dashboard/app.js

var async = require("async");
var cradle = require("cradle");
var express = require("express");
var fs = require("fs");
var http = require("http");
var https = require("https");
var log4js = require("log4js");
var scrypt = require("scrypt");

//load own tools (tiny functions that help a little ;-)
var tools = require("./src/Tools.js");

//load settings
var settings = require("./src/Settings.js");

//initialize couch connector
cradle.setup(settings.couchdb);
var couch = new(cradle.Connection);
var db = couch.database(settings.couchdb.database);

db.exists(function(err, exists) {
	if(err) {
		console.log("An error occured - could not talk to couchdb:");
		console.log(err);
		process.exit(1);
	} else if(exists == true) {
		console.log("Database exists :-)");
	} else {
		console.log("Database does not exist :-(");
		process.exit(1);
	}
});

//begin setting up the dashboard app
var app = express();
app.use(express.cookieParser());
app.use(express.session({
	"secret": settings.general.sessionsecret
}));
app.use(express.bodyParser());

//some logging for debugging
app.use(function(req, res, next) {
	console.log("%s %s", req.method, req.url);
	next();
});

//initialize fresh session
app.use(function(req, res, next) {
	if(req.session.initialized != true) {
		req.session.initialized = true;
		req.session.data = {
			"user": null,
			"profile": {},
			"login": false,
			"lastActivity": new Date()
		};
	}
	console.log(["Session Data", req.session.data]);
	next();
});

//deliver static files by default
app.use("/", express.static(__dirname + '/static'));

//API: /session
app.use("/session", function(req, res) {
	res.setHeader("Content-Type", "application/json");

	//refresh session and return login status
	if(req.method == "GET") {
		if(req.session.data.login == true) {
			if(new Date() - req.session.data.lastActivity < 5 * 60 * 1000) {
				req.session.data.lastActivity = new Date();
			} else {
				req.session.data.login = false;
			}
		}
		res.send(200, JSON.stringify({
			"success": true,
			"login": req.session.data.login
		}));
	}

	//check user credentials, update session data
	if(req.method == "PUT") {
		//already logged in?
		if(req.session.data.login == true) {
			res.send(200, JSON.stringify({
				"success": false,
				"error": "You are already logged in!"
			}));
			return;
		}

		var params = req.body;
		//username or password missing?
		if(tools.reqParamsGiven(["username", "password"], params) == false) {
			res.send(200, JSON.stringify({
				"success": false,
				"error": "Insufficient parameters given! Need: username, password"
			}));
			return;
		}
		//check if user exists
		db.get(params.username, function (err, doc) {
			if(!err && doc.type == "user") {
				//user exists, verify password
				scrypt.verifyHash(user.auth, params.password, function(err, match) {
					if(err || match == false) {
						res.send(200, JSON.stringify({
							"success": false,
							"error": "Invalid login credentials!"
						}));
						return;
					}
					if(!err && match == true) {
						req.session.data.login = true;
						req.session.data.lastActivity = new Date();
						res.send(200, JSON.stringify({
							"success": true
						}));
						return;
					}
				});
			} else {
				//user does not exist.
				res.send(200, JSON.stringify({
					"success": false,
					"error": "Invalid login credentials!"
				}));
				return;
			}
		});
	}

	//destroy the session
	if(req.method == "DELETE") {
		//only do logout if login exists
		if(req.session.data.login == false) {
			res.send(200, JSON.stringify({
				"success": false,
				"error": "Cannot log you out, you are not logged in!"
			}));
		} else {
			req.session.data.login = false;
			res.send(200, JSON.stringify({
				"success": true
			}));
		}
	}
});

//API: /user
app.use("/user", function(req, res) {
	res.setHeader("Content-Type", "application/json");
	if(req.method == "PUT") {
		var params = req.body;
		if(tools.reqParamsGiven(["username", "password", "email"], params) == false) {
			res.send(500, JSON.stringify({
				"success": false,
				"err": "This method needs username, password and email!"
			}));
			return;
		}
		//check if user already exists
		db.get(params.username, function (err, doc) {
			if(!err || err.error != "not_found" || err.reason != "missing") {
				res.send(200, JSON.stringify({
					"success": false,
					"err": "Username already taken!"
				}));
				return;
			}
			//get: {"0":{"error":"not_found","reason":"missing"}}
			scrypt.passwordHash(params.password, 10, function(err, pwHash) {
				var userDoc = {
					"_id": params.username,
					"auth": pwHash,
					"email": params.email,
					"type": "user"
				};
				db.save(userDoc._id, userDoc, function(err, result) {
					if(err) {
						res.send(200, JSON.stringify({
							"success": false,
							"err": err
						}));
					} else {
						res.send(200, JSON.stringify({
							"success": true
						}));
					}
				});
			});
		});
	}
	if(req.method == "GET") {
		res.send(200, JSON.stringify(req.session.data.user));
	}
	if(req.method == "POST") {
		console.log(req);
	}
	if(req.method == "DELETE") {
		//verify credentials before erasing all data
		console.log(req);

