Revert "curriculum: Change pre and code to blockquote in Advanced Node and Express challenge (#35697)" (#35709)
This reverts commit b16773617eb98e246a9812f8e02e27b98ea6b5ae.
This commit is contained in:
Randell Dawson
Niraj Nandish
parent
2262edd134
commit
60c796e70d
@ -10,19 +10,16 @@ As a reminder, this project is being built upon the following starter project on
|
||||
Many chat rooms are able to annouce when a user connects or disconnects and then display that to all of the connected users in the chat. Seeing as though you already are emitting an event on connect and disconnect, you will just have to modify this event to support such feature. The most logical way of doing so is sending 3 pieces of data with the event: name of the user connected/disconnected, the current user count, and if that name connected or disconnected.
|
||||
<hr>Change the event name to 'user' and as the data pass an object along containing fields 'name', 'currentUsers', and boolean 'connected' (to be true if connection, or false for disconnection of the user sent). Be sure to make the change to both points we had the 'user count' event and set the disconnect one to sent false for field 'connected' instead of true like the event emitted on connect. <code>io.emit('user', {name: socket.request.user.name, currentUsers, connected: true});</code>
|
||||
Now your client will have all the necessary information to correctly display the current user count and annouce when a user connects or disconnects! To handle this event on the client side we should listen for 'user' and then update the current user count by using jQuery to change the text of <code>#num-users</code> to '{NUMBER} users online', as well as append a <code><li></code> to the unordered list with id 'messages' with '{NAME} has {joined/left} the chat.'.
|
||||
An implementation of this could look like the following:<br>
|
||||
<blockquote>
|
||||
socket.on('user', function(data){<br>
|
||||
$('#num-users').text(data.currentUsers+' users online');<br>
|
||||
var message = data.name;<br>
|
||||
if(data.connected) {<br>
|
||||
message += ' has joined the chat.';<br>
|
||||
} else {<br>
|
||||
message += ' has left the chat.';<br>
|
||||
}<br>
|
||||
$('#messages').append($('<li>').html('<b>'+ message +'<\/b>'));<br>
|
||||
});
|
||||
</blockquote>
|
||||
An implementation of this could look like the following:<pre>socket.on('user', function(data){
|
||||
$('#num-users').text(data.currentUsers+' users online');
|
||||
var message = data.name;
|
||||
if(data.connected) {
|
||||
message += ' has joined the chat.';
|
||||
} else {
|
||||
message += ' has left the chat.';
|
||||
}
|
||||
$('#messages').append($('<li>').html('<b>'+ message +'<\/b>'));
|
||||
});</pre>
|
||||
Submit your page when you think you've got it right.
|
||||
</section>
|
||||
|
||||
|
||||
@ -9,21 +9,17 @@ challengeType: 2
|
||||
As a reminder, this project is being built upon the following starter project on <a href='https://glitch.com/#!/import/github/freeCodeCamp/boilerplate-advancednode/'>Glitch</a>, or cloned from <a href='https://github.com/freeCodeCamp/boilerplate-advancednode/'>GitHub</a>.
|
||||
A strategy is a way of authenticating a user. You can use a strategy for allowing users to authenticate based on locally saved information (if you have them register first) or from a variety of providers such as Google or GitHub. For this project we will set up a local strategy. To see a list of the 100's of strategies, visit Passports site <a href='http://passportjs.org/'>here</a>.
|
||||
Add <em>passport-local</em> as a dependency and add it to your server as follows: <code>const LocalStrategy = require('passport-local');</code>
|
||||
Now you will have to tell passport to <b>use</b> an instantiated LocalStartegy object with a few settings defined. Make sure this as well as everything from this point on is encapsulated in the database connection since it relies on it!
|
||||
<blockquote>
|
||||
passport.use(new LocalStrategy(<br>
|
||||
function(username, password, done) {<br>
|
||||
db.collection('users').findOne({ username: username }, function (err, user) {<br>
|
||||
console.log('User '+ username +' attempted to log in.');<br>
|
||||
if (err) { return done(err); }<br>
|
||||
if (!user) { return done(null, false); }<br>
|
||||
if (password !== user.password) { return done(null, false); }<br>
|
||||
return done(null, user);<br>
|
||||
});<br>
|
||||
}<br>
|
||||
));
|
||||
</blockquote><br>
|
||||
This is defining the process to take when we try to authenticate someone locally. First it tries to find a user in our database with the username entered, then it checks for the password to match, then finally if no errors have popped up that we checked for, like an incorrect password, the users object is returned and they are authenticated.
