florian/ExpressJS-Mongo
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add authentication mecanisme and secure database.

Browse Source
This commit is contained in:
Florian THIERRY - Takiguchi
2020-09-26 20:48:29 +02:00
parent 54495c0689
commit 8a4463cbc5
14 changed files with 93 additions and 43 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
.gitignore vendored
View File

@@ -1 +1,2 @@
**/node_modules
docker/mongodb/data

9
docker/docker-compose.yml
View File

@@ -4,4 +4,11 @@ services:
container_name: "mongo"
image: "mongo:latest"
ports:
- "27017:27017"
- "27017:27017"
environment:
- "MONGO_INITDB_DATABASE=express-test"
- "MONGO_INITDB_ROOT_USERNAME=god"
- "MONGO_INITDB_ROOT_PASSWORD=P@ssword"
volumes:
- "./mongodb/docker-entrypoint-initdb.d:/docker-entrypoint-initdb.d/:ro"
- "./mongodb/data:/data/db"

12
docker/mongodb/docker-entrypoint-initdb.d/initDatabase.js Normal file
View File

@@ -0,0 +1,12 @@
db.test.insert({id: 'test'});
db.createUser(
{
user: "application_user",
pwd: "Password1",
roles:
[
{ role: "readWrite", db: "db_application" }
]
}
)

6
src/js/controller/applicationCtrl.js
View File

@@ -1,6 +1,8 @@
const Repository = require('../repository/repository');
const router = require('express').Router();
const authenticationFilter = require('../filter/authenticationFilter');
const express = require('express');
const router = express.Router();
const applicationRepository = new Repository('applications');
router.get('/', (request, response) => {
@@ -36,7 +38,7 @@ router.put('/:applicationId', (request, response) => {
});
});
router.delete('/:applicationId', (request, response) => {
router.delete('/:applicationId', authenticationFilter, (request, response) => {
const applicationId = request.params.applicationId;
applicationRepository.find({_id: applicationId}, entity => {
if (entity.length === 0) {

1
src/js/controller/templateCtrl.js
View File

@@ -1,4 +1,3 @@
const Repository = require('../repository/repository');
const router = require('express').Router();
// Develop routes here

10
src/js/controller/userCtrl.js
View File

@@ -8,10 +8,12 @@ router.post('/login', (request, response) => {
if (!loginRequest) {
response.status(403).send();
} else {
userService.checkCredentials(loginRequest.login, loginRequest.password, () => {
const tokenPayload = { login: loginRequest.login };
response.json(tokenService.build(tokenPayload));
}, () => response.status(403).send());
userService.checkCredentials(loginRequest.login, loginRequest.password,
() => {
const tokenPayload = { login: loginRequest.login };
response.json(tokenService.build(tokenPayload));
},
() => response.status(403).send());
}
});

17
src/js/filter/authenticationFilter.js Normal file
View File

@@ -0,0 +1,17 @@
const tokenService = require('../service/tokenService');
module.exports = (request, response, next) => {
const authenticationHeader = request.headers.authorization;
if (authenticationHeader) {
const token = authenticationHeader.split(' ')[1];
if (tokenService.isValid(token)) {
next();
} else {
response.status(403).send();
}
} else {
response.status(401).send();
}
};

16
src/js/repository/mongoClient.js
View File

@@ -2,9 +2,18 @@ const mongodb = require('mongodb');
const configuration = require('../configuration');
const mongoConfig = configuration.mongodb;
function buildDatabaseUrl() {
const username = mongoConfig.username;
const password = encodeURIComponent(mongoConfig.password);
const url = `${mongoConfig.url}:${mongoConfig.port}`;
const test = `mongodb://${username}:${password}@${url}`;
console.log(test);
return test;
}
class MongoClient {
constructor() {
mongodb.MongoClient.connect(mongoConfig.url, (error, client) => {
mongodb.MongoClient.connect(buildDatabaseUrl(), (error, client) => {
if (error !== null) {
throw new Error(`Unable de connect to Mongo database: ${error}`);
}
@@ -61,6 +70,5 @@ class MongoClient {
}
}
// Define a singleton of class "MongoClient".
const mongoClient = new MongoClient();
module.exports = mongoClient;
const singleton = new MongoClient();
module.exports = singleton;

