Authentication for the Angular App

.gitignore

@@ -0,0 +1,33 @@
+#Ignore class files
+*.class
+*.classpath
+
+#Ignore some generated directories
+gen/
+out/
+
+# Mobile Tools for Java (J2ME)
+.mtj.tmp/
+
+# Eclipse related
+.metadata/
+.project/
+
+#intelliJ related
+*.iml
+.idea
+
+#property files
+common/build.properties
+
+# Package Files #
+*.jar
+*.war
+*.ear
+
+# virtual machine crash logs, see http://www.java.com/en/download/help/error_hotspot.xml
+hs_err_pid*
+
+#node items
+/node_modules
+/bower_components

README.md

@@ -1,3 +1,16 @@
+#How to use Nodes-Talking-Admin
+------------------------------------------------
+Usage:
+
+    clone the repo
+    cd <install dir>
+    npm install
+    make sure the server is running
+    nodemon app
+    navigate to localhost:8000
+
+------------------------------------------------
+
 # Angular Express Seed
 
 Start an awesome app with AngularJS on the front, Express + Node on the back. This project is an

app.js

@@ -6,34 +6,116 @@
 var express = require('express'),
   bodyParser = require('body-parser'),
   methodOverride = require('method-override'),
-  errorHandler = require('error-handler'),
+  //errorHandler = require('error-handler'),
   morgan = require('morgan'),
+  passport = require('passport'),
   routes = require('./routes'),
   api = require('./routes/api'),
   http = require('http'),
-  path = require('path');
-
-var app = module.exports = express();
+  https = require('https'),
+  path = require('path'),
+  // the requires for passport
+  LocalStrategy = require('passport-local').Strategy,
+  flash = require('connect-flash'),
+  session = require('express-session'),
+  bcrypt = require('bcryptjs'),
+  sift = require('sift'),
+  fs = require('fs'),
+  mongo = require('mongoskin'),
+  db = mongo.db("mongodb://localhost/registration", {safe : true})
+
+var options = {
+    key : fs.readFileSync('./ssl/privatekey'),
+    cert : fs.readFileSync('./ssl/certificate')
+}
 
+// for passport session management
+var users = []
+
+// Passport session setup.
+//   To support persistent login sessions, Passport needs to be able to
+//   serialize users into and deserialize users out of the session.  Typically,
+//   this will be as simple as storing the user ID when serializing, and finding
+//   the user by ID when deserializing.
+passport.serializeUser(function(user, done) {
+    done(null, user.id);
+})
+
+passport.deserializeUser(function(id, done) {
+    var returnedUserObject = sift({'id' : id}, users)
+    if(returnedUserObject.length === 1){
+        return done(null, returnedUserObject)
+    } else {
+        return done(new Error('user does not exist for id:', id))
+    }
+})
+
+
+// Use the LocalStrategy within Passport.
+//   Strategies in passport require a `verify` function, which accept
+//   credentials (in this case, a username and password), and invoke a callback
+//   with a user object.  In the real world, this would query a database;
+//   however, in this example we are using a baked-in set of users.
+passport.use(new LocalStrategy(
+    function(username, password, done) {
+        // asynchronous verification, for effect...
+        process.nextTick(function () {
+
+            // Find the user by username.  If there is no user with the given
+            // username, or the password is not correct, set the user to `false` to
+            // indicate failure and set a flash message.  Otherwise, return the
+            // authenticated `user`.
+            db.collection('users').findOne({'userName' : username}, function(err, userObject){
+                if(err){
+                    return done(err)
+                }
+                if(userObject){
+
+                    if(bcrypt.compareSync(password, userObject.password)){
+
+                        // for passport sessions
+                        userObject.id = userObject._id
+                        users.push(userObject)
+                        return done(null, userObject)
+                    } else {
+                        return done(null, false, { message: 'Invalid Password'})
+                    }
+
+                } else {
+                    return(done(null, false, {message : 'Unknown user ' + username}))
+                }
+            })
+
+        })
+    }
+))
+
+
+var app = module.exports = express()
 
