console.log("Użytkownik istnieje")
60. }
61. else {
62. request.multiple = true;
63. console.log('INSERT INTO osoba (imie, nazwsisko, haslo, email) VALUES ('+name+'\',\''+secondName+'\',\''+password+'\',\''+email+'\')');
64. request.query('INSERT INTO osoba (imie, nazwsisko, haslo, email) VALUES ('+'\''+name+'\',\''+secondName+'\',\''+password+'\',\''+email+'\')', function(err, recordset) {
65. if (err) {
66. console.log(err);
67. return res.send('Error occured');
68. }
69. return res.send('Successfully inserted');
70. });
71. console.log("d");
72. }
73. });
74. });
75.  
76. // Login endpoint
77. app.post('/login', function (req, res) {
78. let email = req.body.email;
79. let password = req.body.password;
80. console.log(req.body.email);
81. console.log(req.body.password);
82. var queryTmp = 'SELECT * FROM OSOBA WHERE EMAIL = ' + '\'email\'';
83. request.query(queryTmp, function (err, result) {
84. if (err) {
85. //BRAK TAKIEJ OSOBY
86. res.send('Brak takiej emaila w bazie');
87. throw err;
88. }
89. console.log(result);
90. });
91. if (!email || !req.query.password) {
92. res.send('login failed');
93. } else if (req.query.username === "amy" || req.query.password === "amyspassword") {
94. req.session.user = "amy";
95. req.session.admin = true;
96. res.send("login success!");
97. }
98. });
99. //logout
100. app.get('/logout', function (req, res) {
101. req.session.destroy();
102. res.send("logout success!");
103. });
104.  
105. app.get('/d', function (req, res) {
106. request.query('select * from marka', function (err, data) {
107. if (err) {
108. console.log("Error while connecting database :- " + err);
109. res.send(err);
110. }
111. else {
112. res.send(data.recordset);
113. }
114. sql.close();
115. });
116. });
117.  
118. app.get('/hello', (req, res) => res.send('asd World!'));
119. app.get('/form', (req, res) => res.sendFile(__dirname + '/public/index.html'));
120. app.get('/formdata', (req, res) => {
121. var fields = [[req.query['imie'], req.query['nazwisko'], req.query['wiek']]];
122. res.render('people', { people: fields });
123. });
124.  
125. app.listen(port, () => console.log(`Listening on port ${port}!`));