Sanchi-Project-V1/index.js at main · Girls-Education/Sanchi-Project-V1 · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
const express = require('express');
const session = require('express-session');

const path = require('path');
const passport = require('passport');

const flash = require('connect-flash');
const pg = require('pg');

const { Pool } = pg;

const app = express();
require('dotenv').config(); // Load environment variables

app.set("view engine", "ejs");

/*HELPER FUNCTIONS to define the Passport checking Procedure*/
// Fetch user by email
const getUserByUsername = async (username) => {
    const result = await pool.query(`SELECT * FROM signup WHERE username = $1`, [username]);
    return result.rows[0]; // Return user object if found
};

// Fetch user by ID
const getUserById = async (id) => {
    const result = await pool.query(`SELECT * FROM signup WHERE id = $1`, [id]);
    return result.rows[0];
};

//Defining Passport Strategy (or Defining what Passport should do on login)
const definePassport = require('./config/passport-config');
definePassport(passport, getUserByUsername, getUserById);

app.use(session({
    secret: process.env.SESSION_SEC,
    resave: false,
    saveUninitialized: false,
    cookie: {
        httpOnly: true,
        secure: false,
        maxAge: 7 * 24 * 60 * 60 * 1000 //7 days
    }
}))

app.use(passport.initialize());
app.use(passport.session());
app.use(flash());

// Assuming you have already set up your PostgreSQL connection pool
const pool = new Pool({
    host: 'localhost',
    user: process.env.DB_USER,
    port: 5432,
    database: process.env.DB_NAME,
    password: process.env.DB_PASSWORD,
    max: 10, // Max number of users
    idleTimeoutMillis: 30000, // Stay idle for
    connectionTimeoutMillis: 2000,
});

// Middleware to protect certain static files
app.use((req, res, next) => {
    const restrictedPaths = ['/newlogin.html', '/signup.html', '/dashboard.ejs', '/emailVerification.ejs','/resetPassword.html']; //Purely for Good User Experience

    if (restrictedPaths.some(path => req.originalUrl.includes(path))) {
        if (req.session.partialAuth == true) { //User has not verifed yet
            return res.redirect('/auth/verifyEmailPage');
        } else if (req.user) {
            return res.redirect('/user/dashboard');
        } else if (req.originalUrl.includes('/dashboard.html')) {
            return res.redirect('/user/dashboard');
        } else if (req.originalUrl.includes('/audioPlayer.html')) {
            return res.redirect('/user/audio-play-demo');
        }
    }
    next();
});


app.use(express.static(path.join(__dirname, "public/files")));
app.use(express.urlencoded({ extended: true }));
app.use(express.json());

const authRouter = require('./routes/auth');
app.use('/auth', authRouter);

const contactRouter = require('./routes/contact');
app.use('/contact', contactRouter);

const userRouter = require('./routes/user');
app.use('/user', userRouter);

const resourceRouter = require('./routes/resources');
app.use('/resource', resourceRouter);

// Start the server
app.listen(3000, () => console.log("Server running at http://localhost:3000"));