Auth-ESLint-Routes-More

KB885 · KB885 · commit 33d671784568 · 2022-04-06T11:24:37.000+02:00
diff --git a/.eslintrc.json b/.eslintrc.json
@@ -11,5 +11,6 @@
         "sourceType": "module"
     },
     "rules": {
+        "indent": ["error", 4]
     }
 }
diff --git a/src/app/Http/Admin/AdminController.js b/src/app/Http/Admin/AdminController.js
@@ -0,0 +1,12 @@
+class AdminController {
+    /**
+     * Show the admin dashboard
+     * @param {*} req
+     * @param {*} res
+     */
+    async showBoard (req, res) {
+        res.render('admin/board')
+    };
+}
+
+module.exports = new AdminController()
diff --git a/src/app/Http/AuthenticationController.js b/src/app/Http/AuthenticationController.js
@@ -1,137 +1,137 @@
 const User = require('../Models/User')
 const bcrypt = require('bcrypt')
-// On any request req, req.session.user is now available where the userSession can be accesed
-//  by User = require("../Models/User"); and then User.findOne to fetch the user from the database
-
-/**
- * Show the login page and check if the user is already logged in
- * @param {*} req
- * @param {*} res
- */
-exports.login = (req, res) => {
-    if(req.session.user) {
-        res.redirect("/dashboard");
-    } else {
-        res.render("auth/login");
-    }
-};
-
-
-
-/**
- * Show the register page and check if the user is already logged in
- * @param {*} req
- * @param {*} res
- */
-exports.register = (req, res) => {
-    if(req.session.user) {
-        res.redirect("/dashboard");
-    } else {
-        res.render("auth/register");
-    }
-};
-
-
-/**
- * Show the forgot password page
- * @param {*} req
- * @param {*} res
- */
-exports.forgot = (req, res) => {
-    if(req.session.user) {
-        res.redirect("/dashboard");
-    } else {
-        res.render("auth/forgot");
-    }
-};
-
-
-/**
- * Authenticate the user and redirect to the dashboard
- * @param {*} req
- * @param {*} res
- * @returns
- */
-exports.authenticate = async (req, res) => {
-    const { username, password } = req.body;
-  
-    if (!username || !password) return res.status(400).send("Please fill all the fields");
-  
-    User
-    .findOne({ username })
-    .then((user) => {
-      if (!user) return res.status(400).send("User does not exist");
-  
-      bcrypt
-        .compare(password, user.password)
-        .then((isMatch) => {
-          if (isMatch) {
-            req.session.user = user;
-            res.redirect("/project");
-          } else { 
-          return res.status(400).send("Incorrect password");
-          }
+
+class AuthenticationController {
+    /**
+     * Show the login page and check if the user is already logged in
+     * @param {*} req
+     * @param {*} res
+     */
+    async showLogin (req, res) {
+        if (req.session.user) {
+            res.redirect('/dashboard')
+        } else {
+            res.render('auth/login')
+        }
+    };
+
+    /**
+     * Show the register page and check if the user is already logged in
+     * @param {*} req
+     * @param {*} res
+     */
+    async showRegister (req, res) {
+        if (req.session.user) {
+            res.redirect('/dashboard')
+        } else {
+            res.render('auth/register')
+        }
+    };
+
+    /**
+     * Show the forgot password page and check if the user is already logged in
+     * @param {*} req
+     * @param {*} res
+     */
+    async showForgot (req, res) {
+        if (req.session.user) {
+            res.redirect('/dashboard')
+        } else {
+            res.render('auth/forgot')
+        }
+    };
+
+    /**
+     * Authenticate the user and redirect to the dashboard
+     * @param {*} req
+     * @param {*} res
+     * @returns
+     */
+    async authenticate (req, res) {
+        const { username, password } = req.body
+
+        if (!username || !password) return res.status(400).send('Please fill all the fields')
+
+        User
+            .findOne({
+                username
+            })
+            .then((user) => {
+                if (!user) return res.status(400).send('User does not exist')
+
+                bcrypt
+                    .compare(password, user.password)
+                    .then((isMatch) => {
+                        if (isMatch) {
+                            req.session.user = user
+                            res.redirect('/project')
+                        } else {
