137 lines
3.9 KiB
JavaScript
137 lines
3.9 KiB
JavaScript
const db = require("../models/index");
|
|
const config = require("../config/auth.config");
|
|
const { Auth: Auth, User: User, Role: Role, RefreshToken: RefreshToken } = db;
|
|
|
|
const Op = db.Sequelize.Op;
|
|
|
|
const jwt = require("jsonwebtoken");
|
|
|
|
exports.register = (req, res) => {
|
|
// Save User to Database
|
|
Auth.create({
|
|
email: req.body.email,
|
|
password: req.body.password
|
|
}).then((auth) => {
|
|
User.create({
|
|
firstName: req.body.firstName,
|
|
lastName: req.body.lastName,
|
|
dateOfBirth: new Date(req.body.dateOfBirth),
|
|
authId: auth.id,
|
|
gender: 'male',
|
|
handedness: 'right'
|
|
}).then(user => {
|
|
if (!req.body.roles || !req.body.roles.length === 0) {
|
|
req.body.roles = ['player'];
|
|
}
|
|
Role.findAll({
|
|
where: {
|
|
name: {
|
|
[Op.or]: req.body.roles
|
|
}
|
|
}
|
|
}).then(roles => {
|
|
user.setRoles(roles).then(() => {
|
|
res.send({ message: "User registered successfully!" });
|
|
});
|
|
});
|
|
}).catch(err => {
|
|
res.status(500).send({ message: err.message });
|
|
});
|
|
}).catch(err => {
|
|
res.status(500).send({ message: err.message });
|
|
});
|
|
};
|
|
|
|
exports.login = async (req, res) => {
|
|
try {
|
|
const auth = await Auth.findOne({
|
|
where: {
|
|
email: req.body.email
|
|
}
|
|
});
|
|
if (!auth) {
|
|
return res.status(404).send({message: "User Not found."});
|
|
}
|
|
const passwordIsValid = auth.validPassword(req.body.password);
|
|
|
|
if (!passwordIsValid) {
|
|
return res.status(401).send({
|
|
accessToken: null,
|
|
message: "Invalid Password!"
|
|
});
|
|
}
|
|
|
|
const refreshToken = await RefreshToken.createToken(auth);
|
|
const accessToken = jwt.sign({id: auth.id},
|
|
config.secret,
|
|
{
|
|
algorithm: 'HS256',
|
|
allowInsecureKeySizes: true,
|
|
expiresIn: config.jwtExpiration
|
|
});
|
|
|
|
const user = await User.findOne({
|
|
where: {
|
|
authId: auth.id
|
|
}
|
|
});
|
|
|
|
const authorities = [];
|
|
const roles = await user.getRoles();
|
|
for (let i = 0; i < roles.length; i++) {
|
|
authorities.push("ROLE_" + roles[i].name.toUpperCase());
|
|
}
|
|
|
|
return res.status(200).send({
|
|
id: user.id,
|
|
email: auth.email,
|
|
roles: authorities,
|
|
accessToken: accessToken,
|
|
refreshToken: refreshToken
|
|
});
|
|
} catch (err) {
|
|
res.status(500).send({ message: err.message });
|
|
}
|
|
};
|
|
|
|
// exports.logout = (req, res) => {
|
|
//
|
|
// }
|
|
|
|
exports.refreshToken = async (req, res) => {
|
|
const { refreshToken: requestToken } = req.body;
|
|
|
|
if (requestToken == null) {
|
|
return res.status(403).json({ message: "Refresh Token is required!" });
|
|
}
|
|
|
|
try {
|
|
let refreshToken = await RefreshToken.findOne({ where: { token: requestToken } });
|
|
|
|
if (!refreshToken) {
|
|
res.status(403).json({ message: "Refresh token is not in database!" });
|
|
return;
|
|
}
|
|
|
|
if (RefreshToken.verifyExpiration(refreshToken)) {
|
|
RefreshToken.destroy({ where: { id: refreshToken.id } });
|
|
|
|
res.status(403).json({
|
|
message: "Refresh token was expired. Please make a new login request",
|
|
});
|
|
return;
|
|
}
|
|
|
|
let newAccessToken = jwt.sign({ id: auth.id }, config.secret, {
|
|
expiresIn: config.jwtExpiration,
|
|
});
|
|
|
|
return res.status(200).json({
|
|
accessToken: newAccessToken,
|
|
refreshToken: refreshToken.token,
|
|
});
|
|
} catch (err) {
|
|
return res.status(500).send({ message: err });
|
|
}
|
|
};
|