|
||||
Now you will have to tell passport to <b>use</b> an instantiated LocalStartegy object with a few settings defined. Make sure this as well as everything from this point on is encapsulated in the database connection since it relies on it! <pre>passport.use(new LocalStrategy(
|
||||
function(username, password, done) {
|
||||
db.collection('users').findOne({ username: username }, function (err, user) {
|
||||
console.log('User '+ username +' attempted to log in.');
|
||||
if (err) { return done(err); }
|
||||
if (!user) { return done(null, false); }
|
||||
if (password !== user.password) { return done(null, false); }
|
||||
return done(null, user);
|
||||
});
|
||||
}
|
||||
));</pre> This is defining the process to take when we try to authenticate someone locally. First it tries to find a user in our database with the username entered, then it checks for the password to match, then finally if no errors have popped up that we checked for, like an incorrect password, the users object is returned and they are authenticated.
|
||||
Many strategies are set up using different settings, general it is easy to set it up based on the README in that strategies repository though. A good example of this is the GitHub strategy where we don't need to worry about a username or password because the user will be sent to GitHub's auth page to authenticate and as long as they are logged in and agree then GitHub returns their profile for us to use.
|
||||
In the next step we will set up how to actually call the authentication strategy to validate a user based on form data! Submit your page when you think you've got it right up to this point.
|
||||
</section>
|
||||
|
||||
@ -9,16 +9,12 @@ challengeType: 2
|
||||
As a reminder, this project is being built upon the following starter project on <a href='https://glitch.com/#!/import/github/freeCodeCamp/boilerplate-socketio/'>Glitch</a>, or cloned from <a href='https://github.com/freeCodeCamp/boilerplate-socketio/'>GitHub</a>.
|
||||
Currently, you cannot determine who is connected to your web socket. While 'req.user' containers the user object, thats only when your user interacts with the web server and with web sockets you have no req (request) and therefor no user data. One way to solve the problem of knowing who is connected to your web socket is by parsing and decoding the cookie that contains the passport session then deserializing it to obtain the user object. Luckily, there is a package on NPM just for this that turns a once complex task into something simple!
|
||||
<hr>Add 'passport.socketio' as a dependency and require it as 'passportSocketIo'.
|
||||
Now we just have to tell Socket.IO to use it and set the options. Be sure this is added before the existing socket code and not in the existing connection listener. For your server it should look as follows:
|
||||
<blockquote>
|
||||
io.use(passportSocketIo.authorize({<br>
|
||||
cookieParser: cookieParser,<br>
|
||||
key: 'express.sid',<br>
|
||||
secret: process.env.SESSION_SECRET,<br>
|
||||
store: sessionStore<br>
|
||||
}));
|
||||
</blockquote>
|
||||
You can also optionally pass 'success' and 'fail' with a function that will be called after the authentication process completes when a client trys to connect.
|
||||
Now we just have to tell Socket.IO to use it and set the options. Be sure this is added before the existing socket code and not in the existing connection listener. For your server it should look as follows:<pre>io.use(passportSocketIo.authorize({
|
||||
cookieParser: cookieParser,
|
||||
key: 'express.sid',
|
||||
secret: process.env.SESSION_SECRET,
|
||||
store: sessionStore
|
||||
}));</pre>You can also optionally pass 'success' and 'fail' with a function that will be called after the authentication process completes when a client trys to connect.
|
||||
The user object is now accessible on your socket object as <code>socket.request.user</code>. For example, now you can add the following: <code>console.log('user ' + socket.request.user.name + ' connected');</code> and it will log to the server console who has connected!
|
||||
Submit your page when you think you've got it right. If you're running into errors, you can check out the project up to this point <a href='https://gist.github.com/JosephLivengood/a9e69ff91337500d5171e29324e1ff35'>here</a>.
|
||||
</section>
|
||||
|
||||
@ -9,12 +9,10 @@ challengeType: 2
|
||||
As a reminder, this project is being built upon the following starter project on <a href='https://glitch.com/#!/import/github/freeCodeCamp/boilerplate-advancednode/'>Glitch</a>, or cloned from <a href='https://github.com/freeCodeCamp/boilerplate-advancednode/'>GitHub</a>.
