Snippets

vborshchov auth

Created by Victor (King) Borshchov
auth.js
Raw 
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
// Fire a query to your DB and check if the credentials are valid
    var dbUserObj = auth.validate(username, password);
   
    if (!dbUserObj) { // If authentication fails, we send a 401 back
      res.status(401);
      res.json({
        "status": 401,
        "message": "Invalid credentials"
      });
      return;
    }

    if (dbUserObj) {

      // If authentication is success, we will generate a token
      // and dispatch it to the client

      res.json(genToken(dbUserObj));
    }

  },

  validate: function(username, password) {
    var dbUserObj;
    User.findOne({name: username}, function(err, user) {
      if (user) {
        user.comparePassword(password, function(err, isMatch) {
          if (err) next(err);
          if (isMatch) {
            console.log("in validation");
            dbUserObj = {
              name: user.name,
              admin: user.admin
            };
          }
        });
      }
    });
    return dbUserObj;
  },

Comments (0)

HTTPS SSH

You can clone a snippet to your computer for local editing. Learn more.