modernize codebase

Author: pendo324

.eslintrc.js

@@ -0,0 +1,25 @@
+module.exports = {
+  root: true,
+  env: {
+    node: true
+  },
+  extends: ["airbnb-base"],
+  plugins: ["prettier"],
+  rules: {
+    "quotes": [2, "single", { "avoidEscape": true }],
+    "no-console": process.env.NODE_ENV === "production" ? "error" : "off",
+    "no-debugger": process.env.NODE_ENV === "production" ? "error" : "off",
+    "no-unused-vars": ["error", { "argsIgnorePattern": "^_" }],
+    "comma-dangle": ["error", "never"],
+    "prettier/prettier": "error",
+    "implicit-arrow-linebreak": "off",
+    "arrow-parens": "off",
+    "arrow-body-style": "off",
+    "no-param-reassign": "off",
+    "no-plusplus": "off",
+    "consistent-return": "off"
+  },
+  parserOptions: {
+    parser: "babel-eslint"
+  }
+};

.prettierrc

@@ -0,0 +1,5 @@
+{
+  "singleQuote": true,
+  "arrowParens": "always",
+  "printWidth": 80
+}

api/activate.js

@@ -1,13 +1,15 @@
-const db = require('./../db.js');
-const express = require('express');
-
-const app = express.Router();
-
-app.get('/activate/:code([a-zA-Z0-9]{64})', (req, res) => {
-  db.query('update tracker.user set activated=$1, activation_code=$2, where activation_code=$3',
-    [true, null, req.params.code]).then(result => {
-      res.send(200);
-    });
-});
-
-module.exports = app;
+const express = require('express');
+const db = require('./../db');
+
+const app = express.Router();
+
+app.get('/activate/:code([a-zA-Z0-9]{64})', async (req, res) => {
+  await db.query(
+    'update users set activated=$1, activation_code=$2, where activation_code=$3',
+    [true, null, req.params.code]
+  );
+
+  res.send(200);
+});
+
+module.exports = app;

api/blogPosts.js

@@ -1,14 +1,22 @@
-const express = require('express');
-const db = require('./../db.js');
-
-const app = express.Router();
-
-app.get('/blogPosts/:amount', (req, res) => {
-	db.query('select * from tracker.blogposts limit $1', [req.params.amount]).then(result => {
-		res.json(result.rows.map((post, index) => {
-			return { title: post.title, content: post.content, timestamp: post.time };
-		}));
-	});
-});
-
-module.exports = app;
+const express = require('express');
+const db = require('./../db');
+
+const app = express.Router();
+
+app.get('/blogPosts/:amount', async (req, res) => {
+  const result = await db.query('select * from blogposts limit $1', [
+    req.params.amount
+  ]);
+
+  return res.json(
+    result.rows.map((post) => {
+      return {
+        title: post.title,
+        content: post.content,
+        timestamp: post.time
+      };
+    })
+  );
+});
+
+module.exports = app;

api/createAccount.js

@@ -1,47 +1,60 @@
-const express = require('express');
-const db = require('./../db.js');
-const bcrypt = require('bcrypt');
-const emailer = require('./emailer');
-const crypto = require('crypto');
-
-const app = express.Router();
-
-const checkAccountExists = (username, email) => {
-  return db.query('select username from tracker.user where username=$1 or email=$2', [username, email]).then(result => {
-    if (result.rows.length > 0) {
-      return Promise.reject(new Error('Invalid username/email.'));
-    }
-    return Promise.resolve();
-  });
-};
-
-const hashPassword = password => {
-  return bcrypt.hashSync(password, 10);
-};
-
-const makeActivationCode = username => {
-  const hash = crypto.createHash('sha256');
-  const code = process.env.COOKIE_SECRET + username + Math.floor((new Date).getTime()/1000).toString();
-  hash.update(code);
-  return hash.digest('hex');
-};
-
-app.post('/create', (req, res) => {
-  checkAccountExists(req.body.username, req.body.email).then(() => {
-    const activationCode = makeActivationCode(req.body.username);
-    db.query('insert into tracker.user (username, password_hash, email, activation_code) values ($1, $2, $3, $4)', 
-              [req.body.username, hashPassword(req.body.password), req.body.email, activationCode]).then(result => { 
-                res.sendStatus(200);
-                emailer.sendActivationEmail(req.body.email, activationCode);
-              }).catch(err => {
-                console.log(err);
-                res.sendStatus(503);
-              });
-  }).catch(err => {
-    console.log(err);
-    res.status(409);
-    res.send('Invalid username/email.');
-  });
-});
-
-module.exports = app;
+const express = require('express');
+const bcrypt = require('bcrypt');
+const crypto = require('crypto');
+const { ulid } = require('ulid');
+const db = require('./../db');
+const emailer = require('./emailer');
+
+const app = express.Router();
+
+const checkAccountExists = async (username, email) => {
+  const result = await db.query(
+    'select username from users where username=$1 or email=$2',
+    [username, email]
+  );
+  if (result.rows.length > 0) {
+    throw new Error('Invalid username/email.');
+  }
+};
+
+const hashPassword = (password) => bcrypt.hashSync(password, 10);
+
+const makeActivationCode = (username) => {
+  const hash = crypto.createHash('sha256');
+  const code = `${process.env.SECRET}${username}${Math.floor(
+    new Date().getTime() / 1000
+  ).toString()}`;
+  hash.update(code);
+  return hash.digest('hex');
+};
+
+app.post('/create', async (req, res) => {
+  try {
+    await checkAccountExists(req.body.username, req.body.email);
+    const activationCode = makeActivationCode(req.body.username);
+    try {
+      await db.query(
+        'insert into users (id, username, password_hash, email, activation_code, activated) values ($1, $2, $3, $4, $5, $6)',
+        [
+          ulid(),
+          req.body.username,
+          hashPassword(req.body.password),
+          req.body.email,
+          activationCode,
+          false
+        ]
+      );
+      res.sendStatus(200);
+      emailer.sendActivationEmail(req.body.email, activationCode);
+    } catch (err) {
+      console.log(err);
+      res.sendStatus(503);
+    }
+  } catch (err) {
+    console.log(err);
+    res.status(409);
+    res.send('Invalid username/email.');
+  }
+});
+
+module.exports = app;

