Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- // Validate Credentials
- app.post('/home', (req, res) => {
- const username = req.body.inputUsername;
- const password = req.body.inputPassword;
- const sessionID = req.cookies['session-id'];
- const cookieToken = req.cookies['csrf-token'];
- if (username === 'root' && password === 'root') {
- console.log("Home: Logged with valid credentials");
- // Generating Session ID and Token
- const SESSION_ID = uuidv1();
- const CSRF_TOKEN = uuidv4();
- if (!sessionID && !cookieToken) {
- console.log(`Generated Session ID: ${SESSION_ID}, CSRF Token: ${CSRF_TOKEN}`);
- // Setting Cookie on Header
- res.setHeader('Set-Cookie', [`session-id=${SESSION_ID}`, `time=${Date.now()}`, `csrf-token=${CSRF_TOKEN}`]);
- } else {
- console.log('POST /home Some Session ID and CSRF Token Found')
- }
- res.sendFile('views/form.html', {root: __dirname});
- } else {
- const error = {status: 401, message: 'Invalid Credentials'};
- res.sendFile('views/form-error.html', {root: __dirname});
- }
- });
Add Comment
Please, Sign In to add comment