front-end-project-week/server.js at master · ckopecky/front-end-project-week · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
const express = require("express");
require("dotenv").config();
const server = express();

const port=process.env.PORT;

const cors = require("cors");
const helmet = require("helmet");
const mongoose = require("mongoose");
const jwt = require("jsonwebtoken");

const noteController = require("./controllers/NoteController");
const authController = require("./controllers/AuthController");
const note = require("./controllers/FakerData");

const devDatabase = process.env.DEVDB;
const prodDatabase = process.env.PRODDB;
const username = process.env.USERNAME;
const password = process.env.PW;


//insert database connection here
if(process.env.NODE_ENV === "development") {
    mongoose.connect(`mongodb://localhost:27017/${devDatabase}`, { useNewUrlParser: true, useCreateIndex: true, useFindAndModify: false, useUnifiedTopology: true  } )
    .then(response => {
        console.log(`Connected to ${response.connection.name}`);
    })
    .catch(error => {
        console.log({Error: error.message})
    })
}

else {
    console.log(username);
    //mongodb://<dbuser>:<dbpassword>@ds229118.mlab.com:29118/heroku_v30jk6j6
    mongoose.connect(process.env.MONGO_URI, { useNewUrlParser: true, useCreateIndex: true, useFindAndModify: false, useUnifiedTopology: true }  )
    .then(response => {

        console.log(`Connected to ${response.connection.name}`);
    })
    .catch(error => {
        console.log({Error: error.message})
    })
}

//middleware

    //local

    //restricted function for auth

    const restricted = (req, res, next) => {
        const token = req.headers.authorization;
        const secret = process.env.SECRET;
        console.log("\n\n\ntoken: " + token + "\n\n\nsecret:", secret);
        //if a token exists...let's verify it.
        if(token){
            jwt.verify(token, secret, (err, decodedToken) => {
                if (err) {
                    return res.status(401).json({message: 'Token was not decoded', err});
                }
                console.log(decodedToken);
                next();
            });
        } else {
            //error in retrieving token
            res.send({message: "Error in retrieving token"});
        }
    }

//global middleware
//TODO: read up more on cors to fix the options
const corsOptions = {
    origin: ['http://localhost:3000', 'https://notepen.netlify.app']
};

server.use(express.json());
server.use(helmet());
server.use(cors(corsOptions));

server.use("/api/notes", noteController);
server.use("/api/auth", authController);

server.get("/", (req, res) => {
res.status(200).json({SanityCheck: "Sanity check works..."});
})

server.get("/auth", restricted, (req, res) => {
    res.status(200).json({AuthSanityCheck: "You have the secret!"})
})

server.listen(port, ()=>{
    console.log(`Server is listening on port ${port}`);
})