Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- var express = require('express')
- var app = express()
- var bodyParser = require('body-parser');
- const mongoose = require('mongoose');
- var uuid = require('uuid4');
- const Users = mongoose.model('Users', { username: String, password: String, firstname: String, secondname: String, sessionkey: String });
- mongoose.connect('mongodb://localhost/test');
- app.use(bodyParser.urlencoded());
- app.use(bodyParser.json())
- app.use(function (req, res, next) {
- res.header("Access-Control-Allow-Origin", "*");
- res.header("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept");
- next();
- });
- app.post('/checksession', function (req, res) {
- // req.body.sessionkey
- if (req.body.sessionkey !== null) {
- Users.findOne({ sessionkey: req.body.sessionkey }).exec((err, user) => {
- if (err) {
- return res.json({ message: 'Database error!' })
- }
- if (user == null){
- return res.json({ error: 1 })
- }
- else {
- return res.json({ expired: '0', firstname: user.firstname, erros: 0 })
- }
- })
- }
- else {
- return res.json({ message: 'Nice hacker' })
- }
- })
- app.post('/register', function (req, res) {
- if (req.body.password !== null || req.body.username !== null || req.body.firstname !== null || req.body.secondname !== null) {
- var newuser = new Users({
- password: req.body.password,
- username: req.body.username,
- firstname: req.body.firstname,
- secondname: req.body.secondname,
- sessionkey: '',
- });
- newuser.save((err, result) => {
- console.log(result._id);
- res.json({ message: "ALL OK!" })
- })
- }
- })
- app.post('/login', function (req, res) {
- // Filter USERNAME!!! Username is not right -> error!!!
- if (req.body.password !== null || req.body.username !== null) {
- Users.findOne({ username: req.body.username }).exec((err, user) => {
- if (user === null) {
- return res.json({ message: "No user with this username", erros: 1 })
- }
- console.log(user.password);
- console.log(req.body.password);
- if (user.password === req.body.password) {
- var id = uuid();
- user.sessionkey = id
- user.save()
- res.json({ message: "All ok, welcome " + user.firstname, erros: 0, sessionkey: user.sessionkey })
- }
- else {
- res.json({ message: "Uncorrect Password!!!!!", erros: 1 })
- }
- })
- }
- else {
- res.json({ error: "something is null!" })
- }
- })
- app.listen(5005)
Add Comment
Please, Sign In to add comment