-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathserver.js
116 lines (89 loc) · 3.24 KB
/
server.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
var express = require('express');
var path = require('path');
var favicon = require('static-favicon');
var logger = require('morgan');
var cookieParser = require('cookie-parser');
var bodyParser = require('body-parser');
var mongoose = require('mongoose');
var configDB = require('./config/database.js');
var passport = require('passport');
var session = require('express-session');
// models
var User = require('./models/User').User;
var app = express();
mongoose.connect(configDB.url);
require('./config/passport')(passport);
app.set('port', process.env.PORT || 3000);
app.use(favicon());
app.use(logger('dev'));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded());
app.use(cookieParser());
//passport
app.use(session({
secret: 'letsdosomenodeauthentication'
}));
app.use(passport.initialize());
app.use(passport.session());
app.use(function(req, res, next) {
// Website you wish to allow to connect
res.header('Access-Control-Allow-Origin', '*');
// Request methods you wish to allow
res.header('Access-Control-Allow-Methods', 'GET, POST, OPTIONS, PUT, PATCH, DELETE');
// Set to true if you need the website to include cookies in the requests sent
// to the API (e.g. in case you use sessions)
res.header('Access-Control-Allow-Credentials', true);
// Request headers you wish to allow
res.header('Access-Control-Allow-Headers', 'Content-Type, Authorization, Content-Length, X-Requested-With, Access-Control-Allow-Origin');
// intercept OPTIONS method
if ('OPTIONS' == req.method) {
res.send(200);
} else {
next();
}
});
app.use(express.static(path.join(__dirname, 'public')));
// Local Strategy Routes
app.post('/api/login', passport.authenticate('local-login'), function(req, res) {
res.cookie('user', JSON.stringify(req.user));
res.send(req.user); // Always req.user and NOT req.member or req.operator (not based on model name)
});
app.post('/api/signup', passport.authenticate('local-signup'), function(req, res) {
res.cookie('user', JSON.stringify(req.user));
res.send(req.user); // req.user and NOT req.operator
});
// Google Strategy Routes
app.get('/auth/google/', passport.authenticate('google', {
scope: ['profile', 'email']
}));
// callback after google has authenticated the user
app.get('/google/oauth2callback',
passport.authenticate('google'));
app.get('/api/logout', function(req, res, next) {
req.logout();
res.send(200);
});
app.get('/auth/facebook', passport.authenticate('facebook', {
scope: 'email'
}));
// handle the callback after facebook has authenticated the user
app.get('/facebook/oauth2callback',
passport.authenticate('facebook'));
// Google Strategy Routes
app.get('/auth/twitter', passport.authenticate('twitter'));
// callback after google has authenticated the user
app.get('/twitter/oauth2callback',
passport.authenticate('twitter'));
// To fix Cannot GET /route on hitting Refresh with Angular
app.get('*', function(req, res) {
res.redirect('/#' + req.originalUrl);
});
app.use(function(err, req, res, next) {
console.error(err.stack);
res.send(500, {
message: err.message
});
});
app.listen(app.get('port'), function() {
console.log('Express server started listening on port ' + app.get('port'));
});