F07: Routing, brukerprofiler, og innlogging
PG6300-14 Webutvikling og API-design
Observasjoner rundt element 2
bcrypt (igjen)
Passord i plaintext?
Kryptert?
NOPE
var bcrypt = require('bcrypt');
var password = 'ananas';
var passwordHash = bcrypt.hashSync(password, 10);
console.log(password + ' -> ' + passwordHash);
var isMatch = bcrypt.compareSync(password, passwordHash);
console.log(isMatch);
JWT (igjen)
Routing i Angular
// $routeProvider
app.config(function($routeProvider) {
$routeProvider
.when('/path', {controller: 'SomeController', templateUrl: 'someTemplate'});
});
// $location
$location.path('/path');
NG: ApplicationController
Events
LoginService.login(username, password)
.then(function() {
$scope.$emit('loggedin', username);$scope.$on('loggedin', function(event, username) {
$scope.currentUser = username;
});bcrypt med Express
Person.findOne({username: loginAttempt.username}, function(err, person) {
if (!person) {
return res.status(401).send('Invalid username or password');
}
if (!bcrypt.compareSync(
loginAttempt.password,
person.passwordHash)) {
return res.status(401).send('Invalid username or password');
}
var token = jwt.encode({username: loginAttempt.username}, secret);
res.status(201).send(token);
});