-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathauth.js
66 lines (54 loc) · 1.74 KB
/
auth.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
"use strict";
/** Routes for authentication. */
const jsonschema = require("jsonschema");
const User = require("../models/user");
const express = require("express");
const router = new express.Router();
const { createToken } = require("../helpers/tokens");
const userAuthSchema = require("../schemas/userAuth.json");
const userRegisterSchema = require("../schemas/userRegister.json");
const { BadRequestError } = require("../expressError");
/** POST /auth/token: { username, password } => { token }
*
* Returns JWT token which can be used to authenticate further requests.
*
* Authorization required: none
*/
router.post("/token", async function (req, res, next) {
const validator = jsonschema.validate(
req.body,
userAuthSchema,
{required: true}
);
if (!validator.valid) {
const errs = validator.errors.map(e => e.stack);
throw new BadRequestError(errs);
}
const { username, password } = req.body;
const user = await User.authenticate(username, password);
const token = createToken(user);
return res.json({ token });
});
/** POST /auth/register: { user } => { token }
*
* user must include { username, password, firstName, lastName, email }
*
* Returns JWT token which can be used to authenticate further requests.
*
* Authorization required: none
*/
router.post("/register", async function (req, res, next) {
const validator = jsonschema.validate(
req.body,
userRegisterSchema,
{required: true}
);
if (!validator.valid) {
const errs = validator.errors.map(e => e.stack);
throw new BadRequestError(errs);
}
const newUser = await User.register({ ...req.body, isAdmin: false });
const token = createToken(newUser);
return res.status(201).json({ token });
});
module.exports = router;