我有一個(gè)簡(jiǎn)單的 CRUD 應(yīng)用程序��,可以讓用戶註冊(cè)和登錄
在 General.js 中有一個(gè)註冊(cè)端點(diǎn)�����,這工作正常並且登入列印
"message": "登入無效����。請(qǐng)檢查使用者名稱和密碼"
- index.js
- router
- - general.js
- - auth_users.js
- - booksdb.js
在郵差註冊(cè)
當(dāng)我在 auth_users.js 中登入端點(diǎn)時(shí)
這是auth_users.js的登入程式碼����,它有登入端點(diǎn)����,主要是負(fù)責(zé)登入的express函數(shù)regd_users.post()
const express = require('express');
const jwt = require('jsonwebtoken');
let books = require("./booksdb.js");
const regd_users = express.Router();
let users = [];
const isValid = (username)=>{ //returns boolean
//write code to check is the username is valid
let userswithsamename = users.filter((user)=>{
return user.username === username
});
if(userswithsamename.length > 0){
return true;
} else {
return false;
}
}
const authenticatedUser = (username,password)=>{ //returns boolean
//write code to check if username and password match the one we have in records.
let validusers = users.filter((user)=>{
return (users.username === username &&users.password === password)
});
if(validusers.length > 0){
return true;
} else {
return false;
}
}
//only registered users can login
regd_users.post("/login", (req,res) => {
const username = req.query.username;
const password = req.query.password;
if (!username || !password) {
return res.status(404).json({message: "Error logging in"});
}
if (authenticatedUser(username,password)) {
let accessToken = jwt.sign({
data: password
}, 'access', { expiresIn: 60 * 60 });
req.session.authorization = {
accessToken,username
}
return res.status(200).send("User successfully logged in");
} else {
return res.status(208).json({message: "Invalid Login. Check username and password"});
}
});
// Add a book review
regd_users.put("/auth/review/:isbn", (req, res) => {
//Write your code here
return res.status(300).json({message: "Yet to be implemented"});
});
module.exports.authenticated = regd_users;
module.exports.isValid = isValid;
module.exports.users = users;
