-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsession.js
More file actions
130 lines (108 loc) · 3.01 KB
/
session.js
File metadata and controls
130 lines (108 loc) · 3.01 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
const express = require("express");
const cors = require("cors");
const bodyParser = require("body-parser");
const path = require("path");
const session = require("express-session");
const mysql = require("mysql");
const app = express();
// Middleware
app.use(cors());
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: true }));
app.use(
session({
secret: "shhh, its a secret",
resave: false,
saveUninitialized: true,
})
);
//database connection MySQL
const db = mysql.createConnection({
host: "localhost",
user: "root",
password: "",
database: "login",
});
db.connect((err) => {
if (err) throw err;
console.log("Successfully connect to database");
});
global.db = db;
//embeded ejs engine
app.set("view engine", "ejs");
app.set("views", path.join(__dirname, "public"));
// Serve static files from the "public" directory
app.use(express.static(path.join(__dirname, "public")));
// Sign up route
app.get("/", (req, res) => {
res.render("signup");
});
app.post("/signup", (req, res) => {
const { username, pass } = req.body;
const checkUserQuery = "SELECT * FROM users WHERE username = ?";
db.query(checkUserQuery, [username], (err, results) => {
if (err) {
console.error(err);
return res.status(500).render("signup", {
message: "Error signing up. Please try again.",
});
} else if (results.length > 0) {
return res
.status(400)
.render("signup", { message: "User Already Exists!" });
} else {
const query = "INSERT INTO users(username, pass) VALUES (?, ?)";
db.query(query, [username, pass], (err, results) => {
if (err) {
console.error(err);
return res.status(500).render("signup", {
message: "Error signing up. Please try again.",
});
}
req.session.username = username;
res.redirect("/login");
});
}
});
});
// Log in route
app.get("/login", (req, res) => {
res.render("login");
});
app.post("/login", (req, res) => {
const { username, pass } = req.body;
const loginQuery = "SELECT * FROM users WHERE username = ? AND pass = ?";
db.query(loginQuery, [username, pass], (err, results) => {
if (err) {
return res.render("login", {
message: "Error Log in. Please try again.",
});
}
if (results.length > 0) {
req.session.username = username;
res.redirect("/protectedPage");
} else {
res.render("login", { message: "Invalid Credentials!" });
}
});
});
//protected page with session
app.get("/protectedPage", (req, res) => {
res.render("protectedPage", { username: req.session.username });
});
//log out
app.post("/logout", (req, res) => {
req.session.destroy(() => {
console.log("User logged out");
});
res.redirect("/login");
});
app.use((err, req, res, next) => {
// <-- Added next here
console.log(err);
res.redirect("/login");
});
const port = process.env.PORT || 5001;
app.listen(port, () => {
console.log(`Server running on http://localhost:${port}`);
});