mahuntington
/
SED-Stack
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

check passwords before adding user to session

Browse Source
master
Matt Huntington 9 years ago
parent c9de2154ca
commit e14904d9d9
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File

5
controllers/logins.js
Unescape View File

@ -1,4 +1,5 @@
var controller = require('express').Router(); var controller = require('express').Router();
var bcrypt = require('bcrypt');
var bodyParser = require('body-parser'); var bodyParser = require('body-parser');
var Users = require('../models/users.js'); var Users = require('../models/users.js');
@ -14,7 +15,9 @@ controller.post('/', function(req, res){
username:req.body.username username:req.body.username
} }
}).then(function(foundUser){ }).then(function(foundUser){
req.session.currentUser = foundUser; if(bcrypt.compareSync(req.body.password, foundUser.password)){
req.session.currentUser = foundUser;
}
res.redirect('/'); res.redirect('/');
}); });
}); });

Write Preview
Loading…
Cancel
Save