api/emailer.js

@@ -1,32 +1,36 @@
-const nodemailer = require('nodemailer');
-//const sendmailTransport = require('nodemailer-sendmail-transport');
-
-const transporter = nodemailer.createTransport({
-  host: 'topkek.us',
-  port: 25,
-  secure: false,
-  auth: {
-    user: process.env.MAIL_USER,
-    pass: process.env.MAIL_PASS
-  }
-});
-
-const makeActivationURL = (activationCode) => {
-  return `http://${process.env.DOMAIN}:${process.env.WEB_PORT}/activate/${activationCode}`;
-};
-
-module.exports.sendActivationEmail = (to, activationCode) => {
-  const mailOptions = {
-    from: 'Topkek <[email protected]>',
-    to: to,
-    subject: 'Email verification',
-    text: `Please click on the link below to activate your account:\n\n ${makeActivationURL(activationCode)}`
-  };
-
-  transporter.sendMail(mailOptions, (err, info) => {
-    if (err) {
-      console.log(err);
-    }
-    console.log(`Message sent: ${info.response}`);
-  });
-};
+const nodemailer = require('nodemailer');
+// const sendmailTransport = require('nodemailer-sendmail-transport');
+
+const transporter = nodemailer.createTransport({
+  host: 'mail.topkek.us',
+  port: 465,
+  secure: true,
+  auth: {
+    user: process.env.MAIL_USER,
+    pass: process.env.MAIL_PASS
+  }
+});
+
+const makeActivationURL = (activationCode) => {
+  return `http://${process.env.DOMAIN}:${
+    process.env.HTTP_PORT
+  }/activate/${activationCode}`;
+};
+
+module.exports.sendActivationEmail = (to, activationCode) => {
+  const mailOptions = {
+    from: 'Topkek <[email protected]>',
+    to,
+    subject: 'Email verification',
+    text: `Please click on the link below to activate your account:\n\n ${makeActivationURL(
+      activationCode
+    )}`
+  };
+
+  transporter.sendMail(mailOptions, (err, info) => {
+    if (err) {
+      console.log(err);
+    }
+    console.log(`Message sent: ${info.response}`);
+  });
+};

api/index.js

@@ -1,24 +1,22 @@
-const express = require('express');
-
-const app = express.Router();
-
-// routes
-const createAccount = require('./createAccount.js');
-const login = require('./login.js');
-const unauthorized = require('./unauthorized.js');
-const logout = require('./logout.js');
-const logged = require('./isLoggedIn.js');
-const activate = require('./activate.js');
-const blogPosts = require('./blogPosts.js');
-const upload = require('./upload.js');
-
-app.use(login);
-app.use(createAccount);
-app.use(activate);
-app.use(blogPosts);
-//app.use(unauthorized);
-app.use(logout);
-app.use(logged);
-app.use(upload);
-
-module.exports = app;
+const express = require('express');
+
+const app = express.Router();
+
+// routes
+const createAccount = require('./createAccount.js');
+const login = require('./login.js');
+// const unauthorized = require('./unauthorized.js');
+const logged = require('./isLoggedIn.js');
+const activate = require('./activate.js');
+const blogPosts = require('./blogPosts.js');
+const upload = require('./upload.js');
+
+app.use(login);
+app.use(createAccount);
+app.use(activate);
+app.use(blogPosts);
+// app.use(unauthorized);
+app.use(logged);
+app.use(upload);
+
+module.exports = app;

api/isLoggedIn.js

@@ -1,10 +1,22 @@
-const express = require('express');
-
-const app = express.Router();
-
-app.all('/logged', (req, res) => {
-	const user = req.session.currentUser;
-	res.send(user);
-});
-
-module.exports = app;
+const fs = require('fs');
+const express = require('express');
+const jwt = require('jsonwebtoken');
+
+const app = express.Router();
+
+const cert = fs.readFileSync('./keys/cert.pem');
+
+app.all('/logged', (req, res) => {
+  jwt.verify(
+    req.header('Authorization').split('Bearer ')[1],
+    cert,
+    (err, decoded) => {
+      if (err) {
+        return res.sendStatus(401);
+      }
+      res.send(decoded);
+    }
+  );
+});
+
+module.exports = app;