adding encryption/decryption to password

2f047a37 · V S Tharunika · 41839b34 · 2f047a37 · 2f047a37 · 2f047a37
Commit 2f047a37 authored 4 years ago by V S Tharunika
--- a/server/src/app.js
+++ b/server/src/app.js
@@ -12,7 +12,7 @@ app.use(cors())

 require('./routes')(app)

-sequelize.sync({force: true})
+sequelize.sync()
  .then (() =>{
    app.listen(config.port)
    console.log('server started on port ${config.port}')

--- a/server/src/controllers/AuthenticationController.js
+++ b/server/src/controllers/AuthenticationController.js
@@ -35,7 +35,7 @@ module.exports={
                    error: 'The login information was incorrect'
                })
            }
-            const isPasswordValid = password === user.password
+            const isPasswordValid = await user.comparePassword(password)
            if(!isPasswordValid) {
                return res.status(403).send({
                    error: 'The login information was incorrect'

--- a/server/src/models/user.js
+++ b/server/src/models/user.js
 const Promise = require('bluebird')
 const bcrypt = Promise.promisifiyAll(require('bcrypt-nodejs'))

-module.exports =(sequelize, DataTypes) =>
- sequelize.define('user',{
+function hashPassword (user, options) {
+  const SALT_FACTOR = 8
+
+  if(!user.changed('password')){
+      return;
+  }
+
+  return bcrypt
+      .genSaltAsync(SALT_FACTOR)
+      .then(salt => bcrypt.hashAsync(user.password, salt, null))
+      .then(hash => {
+          user.setDataValue('password', hash)
+      })
+ }
+
+module.exports =(sequelize, DataTypes) =>{
+ const User = sequelize.define('user',{
     email:{
         type:DataTypes.STRING,
         unique: true
     },
     password: DataTypes.STRING
+ }, {
+     hooks: {
+       beforeCreate: hashPassword,
+       beforeUpdate: hashPassword,
+       beforeSave: hashPassword
+     }
 })

+ User.prototype.comparePassword = function (password) {
+     return bcrypt.compareAsync(password, this.password)
+ }
+ return User
+}