|
||||
Right now everything you have is in your server.js file. This can lead to hard to manage code that isn't very expandable.
|
||||
Create 2 new files: Routes.js and Auth.js
|
||||
Both should start with the following code:
|
||||
<blockquote>
|
||||
module.exports = function (app, db) {<br>
|
||||
<br>
|
||||
}
|
||||
</blockquote>
|
||||
Both should start with the following code: <pre>module.exports = function (app, db) {
|
||||
|
||||
|
||||
}</pre>
|
||||
Now in the top of your server file, require these files like such: <code>const routes = require('./routes.js');</code>
|
||||
Right after you establish a successful connect with the database instantiate each of them like such: <code>routes(app, db)</code>
|
||||
Finally, take all of the routes in your server and paste them into your new files and remove them from your server file. Also take the ensureAuthenticated since we created that middleware function for routing specifically. You will have to now correctly add the dependencies in that are used, such as <code>const passport = require('passport');</code>, at the very top above the export line in your routes.js file.
|
||||
|
||||
@ -11,12 +11,9 @@ As a reminder, this project is being built upon the following starter project on
|
||||
<hr>Start by adding a variable to keep track of the users just before where you are currently listening for connections. <code>var currentUsers = 0;</code>
|
||||
Now when someone connects you should increment the count before emitting the count so you will want to add the incrementer within the connection listener. <code>++currentUsers;</code>
|
||||
Finally after incrementing the count, you should emit the event(still within the connection listener). The event should be named 'user count' and the data should just be the 'currentUsers'. <code>io.emit('user count', currentUsers);</code>
|
||||
<hr>Now you can implement a way for your client to listen for this event! Similarly to listening for a connection on the server you will use the <em>on</em> keyword.
|
||||
<blockquote>
|
||||
socket.on('user count', function(data){<br>
|
||||
console.log(data);<br>
|
||||
});
|
||||
</blockquote>
|
||||
<hr>Now you can implement a way for your client to listen for this event! Similarly to listening for a connection on the server you will use the <em>on</em> keyword. <pre>socket.on('user count', function(data){
|
||||
console.log(data);
|
||||
});</pre>
|
||||
Now try loading up your app and authenticate and you should see in your client console '1' representing the current user count! Try loading more clients up and authenticating to see the number go up.
|
||||
Submit your page when you think you've got it right.
|
||||
</section>
|
||||
|
||||
@ -9,21 +9,17 @@ challengeType: 2
|
||||
As a reminder, this project is being built upon the following starter project on <a href='https://glitch.com/#!/import/github/freeCodeCamp/boilerplate-advancednode/'>Glitch</a>, or cloned from <a href='https://github.com/freeCodeCamp/boilerplate-advancednode/'>GitHub</a>.
|
||||
As in, any user can just go to /profile whether they authenticated or not by typing in the url. We want to prevent this by checking if the user is authenticated first before rendering the profile page. This is the perfect example of when to create a middleware.
|
||||
The challenge here is creating the middleware function <code>ensureAuthenticated(req, res, next)</code>, which will check if a user is authenticated by calling passports isAuthenticated on the <em>request</em> which in turn checks for <em>req.user</em> is to be defined. If it is then <em>next()</em> should be called, otherwise we can just respond to the request with a redirect to our homepage to login. An implementation of this middleware is:
|
||||
<blockquote>
|
||||
function ensureAuthenticated(req, res, next) {<br>
|
||||
if (req.isAuthenticated()) {<br>
|
||||
return next();<br>
|
||||
}<br>
|
||||
res.redirect('/');<br>
|
||||
};
|
||||
</blockquote>
|
||||
<pre>function ensureAuthenticated(req, res, next) {
|
||||
if (req.isAuthenticated()) {
|
||||
return next();
|
||||
}
|
||||
res.redirect('/');
|
||||
};</pre>
|
||||
Now add <em>ensureAuthenticated</em> as a middleware to the request for the profile page before the argument to the get request containing the function that renders the page.
|
||||
<blockquote>
|
||||
app.route('/profile')<br>
|
||||
.get(ensureAuthenticated, (req,res) => {<br>
|
||||
res.render(process.cwd() + '/views/pug/profile');<br>
|
||||
});
|
||||
</blockquote>
|
||||
<pre>app.route('/profile')
|
||||
.get(ensureAuthenticated, (req,res) => {
|
||||
res.render(process.cwd() + '/views/pug/profile');
|
||||
});</pre>
|
||||
Submit your page when you think you've got it right.
