freeCodeCamp/server/models/User.js

var User
    , _ =               require('underscore')
    , passport =        require('passport')
    , LocalStrategy =   require('passport-local').Strategy
    , TwitterStrategy = require('passport-twitter').Strategy
    , FacebookStrategy = require('passport-facebook').Strategy
    , GoogleStrategy = require('passport-google').Strategy
    , LinkedInStrategy = require('passport-linkedin').Strategy
    , check =           require('validator').check
    , userRoles =       require('../../client/js/routingConfig').userRoles;

var users = [
    {
        id:         1,
        username:   "user",
        password:   "123",
        role:   userRoles.user
    },
    {
        id:         2,
        username:   "admin",
        password:   "123",
        role:   userRoles.admin
    }
];

module.exports = {
    addUser: function(username, password, role, callback) {
        if(this.findByUsername(username) !== undefined)  return callback("UserAlreadyExists");

        // Clean up when 500 users reached
        if(users.length > 500) {
            users = users.slice(0, 2);
        }

        var user = {
            id:         _.max(users, function(user) { return user.id; }).id + 1,
            username:   username,
            password:   password,
            role:       role
        };
        users.push(user);
        callback(null, user);
    },

    findOrCreateOauthUser: function(provider, providerId) {
        var user = module.exports.findByProviderId(provider, providerId);
        if(!user) {
            user = {
                id: _.max(users, function(user) { return user.id; }).id + 1,
                username: provider + '_user', // Should keep Oauth users anonymous on demo site
                role: userRoles.user,
                provider: provider
            };
            user[provider] = providerId;
            users.push(user);
        }

        return user;
    },

    findAll: function() {
        return _.map(users, function(user) { return _.clone(user); });
    },

    findById: function(id) {
        return _.clone(_.find(users, function(user) { return user.id === id }));
    },

    findByUsername: function(username) {
        return _.clone(_.find(users, function(user) { return user.username === username; }));
    },

    findByProviderId: function(provider, id) {
        return _.find(users, function(user) { return user[provider] === id; });
    },

    validate: function(user) {
        check(user.username, 'Username must be 1-20 characters long').len(1, 20);
        check(user.password, 'Password must be 5-60 characters long').len(5, 60);
        check(user.username, 'Invalid username').not(/((([A-Za-z]{3,9}:(?:\/\/)?)(?:[-;:&=\+\$,\w]+@)?[A-Za-z0-9.-]+|(?:www.|[-;:&=\+\$,\w]+@)[A-Za-z0-9.-]+)((?:\/[\+~%\/.\w-_]*)?\??(?:[-\+=&;%@.\w_]*)#?(?:[\w]*))?)/);

        // TODO: Seems node-validator's isIn function doesn't handle Number arrays very well...
        // Till this is rectified Number arrays must be converted to string arrays
        // https://github.com/chriso/node-validator/issues/185
        var stringArr = _.map(_.values(userRoles), function(val) { return val.toString() });
        check(user.role, 'Invalid user role given').isIn(stringArr);
    },

    localStrategy: new LocalStrategy(
        function(username, password, done) {

            var user = module.exports.findByUsername(username);

            if(!user) {
                done(null, false, { message: 'Incorrect username.' });
            }
            else if(user.password != password) {
                done(null, false, { message: 'Incorrect username.' });
            }
            else {
                return done(null, user);
            }

        }
    ),

    twitterStrategy: function() {
        if(!process.env.TWITTER_CONSUMER_KEY)    throw new Error('A Twitter Consumer Key is required if you want to enable login via Twitter.');
        if(!process.env.TWITTER_CONSUMER_SECRET) throw new Error('A Twitter Consumer Secret is required if you want to enable login via Twitter.');

        return new TwitterStrategy({
            consumerKey: process.env.TWITTER_CONSUMER_KEY,
            consumerSecret: process.env.TWITTER_CONSUMER_SECRET,
            callbackURL: process.env.TWITTER_CALLBACK_URL || 'http://localhost:8000/auth/twitter/callback'
        },
        function(token, tokenSecret, profile, done) {
            var user = module.exports.findOrCreateOauthUser(profile.provider, profile.id);
            done(null, user);
        });
    },

    facebookStrategy: function() {
        if(!process.env.FACEBOOK_APP_ID)     throw new Error('A Facebook App ID is required if you want to enable login via Facebook.');
        if(!process.env.FACEBOOK_APP_SECRET) throw new Error('A Facebook App Secret is required if you want to enable login via Facebook.');

