innocuous-symmetry/recipe-manager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

front end recognizes session/user info

Browse Source
This commit is contained in:
Mikayla Dobson
2022-11-22 18:33:46 -06:00
parent 1ee2cde280
commit 64aeb9a959
8 changed files with 224 additions and 31 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
server/auth/middlewares.ts
View File

@@ -9,6 +9,9 @@ export function restrictAccess(req: Request, res: Response, next: NextFunction)
}
export function checkAccess(req: Request, res: Response, next: NextFunction) {
console.log(req.isAuthenticated());
next();
if (req.isAuthenticated()) {
next();
} else {
res.status(403).send({ message: "Access forbidden" });
}
}

9
server/loaders/express.ts
View File

@@ -7,11 +7,18 @@ import session from 'express-session';
import pgSessionStore from '../db/sessionStore';
export const expressLoader = async (app: Express) => {
app.use(cors());
app.use(cors({
origin: process.env.ORIGIN || 'http://localhost:5173',
credentials: true
}));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: true }));
app.use(cookieParser());
// app.options("*", cors({ origin: 'http://localhost:5173', optionsSuccessStatus: 200 }));
// app.use(cors({ origin: "http://localhost:5173", optionsSuccessStatus: 200 }));
app.use(morgan('tiny'));
app.get('/', (req, res) => {

20
server/routes/auth.ts
View File

@@ -15,15 +15,19 @@ export const authRoute = (app: Express, passport: PassportStatic) => {
app.use('/auth', router);
router.get('/', checkAccess, (req, res, next) => {
// @ts-ignore: does not recognize structure of req.user
const user = req.user?.user;
const userData: IUser = {
firstname: user.firstname,
lastname: user.lastname,
handle: user.handle,
email: user.email
if (req.isAuthenticated()) {
// @ts-ignore: does not recognize structure of req.user
const user = req.user?.user;
const userData: IUser = {
firstname: user.firstname,
lastname: user.lastname,
handle: user.handle,
email: user.email
}
res.send({ user: userData });
} else {
res.status(403).send({ message: "Access forbidden" });
}
res.send({ user: userData });
})
router.get('/protected', restrictAccess, (req, res, next) => {