usuario y token listo

ItsasoAguirre · Jan 25, 2020 · 59c1e70 · 59c1e70
1 parent e67833b
commit 59c1e70
Show file tree

Hide file tree

Showing 9 changed files with 432 additions and 10 deletions.
diff --git a/app.js b/app.js
@@ -1,11 +1,24 @@
 // Requires
 var express = require('express');
-var mongoose = require('mongoose')
+var mongoose = require('mongoose');
+var bodyParser = require('body-parser');
 
 
 //Inicializar variables
 var app = express();
 
+
+// Body parser
+// parse application/x-www-form-urlencoded
+app.use(bodyParser.urlencoded({ extended: false }))
+app.use(bodyParser.json())
+
+
+//Importar rutas
+var appRoutes = require('./routes/app');
+var usuarioRoutes = require('./routes/usuario');
+var loginRoutes = require('./routes/login');
+
 // Conexion a la base de datos
 mongoose.connection.openUri('mongodb://localhost:27017/hospitalDB', (err, res) => {
     if (err) throw err;
@@ -14,14 +27,9 @@ mongoose.connection.openUri('mongodb://localhost:27017/hospitalDB', (err, res) =
 })
 
 // Rutas
-app.get('/', (req, res, next) => {
-
-    res.status(200).json({
-        ok: true,
-        mensaje: 'Peticion realizada correctamente'
-    })
-});
-
+app.use('/usuario', usuarioRoutes);
+app.use('/login', loginRoutes);
+app.use('/', appRoutes);
 
 //Escuchar peticiones
 app.listen(3000, () => {

diff --git a/config/config.js b/config/config.js
@@ -0,0 +1 @@
+module.exports.SEED = '@este-es@-un-seed-absurdo';
diff --git a/middelwares/autentication.js b/middelwares/autentication.js
@@ -0,0 +1,25 @@
+var jwt = require('jsonwebtoken');
+var SEED = require('../config/config').SEED;
+
+// ==========================
+// Verificar token
+// ==========================
+exports.verificaToken = function(req, res, next) {
+    var token = req.query.token;
+
+    jwt.verify(token, SEED, (err, decoded) => {
+        if (err) {
+            return res.status(401).json({
+                ok: false,
+                mensaje: 'Token no valido',
+                errors: err
+            });
+        }
+        req.usuario = decoded.usuario;
+        next();
+        // res.status(200).json({
+        //     ok: true,
+        //     decode: decoded
+        // });
+    })
+}
diff --git a/models/usuario.js b/models/usuario.js
@@ -0,0 +1,44 @@
+var mongoose = require('mongoose');
+var uniqueValidator = require('mongoose-unique-validator');
+
+var Schema = mongoose.Schema;
+
+
+var rolesValidos = {
+    values: ['ADMIN_ROLE', 'USER_ROLE'],
+    message: '{VALUE} no es un rol valido'
+};
+
+var usuarioSchema = new Schema({
+
+    nombre: {
+        type: String,
+        required: [true, 'El nombre es obligatorio']
+    },
+
+    email: {
+        type: String,
+        unique: true,
+        required: [true, 'El email es obligatorio']
+    },
+
+    password: {
+        type: String,
+        required: [true, 'La contraseña es obligatoria']
+    },
+
+    img: {
+        type: String,
+        required: false
+    },
+
+    role: {
+        type: String,
+        required: true,
+        default: 'USER_ROLE',
+        enum: rolesValidos,
+    }
+});
+
+usuarioSchema.plugin(uniqueValidator, { message: '{PATH} debe ser único' })
+module.exports = mongoose.model('Usuario', usuarioSchema);
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -10,8 +10,12 @@
     "author": "Itsaso Aguirre",
     "license": "ISC",
     "dependencies": {
+        "bcryptjs": "^2.4.3",
+        "body-parser": "^1.19.0",
         "express": "^4.17.1",
-        "mongoose": "^5.8.9"
+        "jsonwebtoken": "^8.5.1",
+        "mongoose": "^5.8.9",
+        "mongoose-unique-validator": "^2.0.3"
     },
     "devDependencies": {
         "nodemon": "^2.0.2"

diff --git a/routes/app.js b/routes/app.js
@@ -0,0 +1,13 @@
+var express = require('express');
+
+var app = express();
+
+app.get('/', (req, res, next) => {
+
+    res.status(200).json({
+        ok: true,
+        mensaje: 'Peticion realizada correctamente'
+    })
+});
+
+module.exports = app;
diff --git a/routes/login.js b/routes/login.js
@@ -0,0 +1,61 @@
+var express = require('express');
+var bcrypt = require('bcryptjs');
+var jwt = require('jsonwebtoken');
+
+var SEED = require('../config/config').SEED;
+
+var app = express();
+
+var Usuario = require('../models/usuario');
+
+
+app.post('/', (req, res) => {
+
+    var body = req.body;
+
+    Usuario.findOne({ email: body.email }, (err, usuarioBD) => {
+        if (err) {
+            return res.status(500).json({
+                ok: false,
+                mensaje: 'Error al buscar usuario',
+                errors: err
+            });
+        }
+
+        // Evaluar si existe ese ususario
+
+        if (!usuarioBD) {
+            return res.status(400).json({
+                ok: false,
+                // TODO: quitar -email, es solo para comprbar que falla en desarrollo
+                mensaje: 'Credenciales incorrectas - email',
+                errors: err
+            });
+        }
+
+        //Validamos que la contraseña sea correcta
+        if (!bcrypt.compareSync(body.password, usuarioBD.password)) {
+            return res.status(400).json({
+                ok: false,
+                mensaje: 'Credenciales incorrectas - password',
+                errors: err
+            });
+        }
+
+        //Crear un token
+        usuarioBD.password = ':)';
+
+        var token = jwt.sign({ usuario: usuarioBD }, SEED, { expiresIn: 14400 }) //4 horas
+
+        res.status(200).json({
+            ok: true,
+            usuario: usuarioBD,
+            token: token,
+            id: usuarioBD.id
+        })
+
+    });
+
+});
+
+module.exports = app;