mythLabs
diff --git a/‎controllers/authentication.js
Lines changed: 38 additions & 27 deletions b/‎controllers/authentication.js
Lines changed: 38 additions & 27 deletions
diff --git a/‎models/user.js
Lines changed: 11 additions & 0 deletions b/‎models/user.js
Lines changed: 11 additions & 0 deletions
diff --git a/‎router.js
Lines changed: 10 additions & 9 deletions b/‎router.js
Lines changed: 10 additions & 9 deletions
diff --git a/‎services/passport.js
Lines changed: 40 additions & 28 deletions b/‎services/passport.js
Lines changed: 40 additions & 28 deletions
@@ -1,39 +1,50 @@
-const User = require('../models/user');
-const jwt = require('jwt-simple');
-const config = require('../config');
+const User = require("../models/user");
+const jwt = require("jwt-simple");
+const config = require("../config");
 
 function tokenForUser(user) {
-    const timestamp = new Date().getTime();
-    return jwt.encode({ sub: user.id, iat: timestamp },config.secret)
+  const timestamp = new Date().getTime();
+  return jwt.encode({ sub: user.id, iat: timestamp }, config.secret);
 }
 
-exports.signup = function(req,res,next) {
-    const email = req.body.email;
-    const password= req.body.password;
+exports.signup = function(req, res, next) {
+  const email = req.body.email;
+  const password = req.body.password;
 
-    if (!email || !password) {
-        return res.status(422).send({error: 'You must provide Email and Password'});
-    }
+  if (!email || !password) {
+    return res
+      .status(422)
+      .send({ error: "You must provide Email and Password" });
+  }
 
-    //See if user with email already exists
-    User.findOne({email: email},function(err,existingUser){
-        if (err) { return next(err)}
+  //See if user with email already exists
+  User.findOne({ email: email }, function(err, existingUser) {
+    if (err) {
+      return next(err);
+    }
 
-        if (existingUser) {
-            return res.status(422
ED4F
).send({error: 'Email is already in use'});
-        }
+    if (existingUser) {
+      return res.status(422).send({ error: "Email is already in use" });
+    }
 
-        const user = new User({
-            email: email,
-            password: password
-        });
+    const user = new User({
+      email: email,
+      password: password
+    });
 
-        user.save(function(err){
-            if (err) { return next(err);}
+    user.save(function(err) {
+      if (err) {
+        return next(err);
+      }
 
-            res.json({token: tokenForUser(user)});
-        });
+      res.json({ token: tokenForUser(user) });
+    });
+  });
+};
 
-    })
+exports.signin = function(req, res, next) {
+  //email,password are authed
+  //return token
 
-}
+  res.send({ token: tokenForUser(req.user) });
+};
@@ -24,6 +24,17 @@ userSchema.pre("save", function(next) {
   });
 });
 
+// helper method to compare hashed and non hashed passwords
+userSchema.methods.comparePassword = function(canditatePassword, callback) {
+  bcrypt.compare(canditatePassword, this.password, function(err, isMatch) {
+    if (err) {
+      return callback(err);
+    }
+
+    callback(null, isMatch);
+  });
+};
+
 //Create model class
 const ModelClass = mongoose.model("user", userSchema);
 //export
 
@@ -1,18 +1,19 @@
-const Authentication = require('./controllers/authentication');
-const passportService = require('./services/passport');
+const Authentication = require("./controllers/authentication");
+const passportService = require("./services/passport");
 const passport = require("passport");
 
-const requireAuth = passport.authenticate('jwt',{session: false});
+const requireAuth = passport.authenticate("jwt", { session: false });
+const requireSignin = passport.authenticate("local", { session: false });
 
 module.exports = function(app) {
   app.get("/", function(req, res, next) {
-      res.send(['a','b']);
+    res.send(["a", "b"]);
   });
 
-  app.get("/data",requireAuth, function(req, res) {
-    res.send({data:'You are the Data'});
-});
-
-  app.post('/signup',Authentication.signup)
+  app.post("/signup", Authentication.signup);
+  app.post("/signin", requireSignin, Authentication.signin);
 
+  app.get("/data", requireAuth, function(req, res) {
+    res.send({ data: "You are the Data" });
+  });
 };
@@ -6,23 +6,35 @@ const ExtractJwt = require("passport-jwt").ExtractJwt;
 const LocalStrategy = require("passport-local");
 
 // Create local Strategy
-const localOptions={usernameField: 'email'};
-const localStrategy = new LocalStrategy(localOptions, function(email, password, done){
-
-    // Find user with email
-    User.findOne({email: email},
-        function(err, user) {
-          if (err) {
-            return done(err, false);
-          }
-    
-          if (!user) {
-            return  done(null, false);
-          } 
-        });
+const localOptions = { usernameField: "email" };
+const localLogin = new LocalStrategy(localOptions, function(
+  email,
+  password,
+  done
+) {
+  // Find user with email
+  User.findOne({ email: email }, function(err, user) {
+    if (err) {
+      return done(err, false);
+    }
+
+    if (!user) {
+      return done(null, false);
+    }
+
     //Compare hashed password
-    
-})
+    user.comparePassword(password, function(err, isMatch) {
+      if (err) {
+        return done(err);
+      }
+      if (!isMatch) {
+        return done(null, false);
+      }
+
+      return done(null, user);
+    });
+  });
+});
 
 //Setup options for JWT Strategy
 const jwtOptions = {
@@ -32,19 +44,19 @@ const jwtOptions = {
 
 //Create JWT Strategy
 const jwtLogin = new JwtStrategy(jwtOptions, function(payload, done) {
-  User.findById(payload.sub,
-    function(err, user) {
-      if (err) {
-        return done(err, false);
-      }
+  User.findById(payload.sub, function(err, user) {
+    if (err) {
+      return done(err, false);
+    }
 
-      if (user) {
-       return  done(null, user);
-      } else {
-      return  done(null, false);
-      }
-    });
+    if (user) {
+      return done(null, user);
+    } else {
+      return done(null, false);
+    }
+  });
 });
 
-// Tell Passport to use it
+// Tell Passport to use strategies
 passport.use(jwtLogin);
+passport.use(localLogin);