	}
});

//define 404 for everything else or 500 on error (ugly but i think it's useful)
app.use(function(err, req, res, next) {
	if(err) {
			console.log(err.stack);
			res.send(500, "Oops, an error occured.");
	} else {
		res.send(404, "Sorry, nothing here.");
	}
	res.end();
});

//fire it up as https (or http - NOT recommended(!)) server
if(settings.general.https == true) {
	var httpsOptions = {
		"cert": fs.readFileSync(settings.https.cert),
		"key": fs.readFileSync(settings.https.key)
	};
	https.createServer(httpsOptions, app).listen(settings.general.listen.port, settings.general.listen.host);
} else {
	http.createServer(app).listen(settings.general.listen.port, settings.general.listen.host);
}
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`var async = require("async");`
			`var cradle = require("cradle");`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00			`var express = require("express");`
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`var fs = require("fs");`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00			`var http = require("http");`
			`var https = require("https");`
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`var log4js = require("log4js");`
[TASK] Alter dependencies, add scrypt. 2013-09-14 01:18:43 +02:00			`var scrypt = require("scrypt");`
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`//load own tools (tiny functions that help a little ;-)`
			`var tools = require("./src/Tools.js");`

[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`//load settings`
			`var settings = require("./src/Settings.js");`

			`//initialize couch connector`
			`cradle.setup(settings.couchdb);`
			`var couch = new(cradle.Connection);`
			`var db = couch.database(settings.couchdb.database);`

			`db.exists(function(err, exists) {`
			`if(err) {`
[MISC] Improve console logs and error handling a little. 2013-09-14 23:31:17 +02:00			`console.log("An error occured - could not talk to couchdb:");`
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`console.log(err);`
			`process.exit(1);`
			`} else if(exists == true) {`
			`console.log("Database exists :-)");`
			`} else {`
[MISC] Improve console logs and error handling a little. 2013-09-14 23:31:17 +02:00			`console.log("Database does not exist :-(");`
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`process.exit(1);`
			`}`
			`});`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`//begin setting up the dashboard app`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00			`var app = express();`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`app.use(express.cookieParser());`
			`app.use(express.session({`
			`"secret": settings.general.sessionsecret`
			`}));`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`app.use(express.bodyParser());`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00
			`//some logging for debugging`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00			`app.use(function(req, res, next) {`
			`console.log("%s %s", req.method, req.url);`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`next();`
			`});`

			`//initialize fresh session`
			`app.use(function(req, res, next) {`
			`if(req.session.initialized != true) {`
			`req.session.initialized = true;`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`req.session.data = {`
			`"user": null,`
			`"profile": {},`
			`"login": false,`
			`"lastActivity": new Date()`
			`};`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`}`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`console.log(["Session Data", req.session.data]);`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00			`next();`
			`});`

			`//deliver static files by default`
[MISC] Change comments, change app.use() for static files. 2013-09-14 23:32:59 +02:00			`app.use("/", express.static(__dirname + '/static'));`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`//API: /session`
			`app.use("/session", function(req, res) {`
			`res.setHeader("Content-Type", "application/json");`

[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`//refresh session and return login status`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`if(req.method == "GET") {`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`if(req.session.data.login == true) {`
			`if(new Date() - req.session.data.lastActivity < 5 * 60 * 1000) {`
			`req.session.data.lastActivity = new Date();`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`} else {`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`req.session.data.login = false;`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`}`
[BUGFIX] Add missing '}' in app.js. 2013-09-14 23:40:48 +02:00			`}`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`res.send(200, JSON.stringify({`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`"success": true,`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`"login": req.session.data.login`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`}));`
			`}`