+                            return res.status(400).send('Incorrect password')
+                        }
+                    })
+                    .catch((err) => console.log(err))
+            })
+    };
+
+    /**
+     * Create a new user and redirect to the dashboard
+     * @param {*} req
+     * @param {*} res
+     * @returns
+     */
+    async signup (req, res) {
+        const {
+            name,
+            username,
+            email,
+            password,
+            passwordConfirmation
+        } = req.body
+
+        if (!name || !username || !email || !password || !passwordConfirmation) { return res.status(400).send('Please fill all the fields') }
+
+        if (password !== passwordConfirmation) { return res.status(400).send('Passwords do not match') }
+
+        if (password.length < 8) { return res.status(400).send('Password must be at least 6 characters') }
+
+        User.findOne({
+            username
+        }).then((user) => {
+            if (user) return res.status(400).send('User already exists')
+
+            const newUser = new User({ name, username, email, password })
+
+            bcrypt.genSalt(10, (salt) => {
+                bcrypt.hash(newUser.password, salt, (err, hash) => {
+                    if (err) console.log(err)
+                    newUser.password = hash
+                    newUser
+                        .save()
+                        .then((user) => {
+                            // req.session.user = user;
+                            // res.json(user);
+                            res.redirect('login')
+                        })
+                        .catch((err) => console.log(err))
+                })
+            })
         })
-        .catch((err) => console.log(err));
-    });
-  };
-
-/**
- * Create a new user and redirect to the dashboard
- * @param {*} req
- * @param {*} res
- * @returns
- */
-exports.signup = (req, res) => {
-    const { name, username, email, password, passwordConfirmation } = req.body;
-  
-    if (!name || !username || !email || !password || !passwordConfirmation)
-        return res.status(400).send("Please fill all the fields");
-  
-    if (password !== passwordConfirmation)
-      return res.status(400).send("Passwords do not match");
-  
-    if (password.length < 8)
-      return res.status(400).send("Password must be at least 6 characters");
-  
-    User.findOne({username}).then((user) => {
-      if (user) return res.status(400).send("User already exists");
-  
-      const newUser = new User({
-        name,
-        username,
-        email,
-        password,
-      });
-  
-      bcrypt.genSalt(10, (err, salt) => {
-        bcrypt.hash(newUser.password, salt, (err, hash) => {
-          if (err) console.log(err);
-          newUser.password = hash;
-          newUser
-          .save()
-          .then((user) => {
-              // req.session.user = user;
-              // res.json(user);
-              res.redirect("login");
-          })
-          .catch((err) => console.log(err));
-        });
-      });
-    });
-  };
-
-/**
- * Logout the user and redirect to the login page
- * @param {*} req
- * @param {*} res
- */
-exports.logout = (req, res) => {
-    if(req.session) {
-        req.session.destroy(() => {
-            res.redirect("/login");
-        });
-    } else {
-        res.redirect("/login");
-    }
-};
+    };
+
+    /**
+     * Logout the user and redirect to the login page
+     * @param {*} req
+     * @param {*} res
+     */
+    async logout (req, res) {
+        if (req.session) {
+            req.session.destroy(() => {
+                res.redirect('/login')
+            })
+        } else {
+            res.redirect('/login')
+        }
+    };
+}
+
+module.exports = new AuthenticationController()
diff --git a/src/app/Middleware/Authorization.js b/src/app/Middleware/Authorization.js
@@ -0,0 +1,23 @@
+class Authorization {
+    /**
+    * Login required middleware
+    */
+    async authLogin (req, res, next) {
+        if (!req.session || !req.session.user) {
+            return res.redirect('/login')
+        }
+        await next()
+    }
+
+    /**
+    * Role required middleware
+    */
+    async authRole (req, res, next) {
+        if (req.user.role !== role) {
+            return res.send('Not allowed')
+        }
+        await next()
+    }
+}
+
+module.exports = new Authorization()
