AndrewTrieu/fullstack-open
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2025-12-11. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
a9b6ade2f4979943126df7f9ab0a459bab5c6b4c
fullstack-open/part4/bloglist/controllers/login.js
Andrew Trieu a9b6ade2f4 Upload 4.23
2023-06-10 15:11:13 +03:00

32 lines
827 B
JavaScript
Raw Blame History

const jwt = require('jsonwebtoken')
const bcrypt = require('bcrypt')
const loginRouter = require('express').Router()
const User = require('../models/user')
loginRouter.post('/', async (request, response) => {
const { username, password } = request.body
const user = await User.findOne({ username })
const passwordCorrect = user === null
? false
: await bcrypt.compare(password, user.passwordHash)
if (!(user && passwordCorrect)) {
return response.status(401).json({
error: 'invalid username or password'
})
}
const userForToken = {
username: user.username,
id: user._id,
}
const token = jwt.sign(userForToken, process.env.SECRET, { expiresIn: 60*60 })
response
.status(200)
.send({ token, username: user.username, name: user.name })
})
module.exports = loginRouter
Reference in New Issue View Git Blame Copy Permalink