-
Notifications
You must be signed in to change notification settings - Fork 10.1k
/
Copy pathindex.js
116 lines (100 loc) · 3.22 KB
/
index.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
const app = require("express")();
const server = require("http").createServer(app);
const port = process.env.PORT || 3000;
const session = require("express-session");
const bodyParser = require("body-parser");
const passport = require("passport");
const LocalStrategy = require("passport-local").Strategy;
const sessionMiddleware = session({ secret: "changeit", resave: false, saveUninitialized: false });
app.use(sessionMiddleware);
app.use(bodyParser.urlencoded({ extended: false }));
app.use(passport.initialize());
app.use(passport.session());
const DUMMY_USER = {
id: 1,
username: "john",
};
passport.use(
new LocalStrategy((username, password, done) => {
if (username === "john" && password === "doe") {
console.log("authentication OK");
return done(null, DUMMY_USER);
} else {
console.log("wrong credentials");
return done(null, false);
}
})
);
app.get("/", (req, res) => {
const isAuthenticated = !!req.user;
if (isAuthenticated) {
console.log(`user is authenticated, session is ${req.session.id}`);
} else {
console.log("unknown user");
}
res.sendFile(isAuthenticated ? "index.html" : "login.html", { root: __dirname });
});
app.post(
"/login",
passport.authenticate("local", {
successRedirect: "/",
failureRedirect: "/",
})
);
app.post("/logout", (req, res) => {
console.log(`logout ${req.session.id}`);
const socketId = req.session.socketId;
if (socketId && io.of("/").sockets.get(socketId)) {
console.log(`forcefully closing socket ${socketId}`);
io.of("/").sockets.get(socketId).disconnect(true);
}
req.logout();
res.cookie("connect.sid", "", { expires: new Date() });
res.redirect("/");
});
passport.serializeUser((user, cb) => {
console.log(`serializeUser ${user.id}`);
cb(null, user.id);
});
passport.deserializeUser((id, cb) => {
console.log(`deserializeUser ${id}`);
cb(null, DUMMY_USER);
});
const io = require('socket.io').Server(server, {
/**
* We don't strictly need CORS configuration for this example because the socket.io server and the client are
* on the same host:port, but this is a sample configuration when you do need it.
* See "Handling CORS" in documentation for full documentation of options.
**/
cors: {
origin: [`http://localhost:${port}`],
methods: ['GET', 'POST'],
// include this to accept cookies, used by express-session for the session-identifying cookie
credentials: true
},
});
// convert a connect middleware to a Socket.IO middleware
const wrap = middleware => (socket, next) => middleware(socket.request, {}, next);
io.use(wrap(sessionMiddleware));
io.use(wrap(passport.initialize()));
io.use(wrap(passport.session()));
io.use((socket, next) => {
if (socket.request.user) {
next();
} else {
next(new Error('unauthorized'))
}
});
io.on('connect', (socket) => {
console.log(`new connection ${socket.id}`);
socket.on('whoami', (cb) => {
cb(socket.request.user ? socket.request.user.username : '');
});
const session = socket.request.session;
console.log(`saving sid ${socket.id} in session ${session.id}`);
session.socketId = socket.id;
session.save();
});
server.listen(port, () => {
console.log(`application is running at: http://localhost:${port}`);
});