|
||||
</section>
|
||||
|
||||
|
||||
@ -10,17 +10,15 @@ As a reminder, this project is being built upon the following starter project on
|
||||
Right now we're not loading an actual user object since we haven't set up our database. This can be done many different ways, but for our project we will connect to the database once when we start the server and keep a persistent connection for the full life-cycle of the app.
|
||||
To do this, add MongoDB as a dependency and require it in your server. (<code>const mongo = require('mongodb').MongoClient;</code>)
|
||||
Now we want to the connect to our database then start listening for requests. The purpose of this is to not allow requests before our database is connected or if there is a database error. To accomplish you will want to encompass your serialization and your app listener in the following:
|
||||
<blockquote>
|
||||
mongo.connect(process.env.DATABASE, (err, db) => {<br>
|
||||
if(err) {<br>
|
||||
console.log('Database error: ' + err);<br>
|
||||
} else {<br>
|
||||
console.log('Successful database connection');<br>
|
||||
<br>
|
||||
//serialization and app.listen<br>
|
||||
<br>
|
||||
}});
|
||||
</blockquote>
|
||||
<pre>mongo.connect(process.env.DATABASE, (err, db) => {
|
||||
if(err) {
|
||||
console.log('Database error: ' + err);
|
||||
} else {
|
||||
console.log('Successful database connection');
|
||||
|
||||
//serialization and app.listen
|
||||
|
||||
}});</pre>
|
||||
You can now uncomment the block in deserializeUser and remove your <code>done(null, null)</code>. Be sure to set <em>DATABASE</em> in your .env file to your database's connection string (for example: <code>DATABASE=mongodb://admin:pass@mlab.com:12345/my-project</code>). You can set up a free database on <a href='https://mlab.com/welcome/'>mLab</a>. Congratulations- you've finished setting up serialization!
|
||||
Submit your page when you think you've got it right. If you're running into errors, you can check out the project completed up to this point <a href='https://gist.github.com/JosephLivengood/e192e809a1d27cb80dc2c6d3467b7477'>here</a>.
|
||||
</section>
|
||||
|
||||
@ -9,19 +9,16 @@ challengeType: 2
|
||||
As a reminder, this project is being built upon the following starter project on <a href='https://glitch.com/#!/import/github/freeCodeCamp/boilerplate-socialauth/'>Glitch</a>, or cloned from <a href='https://github.com/freeCodeCamp/boilerplate-socialauth/'>GitHub</a>.
|
||||
The last part of setting up your GitHub authentication is to create the strategy itself. For this, you will need to add the dependency of 'passport-github' to your project and require it as GithubStrategy like <code>const GitHubStrategy = require('passport-github').Strategy;</code>.
|
||||
To set up the GitHub strategy, you have to tell <b>passport</b> to <b>use</b> an instantiated <b>GitHubStrategy</b>, which accepts 2 arguments: An object (containing <em>clientID</em>, <em>clientSecret</em>, and <em>callbackURL</em>) and a function to be called when a user is successfully authenticated which we will determine if the user is new and what fields to save initially in the user's database object. This is common across many strategies but some may require more information as outlined in that specific strategy's github README; for example, Google requires a <em>scope</em> as well which determines what kind of information your request is asking returned and asks the user to approve such access. The current strategy we are implementing has its usage outlined <a>here</a>, but we're going through it all right here on freeCodeCamp!
|
||||
Here's how your new strategy should look at this point:
|
||||
<blockquote>
|
||||
passport.use(new GitHubStrategy({<br>
|
||||
clientID: process.env.GITHUB_CLIENT_ID,<br>
|
||||
clientSecret: process.env.GITHUB_CLIENT_SECRET,<br>
|
||||
callbackURL: /*INSERT CALLBACK URL ENTERED INTO GITHUB HERE*/<br>
|
||||
},<br>
|
||||
function(accessToken, refreshToken, profile, cb) {<br>
|
||||
console.log(profile);<br>
|
||||
//Database logic here with callback containing our user object<br>
|
||||
}<br>
|
||||
));
|
||||
</blockquote>
|
||||
Here's how your new strategy should look at this point: <pre>passport.use(new GitHubStrategy({
|
||||
clientID: process.env.GITHUB_CLIENT_ID,
|
||||
clientSecret: process.env.GITHUB_CLIENT_SECRET,
|
||||
callbackURL: /*INSERT CALLBACK URL ENTERED INTO GITHUB HERE*/
|
||||
},
|
||||
function(accessToken, refreshToken, profile, cb) {
|
||||
console.log(profile);
|
||||
//Database logic here with callback containing our user object
|
||||
}
|
||||
));</pre>
|
||||
Your authentication won't be successful yet, and actually throw an error, without the database logic and callback, but it should log to your console your GitHub profile if you try it!
