OPCODE-Open-Spring-Fest
diff --git a/‎app/controllers/data.js‎
Lines changed: 0 additions & 4 deletions b/‎app/controllers/data.js‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎app/main.js‎
Lines changed: 2 additions & 25 deletions b/‎app/main.js‎
Lines changed: 2 additions & 25 deletions
diff --git a/‎app/public/stylesPro.css‎
Lines changed: 1 addition & 1 deletion b/‎app/public/stylesPro.css‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎app/routes/data.js‎
Lines changed: 0 additions & 8 deletions b/‎app/routes/data.js‎
Lines changed: 0 additions & 8 deletions
diff --git a/‎app/routes/auth.js‎ renamed to ‎app/routes/route.js‎
Lines changed: 77 additions & 24 deletions b/‎app/routes/auth.js‎ renamed to ‎app/routes/route.js‎
Lines changed: 77 additions & 24 deletions
diff --git a/‎app/routes/styles.css‎
Lines changed: 0 additions & 104 deletions b/‎app/routes/styles.css‎
Lines changed: 0 additions & 104 deletions
diff --git a/‎app/views/changePass.ejs‎
Lines changed: 1 addition & 1 deletion b/‎app/views/changePass.ejs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎app/views/forgotPass.ejs‎
Lines changed: 1 addition & 1 deletion b/‎app/views/forgotPass.ejs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎app/views/login.ejs‎
Lines changed: 3 additions & 3 deletions b/‎app/views/login.ejs‎
Lines changed: 3 additions & 3 deletions
@@ -3,35 +3,12 @@ const app = express()
 app.set("view engine", 'ejs');
 app.use(express.static("public"))
 require('dotenv').config();
-const api = require('./routes/data')
-const auth = require('./routes/auth')
+const route = require('./routes/route')
 const db = require('./db/dbConnect')
 const bodyParser = require('body-parser');
 app.use(bodyParser.urlencoded({ extended: true }));
 app.use(bodyParser.json());
 
-app.use("/api/data", api);
-app.use("/auth",auth);
-
-app.post('/search', (req, res) => {
-    db.query('SELECT * FROM products WHERE name LIKE \'\%'+req.body.name+'\%\';', (error, results, fields) => {
-        if (error) {
-            console.error('Error executing query: ' + error);
-            return;
-        }
-        console.log(results)
-        res.render('products',{products:results});
-    });
-})
-
-app.get('/', (req,res)  => {
-    db.query('SELECT * FROM products', (error, results, fields) => {
-        if (error) {
-            console.error('Error executing query: ' + error);
-            return;
-        }
-        res.render('products',{products:results});
-    });
-})
+app.use("/",route);
 
 app.listen(4444);
@@ -76,7 +76,7 @@ header {
     box-sizing: border-box;
 }
 
-#search{
+#search,#login,#logout{
     width: 100px;
     padding: 8px;
     font-size: 16px;
 
@@ -7,13 +7,13 @@ router.use(bodyParser.json());
 const path = require('path')
 router.use(express.static( path.join(__dirname,"../public")))
 const db = require(path.join(__dirname,"../db/dbConnect"));
-// const session = require('express-session');
+const session = require('express-session');
 require('dotenv').config();
-// router.use(session({
-//     secret: process.env.secret,
-//     resave: false,
-//     saveUninitialized: false
-// }));
+router.use(session({
+    secret: process.env.secret,
+    resave: false,
+    saveUninitialized: false
+}));
 let transporter = nodemailer.createTransport({
     service: 'Gmail',
     auth: {
@@ -23,68 +23,110 @@ let transporter = nodemailer.createTransport({
 });
 
 
+router.get('/', (req,res)  => {
+    if (!req.session.isLoggedIn) {
+        res.redirect('/login');
+        return;
+    }
+    db.query('SELECT * FROM products', (error, results, fields) => {
+        if (error) {
+            console.error('Error executing query: ' + error);
+            return;
+        }
+        res.render('products',{products:results, isLoggedIn:req.session.isLoggedIn});
+    });
+})
+
+router.post('/search', (req, res) => {
+    if (req.session.isLoggedIn) {
+        res.redirect('/login');
+        return;
+    }
+    db.query('SELECT * FROM products WHERE name LIKE \'\%'+req.body.name+'\%\';', (error, results, fields) => {
+        if (error) {
+            console.error('Error executing query: ' + error);
+            return;
+        }
+        console.log(results)
+        res.render('products',{products:results});
+    });
+})
+
+
 router.get('/login', (req, res) =>{
-    // if (req.session.isLoggedIn) {
-    //     res.redirect("/")
-    //     return;
-    // }
+    if (req.session.isLoggedIn) {
+        res.redirect("/")
+        return;
+    }
     res.render('login');
 })
 
