create session controller, modify routes

Author: andrewjcho84

package.json

@@ -176,6 +176,7 @@
     "copy-webpack-plugin": "^4.5.2",
     "cross-env": "^5.2.1",
     "css-loader": "^2.1.1",
+    "dotenv": "^8.2.0",
     "electron": "^2.0.7",
     "electron-builder": "^20.44.4",
     "electron-devtools-installer": "^2.2.4",

server/controllers/cookieController.js

@@ -0,0 +1,16 @@
+const cookieController = {};
+
+// setCookie = set a cookie with a random number
+
+cookieController.setCookie = (req, res, next) => {
+  // set cookie with key of 'secret' and value of a random number between 0 and 1000
+  res.cookie('secret', Math.floor(Math.random() * 1000));
+  return next();
+};
+
+// setSSIDCookie - store the user id from database in cookie
+cookieController.setSSIDCookie = (req, res, next) => {
+  // set cookie with key 'ssid' and value to user's id, also set http only
+  res.cookie('ssid', res.locals.id, { httpOnly: true });
+  return next();
+};

server/controllers/sessionController.js

@@ -0,0 +1,41 @@
+const Session = require('../models/sessionModel')
+const sessionController = {};
+
+// isLoggedIn finds appropriate session for this request in database, then verifies whether or not the session is still valid
+sessionController.isLoggedIn = (req, res, next) => {
+  // find cookie with current user's ssid value
+  Session.findOne({cookieId: req.cookies.ssid}, (err, session) => {
+  if (err) {
+    return next({
+      log: `Error in sessionController.isLoggedIn: ${err}`,
+      message: {
+        err: `Error in sessionController.isLoggedIn, check server logs for details`
+      }
+    })
+    // no session found, redirect to signup page
+  } else if (!session) {
+    return res.redirect('/signup')
+  } else {
+    // session found, move onto next middleware
+    return next();
+  }
+})
+}
+
+// startSession - create and save a new session into the database
+sessionController.startSession = (req, res, next) => {
+  // if valid user logged in/signed up, res.locals.id should be user's id generated from mongodb
+  Session.create({cookieId: res.locals.id}, (err) => {
+    if (err) {
+      return next({
+        log: `Error in sessionController.startSession: ${err}`,
+        message: {
+          err: `Error in sessionController.startSession, check server logs for details`
+        }
+      })
+    }
+    return next();
+  })
+}
+
+module.exports = sessionController;

server/controllers/userController.js

@@ -1,11 +1,12 @@
 // middleware functions create a new user and verify users
 
-const Users = require('../models/userModels');
+const Users = require('../models/userModel');
 
 const userController = {};
 const bcrypt = require('bcryptjs');
 
 userController.createUser = (req, res, next) => {
+  console.log('Inside createUser')
   const { username, password } = req.body;
   // error handling if username or password is missing
   if (!username || !password) {

server/models/sessionModel.js

@@ -1,6 +1,7 @@
 const mongoose = require('mongoose');
 const Schema = mongoose.Schema;
 
+// Mongo has an automatic document expiration service that we can use via the 'expires' property in the schema. This sets it so each session can only last an hour
 const sessionSchema = new Schema({
   cookieId: { type: String, required: true, unique: true },
   createdAt: { type: Date, expires: 3600, default: Date.now }

server/models/userModels.js renamed to server/models/userModel.js

@@ -1,15 +1,5 @@
 const mongoose = require('mongoose');
-
-mongoose
-  .connect(process.env.MONGO_URI, {
-    // options for the connect method to parse the URI
-    useNewUrlParser: true,
-    useUnifiedTopology: true,
-    // sets the name of the DB that our collections are part of
-    dbName: 'ReacType'
-  })
-  .then(() => console.log('Connected to Mongo DB.'))
-  .catch(err => console.log(err));
+require('dotenv').config();
 
 const Schema = mongoose.Schema;
 

server/server.js

@@ -1,16 +1,44 @@
 const express = require('express');
+const mongoose = require('mongoose')
 const path = require('path');
 const cookieParser = require('cookie-parser');
+const userController = require('./controllers/userController')
+const cookieController = require('./controllers/cookieController')
 const app = express();
 const PORT = 8080;
 
+// connect to mongo db
+mongoose
+  .connect(process.env.MONGO_URI, {
+    // options for the connect method to parse the URI
+    useNewUrlParser: true,
+    useUnifiedTopology: true,
+    useCreateIndex: true,
+    // sets the name of the DB that our collections are part of
+    dbName: 'ReacType'
+  })
+  .then(() => console.log('Connected to Mongo DB.'))
+  .catch(err => console.log(err));
+
 // handle parsing request body
 app.use(express.json());
 // cookie parser
 app.use(cookieParser());
 
 // statically serve everything in build folder
-app.use('/', express.statice(path.resolve(__dirname, '../build')));
+app.use('/build', express.static(path.resolve(__dirname, '../build')));
+
+// app.get('/', cookieController.setCookie, (req, res) => {
+//   res.status(200).sendFile('../build/index.html');
+// })
+
+app.post('/signup', userController.createUser, (req, res) => {
+  return res.status(200).json(res.locals.newUser)
+})
+
+app.post('/login', userController.verifyUser, (req, res) => {
+  return res.status(200).json(res.locals.id)
+})
 
 // catch-all route handler
 app.use('*', (req, res) => {