Merge pull request #40 from Newtbot/Dev-branch

login WIP
2024-01-20 04:13:41 +08:00 · 2024-01-20 04:13:41 +08:00 · 4a9af2ae7c
commit 4a9af2ae7c
parent f20b4d2088 32be41ea46
7 changed files with 141 additions and 54 deletions
--- a/consumerWebsite/functions/apiDatabase.js
+++ b/consumerWebsite/functions/apiDatabase.js
@ -2,10 +2,11 @@ const { sequelize } = require("../database/mySql.js");
 const { apikeyModel } = require("../database/model/apikeyModel.js");
 const { userModel } = require("../database/model/userModel.js");
 const { Op, Sequelize } = require("sequelize");
-const { hashAPIKey } = require("../functions/bcrypt.js");
 const { generateUUID } = require("../functions/generateUUID.js");
 const { hashPassword , comparePassword , hashAPIKey } = require("../functions/bcrypt.js");

+//helper function
+

 //api/v0/user/register

@ -19,15 +20,76 @@ async function addUser(user) {
 	//hash password
 	let hash = await hashPassword(user.password);

-	await userModel.create({
+    const addRes = await userModel.create({
 		username: user.username,
 		password: hash,
 		email: user.email,
 		address: user.address,
 		phone: user.phone,
 	});
+    if (addRes){
+        return true;
+    }
+    else{
+        return false;
+    }
 }

+//add token to db 
+async function addToken(userid , token) {
+    console.log(userid);
+    console.log(token);
+
+}
+
+async function loginUser(user) {
+    //look up username or email in db
+    const userRes = await userModel.findOne({
+        where: {
+            [Op.or]: [
+                {
+                    username: user.userInfo,
+                },
+                {
+                    email: user.userInfo,
+                },
+            ],
+        },
+        })
+	//if user exists
+    if (userRes){
+        //compare password
+        let match = await comparePassword(user.password, userRes.password);
+        if (match){
+            console.log(userRes.id);
+            console.log(userRes.username);
+
+			//generate token
+			let token = await generateUUID();
+
+            //add to db 
+            addToken(userRes.id, token);
+			
+
+            //sucessful login
+            /*
+            1) generate token
+            2) store in db and localstorage (maybe hash it?)
+            3) return userid and username and token and store in localstorage
+            */
+			return { token: token, userid: userRes.id, username: userRes.username };
+		}		
+		else {
+			return false;
+		}
+    }
+
+    else{
+        return false;
+    }
+}
+
+
 async function getAPIKey() {
 	const apikey = await apikeyModel.findAll();
 	return apikey;
--- a/consumerWebsite/modules/app.js
+++ b/consumerWebsite/modules/app.js
@ -28,12 +28,19 @@ app.use("/", require("../routes/render")); //consumerWebsite\routes\render.js
 // Catch 404 and forward to error handler. If none of the above routes are
 // used, this is what will be called.
 app.use(function (req, res, next) {
+	if (req.is("application/json")) {
 	var err = new Error("Not Found");
 	err.message = "Page not found";
 	err.status = 404;
 	next(err);
+	}
+	else{
+		res.status(404).render("404");
+	}
 });

+
+
 // Error handler. This is where `next()` will go on error
 app.use(function (err, req, res, next) {
 	console.error(err.status || res.status, err.name, req.method, req.url);
--- a/consumerWebsite/public/css/sp.css
+++ b/consumerWebsite/public/css/sp.css
@ -65,7 +65,7 @@ body {
  header {
  font-size: 30px;
  text-align: center;
-  color: #fff;
+  color: #000000;
  font-weight: 600;
  cursor: pointer;
 }
@ -92,6 +92,7 @@ body {
  margin-top: 50px;
 }

+
 form
  input {
  height: 60px;
@ -105,6 +106,7 @@ form
  border-radius: 8px;
  background: #fff;
 }
+
 .form.login
  input {
  border: 1px
--- a/consumerWebsite/public/js/app.js
+++ b/consumerWebsite/public/js/app.js
@ -12,7 +12,7 @@ app.util = (function (app) {

 	function actionMessage(message, $target, type, callback) {
 		message = message || "";
-		$target = $target.closest("div.card").find(".actionMessage");
+		$target = $target.closest("div.iot-card").find(".actionMessage");
 		type = type || "info";
 		callback = callback || function () {};

@ -29,9 +29,6 @@ app.util = (function (app) {
 			});
 		} else {
 			if (type) $target.addClass("bg-" + type);
-			message =
-				'<button class="action-close btn btn-sm btn-outline-dark float-right"><i class="fa-solid fa-xmark"></i></button>' +
-				message;
 			$target.html(message).slideDown("fast");
 		}
 		setTimeout(callback, 10);
@ -137,6 +134,7 @@ app.api = (function (app) {
 			complete: function (res, text) {
 				callback(
 					text !== "success" ? res.statusText : null,
+					//console.log(res.responseText),
 					JSON.parse(res.responseText),
 					res.status
 				);
@ -213,14 +211,15 @@ app.auth = (function (app) {
 			location.href.replace(location.replace(`/login`)) || "/";
 	}

