2013-12-20 07:39:51 +00:00
|
|
|
var mongoose = require('mongoose');
|
|
|
|
|
var passport = require('passport');
|
|
|
|
|
var _ = require('underscore');
|
2013-11-18 23:21:42 +00:00
|
|
|
var User = require('../models/User');
|
2013-11-14 07:29:55 +00:00
|
|
|
|
2014-01-07 22:45:42 +00:00
|
|
|
/**
|
|
|
|
|
* GET /login
|
|
|
|
|
* Login page.
|
|
|
|
|
*/
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2014-01-07 22:45:42 +00:00
|
|
|
exports.getLogin = function(req, res) {
|
|
|
|
|
if (req.user) return res.redirect('/');
|
|
|
|
|
res.render('account/login', {
|
|
|
|
|
title: 'Login',
|
|
|
|
|
messages: req.flash('messages')
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* GET /signup
|
|
|
|
|
* Signup page.
|
|
|
|
|
*/
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2014-01-07 22:45:42 +00:00
|
|
|
exports.getSignup = function(req, res) {
|
|
|
|
|
if (req.user) return res.redirect('/');
|
|
|
|
|
res.render('account/signup', {
|
|
|
|
|
title: 'Create Account',
|
|
|
|
|
messages: req.flash('messages')
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2013-12-15 19:02:41 +00:00
|
|
|
/**
|
|
|
|
|
* GET /account
|
2014-01-07 22:45:42 +00:00
|
|
|
* Profile page.
|
2013-12-15 19:02:41 +00:00
|
|
|
*/
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2013-12-06 04:53:14 +00:00
|
|
|
exports.getAccount = function(req, res) {
|
2014-01-07 18:37:13 +00:00
|
|
|
res.render('account/profile', {
|
2013-11-19 18:20:50 +00:00
|
|
|
title: 'Account Management',
|
2013-12-15 19:11:57 +00:00
|
|
|
success: req.flash('success'),
|
|
|
|
|
error: req.flash('error')
|
2013-11-19 18:20:50 +00:00
|
|
|
});
|
2013-11-14 07:29:55 +00:00
|
|
|
};
|
|
|
|
|
|
2014-01-07 22:45:42 +00:00
|
|
|
/**
|
|
|
|
|
* POST /login
|
|
|
|
|
* Sign in using email and password.
|
2014-01-13 09:34:54 +00:00
|
|
|
* @param {string} email
|
|
|
|
|
* @param {string} password
|
2014-01-07 22:45:42 +00:00
|
|
|
*/
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2014-01-07 22:45:42 +00:00
|
|
|
exports.postLogin = function(req, res, next) {
|
|
|
|
|
passport.authenticate('local', function(err, user, info) {
|
|
|
|
|
if (err) return next(err);
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2014-01-07 22:45:42 +00:00
|
|
|
if (!user) {
|
|
|
|
|
req.flash('messages', info.message);
|
|
|
|
|
return res.redirect('/login');
|
|
|
|
|
}
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2014-01-07 22:45:42 +00:00
|
|
|
req.logIn(user, function(err) {
|
|
|
|
|
if (err) return next(err);
|
|
|
|
|
return res.redirect('/');
|
|
|
|
|
});
|
|
|
|
|
})(req, res, next);
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* POST /signup
|
|
|
|
|
* Create a new local account.
