-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
6894477
commit 1862993
Showing
1 changed file
with
61 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,61 @@ | ||
| const express = require('express'); | ||
| const jwt = require('jsonwebtoken'); | ||
| const bodyParser = require('body-parser'); | ||
| const dotenv = require('dotenv'); | ||
|
|
||
| dotenv.config(); // Load environment variables from .env file | ||
|
|
||
| const app = express(); | ||
| const port = process.env.PORT || 3000; | ||
|
|
||
| app.use(bodyParser.json()); // For parsing application/json | ||
|
|
||
| // Authentication middleware to verify the token | ||
| function authenticateToken(req, res, next) { | ||
| const token = req.headers['authorization']?.split(' ')[1]; // Get token from Authorization header | ||
|
|
||
| if (!token) { | ||
| return res.status(401).json({ message: 'Unauthorized access: No token provided' }); | ||
| } | ||
|
|
||
| // Verify the token | ||
| jwt.verify(token, process.env.JWT_SECRET, (err, user) => { | ||
| if (err) { | ||
| return res.status(403).json({ message: 'Forbidden: Invalid token' }); | ||
| } | ||
| req.user = user; // Attach the user info to the request object | ||
| next(); // Proceed to the next middleware or route handler | ||
| }); | ||
| } | ||
|
|
||
| // Protect the /getLogs route with authentication middleware | ||
| app.get('/getLogs', authenticateToken, (req, res) => { | ||
| const pin = process.env.PIN; | ||
|
|
||
| if (pin) { | ||
| res.json({ pin }); | ||
| } else { | ||
| res.status(500).json({ error: 'PIN not set in .env file' }); | ||
| } | ||
| }); | ||
|
|
||
| // Example login route that provides a JWT token after successful login | ||
| app.post('/login', (req, res) => { | ||
| const { username, password } = req.body; | ||
|
|
||
| // Authenticate user (for simplicity, using static values) | ||
| if (username === 'admin' && password === 'password') { | ||
| const user = { username }; // User object (could include more data) | ||
|
|
||
| // Create JWT token (expires in 1 hour) | ||
| const accessToken = jwt.sign(user, process.env.JWT_SECRET, { expiresIn: '1h' }); | ||
| res.json({ accessToken }); | ||
| } else { | ||
| res.status(401).json({ message: 'Invalid credentials' }); | ||
| } | ||
| }); | ||
|
|
||
| // Start the server | ||
| app.listen(port, () => { | ||
| console.log(`Server is running on port ${port}`); | ||
| }); |