-	function homeRedirect(){
-		window.location.href = 
-		location.href.replace(location.replace(`/`)) || "/";
+	function homeRedirect() {
+		window.location.href = location.href.replace(location.replace(`/`)) || "/";
 	}

 	return {
 		getToken: getToken,
 		setToken: setToken,
+		setUserId: setUserId,
+		setUsername: setUsername,
 		isLoggedIn: isLoggedIn,
 		//logIn: logIn,
 		logOut: logOut,
@ -231,31 +230,27 @@ app.auth = (function (app) {
 })(app);

 //ajax form submit
-function formAJAX( btn, del ) {
+function formAJAX(btn, del) {
 	event.preventDefault(); // avoid to execute the actual submit of the form.
-    var $form = $(btn).closest( '[action]' ); // gets the 'form' parent
-    var formData = $form.find( '[name]' ).serializeObject(); // builds query formDataing
-    var method = $form.attr('method') || 'post';
+	var $form = $(btn).closest("[action]"); // gets the 'form' parent
+	var formData = $form.find("[name]").serializeObject(); // builds query formDataing
+	var method = $form.attr("method") || "post";

 	// if( !$form.validate()) {
 	//     app.util.actionMessage('Please fix the form errors.', $form, 'danger')
 	//     return false;
 	// }

-    app.util.actionMessage( 
-        '<div class="spinner-border" role="status"><span class="sr-only">Loading...</span></div>',
-        $form,
-        'info'
-    );
+	app.util.actionMessage("Loading...", $form, "info");

 	//console.log('Data being sent to', $form.attr('action'), formData)

-    app.api[method]($form.attr('action'), formData, function(error, data){
+	app.api[method]($form.attr("action"), formData, function (error, data) {
 		//console.log('Data back from the server', error, data)
-        app.util.actionMessage(data.message, $form, error ? 'danger' : 'success'); //re-populate table
-        if(!error){
+		app.util.actionMessage(data.message, $form, error ? "danger" : "success"); //re-populate table
+		if (!error) {
 			$form.trigger("reset");
-            eval($form.attr('evalAJAX')); //gets JS to run after completion
+			eval($form.attr("evalAJAX")); //gets JS to run after completion
 		}
 	});
 }
--- a/consumerWebsite/routes/render.js
+++ b/consumerWebsite/routes/render.js
@ -56,10 +56,7 @@ router.get('/login', function(req, res, next) {
    res.render('signuplogin'); 
 });

-//404  page
-router.get('*', function(req, res, next) {
-    res.render('404'); 
-});
+


 module.exports = router;
--- a/consumerWebsite/routes/user.js
+++ b/consumerWebsite/routes/user.js
@ -1,15 +1,23 @@
-const { addUser , loginUser } = require("../functions/apiDatabase.js");
+const { addUser, loginUser } = require("../functions/apiDatabase.js");

 const express = require("express");
 const router = express.Router();

-
 // /user/register
 router.post("/register", async (req, res, next) => {
 	try {
-		console.log("this is " , req.body);
-		await addUser(req.body);
-		res.status(200).json({ register: true });
+		let Res = await addUser(req.body);
+		if (Res == false) {
+			let error = new Error("UserRegFailed");
+			error.message = "The user failed to be craated";
+			error.status = 400;
+			return next(error);
+		}
+    else{
+      return res.json({
+        message: "User created successfully",
+      });
+    }
 	} catch (error) {
 		console.error(error);
 		next(error);
@ -19,10 +27,22 @@ router.post("/register", async (req, res, next) => {
 //login
 router.post("/login", async (req, res, next) => {
 	try {
-		console.log("this is " , req.body);
-		let res = await loginUser(req.body);
-		if (res == false){
-			console.log("user not found");
+		let Res = await loginUser(req.body);
+		if (Res == false) {
+      let error = new Error("User Login Failed");
+			error.status = 400;
+			return next(error);
+		}
+    else{
+      //pass res back to form to be set in local storage
+      console.log(Res);
+      return res.json({
+        message: "User login successfully",
+        token: Res.token,
+        userId: Res.userid,
+        username: Res.username,
+      }); 
+
    }
 	} catch (error) {
 		console.error(error);
@ -35,7 +55,6 @@ router.post("/login", async (req, res, next) => {

 module.exports = router;

-
 /*

 curl localhost/api/v0/user/register -H "Content-Type: application/json" -X POST -d '{"username": 
--- a/consumerWebsite/views/signuplogin.ejs
+++ b/consumerWebsite/views/signuplogin.ejs
@ -2,7 +2,7 @@

 <body>
    <section class="wrapper">
-        <div class="form signup" >
+        <div class="form signup iot-card">
            <!--<div class="form signup card" -->
            <header>Signup</header>
            <!-- localhost/api/v0/user/register -->
@ -18,12 +18,17 @@
            </form>
        </div>

-        <div class="form login">
+        <div class="form login iot-card">
            <header>Login</header>
+            <div class="card-header shadow actionMessage" style="display:none"></div>
            <!-- evalAjax Fires when status 200 is returned  -->
            <form action="user/login" onsubmit="formAJAX(this)" 
-            evalAJAX="app.auth.homeRedirect();"
-            >
+            evalAJAX="app.auth.homeRedirect();
+            app.auth.setToken(data.token);
+            app.auth.setUserId(data.userId);
+            app.auth.setUsername(data.username);
+            ">
+            
                <input type="text" name="userInfo" placeholder="Email address | Username" required />
                <input type="password" name="password" placeholder="Password" required />
                <a href="/resetPassword">Forgot password?</a>