			`//check user credentials, update session data`
			`if(req.method == "PUT") {`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`//already logged in?`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`if(req.session.data.login == true) {`
			`res.send(200, JSON.stringify({`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`"success": false,`
			`"error": "You are already logged in!"`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`}));`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`return;`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`}`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`var params = req.body;`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`//username or password missing?`
			`if(tools.reqParamsGiven(["username", "password"], params) == false) {`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`res.send(200, JSON.stringify({`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`"success": false,`
			`"error": "Insufficient parameters given! Need: username, password"`
[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`}));`
			`return;`
			`}`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`//check if user exists`
			`db.get(params.username, function (err, doc) {`
			`if(!err && doc.type == "user") {`
			`//user exists, verify password`
			`scrypt.verifyHash(user.auth, params.password, function(err, match) {`
			`if(err \|\| match == false) {`
			`res.send(200, JSON.stringify({`
			`"success": false,`
			`"error": "Invalid login credentials!"`
			`}));`
			`return;`
			`}`
			`if(!err && match == true) {`
			`req.session.data.login = true;`
			`req.session.data.lastActivity = new Date();`
			`res.send(200, JSON.stringify({`
			`"success": true`
			`}));`
			`return;`
			`}`
			`});`
			`} else {`
			`//user does not exist.`
			`res.send(200, JSON.stringify({`
			`"success": false,`
			`"error": "Invalid login credentials!"`
			`}));`
			`return;`
			`}`
			`});`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`}`

			`//destroy the session`
			`if(req.method == "DELETE") {`
[TASK] Finish implementing /session API. 2013-09-16 18:21:52 +02:00			`//only do logout if login exists`
			`if(req.session.data.login == false) {`
			`res.send(200, JSON.stringify({`
			`"success": false,`
			`"error": "Cannot log you out, you are not logged in!"`
			`}));`
			`} else {`
			`req.session.data.login = false;`
			`res.send(200, JSON.stringify({`
			`"success": true`
			`}));`
			`}`
[TASK] Add a basic session api skeleton. 2013-09-14 23:29:45 +02:00			`}`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00			`});`

[TASK] Implement mechanism to create a user. 2013-09-15 18:30:51 +02:00			`//API: /user`
			`app.use("/user", function(req, res) {`
			`res.setHeader("Content-Type", "application/json");`
			`if(req.method == "PUT") {`
			`var params = req.body;`
			`if(tools.reqParamsGiven(["username", "password", "email"], params) == false) {`
			`res.send(500, JSON.stringify({`
			`"success": false,`
			`"err": "This method needs username, password and email!"`
			`}));`
			`return;`
			`}`
			`//check if user already exists`
			`db.get(params.username, function (err, doc) {`
			`if(!err \|\| err.error != "not_found" \|\| err.reason != "missing") {`
			`res.send(200, JSON.stringify({`
			`"success": false,`
			`"err": "Username already taken!"`
			`}));`
			`return;`
			`}`
			`//get: {"0":{"error":"not_found","reason":"missing"}}`
			`scrypt.passwordHash(params.password, 10, function(err, pwHash) {`
			`var userDoc = {`
			`"_id": params.username,`
			`"auth": pwHash,`
			`"email": params.email,`
			`"type": "user"`
			`};`
			`db.save(userDoc._id, userDoc, function(err, result) {`
			`if(err) {`
			`res.send(200, JSON.stringify({`
			`"success": false,`
			`"err": err`
			`}));`
			`} else {`
			`res.send(200, JSON.stringify({`
			`"success": true`
			`}));`
			`}`
			`});`
			`});`
			`});`
			`}`
			`if(req.method == "GET") {`
			`res.send(200, JSON.stringify(req.session.data.user));`
			`}`
			`if(req.method == "POST") {`
			`console.log(req);`
			`}`
			`if(req.method == "DELETE") {`
			`//verify credentials before erasing all data`
			`console.log(req);`

			`}`
			`});`

[MISC] Improve console logs and error handling a little. 2013-09-14 23:31:17 +02:00			`//define 404 for everything else or 500 on error (ugly but i think it's useful)`
			`app.use(function(err, req, res, next) {`
			`if(err) {`
			`console.log(err.stack);`
			`res.send(500, "Oops, an error occured.");`
			`} else {`
			`res.send(404, "Sorry, nothing here.");`
			`}`
			`res.end();`
[TASK] Introduce basic files for nodejs. 2013-09-13 18:49:44 +02:00			`});`

[MISC] Change comments, change app.use() for static files. 2013-09-14 23:32:59 +02:00			`//fire it up as https (or http - NOT recommended(!)) server`
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`if(settings.general.https == true) {`
			`var httpsOptions = {`
			`"cert": fs.readFileSync(settings.https.cert),`
			`"key": fs.readFileSync(settings.https.key)`
			`};`
[TASK] Add option to define the host to listen on. 2013-09-14 14:32:08 +02:00			`https.createServer(httpsOptions, app).listen(settings.general.listen.port, settings.general.listen.host);`
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`} else {`
[TASK] Add option to define the host to listen on. 2013-09-14 14:32:08 +02:00			`http.createServer(app).listen(settings.general.listen.port, settings.general.listen.host);`
[TASK] Add a settings file template and begin couchdb support. 2013-09-13 23:11:00 +02:00			`}`