 router.post('/login', (req, res) => {
-    // if (req.session.isLoggedIn) {
-    //     res.redirect("/")
-    //     return;
-    // }
+    if (req.session.isLoggedIn) {
+        res.redirect("/")
+        return;
+    }
     db.query('SELECT * FROM users WHERE email = \''+req.body.email+'\'  AND password = \''+req.body.password+'\'', (error, results, fields) => {
         if (error) {
             console.error('Error executing query: ' + error);
             return;
         }
         if (results.length > 0) {
-            // req.session.isLoggedIn = true;
+            req.session.isLoggedIn = true;
             res.redirect('/');
         }
         else{
-            res.redirect('/auth/register');
+            res.redirect('/register');
         }
     });
 });
 
 router.get('/register', (req,res) => {
-    // if (req.session.isLoggedIn){
-    //     res.redirect("/");
-    //     return;
-    // }
+    if (req.session.isLoggedIn){
+        res.redirect("/");
+        return;
+    }
     res.render('register');
 })
 
 router.post('/register', (req, res) => {
+    if (req.session.isLoggedIn){
+        res.redirect("/");
+        return;
+    }
     db.query("SELECT * FROM users WHERE email = '"+req.body.email+"';", (error, results, fields) => {
         if (error) {
             console.error('Error executing query: ' + error);
             return;
         }
         if (results.length > 0) {
-            res.redirect('/auth/login');
+            res.redirect('/login');
         }
         else{
             db.query("INSERT INTO users (name,email,password) VALUES ('"+req.body.fullname+"','"+req.body.email+"','"+req.body.password+"');", (error, results, fields) => {
             if (error) {
                 console.error('Error executing query: ' + error);
                 return;
             }
-            res.redirect('/auth/login');
+            res.redirect('/login');
             });
         }
     });
 });
 
 router.get('/forgotPass', (req, res) => {
+    if (req.session.isLoggedIn){
+        res.redirect("/");
+        return;
+    }
     res.render('forgotPass')
 })
 
 router.post('/forgotPass', (req,res) => {
+    if (req.session.isLoggedIn){
+        res.redirect("/");
+        return;
+    }
     db.query('SELECT * FROM users WHERE email = \''+req.body.email+'\';', (error, results, fields) => {
         if (error) {
             console.error('Error executing query: ' + error);
@@ -110,12 +152,16 @@ router.post('/forgotPass', (req,res) => {
             res.render('changePass',{email:email})
         }
         else{
-            res.redirect('/auth/register');
+            res.redirect('/register');
         }
     });
 })
 
 router.post('/changePass', (req, res) => {
+    if (req.session.isLoggedIn){
+        res.redirect("/");
+        return;
+    }
     otp = req.body.otp;
     console.log(otp);
     console.log('UPDATE users set password = \'' +req.body.newPassword+'\' WHERE otp = '+otp+' AND email = \''+req.body.email+'\';')
@@ -124,8 +170,15 @@ router.post('/changePass', (req, res) => {
             console.error('Error executing query: ' + error);
             return;
         }
-        res.redirect('/auth/login');
+        res.redirect('/login');
     });
 })
 
+router.post('/logout', (req, res) => {
+    if (req.session.isLoggedIn){
+        req.session.isLoggedIn = false;
+    }
+    res.redirect("/login");
+})
+
 module.exports = router;
@@ -78,7 +78,7 @@
 <body>
     <div class="container">
         <h1>Reset Password</h1>
-        <form action="/auth/changePass" method="post">
+        <form action="/changePass" method="post">
 
             <label for="email">E-mail:</label>
             <p><%=email%></p>
 
@@ -78,7 +78,7 @@
     <div class="container">
         <h1>Forgot Password</h1>
         <p>Please enter your email address below. We will send you instructions on how to reset your password.</p>
-        <form action="/auth/forgotPass" method="post">
+        <form action="/forgotPass" method="post">
             <label for="email">Email:</label>
             <input type="email" id="email" name="email" required>
             <button type="submit">Reset Password</button>
 
@@ -8,19 +8,19 @@
 </head>
 <body>
     <div class="login-container">
-        <form class="login-form" action="/auth/login" method="post" style="text-align: center;">
+        <form class="login-form" action="/login" method="post" style="text-align: center;">
             <h2>Login to Your Account</h2>
             <input type="text" name="email" placeholder="Email" required>
             <input type="password" name="password" placeholder="Password" required>
             <button style="margin-bottom: 5px;" type="submit">Login</button>
-            <a class="forgot-password" href="/auth/forgotPass">Forgot your password?</a>
+            <a class="forgot-password" href="/forgotPass">Forgot your password?</a>
             <hr>
             <button type="button" class="create-account" >Create New Account</button>
         </form>
     </div>
     <script>
         document.querySelector('.create-account').addEventListener('click', function() {
-            window.location.href = '/auth/register';
+            window.location.href = '/register';
         });
     </script>
 </body>
Original file line number	Diff line number	Diff line change
`@@ -76,7 +76,7 @@ header {`
`76`	`76`	`box-sizing: border-box;`
`77`	`77`	`}`
`78`	`78`
`79`		`-#search{`
	`79`	`+#search,#login,#logout{`
`80`	`80`	`width: 100px;`
`81`	`81`	`padding: 8px;`
`82`	`82`	`font-size: 16px;`