garrit
/
mail-proxy
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
0 Tags
543 KiB
 
 
 
 
Tree: 1160220d08
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1160220d08'
${ noResults }
mail-proxy/server/routes/auth.js

68 lines
2.0 KiB
Raw Blame History

const bcrypt = require("bcryptjs");
const jwt = require("jsonwebtoken");
const router = require("express").Router();
const User = require("../model/User");
router.post("/register", async (req, res) => {
const { email, username, password } = req.body;
console.debug("Registering user:", email);
if (await User.query().findOne("email", email)) {
res.status(400).send("Email already taken");
return;
}
if (await User.query().findOne("username", username)) {
res.status(400).send("Username already taken");
return;
}
const salt = await bcrypt.genSalt(10);
const hashedPassword = await bcrypt.hash(password, salt);
const user = await User.query().insert({ email, username, passwordHash: hashedPassword });
if (req.query.redirect) return res.redirect(req.query.redirect);
else return res.json({ status: "success", id: user.id });
});
router.post("/login", async (req, res) => {
console.debug("New login attempt:", req.body.email);
const { email, password } = req.body;
const user = await User.query().findOne("email", email);
if (!user) {
console.debug("User not found");
return res.status(400).send("Email or password incorrect");
}
const validPass = await bcrypt.compare(password, user.passwordHash);
if (!validPass) return res.status(400).send("Email or password incorrect");
const token = jwt.sign(
{ _id: user.id, name: user.username, email: user.email },
process.env.AUTH_SECRET
);
console.debug("Login success for userId:", user.id);
if (req.query.redirect)
return res.cookie("token", token).redirect(req.query.redirect);
else return res.json({ status: "success", token, id: user.id });
});
router.get("/profile", async (req, res) => {
console.debug("Fetching profile for:", req.userId);
let user = await User.query().findById(req.userId);
if (user) {
user.passwordHash = undefined;
return res.json(user);
} else {
const message = "User not found";
console.debug(message);
return res.status(404).send(message);
}
});
module.exports = router;