|
||||
Submit your page when you think you've got it right.
|
||||
</section>
|
||||
|
||||
@ -8,28 +8,26 @@ challengeType: 2
|
||||
<section id='description'>
|
||||
As a reminder, this project is being built upon the following starter project on <a href='https://glitch.com/#!/import/github/freeCodeCamp/boilerplate-socialauth/'>Glitch</a>, or cloned from <a href='https://github.com/freeCodeCamp/boilerplate-socialauth/'>GitHub</a>.
|
||||
The final part of the strategy is handling the profile returned from GitHub. We need to load the user's database object if it exists, or create one if it doesn't, and populate the fields from the profile, then return the user's object. GitHub supplies us a unique <em>id</em> within each profile which we can use to search with to serialize the user with (already implemented). Below is an example implementation you can use in your project- it goes within the function that is the second argument for the new strategy, right below the <code>console.log(profile);</code> currently is:
|
||||
<blockquote>
|
||||
db.collection('socialusers').findAndModify(<br>
|
||||
{id: profile.id},<br>
|
||||
{},<br>
|
||||
{$setOnInsert:{<br>
|
||||
id: profile.id,<br>
|
||||
name: profile.displayName || 'John Doe',<br>
|
||||
photo: profile.photos[0].value || '',<br>
|
||||
email: profile.emails[0].value || 'No public email',<br>
|
||||
created_on: new Date(),<br>
|
||||
provider: profile.provider || ''<br>
|
||||
},$set:{<br>
|
||||
last_login: new Date()<br>
|
||||
},$inc:{<br>
|
||||
login_count: 1<br>
|
||||
}},<br>
|
||||
{upsert:true, new: true},<br>
|
||||
(err, doc) => {<br>
|
||||
return cb(null, doc.value);<br>
|
||||
}<br>
|
||||
);
|
||||
</blockquote>
|
||||
<pre>db.collection('socialusers').findAndModify(
|
||||
{id: profile.id},
|
||||
{},
|
||||
{$setOnInsert:{
|
||||
id: profile.id,
|
||||
name: profile.displayName || 'John Doe',
|
||||
photo: profile.photos[0].value || '',
|
||||
email: profile.emails[0].value || 'No public email',
|
||||
created_on: new Date(),
|
||||
provider: profile.provider || ''
|
||||
},$set:{
|
||||
last_login: new Date()
|
||||
},$inc:{
|
||||
login_count: 1
|
||||
}},
|
||||
{upsert:true, new: true},
|
||||
(err, doc) => {
|
||||
return cb(null, doc.value);
|
||||
}
|
||||
);</pre>
|
||||
With a findAndModify, it allows you to search for an object and update it, as well as insert the object if it doesn't exist and receive the new object back each time in our callback function. In this example, we always set the last_login as now, we always increment the login_count by 1, and only when we insert a new object(new user) do we populate the majority of the fields. Something to notice also is the use of default values. Sometimes a profile returned won't have all the information filled out or it will have been chosen by the user to remain private; so in this case we have to handle it to prevent an error.
|
||||
You should be able to login to your app now- try it! Submit your page when you think you've got it right. If you're running into errors, you can check out an example of this mini-project's finished code <a href='https://glitch.com/#!/project/guttural-birch'>here</a>.
|
||||
</section>
|
||||
|
||||
@ -11,13 +11,10 @@ The basic path this kind of authentication will follow in your app is: <ol><li>U
|
||||
Strategies with OAuth require you to have at least a <em>Client ID</em> and a <em>Client Secret</em> which is a way for them to verify who the authentication request is coming from and if it is valid. These are obtained from the site you are trying to implement authentication with, such as GitHub, and are unique to your app- <b>THEY ARE NOT TO BE SHARED</b> and should never be uploaded to a public repository or written directly in your code. A common practice is to put them in your <em>.env</em> file and reference them like: <code>process.env.GITHUB_CLIENT_ID</code>. For this challenge we're going to use the GitHub strategy.
