-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.js
147 lines (123 loc) · 3.97 KB
/
server.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
import express from 'express';
import { join, dirname } from 'path';
import { fileURLToPath } from 'url';
import { readFile, writeFile } from 'fs/promises';
import bcrypt from 'bcryptjs';
import jwt from 'jsonwebtoken';
const __dirname = dirname(fileURLToPath(import.meta.url));
const DB_PATH = join(__dirname, 'db.json');
// Database operations
async function readDb() {
try {
const data = await readFile(DB_PATH, 'utf8');
return JSON.parse(data);
} catch (error) {
// If file doesn't exist or is empty, return default structure
return { users: [] };
}
}
async function writeDb(data) {
await writeFile(DB_PATH, JSON.stringify(data, null, 2), 'utf8');
}
const app = express();
// Middleware
app.use(express.json());
// CORS middleware
app.use((req, res, next) => {
res.header('Access-Control-Allow-Origin', '*');
res.header('Access-Control-Allow-Headers', 'Origin, X-Requested-With, Content-Type, Accept, Authorization');
res.header('Access-Control-Allow-Methods', 'GET, POST, PUT, DELETE, OPTIONS');
if (req.method === 'OPTIONS') {
return res.sendStatus(200);
}
next();
});
// Test route
app.get('/', (req, res) => {
res.json({ message: 'Server is running' });
});
// Auth routes
app.post('/auth/register', async (req, res) => {
try {
const { email, password } = req.body;
if (!email || !password) {
return res.status(400).json({ message: 'Email and password are required' });
}
const db = await readDb();
// Check if user exists
const existingUser = db.users.find(user => user.email === email);
if (existingUser) {
return res.status(400).json({ message: 'User already exists' });
}
// Hash password
const hashedPassword = await bcrypt.hash(password, 10);
// Create new user
const newUser = {
id: Date.now().toString(),
email,
password: hashedPassword
};
// Add to database
db.users.push(newUser);
await writeDb(db);
// Create JWT
const token = jwt.sign(
{ userId: newUser.id },
'your_jwt_secret',
{ expiresIn: '1d' }
);
res.status(201).json({
token,
user: {
id: newUser.id,
email: newUser.email
}
});
} catch (error) {
console.error('Registration error:', error);
res.status(500).json({ message: 'Server error during registration' });
}
});
app.post('/auth/login', async (req, res) => {
try {
const { email, password } = req.body;
if (!email || !password) {
return res.status(400).json({ message: 'Email and password are required' });
}
const db = await readDb();
// Find user
const user = db.users.find(user => user.email === email);
if (!user) {
return res.status(400).json({ message: 'Invalid credentials' });
}
// Check password
const isValid = await bcrypt.compare(password, user.password);
if (!isValid) {
return res.status(400).json({ message: 'Invalid credentials' });
}
// Create JWT
const token = jwt.sign(
{ userId: user.id },
'your_jwt_secret',
{ expiresIn: '1d' }
);
res.json({
token,
user: {
id: user.id,
email: user.email
}
});
} catch (error) {
console.error('Login error:', error);
res.status(500).json({ message: 'Server error during login' });
}
});
// Start server
const PORT = 3001;
app.listen(PORT, () => {
console.log(`Server running on port ${PORT}`);
console.log(`Test server at: http://localhost:${PORT}`);
console.log(`Register endpoint: http://localhost:${PORT}/auth/register`);
console.log(`Login endpoint: http://localhost:${PORT}/auth/login`);
});