Skip to main content

Authentication Project: Secret Page App Part Two (Login/Logout)


Login Routes

Step One: Add login route

For login, we need to write a "/login" route to render to the login page.



At the same time, we need to create login page in the "view" folder.


Step Two: Set up the local strategy

Then, we need to set up the local strategy to be "user authenticate".



Step Three: Write post route and add middle-ware

Inside the app.post, we pass in "passport.authenticate", which is a middle-ware. It allows codes that run before our final route call back. When app gets a post request to "/login", it's going to run this code immediately. 


Step Four: Run the app

We run the app and can see the login form.


Then, for every page, we add three links: sign up, login, and logout.


So the homepage will look like this:


Logout Routes

 Logout routes are very simple.

We need to create a "/logout" route which will log user out and redirect to the homepage. When we log user out, we are not changing anything in the database. What is happening is that passport is destroying all user data in the session.


Then, we add a middle-ware to check if the user is logged in or not. The function "is loggedIn " takes three parameters: request, response and next. 


If it is logged in, it's going to check the request authenticated. If it is, then return to next. The next will be the "secret" page. 

At the end, we also need to add "is loggedIn" in the secret route. When a request comes in a Get request to "/secret", it's going to run "isloggedIn" function code before it does anything else.


That' all! It is a long process. At the end, we can sign up the page, and log in to the secret page and then log out.

Labels:

Comments

Post a Comment

Popular posts from this blog

Intermediate Express.js: How To Add Styles & Partials in EJS File?

So far, we only have simple HTML tags and ejs tags in each ejs file. Every template page has no style at all. And the basic HTML header and footer are also missing. Today, I learned how to add styles and partials in ejs file. Link Style Step One: Touch a Separate CSS file I create a new directory "Style" under the "EJSDemo" directory, then I add a new CSS file "app.css" inside "Style" folder. Step Two: Add app.use(express.static()) in the app.js I add app.use(express.static("style")) in the "app.js". This will tell Express.js to serve the content of "Style" directory. Step Three: Write styles in CSS file I simple give body an orange background color and set text color to be grey. Step Four: Link to CSS file in the EJS file I just add <link> tag to link the "app.css" file on the top of the h1 tag in each ejs template. As the result, when I run the app and...
Post a Comment
Read more

Seven Most Common jQuery Methods Last Part: ADD/REMOVE/TOGGLE CLASS()

Add, remove and toggleClass is also a very common way to manipulate style. .addClass() and .removeClass() I add two class selector in the style tag. Class one is to change text color to be green, and class two is change both text and background color.  Now I refresh the page and change h1 text to green by using addClass() method: $("h1").addClass("one") .  If you want to remove the style, you can change it to removeClass("one"). I do the same thing to the list. I change the list color and add a background color by adding the class two style value: $("li").addClass("two") . .toggleClass()  According to jQuery, toggerClass method can add or remove one or more classes from each element in the set of matched elements, depending on either the class's presence or the value of the state argument. I only want to change the first list item color and background by writing: $("li").first().toggleClas...
Post a Comment
Read more

Intro to Backend: Is Browser The Only Place To Send HTTP Request?

Today,  I begin to learn the second part of web develop course: backend. Frontend is the stuff that we can see and interactive with, such as HTML, CSS, and JS. We can type our code, style our page, or write some function to make interaction. However, backend is everything else. For example, we type Target web address in the Internet Browser. As we hit "enter", there are a few steps to go through: 1. The HTTP request is sent to a particular server's IP address. 2. The server figures out what to send us 3. It sends a HTTP response back to us Those process we are hard to see, and it happens in less than one second. The instructor said that the browser is not the only place to send the HTTP request, and there are so many choices out there. In this learning course, we are going to use Postman App . Postman allows us to make HTTP requests and viewer responses. It is really for developers to understand how things are working or debug something. In the P...
Post a Comment
Read more