diff --git a/src/app/Middleware/Role.js b/src/app/Middleware/Role.js
@@ -0,0 +1,6 @@
+const ROLE = {
+    ADMIN: 'admin',
+    USER: 'user'
+}
+
+module.exports = ROLE
diff --git a/src/resources/views/admin/board.ejs b/src/resources/views/admin/board.ejs
@@ -0,0 +1 @@
+admin board
diff --git a/src/resources/views/projects/_partial/header.ejs b/src/resources/views/projects/_partial/header.ejs
@@ -0,0 +1 @@
+header
diff --git a/src/resources/views/projects/_partial/mid.ejs b/src/resources/views/projects/_partial/mid.ejs
@@ -0,0 +1 @@
+mid
diff --git a/src/resources/views/projects/_partial/right.ejs b/src/resources/views/projects/_partial/right.ejs
@@ -0,0 +1 @@
+right
diff --git a/src/resources/views/projects/_partial/sidebar.ejs b/src/resources/views/projects/_partial/sidebar.ejs
@@ -0,0 +1 @@
+sidebar
diff --git a/src/resources/views/projects/overview.ejs b/src/resources/views/projects/overview.ejs
@@ -1,44 +1,12 @@
-<section class="pt-18 max-w-7xl mx-auto py-12 px-4 sm:px-6 lg:px-8">
-    <h2 class="text-2xl font-medium">Projects</h2>
-    <div class="mt-3 w-full">
-        <a href="#" class="px-4 text-sm bg-white p-2 rounded-md shadow-md">Create a new project</a>
-    </div>
-    <main class="px-6 py-4 text-sm bg-white rounded-lg mt-8">
-        <h5 class="text-lg font-medium mb-2">Projects overview</h5>
-        <table class="w-full text-left">
-            <thead class="text-gray-500">
-                <tr class="h-10">
-                    <th class="pr-4 font-normal">Name</th>
-                    <th class="pr-4 font-normal">Owner</th>
-                    <th class="pr-4 font-normal">Members</th>
-                    <th class="pr-4 font-normal">Last modified</th>
-                    <th class="pr-4 font-normal">Created</th>
-                    <th></th>
-                </tr>
-            </thead>
-            <tbody>
-                <tr class="h-12 border-t border-gray-100">
-                    <td class="pr-4"><a href="" class="text-violet-600">Project one</a></td>
-                    <td class="pr-4 text-gray-500 text-xs">William</td>
-                    <td class="pr-4 text-gray-500 text-xs">5 members</td>
-                    <td class="pr-4 text-gray-500 text-xs">2 hours ago.</td>
-                    <td class="pr-4 text-gray-500 text-xs">2 hours ago.</td>
-                    <td class="w-12">
-                        <div class="flex items-center justify-end h-10">
-                            <button class="h-10 text-teal-400 cursor-pointer" type="button">
-                                <span class="flex items-center justify-between">
-                                    <svg fill="none" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20"
-                                        class="w-5 h-5 text-gray-600">
-                                        <path
-                                            d="m5 1.667h10c.921 0 1.667.746 1.667 1.667v8.966a2.5 2.5 0 0 1 -.733 1.767l-3.534 3.533a2.5 2.5 0 0 1 -1.767.733h-5.633c-.92 0-1.667-.746-1.667-1.667v-13.333c0-.92.746-1.667 1.667-1.667zm5.833 10h4.167v-8.334h-10v13.333h5v-4.166c0-.46.373-.833.833-.833zm-3.75-5h5.833c.23 0 .417-.187.417-.417v-.833c0-.23-.187-.417-.417-.417h-5.833c-.23 0-.417.187-.417.417v.833c0 .23.187.417.417.417zm3.334 3.333h-3.334c-.23 0-.417-.187-.417-.417v-.833c0-.23.187-.417.417-.417h3.333c.23 0 .417.187.417.417v.833c0 .23-.187.417-.417.417z"
-                                            fill="currentColor" fill-rule="evenodd"></path>
-                                    </svg>
-                                </span>
-                            </button>
-                        </div>
-                    </td>
-                </tr>
-            </tbody>
-        </table>
-    </main>
-</section>
+<nav class="">
+    <%- include('_partial/header') %>
+</nav>
+<aside class="">
+    <%- include('_partial/sidebar') %>
+</aside>
+<main class="">
+    <%- include('_partial/mid') %>
+</main>
+<aside class="">
+    <%- include('_partial/right') %>
+</aside>
diff --git a/src/routes/auth.js b/src/routes/auth.js
diff --git a/src/routes/web.js b/src/routes/web.js
diff --git a/src/server.js b/src/server.js

Original file line number	Diff line number	Diff line change
`@@ -11,5 +11,6 @@`
`11`	`11`	`"sourceType": "module"`
`12`	`12`	`},`
`13`	`13`	`"rules": {`
	`14`	`+ "indent": ["error", 4]`
`14`	`15`	`}`
`15`	`16`	`}`