 /**
  * Configuration
  */
 
 // all environments
-app.set('port', process.env.PORT || 3000);
-app.set('views', __dirname + '/views');
-app.set('view engine', 'jade');
-app.use(morgan('dev'));
-app.use(bodyParser());
-app.use(methodOverride());
-app.use(express.static(path.join(__dirname, 'public')));
+app.set('port', process.env.PORT || 8000)
+app.set('views', __dirname + '/views')
+app.set('view engine', 'jade')
+app.use(morgan('dev'))
+app.use(bodyParser())
+app.use(methodOverride())
+app.use(express.static(path.join(__dirname, 'public')))
+// session and setup for passport
+app.use(session({ secret: 'imalittleteapot' }))
+app.use(passport.initialize())
+app.use(passport.session())
+app.use(flash())
 
 var env = process.env.NODE_ENV || 'development';
 
 // development only
 if (env === 'development') {
-  app.use(express.errorHandler());
+  app.use(express.errorHandler())
 }
 
 // production only
@@ -47,20 +129,39 @@ if (env === 'production') {
  */
 
 // serve index and view partials
-app.get('/', routes.index);
-app.get('/partials/:name', routes.partials);
+app.get('/', routes.ensureAuthenticated, routes.index)
+app.get('/partials/:name', routes.ensureAuthenticated, routes.partials)
+// I don't know where to put this.
+app.get('/api/userinfo', routes.ensureAuthenticated, routes.userinfo)
+
+
+// login stuff
+app.get('/login', function(req, res){
+
+    res.render('login')
+})
+app.post('/login', passport.authenticate('local', { failureRedirect: '/login', failureFlash: true }), function(req, res) {
+    // this happens on success
+    res.redirect('/')
+})
 
 // JSON API
-app.get('/api/name', api.name);
+//TODO: decide if the API should be protected to, and under what circumstances.
+app.get('/api/name', api.name)
+app.get('/api/watable_data',api.watable_data)
+
 
 // redirect all others to the index (HTML5 history)
-app.get('*', routes.index);
+app.get('*', routes.ensureAuthenticated, routes.index)
 
 
 /**
  * Start Server
  */
 
+
+//TODO: this needs to be worked out, ALL connections should move to secure, including in angular
+//https.createServer(options, app).listen(app.get('port'), function () {
 http.createServer(app).listen(app.get('port'), function () {
-  console.log('Express server listening on port ' + app.get('port'));
-});
+  console.log('Express server listening on port ' + app.get('port'))
+})

bower.json

@@ -0,0 +1,27 @@
+{
+  "name": "NodesTalkingAdmin",
+  "version": "0.1",
+  "homepage": "https://github.com/rsiewert/angular-express-seed",
+  "authors": [
+    "Contributors of Nodes-Talking"
+  ],
+  "description": "Administration App for Nodes-Talking Project",
+  "main": "app.js",
+  "license": "MIT",
+  "private": true,
+  "ignore": [
+    "**/.*",
+    "node_modules",
+    "bower_components",
+    "test",
+    "tests"
+  ],
+  "dependencies": {
+    "bootstrap": "*",
+    "jquery": "*",
+    "angular" : "*",
+    "bcryptjs" : "*"
+
+
+  }
+}

package.json

@@ -4,10 +4,23 @@
   "private": true,
   "dependencies": {
     "body-parser": "^1.0.2",
-    "error-handler": "^0.1.4",
-    "express": "~4.1.1",
+    "errorhandler": "*",
+    "express": "~3.5.1",
+    "connect": "*",
     "jade": "~0.31.2",
     "method-override": "^1.0.0",
-    "morgan": "^1.0.0"
+    "morgan": "^1.0.0",
+    "bower" : "*",
+    "nodemon": "*",
+    "passport": "~0.2.1",
+    "passport-local" : "1.0.0",
+    "connect-flash" : "0.1.1",
+    "express-session" : "1.9.1",
+    "mongoskin"     : "1.4.1",
+    "bcryptjs" : "2.1.0",
+    "sift" : "0.1.0"
+  },
+  "scripts": {
+      "start" : "node app.js"
   }
 }