|
||||
Obtaining your <em>Client ID and Secret<em> from GitHub is done in your account profile settings under 'developer settings', then '<a href='https://github.com/settings/developers'>OAuth applications</a>'. Click 'Register a new application', name your app, paste in the url to your glitch homepage (<b>Not the project code's url</b>), and lastly for the callback url, paste in the same url as the homepage but with '/auth/github/callback' added on. This is where users will be redirected to for us to handle after authenticating on GitHub. Save the returned information as 'GITHUB_CLIENT_ID' and 'GITHUB_CLIENT_SECRET' in your .env file.
|
||||
On your remixed project, create 2 routes accepting GET requests: /auth/github and /auth/github/callback. The first should only call passport to authenticate 'github' and the second should call passport to authenticate 'github' with a failure redirect to '/' and then if that is successful redirect to '/profile' (similar to our last project).
|
||||
An example of how '/auth/github/callback' should look is similar to how we handled a normal login in our last project:
|
||||
<blockquote>
|
||||
app.route('/login')<br>
|
||||
.post(passport.authenticate('local', { failureRedirect: '/' }), (req,res) => {<br>
|
||||
res.redirect('/profile');<br>
|
||||
});
|
||||
</blockquote>
|
||||
An example of how '/auth/github/callback' should look is similar to how we handled a normal login in our last project: <pre>app.route('/login')
|
||||
.post(passport.authenticate('local', { failureRedirect: '/' }), (req,res) => {
|
||||
res.redirect('/profile');
|
||||
});</pre>
|
||||
Submit your page when you think you've got it right. If you're running into errors, you can check out the project up to this point <a href='https://gist.github.com/JosephLivengood/28ea2cae7e1dc6a53d7f0c42d987313b'>here</a>.
|
||||
</section>
|
||||
|
||||
|
||||
@ -9,20 +9,17 @@ challengeType: 2
|
||||
As a reminder, this project is being built upon the following starter project on <a href='https://glitch.com/#!/import/github/freeCodeCamp/boilerplate-advancednode/'>Glitch</a>, or cloned from <a href='https://github.com/freeCodeCamp/boilerplate-advancednode/'>GitHub</a>.
|
||||
Creating the logout logic is easy. The route should just unauthenticate the user and redirect to the home page instead of rendering any view.
|
||||
In passport, unauthenticating a user is as easy as just calling <code>req.logout();</code> before redirecting.
|
||||
<blockquote>
|
||||
app.route('/logout')<br>
|
||||
.get((req, res) => {<br>
|
||||
req.logout();<br>
|
||||
res.redirect('/');<br>
|
||||
});
|
||||
</blockquote>
|
||||
<pre>app.route('/logout')
|
||||
.get((req, res) => {
|
||||
req.logout();
|
||||
res.redirect('/');
|
||||
});</pre>
|
||||
You may have noticed that we're not handling missing pages (404), the common way to handle this in Node is with the following middleware. Go ahead and add this in after all your other routes:
|
||||
<blockquote>app.use((req, res, next) => {<br>
|
||||
res.status(404)<br>
|
||||
.type('text')<br>
|
||||
.send('Not Found');<br>
|
||||
});
|
||||
</blockquote>
|
||||
<pre>app.use((req, res, next) => {
|
||||
res.status(404)
|
||||
.type('text')
|
||||
.send('Not Found');
|
||||
});</pre>
|
||||
Submit your page when you think you've got it right.
|
||||
</section>
|
||||
|
||||
|
||||
@ -10,34 +10,32 @@ As a reminder, this project is being built upon the following starter project on
|
||||
Now we need to allow a new user on our site to register an account. On the res.render for the home page add a new variable to the object passed along- <code>showRegistration: true</code>. When you refresh your page, you should then see the registration form that was already created in your index.pug file! This form is set up to <b>POST</b> on <em>/register</em> so this is where we should set up to accept the POST and create the user object in the database.