7
src/js/repository/repository.js
View File

@@ -13,7 +13,7 @@ function convertIdToMongodbFormat(entity) {
module.exports = class Repository {
/**
* Creates a new repository which read and write into the {@code collectionName} collection in database.
* @param {*} collectionName
* @param {String} collectionName
*/
constructor(collectionName) {
this.collectionName = collectionName;
@@ -22,8 +22,9 @@ module.exports = class Repository {
/**
* Returns the entities that matches criteria in {@code query}.
* @param {*} query The query which contains criteria to find some entities.
* @param {*} onSuccess The function to execute after getting entities.
* @param {Object} query The query which contains criteria to find some entities.
* @param {Function} onSuccess The function to execute after getting entities.
* @param {Function} onError The function to execute if entity finding failed.
*/
find(query, onSuccess, onError) {
convertIdToMongodbFormat(query);

11
src/js/service/passwordService.js
View File

@@ -2,11 +2,22 @@ const bcrypt = require('bcrypt');
const saltRounds = 10;
class PasswordService {
/**
* Hashes the password in parameters.
* @param {String} password The plain text password.
* @returns The hashed password.
*/
hashPassword(password) {
const salt = bcrypt.genSaltSync(saltRounds);
return bcrypt.hashSync(password, salt);
}
/**
* Checks if the {@code plainTextPassword} matches the hashed password.
* @param {String} plainTextPassword The plain text password.
* @param {String} hashedPassword The hashed password.
* @returns A boolean.
*/
areSamePasswords(plainTextPassword, hashedPassword) {
return bcrypt.compareSync(plainTextPassword, hashedPassword);
}

14
src/js/service/tokenService.js
View File

@@ -3,10 +3,20 @@ const configuration = require('../configuration');
const securityConfig = configuration.security;
class TokenService {
/**
* Builds a JWT token.
* @param {Object} tokenPayload The JWT payload.
* @returns {String} The JWT token.
*/
build(tokenPayload) {
return jwt.sign(tokenPayload, securityConfig.jwt.secret, {expiresIn: securityConfig.jwt.validity});
}
/**
* Checks if the given token is valid, and provides from this application or not.
* @param {String} token The JWT token to check.
* @returns A boolean.
*/
isValid(token) {
try {
jwt.verify(token, securityConfig.jwt.secret);
@@ -17,5 +27,5 @@ class TokenService {
}
}
const jwtInstance = new TokenService();
module.exports = jwtInstance;
const singleton = new TokenService();
module.exports = singleton;

9
src/js/service/userService.js
View File

@@ -15,14 +15,7 @@ class UserService {
}
/**
*
*/
isAuthenticated() {
return false;
}
/**
*
* Checks if credentials matches to an existing user, that have this password.
* @param {String} login User login.
* @param {String} password User password, in plain text.
* @param {Function} onSuccess Callback function to execute if a user exists with this login.

14
src/mongodb/initDatabase.js
View File

@@ -1,14 +0,0 @@
use express-test;
db.collection.test.insert({id: 'test'});
db.createUser(
{
user: "express-user",
pwd: "P@ssword1",
roles:
[
{ role: "readWrite", db: "express-test" }
]
}
)

9
src/resources/application.yml
View File

@@ -1,8 +1,9 @@
mongodb:
url: 'mongodb://localhost:27017'
username: 'express-user'
password: 'P@ssword1'
database: 'express-test'
url: 'localhost'
port: 27017
username: 'application_user'
password: 'Password1'
database: 'db_application'
security:
jwt:
secret: 5ubtcCCo7hWBqjNGtzzVKnLT1KxN9uS4D6kRZowCunZAYPmxtKy6mvgoxANe4WqLVfiVI7AZSVqZCtvlSWFwIsnXGH6lxeKG0U8Wu7Kw0jwfFOGLvlO8bXaB