day 9

2022-02-06 21:38:21 -05:00
parent 55fd966174
commit bd137e6f09
13 changed files with 408 additions and 0 deletions
@@ -0,0 +1,14 @@
 # day 8
 ## Instructions
 - setup project
 - clone to your github
 - Create middleware for all api that checks if bearer token exist and its still valid.
 - Pass the user_id in payload to the api it uses
 - if api is /api/v1/<portal>/something, make sure role = portal name
 - We made JwtService for you
 - Create middleware Maintenance.js which returns 503 on all api if config maintenance = true
 - Handle the error message return to be something human readable
 - Everything must be done by end of date
@@ -0,0 +1,44 @@
 var createError = require('http-errors');
 var express = require('express');
 var path = require('path');
 var cookieParser = require('cookie-parser');
 var logger = require('morgan');
 var indexRouter = require('./routes/index');
 var usersRouter = require('./routes/users');
 const db = require("./models");
 var cors = require("cors");
 var app = express();
 app.set("db", db);
 // view engine setup
 app.set('views', path.join(__dirname, 'views'));
 app.set('view engine', 'jade');
 app.use(cors());
 app.use(logger('dev'));
 app.use(express.json());
 app.use(express.urlencoded({ extended: false }));
 app.use(cookieParser());
 app.use(express.static(path.join(__dirname, 'public')));
 app.use('/', indexRouter);
 app.use('/users', usersRouter);
 // catch 404 and forward to error handler
 app.use(function (req, res, next) {
  next(createError(404));
 });
 // error handler
 app.use(function (err, req, res, next) {
  // set locals, only providing error in development
  res.locals.message = err.message;
  res.locals.error = req.app.get('env') === 'development' ? err : {};
  // render the error page
  res.status(err.status || 500);
  res.render('error');
 });
 module.exports = app;
@@ -0,0 +1,90 @@
 #!/usr/bin/env node
 /**
 * Module dependencies.
 */
 var app = require('../app');
 var debug = require('debug')('day-1:server');
 var http = require('http');
 /**
 * Get port from environment and store in Express.
 */
 var port = normalizePort(process.env.PORT || '3000');
 app.set('port', port);
 /**
 * Create HTTP server.
 */
 var server = http.createServer(app);
 /**
 * Listen on provided port, on all network interfaces.
 */
 server.listen(port);
 server.on('error', onError);
 server.on('listening', onListening);
 /**
 * Normalize a port into a number, string, or false.
 */
 function normalizePort(val) {
  var port = parseInt(val, 10);
  if (isNaN(port)) {
    // named pipe
    return val;
  }
  if (port >= 0) {
    // port number
    return port;
  }
  return false;
 }
 /**
 * Event listener for HTTP server "error" event.
 */
 function onError(error) {
  if (error.syscall !== 'listen') {
    throw error;
  }
  var bind = typeof port === 'string'
    ? 'Pipe ' + port
    : 'Port ' + port;
  // handle specific listen errors with friendly messages
  switch (error.code) {
    case 'EACCES':
      console.error(bind + ' requires elevated privileges');
      process.exit(1);
      break;
    case 'EADDRINUSE':
      console.error(bind + ' is already in use');
      process.exit(1);
      break;
    default:
      throw error;
  }
 }
 /**
 * Event listener for HTTP server "listening" event.
 */
 function onListening() {
  var addr = server.address();
  var bind = typeof addr === 'string'
    ? 'pipe ' + addr
    : 'port ' + addr.port;
  debug('Listening on ' + bind);
 }
@@ -0,0 +1,68 @@
 'use strict';
 /*Powered By: Manaknightdigital Inc. https://manaknightdigital.com/ Year: 2020*/
 /**
 * Sequelize File
 * @copyright 2020 Manaknightdigital Inc.
 * @link https://manaknightdigital.com
 * @license Proprietary Software licensing
 * @author Ryan Wong
 *
 */
 const fs = require('fs');
 const path = require('path');
 let Sequelize = require('sequelize');
 const basename = path.basename(__filename);
 const config = {
  DB_DATABASE: 'mysql',
  DB_USERNAME: 'root',
  DB_PASSWORD: 'root',
  DB_ADAPTER: 'mysql',
  DB_NAME: 'day_1',
  DB_HOSTNAME: 'localhost',
  DB_PORT: 3306,
 };
 let db = {};
 let sequelize = new Sequelize(config.DB_DATABASE, config.DB_USERNAME, config.DB_PASSWORD, {
  dialect: config.DB_ADAPTER,
  username: config.DB_USERNAME,
  password: config.DB_PASSWORD,
  database: config.DB_NAME,
  host: config.DB_HOSTNAME,
  port: config.DB_PORT,
  logging: console.log,
  timezone: '-04:00',
  pool: {
    maxConnections: 1,
    minConnections: 0,
    maxIdleTime: 100,
  },
  define: {
    timestamps: false,
    underscoredAll: true,
    underscored: true,
  },
 });
 // sequelize.sync({ force: true });
 fs.readdirSync(__dirname)
  .filter((file) => {
    return file.indexOf('.') !== 0 && file !== basename && file.slice(-3) === '.js';
  })
  .forEach((file) => {
    var model = sequelize['import'](path.join(__dirname, file));
    db[model.name] = model;
  });
 Object.keys(db).forEach((modelName) => {
  if (db[modelName].associate) {
    db[modelName].associate(db);
  }
 });
 db.sequelize = sequelize;