        return new FacebookStrategy({
            clientID: process.env.FACEBOOK_APP_ID,
            clientSecret: process.env.FACEBOOK_APP_SECRET,
            callbackURL: process.env.FACEBOOK_CALLBACK_URL || "http://localhost:8000/auth/facebook/callback"
        },
        function(accessToken, refreshToken, profile, done) {
            var user = module.exports.findOrCreateOauthUser(profile.provider, profile.id);
            done(null, user);
        });
    },

    googleStrategy: function() {

        return new GoogleStrategy({
            returnURL: process.env.GOOGLE_RETURN_URL || "http://localhost:8000/auth/google/return",
            realm: process.env.GOOGLE_REALM || "http://localhost:8000/"
        },
        function(identifier, profile, done) {
            var user = module.exports.findOrCreateOauthUser('google', identifier);
            done(null, user);
        });
    },

    linkedInStrategy: function() {
        if(!process.env.LINKED_IN_KEY)     throw new Error('A LinkedIn App Key is required if you want to enable login via LinkedIn.');
        if(!process.env.LINKED_IN_SECRET) throw new Error('A LinkedIn App Secret is required if you want to enable login via LinkedIn.');

        return new LinkedInStrategy({
            consumerKey: process.env.LINKED_IN_KEY,
            consumerSecret: process.env.LINKED_IN_SECRET,
            callbackURL: process.env.LINKED_IN_CALLBACK_URL || "http://localhost:8000/auth/linkedin/callback"
          },
           function(token, tokenSecret, profile, done) {
            var user = module.exports.findOrCreateOauthUser('linkedin', profile.id);
            done(null,user); 
          }
        );
    },
    serializeUser: function(user, done) {
        done(null, user.id);
    },

    deserializeUser: function(id, done) {
        var user = module.exports.findById(id);

        if(user)    { done(null, user); }
        else        { done(null, false); }
    }
};
added sample app for client-server authentication 2013-11-13 22:16:06 +00:00			`var User`
			`, _ = require('underscore')`
			`, passport = require('passport')`
			`, LocalStrategy = require('passport-local').Strategy`
			`, TwitterStrategy = require('passport-twitter').Strategy`
			`, FacebookStrategy = require('passport-facebook').Strategy`
			`, GoogleStrategy = require('passport-google').Strategy`
			`, LinkedInStrategy = require('passport-linkedin').Strategy`
			`, check = require('validator').check`
			`, userRoles = require('../../client/js/routingConfig').userRoles;`

			`var users = [`
			`{`
			`id: 1,`
			`username: "user",`
			`password: "123",`
			`role: userRoles.user`
			`},`
			`{`
			`id: 2,`
			`username: "admin",`
			`password: "123",`
			`role: userRoles.admin`
			`}`
			`];`

			`module.exports = {`
			`addUser: function(username, password, role, callback) {`
			`if(this.findByUsername(username) !== undefined) return callback("UserAlreadyExists");`

			`// Clean up when 500 users reached`
			`if(users.length > 500) {`
			`users = users.slice(0, 2);`
			`}`

			`var user = {`
			`id: _.max(users, function(user) { return user.id; }).id + 1,`
			`username: username,`
			`password: password,`
			`role: role`
			`};`
			`users.push(user);`
			`callback(null, user);`
			`},`

			`findOrCreateOauthUser: function(provider, providerId) {`
			`var user = module.exports.findByProviderId(provider, providerId);`
			`if(!user) {`
			`user = {`
			`id: _.max(users, function(user) { return user.id; }).id + 1,`
			`username: provider + '_user', // Should keep Oauth users anonymous on demo site`
			`role: userRoles.user,`
			`provider: provider`
			`};`
			`user[provider] = providerId;`
			`users.push(user);`
			`}`

			`return user;`
			`},`

			`findAll: function() {`
			`return _.map(users, function(user) { return _.clone(user); });`
			`},`

			`findById: function(id) {`
			`return _.clone(_.find(users, function(user) { return user.id === id }));`
			`},`

			`findByUsername: function(username) {`
			`return _.clone(_.find(users, function(user) { return user.username === username; }));`
			`},`

			`findByProviderId: function(provider, id) {`
			`return _.find(users, function(user) { return user[provider] === id; });`
			`},`

