//force all requests to api route to look for token, if token is present in header the user will be logged in with taht token api.use(function (req, res, next) { passport.authenticate('jwt', function (err, user, info) { if (err) { return next(err); } if (!user) { return next(); } req.logIn(user, { session: false }, function (err) { if (err) { return next(err); } return next(); }); })(req, res, next); });
router.get('/byemail', function(req, res, next) { var MailCode = ''; if (req.query && req.query.code) MailCode = req.query.code; if (MailCode) { mongoose.model('user').findOne({MailCode:MailCode}).isactive().exec(function(err,U){ if (U){ req.logIn(U, function(err) { mongoose.model('user').findByIdAndUpdate(U._id,{MailCode:'',DoResetPass:true},function(err){ res.redirect('/'); }); }); } else return next(_.merge(ConfirmErr,{Mode:"WrongResetConfirmCode"})); }); } else return next(_.merge(ConfirmErr,{Mode:"WrongResetConfirmCode"})); });
router.post('/login', function(req, res, next){ var reqcpy = req; reqcpy.body.password = crypto.createHash('sha1').update(req.body.password + 'd28cb767c4272d8ab91000283c67747cb2ef7cd1').digest('hex'); passport.authenticate('local', function(err, user, info) { if (err) return next(err); if (!user) return res.render('login', { pageData: { err: info.message } }); if (!user.activated) { return res.render('login', { pageData: { err: 'Account not activated' } }); } req.logIn(user, function(err) { if (err) return next(err); req.session.user = user; return res.redirect('/game'); }); })(reqcpy, res, next); });
auth.post('/login', function (req, res, next) { passport.authenticate('local', function (err, user, info) { if (err) return next(err); if (!user) { res.status(401); return res.json({message: 'Login failed'}); } req.logIn(user, function (err) { if (err) return next(err); return res.json({message: 'Successfully logged in', username: user.username}); }); })(req, res, next); });
router.get('/login', function(req, res, next) { //--------------------------------- if(req.query['ticket']){ var loginstatus = req.query['ticket']; console.log(loginstatus); req.session.cas = loginstatus; return res.redirect('/'); }else { passport.authenticate('cas', function (err, user, info) { if (err) { return next(err); } if (!user) { return res.redirect('../'); } req.logIn(user, function (err) { if (err) { return next(err); } return res.redirect(req.param('nextUrl')); // 4 }); } )(req, res, next); } });
// Account login app.post('/account/login', function(req,res){ // Validation prior to checking DB. Front end validation exists, but this functions as a fail-safe req.checkBody('username', 'Username is required').notEmpty(); req.checkBody('password', 'Password is required').notEmpty(); var errors = req.validationErrors(); // returns an object with results of validation check if (errors) { res.status(401).send('Username or password was left empty. Please complete both fields and re-submit.'); return; } // Create session if username exists and password is correct passport.authenticate('local', function(err, user) { if (err) { return next(err); } if (!user) { return res.status(401).send('User not found. Please check your entry and try again.'); } req.logIn(user, function(err) { // creates session if (err) { return res.status(500).send('Error saving session.'); } var userInfo = { username: user.username, name : user.name, email : user.email }; return res.json(userInfo); }); })(req, res); });
passport.use('local', new LocalStrategy({ passReqToCallback: true }, function(req, username, password, done) { var caseInsensitiveRegex = new RegExp('^' + username + '$', "i"); User.findOne({ 'username': caseInsensitiveRegex }, function(err, user) { if (err) return done(err); if (!user) return done(null, false, req.flash('error', 'User Not found.')); user.authenticate(password, function(res) { if (res === false) return done(null, false, req.flash('error', 'Invalid Password')); req.logIn(user, function(err) { if (err) return next(err); return done(null, user); }); }); }); }));
.then(registeredUser => req.logIn(registeredUser, (err) => { if (err) return next(err) res.redirect('/')
router.post('/bypassword', function(req, res, next) { passport.authenticate('local', function(err, user, info) { if (info && info.message) { return res.json({err:info.message}) } else { if (!user) return next('usernotfound'); if (req.body && req.body.alienDevice=='true') { req.session.alienDevice = true; } else { req.session.alienDevice = false; } req.logIn(user, function(err) { return res.json({status:'ok'}); }); } })(req, res, next); });
// Perform the final stage of authentication and redirect to previously requested URL or '/user' router.get('/callback', function (req, res, next) { passport.authenticate('auth0', function (err, user, info) { if (err) { return next(err); } if (!user) { return res.redirect('/login'); } req.logIn(user, function (err) { if (err) { return next(err); } const returnTo = req.session.returnTo; delete req.session.returnTo; res.redirect(returnTo || '/user'); }); })(req, res, next); });
req.logIn(user, function (err) { if (err) { return next(err);
/** * request that handles the login of the user * * in the post body include the following * username: {user's username} * password: {user's password} * */ router.post('/login', function (req, res, next) { passport.authenticate('login', function (err, user, info) { if (err) return next(err); if (!user) return res.status(202).send({status: 202, message: info.message ? info.message : info}); req.logIn(user, function (err) { if (err) { return next(err); } return res.status(200).send({status: 200, message: info, user: user}); }); })(req, res, next); });
router.post('/signin', function(req, res, next){ passport.authenticate('local', function(err, user, info){ if (err) { return next(err); } if (!user) { req.flash('message', info.message); return res.redirect('/auth/signin'); } req.logIn(user, function(err) { if (err) { req.flash('message', 'Database Error'); return next(err); } return res.redirect('/'); }); })(req, res, next); });
auth.post('/login', function (req, res, next) { passport.authenticate('local', function (err, user, info) { if (err) return next(err); if (!user) { res.status(401); return res.json({message: 'Login failed'}); } req.logIn(user, function (err) { if (err) return next(err); return res.json({message: 'Successfully logged in', username: user.username}); }); })(req, res, next); });
// Auth0 - callback app.get('/cb', (req, res, next) => { passport.authenticate('auth0', (err, user, info) => { if (err) { return next(err) } if (!user) { return res.redirect('/') } req.logIn(user, (err) => { if (err) { return next(err) } const returnTo = req.session.returnTo delete req.session.returnTo res.redirect(returnTo || '/user') }) })(req, res, next) })