Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- var express = require('express');
- var crypto = require('crypto');
- var User = require('../models/user');
- var Auth_mdw = require('../middlewares/auth');
- var router = express.Router();
- var secret = 'codepolitan';
- var session_store;
- router.get('/', Auth_mdw.check_login, function(req, res, next) {
- session_store = req.session;
- res.render('index', { title: 'Welcome!', session_store:session_store });
- });
- router.get('/login', function(req, res, next) {
- res.render('login');
- });
- router.post('/login', function(req, res, next) {
- session_store = req.session;
- var password = crypto.createHmac('sha256', secret)
- .update(req.body.password)
- .digest('hex');
- if (req.body.username == "" || req.body.password == "")
- {
- req.flash('info', 'Tidak boleh ada field yang kosong!');
- res.redirect('/login');
- }
- else
- {
- User.find({ username: req.body.username, password:password }, function(err, user) {
- if (err) throw err;
- if (user.length > 0)
- {
- session_store.username = user[0].username;
- session_store.email = user[0].email;
- session_store.admin = user[0].admin;
- session_store.logged_in = true;
- res.redirect('/');
- }
- else
- {
- req.flash('info', 'Sepertinya akun Anda salah!');
- res.redirect('/login');
- }
- });
- }
- });
- module.exports = router;
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement