mahuntington
/
panpsychism
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '04731a5864'
${ noResults }
panpsychism/unit_02/w06d04/homework
History
Kristyn Bryan 04731a5864
Update README.md 		10 years ago
..
README.md Update README.md 10 years ago

README.md

ga

WDI-PANTHALASSA

Title: Sessions & Authentication w06d04
Type: Homework
Duration: "3:00"
Creator:
Original creators: WDI-Archer & WDI-Bowie
Adapted by: Kristyn Bryan
Course: WDIr Panthalassa
Competencies: Javascript
Prerequisites: Javascript

Homework

Handling Sessions in Node

You're going to create a two-page app. Create a new express server and npm install and require everything you need (install express, express-sessions, body-parser, ejs, and mongoose, etc.). Also remember to touch a .gitignore file and ignore node_modules. Do the following with this server:

Commit 1

"Commit 1: Created a new app and included the npm packages that I need."

Create 2 pages: a welcome page and a form page.

The form should ask the user for a name. When the user submits the form, save it in sessions and make the welcome page display: "Welcome, name". Refresh the welcome page, does the name persist?

Commit 2

"Commit 2: Created a form page and a welcome page."

Lets now use a database with stored information to populate our session.

Connect to mongo using mongoose.

Commit 3

"Commit 3: Connected mongo using mongoose."

Create a mongoose schema for a user. Be sure to register it into a model. The schema should have a name (string) and color (also string).

Commit 4

"Commit 4: Created a schema and model for user."

Change the form route for setting the user's name. Instead of setting it in sessions, create a new user in your user collection. Add an input for the person's favorite color and store that along with the user's name.

Commit 5

"Commit 5: New form element for color and saving that information with the user."

Create a new page for a login form. This form should take only a user's name. When a user submits the form, find their document in the database and set, in sessions, their name and color.

Commit 6

"Commit 6: Created a new page for login. Create a session and display their information."

When a user goes to the welcome page, if they do not have a name set in sessions, redirect them to the login. If they have a name, render the welcome page with the normal welcome message and change the background to their color.

Commit 7

"Commit 7: The user has a custom page or is redirected to the login if their name isn't set to the session. "

FROM MATT'S LESSON Install and reqire bcrypt

Create a route for username and password Encrypt the password using bcrypt. Reminder on how to has a password string using bcrypt: req.session.password = bcrypt.hashSync(req.params.password, bcrypt.genSaltSync(10));

Commit 8

"Commit 8: Hashed the password using bcrypt. "

Write the code necessary to reder a form for logging in /new Write the login function that will take the username and password and confirm that the password matches.

Commit 9

"Commit 9: Compared the username and password with the encrypted password. Redirected accordingly. "

Create a login controller and session (so that you can delete it)

Again, it's up to you how this is accomplished.

They need to log in

So we now have the beginning of our signup flow but nothing his happening yet. Remember when we installed bcrypt earlier? We're going to now use that to save our users data to the db and "sign them up" for our application.

Goal: Set up bcrypt to hash our password and save that hashed password to the db

What is salting?

  1. Create a function called createUser that takes req, res, and next as arguments. Inside of that function create a function saveUser that takes two arguments, email and hash. Build the saveUser function as a standard pg function, It will insert an email and a password_digest into users.

  2. TOGETHER: build the createSecure function, explain how we call it as a callback.

  • add this line to the top

now call that function in the first line of create user, pass in the body, and a reference to saveUser as the callback

  1. so let's go line by line and see what happens. We can now save users to our database and the password that is saved is encrypted.

  2. make the corresponding post route in users.js that calls createUser and authenticates them it should redirect to the home page.

Challenges: Part 3 Log in

  1. Create a log in anchor tag on our home page that links to users/login it should render users/login.html.ejs which has a form that makes a post request with email and password.

  2. Cool so this post request goes no where let's build this part out together.

Challenges: Part 4 logout

Goal: Add a route to log a user out

  1. Add a delete route / logout to users.js
  2. Install method-override
  3. Add a form/button on the home page that links to that delete route