@igea/oac_backend 1.0.7 → 1.0.9

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@igea/oac_backend",
-  "version": "1.0.7",
+  "version": "1.0.9",
   "description": "Backend service for the OAC project",
   "main": "src/index.js",
   "scripts": {
@@ -18,7 +18,9 @@
   },
   "homepage": "https://github.com/chpigea/oac_backend#readme",
   "dependencies": {
+    "@igea/oac_jwt_helpers": "1.0.6",
     "axios": "1.10.0",
+    "cookie-parser": "1.4.7",
     "express": "5.1.0",
     "get-port": "7.1.0",
     "knex": "3.1.0",

package/src/config/development.json

@@ -3,5 +3,14 @@
 	"url_register": "http://localhost:4001/register",
 	"port_range": {
 		"min": 5000, "max": 6000
-	}
+	},
+	"database": {
+		"host": "127.0.0.1",
+		"port": "5432",
+		"user": "postgres",
+		"password": "postgres",
+		"database": "oac",
+		"schema": "public"
+	},
+	"jwt_secret": "@igea#"
 }

package/src/config/production.json

@@ -3,5 +3,14 @@
 	"url_register": "http://localhost:4001/register",
 	"port_range": {
 		"min": 5000, "max": 6000
-	}
+	},
+	"database": {
+		"host": "127.0.0.1",
+		"port": "5432",
+		"user": "postgres",
+		"password": "postgres",
+		"database": "oac",
+		"schema": "public"
+	},
+	"jwt_secret": "@igea#"
 }

package/src/controllers/auth.js

@@ -0,0 +1,73 @@
+const express = require('express');
+const router = express.Router();
+const Users = require('../models/users');
+
+module.exports = function(jwtLib){
+  /**
+  curl -X POST \
+  -H "Content-Type: application/json" \
+  -d '{"type": "login","user":"igea","password":"@igea#"}' \
+  http://localhost:4000/backend/auth/authenticate
+  */
+
+  const manageUser = function(res, user){
+    let token = jwtLib.createToken(user)
+      res.cookie('token', token, {
+        httpOnly: true,
+        secure: false,
+        sameSite: 'lax'
+      })
+      res.json({ 
+          success: true, 
+          data: user, 
+          message: null
+      });
+  }
+
+  router.post('/authenticate', (req, res) => {  
+    console.log("here authenticate")
+    let body = req.body 
+    let type = body.type
+    
+    if(type.toLowerCase()=="login"){
+      let user = body.user
+      let password = body.password
+      Users.fromAuthentication(user, password)
+      .then(response => {
+        response["is_anonymous"] = false
+        manageUser(res, response)
+      }).catch(err => { 
+        res.json({ 
+            success: false, 
+            data: null, 
+            message: `${ err }`
+        });
+      })
+    }else{
+      manageUser(res, {
+        id: -1,
+        name: 'anonymous',
+        surname: 'anonymous',
+        username: 'anonymous',
+        email: 'anonymous@igea-soluzioni.it',
+        mobile: null,
+        is_admin: false,
+        is_active: true,
+        is_anonymous: true
+      })
+    }
+  });
+
+  router.get('/echo', (req, res) => {  
+      console.log("here ECHO")
+      res.json({ 
+          success: true, 
+          data: "echo", 
+          message: null
+      });
+  });
+
+  return router
+
+}
+

package/src/index.js

@@ -2,10 +2,23 @@ const config = require('./config.js');
 const express = require("express");
 const axios = require("axios");
 const getPort = require('get-port');
+const cookieParser = require('cookie-parser');
 const serviceName = "backend"
+const jwtLibFactory = require('@igea/oac_jwt_helpers')
+const jwtLib = jwtLibFactory({
+    secret: process.env.JWT_SECRET || config.jwt_secret,
+    excludePaths: [
+        `/${serviceName}/auth/authenticate`,
+        `/${serviceName}/auth/echo`,
+        `/${serviceName}/health`
+    ],
+    signOptions: { expiresIn: '1h' }
+});
 
 const app = express();
+app.use(cookieParser());
 app.use(express.json());
+app.use(jwtLib.middleware);
 
 let newPort = null
 
@@ -27,9 +40,13 @@ getPort.default({
     port: getPort.portNumbers(config.port_range.min, config.port_range.max) }
 ).then((port)=>{
     newPort = port
+    
     const healthRouter = require('./controllers/health.js')
     app.use(`/${serviceName}/health`, healthRouter)
 
+    const authRouter = require('./controllers/auth.js')(jwtLib)
+    app.use(`/${serviceName}/auth`, authRouter)
+
     app.listen(port, async () => {
         console.log(`${serviceName} listening on port ${port}`)
         await register()

package/src/models/db.js

@@ -0,0 +1,10 @@
+const knex = require('knex');
+const config = require('../config')
+
+const db = knex({
+  client: 'pg', 
+  connection: config.database,
+  pool: { min: 2, max: 10 }
+});
+
+module.exports = { db, schema: config.schema || 'public' };

package/src/models/users.js

@@ -0,0 +1,39 @@
+const config = require('../config')
+const {db, schema } = require('./db')
+const table = `${schema}.users`
+
+class Users {
+
+    static fromAuthentication(user, password){
+        console.log(user, password)
+        return new Promise(async (resolve, reject) => {
+            try{
+                let userFound = await db(table)
+                    .where(function() {
+                        this.whereRaw(
+                            '(username = ? AND password = md5(?))', 
+                            [user, password]
+                        );
+                    })
+                    .orWhere(function() {
+                        this.whereRaw(
+                            '(email = ? AND password = md5(?))', 
+                            [user, password]
+                        );
+                    })
+                    .first();
+                if(userFound && userFound["is_active"]) {
+                    delete userFound["password"]
+                    resolve(userFound)
+                }else{
+                    reject(new Error("Invalid credentials"))        
+                }
+            }catch(e){
+                reject(e)
+            }
+        });
+    }
+    
+}
+
+module.exports = Users