anhnt · January 7, 2014 10:02
diff --git a/Account.js b/Account.js
 // api/models/Account.js

 module.exports = {
  attributes: {
  	acct_id: {
 			type: 'int',
 			primaryKey: true
 		},
 		loginName: {
 			type: 'string',
 			required: true
 		},
 		email: {
 			type:'string',
 			required: true
 		},
 		phone: 'string',
 		fullName: {
 			type: 'string'
 		},
 		password: {
 			type: 'string',
 			required: true
 		},
 		posts: {
 			collection: 'Post'
 		}
  }
 }
diff --git a/AuthController.js b/AuthController.js
 // api/controllers/AuthController.js

 var passport = require('passport');
 
 var AuthController = {
 
  login: function (req,res)
 	{
 		res.view();
 	},
 
 	process: function(req, res)
 	{
 		passport.authenticate('local', function(err, user, info)
 		{
 			if ((err) || (!user))
 			{
 				res.redirect('/login');
 				return;
 			}
 
 			req.logIn(user, function(err)
 			{
 				if (err)
 				{
 					res.redirect('/login');
 					return;
 				}
 				
 				res.redirect('/');
 				return;
 			});
 		})(req, res);
 	},
 
 	logout: function (req,res)
 	{
 		req.logout();
 		res.redirect('/');
 	}
 
 };
 
 module.exports = AuthController;
diff --git a/express.js b/express.js
 // config/express.js

 var passport = require('passport');
 
 module.exports.express = {
 	customMiddleware: function (app) {
 		app.use(passport.initialize());
 		app.use(passport.session());
 	}
 };
diff --git a/isAuthenticated.js b/isAuthenticated.js
 // api/policies/isAuthenticated.js

 module.exports = function(req, res, next)
 {
  if (req.isAuthenticated())
                return next();

  else return res.redirect('/login')
 }
diff --git a/login.ejs b/login.ejs
 <!-- views/auth/login.ejs -->

 <form action="/login" method="post">
 <div>
 <label>Username:</label>
 <input type="text" name="username"/><br/>
 </div>
 <div>
 <label>Password:</label>
 <input type="password" name="password"/>
 </div>
 <div>
 <input type="submit" value="Submit"/>
 </div>
 </form>
diff --git a/passport.js b/passport.js
 // config/passport.js

 var passport = require('passport'),
 LocalStrategy = require('passport-local').Strategy;

 passport.serializeUser(function(account, done) {
 	done(null, account.acct_id);
 });

 passport.deserializeUser(function(id, done) {
 	Account.findOne({acct_id: id}).done(function (err, account) {
 		done(err, account);
 	});
 });

 passport.use(new LocalStrategy(
 	function(username, password, done) {
    Account.findOne({ loginName: username}).done(function(err, account) {
  		  if (err) { return done(err); }
  			if (!account) { return done(null, false, { message: 'Unknown user ' + username }); }
  			if (account.password != password) { return done(null, false, { message: 'Invalid password' }); }
  			return done(null, account);
  		});
  	}
 ));
diff --git a/policies.js b/policies.js
 // config/policies.js

 module.exports.policies = {
  '*': 'isAuthenticated',
  'auth': {
 		'*': true
 	}
 }
diff --git a/routes.js b/routes.js
 // config/routes.js

 module.exports.routes = {
  '/': {
    controller: 'post',
    action: 'index'
  },
  'get /login':{
    controller: 'auth',
    action: 'login'
  },
  'post /login':{
    controller: 'auth',
    action: 'process'
  },
 }
	// api/models/Account.js

	module.exports = {
	attributes: {
	acct_id: {
	type: 'int',
	primaryKey: true
	},
	loginName: {
	type: 'string',
	required: true
	},
	email: {
	type:'string',
	required: true
	},
	phone: 'string',
	fullName: {
	type: 'string'
	},
	password: {
	type: 'string',
	required: true
	},
	posts: {
	collection: 'Post'
	}
	}
	}
	// api/controllers/AuthController.js

	var passport = require('passport');

	var AuthController = {

	login: function (req,res)
	{
	res.view();
	},

	process: function(req, res)
	{
	passport.authenticate('local', function(err, user, info)
	{
	if ((err) \|\| (!user))
	{
	res.redirect('/login');
	return;
	}

	req.logIn(user, function(err)
	{
	if (err)
	{
	res.redirect('/login');
	return;
	}

	res.redirect('/');
	return;
	});
	})(req, res);
	},

	logout: function (req,res)
	{
	req.logout();
	res.redirect('/');
	}

	};

	module.exports = AuthController;
	// config/express.js

	var passport = require('passport');

	module.exports.express = {
	customMiddleware: function (app) {
	app.use(passport.initialize());
	app.use(passport.session());
	}
	};
	// api/policies/isAuthenticated.js

	module.exports = function(req, res, next)
	{
	if (req.isAuthenticated())
	return next();

	else return res.redirect('/login')
	}
	<!-- views/auth/login.ejs -->

	<form action="/login" method="post">
	<div>
	<label>Username:</label>
	<input type="text" name="username"/><br/>
	</div>
	<div>
	<label>Password:</label>
	<input type="password" name="password"/>
	</div>
	<div>
	<input type="submit" value="Submit"/>
	</div>
	</form>
	// config/passport.js

	var passport = require('passport'),
	LocalStrategy = require('passport-local').Strategy;

	passport.serializeUser(function(account, done) {
	done(null, account.acct_id);
	});

	passport.deserializeUser(function(id, done) {
	Account.findOne({acct_id: id}).done(function (err, account) {
	done(err, account);
	});
	});

	passport.use(new LocalStrategy(
	function(username, password, done) {
	Account.findOne({ loginName: username}).done(function(err, account) {
	if (err) { return done(err); }
	if (!account) { return done(null, false, { message: 'Unknown user ' + username }); }
	if (account.password != password) { return done(null, false, { message: 'Invalid password' }); }
	return done(null, account);
	});
	}
	));
	// config/policies.js

	module.exports.policies = {
	'*': 'isAuthenticated',
	'auth': {
	'*': true
	}
	}
	// config/routes.js

	module.exports.routes = {
	'/': {
	controller: 'post',
	action: 'index'
	},
	'get /login':{
	controller: 'auth',
	action: 'login'
	},
	'post /login':{
	controller: 'auth',
	action: 'process'
	},
	}