2013-11-14 07:29:55 +00:00
|
|
|
var passport = require('passport'),
|
2013-11-14 03:19:37 +00:00
|
|
|
LocalStrategy = require('passport-local').Strategy,
|
2013-11-14 07:29:55 +00:00
|
|
|
User = require('../models/user');
|
2013-11-14 03:19:37 +00:00
|
|
|
|
2013-11-14 07:29:55 +00:00
|
|
|
passport.serializeUser(function(user, done) {
|
|
|
|
done(null, user.id);
|
|
|
|
});
|
2013-11-14 03:19:37 +00:00
|
|
|
|
2013-11-14 07:29:55 +00:00
|
|
|
passport.deserializeUser(function(id, done) {
|
|
|
|
User.findById(id, function (err, user) {
|
|
|
|
done(err, user);
|
2013-11-14 03:19:37 +00:00
|
|
|
});
|
2013-11-14 07:29:55 +00:00
|
|
|
});
|
2013-11-14 03:19:37 +00:00
|
|
|
|
2013-11-14 07:29:55 +00:00
|
|
|
passport.use(new LocalStrategy(function(username, password, done) {
|
|
|
|
User.findOne({ username: username }, function(err, user) {
|
|
|
|
if (err) { return done(err); }
|
|
|
|
if (!user) { return done(null, false, { message: 'Unknown user ' + username }); }
|
|
|
|
user.comparePassword(password, function(err, isMatch) {
|
|
|
|
if (err) return done(err);
|
|
|
|
if(isMatch) {
|
2013-11-14 03:19:37 +00:00
|
|
|
return done(null, user);
|
|
|
|
} else {
|
2013-11-14 07:29:55 +00:00
|
|
|
return done(null, false, { message: 'Invalid password' });
|
2013-11-14 03:19:37 +00:00
|
|
|
}
|
|
|
|
});
|
2013-11-14 07:29:55 +00:00
|
|
|
});
|
|
|
|
}));
|
|
|
|
|
|
|
|
// Simple route middleware to ensure user is authenticated. Otherwise send to login page.
|
|
|
|
exports.ensureAuthenticated = function ensureAuthenticated(req, res, next) {
|
|
|
|
if (req.isAuthenticated()) { return next(); }
|
|
|
|
res.redirect('/login');
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
// Check for admin middleware, this is unrelated to passport.js
|
|
|
|
// You can delete this if you use different method to check for admins or don't need admins
|
|
|
|
exports.ensureAdmin = function ensureAdmin(req, res, next) {
|
|
|
|
return function(req, res, next) {
|
|
|
|
console.log(req.user);
|
|
|
|
if(req.user && req.user.admin === true)
|
|
|
|
next();
|
|
|
|
else
|
|
|
|
res.send(403);
|
|
|
|
};
|
2013-11-14 03:19:37 +00:00
|
|
|
};
|