|
2014-01-13 09:34:54 +00:00
|
|
|
* @param {string} email
|
|
|
|
|
* @param {string} password
|
2014-01-07 22:45:42 +00:00
|
|
|
*/
|
|
|
|
|
|
2014-01-13 09:34:54 +00:00
|
|
|
exports.postSignup = function(req, res, next) {
|
2014-01-07 22:45:42 +00:00
|
|
|
var errors = [];
|
|
|
|
|
|
|
|
|
|
if (!req.body.email) {
|
2014-01-12 20:31:17 +00:00
|
|
|
errors.push('Email cannot be blank.');
|
2014-01-07 22:45:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!req.body.password) {
|
2014-01-12 20:31:17 +00:00
|
|
|
errors.push('Password cannot be blank.');
|
2014-01-07 22:45:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (req.body.password !== req.body.confirmPassword) {
|
|
|
|
|
errors.push('Passwords do not match.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (errors.length) {
|
|
|
|
|
req.flash('messages', errors);
|
|
|
|
|
return res.redirect('/signup');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var user = new User({
|
|
|
|
|
username: req.body.username,
|
|
|
|
|
password: req.body.password
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
user.save(function(err) {
|
|
|
|
|
if (err) {
|
|
|
|
|
if (err.code === 11000) {
|
|
|
|
|
req.flash('messages', 'User already exists.');
|
|
|
|
|
}
|
|
|
|
|
return res.redirect('/signup');
|
|
|
|
|
}
|
|
|
|
|
req.logIn(user, function(err) {
|
|
|
|
|
if (err) return next(err);
|
|
|
|
|
res.redirect('/');
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2013-12-15 19:02:41 +00:00
|
|
|
/**
|
2014-01-07 19:13:35 +00:00
|
|
|
* POST /account/profile
|
|
|
|
|
* Update profile information.
|
2013-12-15 19:02:41 +00:00
|
|
|
*/
|
2014-01-07 19:13:35 +00:00
|
|
|
exports.postUpdateProfile = function(req, res, next) {
|
2013-12-06 04:53:14 +00:00
|
|
|
User.findById(req.user.id, function(err, user) {
|
2013-12-20 01:17:15 +00:00
|
|
|
if (err) return next(err);
|
2013-12-20 05:50:44 +00:00
|
|
|
|
2013-12-06 04:53:14 +00:00
|
|
|
user.profile.name = req.body.name || '';
|
|
|
|
|
user.profile.email = req.body.email || '';
|
2013-12-06 05:25:49 +00:00
|
|
|
user.profile.gender = req.body.gender || '';
|
2013-12-06 04:53:14 +00:00
|
|
|
user.profile.location = req.body.location || '';
|
|
|
|
|
user.profile.website = req.body.website || '';
|
|
|
|
|
|
|
|
|
|
user.save(function(err) {
|
2013-12-20 01:17:15 +00:00
|
|
|
if (err) return next(err);
|
2014-01-07 23:15:14 +00:00
|
|
|
req.flash('success', { success: 'Profile information updated.' });
|
2013-12-06 04:53:14 +00:00
|
|
|
res.redirect('/account');
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2013-12-15 19:02:41 +00:00
|
|
|
/**
|
2014-01-07 19:13:35 +00:00
|
|
|
* POST /account/password
|
|
|
|
|
* Update current password.
|
2014-01-13 09:34:54 +00:00
|
|
|
* @param {string} password
|
2013-12-15 19:02:41 +00:00
|
|
|
*/
|
2013-12-15 19:11:57 +00:00
|
|
|
|
2014-01-13 09:34:54 +00:00
|
|
|
exports.postUpdatePassword = function(req, res, next) {
|
2014-01-07 23:15:14 +00:00
|
|
|
if (!req.body.password) {
|
2014-01-13 09:34:54 +00:00
|
|
|
req.flash('error', 'Password cannot be blank.');
|
2013-12-15 19:11:57 +00:00
|
|
|
return res.redirect('/account');
|
|
|
|
|
}
|
|
|
|
|
|
2013-12-13 02:47:34 +00:00
|
|
|
if (req.body.password !== req.body.confirmPassword) {
|
2014-01-07 23:15:14 +00:00
|
|
|
req.flash('error', 'Passwords do not match.');
|
2013-12-13 02:47:34 +00:00
|
|
|
return res.redirect('/account');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
User.findById(req.user.id, function(err, user) {
|
2013-12-20 19:12:29 +00:00
|
|
|
if (err) return next(err);
|
2014-01-07 23:15:14 +00:00
|
|
|
|
2013-12-13 02:47:34 +00:00
|
|
|
user.password = req.body.password;
|
2014-01-07 23:15:14 +00:00
|
|
|
|
2013-12-13 02:47:34 +00:00
|
|
|
user.save(function(err) {
|
2013-12-20 19:12:29 +00:00
|
|
|
if (err) return next(err);
|
2014-01-07 23:15:14 +00:00
|
|
|
req.flash('success', 'Password has been changed.');
|
2013-12-13 02:47:34 +00:00
|
|
|
res.redirect('/account');
|
|
|
|
|
});
|
|
|
|
|
});
|
2013-12-06 04:53:14 +00:00
|
|
|
};
|
|
|
|
|
|
2013-12-15 19:02:41 +00:00
|
|
|
/**
|
|
|
|
|
* POST /account/delete
|
2014-01-07 19:13:35 +00:00
|
|
|
* Delete user account.
