leviolson
/
guardian-api-proxy
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
A single proxy server to authenticate requests to multiple internal APIs
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
30 KiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
guardian-api-proxy/database.js

57 lines
2.1 KiB
Raw Permalink Normal View History

Initial Commit
8 years ago
Hooking up client lookup table
8 years ago
Initial Commit
8 years ago
Updating package.json to reflect github location; improving database.js; and minor tweaks to app.js method variable
8 years ago
Initial Commit
8 years ago
Hooking up client lookup table
8 years ago
Initial Commit
8 years ago
 
  1. var bcrypt       = require('bcrypt');
  2. var mysql        = require('mysql');
  3. var dotEnv       = require('dot-env');
  4. 

  5. module.exports.DatabaseLookup = function(req, done) {
  6.         var connection = mysql.createConnection({
  7.             socket   : process.env.DB_SOCKET,
  8.             user     : process.env.DB_USER,
  9.             password : process.env.DB_PASSWORD,
  10.             database : process.env.DB_DATABASE
  11.         });
  12.         connection.connect(function(err) {
  13.             if (err) done(err);
  14.         });
  15.         connection.query(mysql.format('SELECT password FROM users WHERE email = ?', [req.body.email]), function(err, result, fields) {
  16.             if (err) done(err);
  17.             if (!result || !result[0] || !result[0].password) return done(null, false);
  18. 

  19.             var password = result[0].password.replace('$2y$', '$2a$');
  20.             var salt = password.slice(0,29);
  21.             bcrypt.hash(req.body.password, salt, function(err, enc) {
  22.                 if (err) {
  23.                     console.log(err);
  24.                     return done(err, null);
  25.                 } else if (enc == password) {
  26.                     // console.log('Authorized');

  27.                     return done(null, true);
  28.                 } else {
  29.                     // console.log('Not Authorized');

  30.                     return done(null, null);
  31.                 }
  32.             });
  33.         });
  34. 

  35.         connection.end();
  36.     };
  37. module.exports.ClientLookup = function(client_id, done) {
  38.     this.client_id = client_id;
  39.     console.log(this.client_id);
  40.     var connection = mysql.createConnection({
  41.         socket   : process.env.DB_SOCKET,
  42.         user     : process.env.DB_USER,
  43.         password : process.env.DB_PASSWORD,
  44.         database : process.env.DB_DATABASE
  45.     });
  46.     connection.connect(function(err) {
  47.         if (err) return done(err, false);
  48.     });
  49.     connection.query('SELECT url FROM clients WHERE client_id = \''+this.client_id+'\'', function(err, result, fields) {
  50.         if (err) return done(err, false);
  51.         if (!result || !result[0] || !result[0].url) return done(null, false);
  52.         console.log(result[0].url);
  53.         return done(null, result[0].url);
  54.     });
  55. 

  56.     connection.end();
  57. };