Trushy/Jeopardy-Server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added login and sessiontoken

Browse Source
This commit is contained in:
Jonas Kappa
2025-10-02 22:27:07 +02:00
parent 2bae9db84f
commit e4c038c940
9 changed files with 69 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
.vscode/settings.json vendored Normal file
View File

@@ -0,0 +1,13 @@
{
"rest-client.environmentVariables": {
"$shared": {},
"local": {
"host": "localhost",
"port": "12345"
},
"docker": {
"host": "localhost",
"port": "11001"
}
}
}

1
Dockerfile
View File

@@ -14,6 +14,7 @@ FROM node:${NODE_VERSION}-alpine
WORKDIR /app WORKDIR /app
COPY --from=builder /app/node_modules node_modules/ COPY --from=builder /app/node_modules node_modules/
COPY --from=builder /app/index.js . COPY --from=builder /app/index.js .
COPY --from=builder /app/src src/
USER node USER node
EXPOSE 12345 EXPOSE 12345
ENV NODE_ENV=production ENV NODE_ENV=production

8
index.js
View File

@@ -3,9 +3,10 @@ dotenv.config();
import express from "express"; import express from "express";
import expressWs from "express-ws"; import expressWs from "express-ws";
import morgan from "morgan"; import morgan from "morgan";
import { initWebsocket } from "./websocket.js"; import cookieParser from "cookie-parser";
import { initAuth } from "./auth.js"; import { initWebsocket } from "./src/websocket.js";
import { close as closeDbConnection, initDbConnection, db } from "./db.js"; import { initAuth } from "./src/auth.js";
import { close as closeDbConnection, initDbConnection, db } from "./src/db.js";
const app = express(); const app = express();
const appWs = expressWs(app); const appWs = expressWs(app);
const port = 12345; const port = 12345;
@@ -18,6 +19,7 @@ process.on('exit', function() {
app.use(morgan(process.env.production ? 'common' : 'dev')); app.use(morgan(process.env.production ? 'common' : 'dev'));
app.use(express.json()); app.use(express.json());
app.use(cookieParser());
await initDbConnection(); await initDbConnection();

20
package-lock.json generated
View File

@@ -10,6 +10,7 @@
"license": "ISC", "license": "ISC",
"dependencies": { "dependencies": {
"@types/express": "^5.0.3", "@types/express": "^5.0.3",
"cookie-parser": "^1.4.7",
"dotenv": "^17.2.3", "dotenv": "^17.2.3",
"express": "^5.1.0", "express": "^5.1.0",
"express-ws": "^5.0.2", "express-ws": "^5.0.2",
@@ -269,6 +270,25 @@
"node": ">= 0.6" "node": ">= 0.6"
} }
}, },
"node_modules/cookie-parser": {
"version": "1.4.7",
"resolved": "https://registry.npmjs.org/cookie-parser/-/cookie-parser-1.4.7.tgz",
"integrity": "sha512-nGUvgXnotP3BsjiLX2ypbQnWoGUPIIfHQNZkkC668ntrzGWEZVW70HDEB1qnNGMicPje6EttlIgzo51YSwNQGw==",
"license": "MIT",
"dependencies": {
"cookie": "0.7.2",
"cookie-signature": "1.0.6"
},
"engines": {
"node": ">= 0.8.0"
}
},
"node_modules/cookie-parser/node_modules/cookie-signature": {
"version": "1.0.6",
"resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.0.6.tgz",
"integrity": "sha512-QADzlaHc8icV8I7vbaJXJwod9HWYp8uCqf1xa4OfNu1T7JVxQIrUgOWtHdNDtPiywmFbiS12VjotIXLrKM3orQ==",
"license": "MIT"
},
"node_modules/cookie-signature": { "node_modules/cookie-signature": {
"version": "1.2.2", "version": "1.2.2",
"resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.2.2.tgz", "resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.2.2.tgz",

1
package.json
View File

@@ -12,6 +12,7 @@
}, },
"dependencies": { "dependencies": {
"@types/express": "^5.0.3", "@types/express": "^5.0.3",
"cookie-parser": "^1.4.7",
"dotenv": "^17.2.3", "dotenv": "^17.2.3",
"express": "^5.1.0", "express": "^5.1.0",
"express-ws": "^5.0.2", "express-ws": "^5.0.2",

4
requests/test.http
View File

@@ -1,5 +1,7 @@
POST http://localhost:12345/auth/login HTTP/1.1 @url = http://{{host}}:{{port}}
POST {{url}}/auth/login HTTP/1.1
content-type: application/json content-type: application/json
{ {

27
auth.js → src/auth.js
View File

@@ -4,10 +4,35 @@ let db;
let users; let users;
export function initAuth(app, db) { export function initAuth(app, db) {
app.use(checkSessionToken);
users = db.collection('users'); users = db.collection('users');
app.post('/auth/login', loginUser); app.post('/auth/login', loginUser);
} }
async function checkSessionToken(req, res, next) {
if (req.path.startsWith("/auth/")) {
next();
return;
}
const token = req.cookies.jeopardytoken;
let user = await users.findOne({sessiontoken: token});
if (user === null) {
res.sendStatus(401);
return;
}
req.user = {
role: user.role,
username: user.username
}
next();
}
async function loginUser(req, res) { async function loginUser(req, res) {
const username = req.body.username; const username = req.body.username;
const password = req.body.password; const password = req.body.password;
@@ -30,7 +55,7 @@ async function loginUser(req, res) {
maxAge: 1e3 * 60 * 60 * 24 maxAge: 1e3 * 60 * 60 * 24
}) })
res.sendStatus(200); res.status(200).send(username);
} else { } else {
res.sendStatus(403); res.sendStatus(403);
} }

0
db.js → src/db.js
View File

0
websocket.js → src/websocket.js
View File