|
2014-01-13 09:34:54 +00:00
|
|
|
* @param {string} id
|
2013-12-15 19:02:41 +00:00
|
|
|
*/
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2013-12-20 01:17:15 +00:00
|
|
|
exports.postDeleteAccount = function(req, res, next) {
|
2013-12-12 17:41:29 +00:00
|
|
|
User.remove({ _id: req.user.id }, function(err) {
|
2013-12-20 01:17:15 +00:00
|
|
|
if (err) return next(err);
|
2013-12-12 17:41:29 +00:00
|
|
|
req.logout();
|
|
|
|
|
res.redirect('/');
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2013-12-12 19:05:35 +00:00
|
|
|
/**
|
2013-12-13 05:49:46 +00:00
|
|
|
* GET /account/unlink/:provider
|
2014-01-07 23:15:14 +00:00
|
|
|
* Unlink OAuth2 provider from the current user.
|
2014-01-13 09:34:54 +00:00
|
|
|
* @param {string} provider
|
|
|
|
|
* @param {string} id
|
2013-12-12 19:05:35 +00:00
|
|
|
*/
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2013-12-20 01:17:15 +00:00
|
|
|
exports.getOauthUnlink = function(req, res, next) {
|
2013-12-13 05:49:46 +00:00
|
|
|
var provider = req.params.provider;
|
2013-12-13 05:27:51 +00:00
|
|
|
User.findById(req.user.id, function(err, user) {
|
2013-12-20 01:17:15 +00:00
|
|
|
if (err) return next(err);
|
2013-12-20 06:59:05 +00:00
|
|
|
|
2013-12-13 06:12:59 +00:00
|
|
|
user[provider] = undefined;
|
2014-01-07 19:35:23 +00:00
|
|
|
user.tokens = _.reject(user.tokens, function(token) { return token.kind === provider; });
|
2013-12-20 06:59:05 +00:00
|
|
|
|
2013-12-13 05:27:51 +00:00
|
|
|
user.save(function(err) {
|
2013-12-20 01:17:15 +00:00
|
|
|
if (err) return next(err);
|
2014-01-07 22:45:42 +00:00
|
|
|
res.redirect('/account');
|
2013-12-13 05:27:51 +00:00
|
|
|
});
|
|
|
|
|
});
|
2013-11-14 07:29:55 +00:00
|
|
|
};
|
|
|
|
|
|
2013-11-18 22:37:50 +00:00
|
|
|
/**
|
|
|
|
|
* GET /logout
|
2014-01-07 23:15:14 +00:00
|
|
|
* Log out.
|
2013-11-18 22:37:50 +00:00
|
|
|
*/
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2013-11-14 07:29:55 +00:00
|
|
|
exports.logout = function(req, res) {
|
|
|
|
|
req.logout();
|
|
|
|
|
res.redirect('/');
|
2013-12-20 06:59:05 +00:00
|
|
|
};
|