|
||||
The logic of the registration route should be as follows: Register the new user > Authenticate the new user > Redirect to /profile
|
||||
The logic of step 1, registering the new user, should be as follows: Query database with a findOne command > if user is returned then it exists and redirect back to home <em>OR</em> if user is undefined and no error occurs then 'insertOne' into the database with the username and password and as long as no errors occur then call <em>next</em> to go to step 2, authenticating the new user, which we've already written the logic for in our POST /login route.
|
||||
<blockquote>
|
||||
app.route('/register')<br>
|
||||
.post((req, res, next) => {<br>
|
||||
db.collection('users').findOne({ username: req.body.username }, function (err, user) {<br>
|
||||
if(err) {<br>
|
||||
next(err);<br>
|
||||
} else if (user) {<br>
|
||||
res.redirect('/');<br>
|
||||
} else {<br>
|
||||
db.collection('users').insertOne(<br>
|
||||
{username: req.body.username,<br>
|
||||
password: req.body.password},<br>
|
||||
(err, doc) => {<br>
|
||||
if(err) {<br>
|
||||
res.redirect('/');<br>
|
||||
} else {<br>
|
||||
next(null, user);<br>
|
||||
}<br>
|
||||
}<br>
|
||||
)<br>
|
||||
}<br>
|
||||
})},<br>
|
||||
passport.authenticate('local', { failureRedirect: '/' }),<br>
|
||||
(req, res, next) => {<br>
|
||||
res.redirect('/profile');<br>
|
||||
}<br>
|
||||
);
|
||||
</blockquote>
|
||||
<pre>app.route('/register')
|
||||
.post((req, res, next) => {
|
||||
db.collection('users').findOne({ username: req.body.username }, function (err, user) {
|
||||
if(err) {
|
||||
next(err);
|
||||
} else if (user) {
|
||||
res.redirect('/');
|
||||
} else {
|
||||
db.collection('users').insertOne(
|
||||
{username: req.body.username,
|
||||
password: req.body.password},
|
||||
(err, doc) => {
|
||||
if(err) {
|
||||
res.redirect('/');
|
||||
} else {
|
||||
next(null, user);
|
||||
}
|
||||
}
|
||||
)
|
||||
}
|
||||
})},
|
||||
passport.authenticate('local', { failureRedirect: '/' }),
|
||||
(req, res, next) => {
|
||||
res.redirect('/profile');
|
||||
}
|
||||
);</pre>
|
||||
Submit your page when you think you've got it right. If you're running into errors, you can check out the project completed up to this point <a href='https://gist.github.com/JosephLivengood/6c47bee7df34df9f11820803608071ed'>here</a>.
|
||||
</section>
|
||||
|
||||
|
||||
@ -10,19 +10,16 @@ As a reminder, this project is being built upon the following starter project on
|
||||
Serialization and deserialization are important concepts in regards to authentication. To serialize an object means to convert its contents into a small <em>key</em> essentially that can then be deserialized into the original object. This is what allows us to know whos communicated with the server without having to send the authentication data like username and password at each request for a new page.
|
||||
To set this up properly, we need to have a serialize function and a deserialize function. In passport we create these with <code>passport.serializeUser( OURFUNCTION )</code> and <code>passport.deserializeUser( OURFUNCTION )</code>
|
||||
The serializeUser is called with 2 arguments, the full user object and a callback used by passport. Returned in the callback should be a unique key to identify that user- the easiest one to use being the users _id in the object as it should be unique as it generated by MongoDb. Similarly deserializeUser is called with that key and a callback function for passport as well, but this time we have to take that key and return the users full object to the callback. To make a query search for a Mongo _id you will have to create <code>const ObjectID = require('mongodb').ObjectID;</code>, and then to use it you call <code>new ObjectID(THE_ID)</code>. Be sure to add MongoDB as a dependency. You can see this in the examples below:
|
||||
<blockquote>
|
||||
passport.serializeUser((user, done) => {<br>
|
||||
done(null, user._id);<br>
|
||||
});<br>
|
||||
passport.deserializeUser((id, done) => {<br>
|
||||
db.collection('users').findOne(<br>
|
||||
{_id: new ObjectID(id)},<br>
|
||||
(err, doc) => {<br>
|
||||
done(null, doc);<br>
|
||||
}<br>
|
||||
);<br>
|
||||
});
|
||||
</blockquote>
|
||||
<pre>passport.serializeUser((user, done) => {
|
||||
done(null, user._id);
|
||||
});</pre><br><pre>passport.deserializeUser((id, done) => {
|
||||
db.collection('users').findOne(
|
||||
{_id: new ObjectID(id)},
|
||||
(err, doc) => {
|
||||
done(null, doc);
|
||||
}
|
||||
);
|
||||
});</pre>
|
||||
NOTE: This deserializeUser will throw an error until we set up the DB in the next step so comment out the whole block and just call <code>done(null, null)</code> in the function deserializeUser.