 db.Sequelize = Sequelize;
 module.exports = db;
@@ -0,0 +1,26 @@
 module.exports = (sequelize, DataTypes) => {
  const location = sequelize.define(
    "location",
    {
      id: {
        type: DataTypes.INTEGER,
        primaryKey: true,
        autoIncrement: true,
      },
      name: DataTypes.STRING,
      created_at: DataTypes.DATEONLY,
      updated_at: DataTypes.DATE,
    },
    {
      timestamps: true,
      freezeTableName: true,
      tableName: "location",
    },
    {
      underscoredAll: false,
      underscored: false,
    }
  );
  return location;
 };
@@ -0,0 +1,20 @@
 {
  "name": "day-1",
  "version": "0.0.0",
  "private": true,
  "scripts": {
    "start": "node ./bin/www"
  },
  "dependencies": {
    "cookie-parser": "~1.4.4",
    "cors": "^2.8.5",
    "debug": "~2.6.9",
    "express": "~4.16.1",
    "http-errors": "~1.6.3",
    "jade": "~1.11.0",
    "jsonwebtoken": "^8.5.1",
    "morgan": "~1.9.1",
    "mysql2": "^2.3.3",
    "sequelize": "^6.15.1"
  }
 }
@@ -0,0 +1,8 @@
 body {
  padding: 50px;
  font: 14px "Lucida Grande", Helvetica, Arial, sans-serif;
 }
 a {
  color: #00B7FF;
 }
@@ -0,0 +1,9 @@
 var express = require('express');
 var router = express.Router();
 /* GET home page. */
 router.get('/', function(req, res, next) {
  res.render('index', { title: 'Express' });
 });
 module.exports = router;
@@ -0,0 +1,9 @@
 var express = require('express');
 var router = express.Router();
 /* GET users listing. */
 router.get('/', function(req, res, next) {
  res.send('respond with a resource');
 });
 module.exports = router;
@@ -0,0 +1,102 @@
 /*Powered By: Manaknightdigital Inc. https://manaknightdigital.com/ Year: 2020*/
 /**
 * JWT Service
 * @copyright 2020 Manaknightdigital Inc.
 * @link https://manaknightdigital.com
 * @license Proprietary Software licensing
 * @author Ryan Wong
 *
 */
 var jwt = require('jsonwebtoken');
 const config = {
  DYNAMIC_CONFIG_JWT_EXPIRE_AT: 3600,
  DYNAMIC_CONFIG_JWT_KEY: 'sdfsfdsfdsfsdfdsfds',
  DYNAMIC_CONFIG_JWT_REFRESH_EXPIRE_AT: 7200,
 };
 module.exports = {
  createAccessToken: function (payload, expireIn = config.DYNAMIC_CONFIG_JWT_EXPIRE_AT) {
    const secret = config.DYNAMIC_CONFIG_JWT_KEY;
    return jwt.sign(payload, secret, {
      expiresIn: Number(expireIn),
      algorithm: 'HS256',
    });
  },
  createRefreshToken: function (payload) {
    return jwt.sign(payload, config.DYNAMIC_CONFIG_JWT_KEY, {
      expiresIn: Number(config.DYNAMIC_CONFIG_JWT_REFRESH_EXPIRE_AT),
      algorithm: 'HS256',
    });
  },
  verifyAccessToken: function (token) {
    try {
      return jwt.verify(token, config.DYNAMIC_CONFIG_JWT_KEY);
    } catch (err) {
      return false;
    }
  },
  verifyRefreshToken: function (token) {
    try {
      return jwt.verify(token, config.DYNAMIC_CONFIG_JWT_KEY);
    } catch (err) {
      return false;
    }
  },
  generateString: function (length) {
    let d = new Date().getTime();
    const time = new Date().getTime();
    const uuid = 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx-xxxx'.replace(/[xy]/g, function (c) {
      let r = (d + Math.random() * 16) % 16 | 0;
      d = Math.floor(d / 16);
      return (c == 'x' ? r : (r & 0x7) | 0x8).toString(16);
    });
    return (uuid.toUpperCase() + '-' + time.toString()).substring(0, length);
  },
  generateUUID: function () {
    let d = new Date().getTime();
    const uuid = 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(/[xy]/g, function (c) {
      let r = (d + Math.random() * 16) % 16 | 0;
      d = Math.floor(d / 16);
      return (c == 'x' ? r : (r & 0x7) | 0x8).toString(16);
    });
    return uuid.toUpperCase();
  },
  getToken: function (req) {
    if (req.headers.authorization && req.headers.authorization.split(' ')[0] === 'Bearer') {
      return req.headers.authorization.split(' ')[1];
    } else if (req.query && req.query.token) {
      return req.query.token;
    }
    return null;
  },
  verifyTokenMiddleware: function (role) {
    const self = this;
    return function (req, res, next) {
      const token = self.getToken(req);
      if (!token) {
        return res.status(401).json({
          success: false,
          code: 'UNAUTHORIZED',
          message: 'Access denied',
        });
      }
      const result = self.verifyAccessToken(token);
      const roleId = result?.role_id;
      const user = result?.user;
      const credentialId = result?.credential_id;
      if (!result || !roleId || !user || !credentialId) {
        return res.status(401).json({
          success: false,
          code: 'TOKEN_INVALID',
          message: 'Invalid token',
        });
      }
      req.tokenPayload = result;
      next();
    };
  },
 };
@@ -0,0 +1,6 @@
 extends layout
 block content
  h1= message
  h2= error.status
  pre #{error.stack}
@@ -0,0 +1,5 @@
 extends layout
 block content
  h1= title
  p Welcome to #{title}
@@ -0,0 +1,7 @@
 doctype html
 html
  head
    title= title
    link(rel='stylesheet', href='/stylesheets/style.css')
  body
    block content