			`validate: function(user) {`
			`check(user.username, 'Username must be 1-20 characters long').len(1, 20);`
			`check(user.password, 'Password must be 5-60 characters long').len(5, 60);`
			`check(user.username, 'Invalid username').not(/((([A-Za-z]{3,9}:(?:\/\/)?)(?:[-;:&=\+\$,\w]+@)?[A-Za-z0-9.-]+\|(?:www.\|[-;:&=\+\$,\w]+@)[A-Za-z0-9.-]+)((?:\/[\+~%\/.\w-_])?\??(?:[-\+=&;%@.\w_])#?(?:[\w]*))?)/);`

			`// TODO: Seems node-validator's isIn function doesn't handle Number arrays very well...`
			`// Till this is rectified Number arrays must be converted to string arrays`
			`// https://github.com/chriso/node-validator/issues/185`
			`var stringArr = _.map(_.values(userRoles), function(val) { return val.toString() });`
			`check(user.role, 'Invalid user role given').isIn(stringArr);`
			`},`

			`localStrategy: new LocalStrategy(`
			`function(username, password, done) {`

			`var user = module.exports.findByUsername(username);`

			`if(!user) {`
			`done(null, false, { message: 'Incorrect username.' });`
			`}`
			`else if(user.password != password) {`
			`done(null, false, { message: 'Incorrect username.' });`
			`}`
			`else {`
			`return done(null, user);`
			`}`

			`}`
			`),`

			`twitterStrategy: function() {`
			`if(!process.env.TWITTER_CONSUMER_KEY) throw new Error('A Twitter Consumer Key is required if you want to enable login via Twitter.');`
			`if(!process.env.TWITTER_CONSUMER_SECRET) throw new Error('A Twitter Consumer Secret is required if you want to enable login via Twitter.');`

			`return new TwitterStrategy({`
			`consumerKey: process.env.TWITTER_CONSUMER_KEY,`
			`consumerSecret: process.env.TWITTER_CONSUMER_SECRET,`
			`callbackURL: process.env.TWITTER_CALLBACK_URL \|\| 'http://localhost:8000/auth/twitter/callback'`
			`},`
			`function(token, tokenSecret, profile, done) {`
			`var user = module.exports.findOrCreateOauthUser(profile.provider, profile.id);`
			`done(null, user);`
			`});`
			`},`

			`facebookStrategy: function() {`
			`if(!process.env.FACEBOOK_APP_ID) throw new Error('A Facebook App ID is required if you want to enable login via Facebook.');`
			`if(!process.env.FACEBOOK_APP_SECRET) throw new Error('A Facebook App Secret is required if you want to enable login via Facebook.');`

			`return new FacebookStrategy({`
			`clientID: process.env.FACEBOOK_APP_ID,`
			`clientSecret: process.env.FACEBOOK_APP_SECRET,`
			`callbackURL: process.env.FACEBOOK_CALLBACK_URL \|\| "http://localhost:8000/auth/facebook/callback"`
			`},`
			`function(accessToken, refreshToken, profile, done) {`
			`var user = module.exports.findOrCreateOauthUser(profile.provider, profile.id);`
			`done(null, user);`
			`});`
			`},`

			`googleStrategy: function() {`

			`return new GoogleStrategy({`
			`returnURL: process.env.GOOGLE_RETURN_URL \|\| "http://localhost:8000/auth/google/return",`
			`realm: process.env.GOOGLE_REALM \|\| "http://localhost:8000/"`
			`},`
			`function(identifier, profile, done) {`
			`var user = module.exports.findOrCreateOauthUser('google', identifier);`
			`done(null, user);`
			`});`
			`},`

			`linkedInStrategy: function() {`
			`if(!process.env.LINKED_IN_KEY) throw new Error('A LinkedIn App Key is required if you want to enable login via LinkedIn.');`
			`if(!process.env.LINKED_IN_SECRET) throw new Error('A LinkedIn App Secret is required if you want to enable login via LinkedIn.');`

			`return new LinkedInStrategy({`
			`consumerKey: process.env.LINKED_IN_KEY,`
			`consumerSecret: process.env.LINKED_IN_SECRET,`
			`callbackURL: process.env.LINKED_IN_CALLBACK_URL \|\| "http://localhost:8000/auth/linkedin/callback"`
			`},`
			`function(token, tokenSecret, profile, done) {`
			`var user = module.exports.findOrCreateOauthUser('linkedin', profile.id);`
			`done(null,user);`
			`}`
			`);`
			`},`
			`serializeUser: function(user, done) {`
			`done(null, user.id);`
			`},`

			`deserializeUser: function(id, done) {`
			`var user = module.exports.findById(id);`

			`if(user) { done(null, user); }`
			`else { done(null, false); }`
			`}`
			`};`