|
||||
Submit your page when you think you've got it right.
|
||||
</section>
|
||||
|
||||
@ -12,13 +12,11 @@ To set up Passport for use in your project, you will need to add it as a depende
|
||||
In addition, add Express-session as a dependency now as well. Express-session has a ton of advanced features you can use but for now we're just going to use the basics! <code>"express-session": "^1.15.0"</code>
|
||||
You will need to set up the session settings now and initialize Passport. Be sure to first create the variables 'session' and 'passport' to require 'express-session' and 'passport' respectively.
|
||||
To set up your express app to use use the session we'll define just a few basic options. Be sure to add 'SESSION_SECRET' to your .env file and give it a random value. This is used to compute the hash used to encrypt your cookie!
|
||||
<blockquote>
|
||||
app.use(session({<br>
|
||||
secret: process.env.SESSION_SECRET,<br>
|
||||
resave: true,<br>
|
||||
saveUninitialized: true,<br>
|
||||
}));
|
||||
</blockquote>
|
||||
<pre>app.use(session({
|
||||
secret: process.env.SESSION_SECRET,
|
||||
resave: true,
|
||||
saveUninitialized: true,
|
||||
}));</pre>
|
||||
As well you can go ahead and tell your express app to <b>use</b> 'passport.initialize()' and 'passport.session()'. (For example, <code>app.use(passport.initialize());</code>)
|
||||
Submit your page when you think you've got it right. If you're running into errors, you can check out the project completed up to this point <a href='https://gist.github.com/JosephLivengood/338a9c5a326923c3826a666d430e65c3'>here</a>.
|
||||
</section>
|
||||
|
||||
@ -9,17 +9,11 @@ challengeType: 2
|
||||
As a reminder, this project is being built upon the following starter project on <a href='https://glitch.com/#!/import/github/freeCodeCamp/boilerplate-socketio/'>Glitch</a>, or cloned from <a href='https://github.com/freeCodeCamp/boilerplate-socketio/'>GitHub</a>.
|
||||
Add Socket.IO as a dependency and require/instantiate it in your server defined as 'io' with the http server as an argument. <code>const io = require('socket.io')(http);</code>
|
||||
The first thing needing to be handled is listening for a new connection from the client. The <dfn>on</dfn> keyword does just that- listen for a specific event. It requires 2 arguments: a string containing the title of the event thats emitted, and a function with which the data is passed though. In the case of our connection listener, we use <em>socket</em> to define the data in the second argument. A socket is an individual client who is connected.
|
||||
For listening for connections on our server, add the following between the comments in your project:
|
||||
<blockquote>
|
||||
io.on('connection', socket => {<br>
|
||||
console.log('A user has connected');<br>
|
||||
});
|
||||
</blockquote>
|
||||
Now for the client to connect, you just need to add the following to your client.js which is loaded by the page after you've authenticated:
|
||||
<blockquote>/*global io*/<br>
|
||||
var socket = io();
|
||||
</blockquote>
|
||||
The comment suppresses the error you would normally see since 'io' is not defined in the file. We've already added a reliable CDN to the Socket.IO library on the page in chat.pug.
|
||||
For listening for connections on our server, add the following between the comments in your project:<pre>io.on('connection', socket => {
|
||||
console.log('A user has connected');
|
||||
});</pre>
|
||||
Now for the client to connect, you just need to add the following to your client.js which is loaded by the page after you've authenticated: <pre>/*global io*/
|
||||
var socket = io();</pre>The comment suppresses the error you would normally see since 'io' is not defined in the file. We've already added a reliable CDN to the Socket.IO library on the page in chat.pug.
|
||||
Now try loading up your app and authenticate and you should see in your server console 'A user has connected'!
|
||||
<strong>Note</strong><br><code>io()</code> works only when connecting to a socket hosted on the same url/server. For connecting to an external socket hosted elsewhere, you would use <code>io.connect('URL');</code>.
|
||||
Submit your page when you think you've got it right.
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user