Backend API Development Nodejs JWT Authentication Examples

Author: loizenai

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/config/config.js

@@ -0,0 +1,4 @@
+module.exports = {
+  'secret': 'loizenai-super-secret-key',
+  ROLEs: ['USER', 'ADMIN', 'PM']
+};

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/config/db.config.js

@@ -0,0 +1,28 @@
+const env = require('./env.js');
+ 
+const Sequelize = require('sequelize');
+const sequelize = new Sequelize(env.database, env.username, env.password, {
+  host: env.host,
+  dialect: env.dialect,
+  operatorsAliases: false,
+ 
+  pool: {
+    max: env.max,
+    min: env.pool.min,
+    acquire: env.pool.acquire,
+    idle: env.pool.idle
+  }
+});
+ 
+const db = {};
+ 
+db.Sequelize = Sequelize;
+db.sequelize = sequelize;
+ 
+db.user = require('../model/user.model.js')(sequelize, Sequelize);
+db.role = require('../model/role.model.js')(sequelize, Sequelize);
+ 
+db.role.belongsToMany(db.user, { through: 'user_roles', foreignKey: 'roleId', otherKey: 'userId'});
+db.user.belongsToMany(db.role, { through: 'user_roles', foreignKey: 'userId', otherKey: 'roleId'});
+
+module.exports = db;

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/config/env.js

@@ -0,0 +1,15 @@
+const env = {
+  database: 'loizenaidb',
+  username: 'root',
+  password: '12345',
+  host: 'localhost',
+  dialect: 'mysql',
+  pool: {
+	  max: 5,
+	  min: 0,
+	  acquire: 30000,
+	  idle: 10000
+  }
+};
+ 
+module.exports = env;

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/controller/controller.js

@@ -0,0 +1,137 @@
+const db = require('../config/db.config.js');
+const config = require('../config/config.js');
+const User = db.user;
+const Role = db.role;
+
+const Op = db.Sequelize.Op;
+
+var jwt = require('jsonwebtoken');
+var bcrypt = require('bcryptjs');
+
+exports.signup = (req, res) => {
+	// Save User to Database
+	console.log("Processing func -> SignUp");
+	
+	User.create({
+		name: req.body.name,
+		username: req.body.username,
+		email: req.body.email,
+		password: bcrypt.hashSync(req.body.password, 8)
+	}).then(user => {
+		Role.findAll({
+		  where: {
+			name: {
+			  [Op.or]: req.body.roles
+			}
+		  }
+		}).then(roles => {
+			user.setRoles(roles).then(() => {
+				res.send("User registered successfully!");
+            });
+		}).catch(err => {
+			res.status(500).send("Error -> " + err);
+		});
+	}).catch(err => {
+		res.status(500).send("Fail! Error -> " + err);
+	})
+}
+
+exports.signin = (req, res) => {
+	console.log("Sign-In");
+	
+	User.findOne({
+		where: {
+			username: req.body.username
+		}
+	}).then(user => {
+		if (!user) {
+			return res.status(404).send('User Not Found.');
+		}
+
+		var passwordIsValid = bcrypt.compareSync(req.body.password, user.password);
+		if (!passwordIsValid) {
+			return res.status(401).send({ auth: false, accessToken: null, reason: "Invalid Password!" });
+		}
+		
+		var token = jwt.sign({ id: user.id }, config.secret, {
+		  expiresIn: 86400 // expires in 24 hours
+		});
+		
+		res.status(200).send({ auth: true, accessToken: token });
+		
+	}).catch(err => {
+		res.status(500).send('Error -> ' + err);
+	});
+}
+
+exports.userContent = (req, res) => {
+	User.findOne({
+		where: {id: req.userId},
+		attributes: ['name', 'username', 'email'],
+		include: [{
+			model: Role,
+			attributes: ['id', 'name'],
+			through: {
+				attributes: ['userId', 'roleId'],
+			}
+		}]
+	}).then(user => {
+		res.status(200).json({
+			"description": "User Content Page",
+			"user": user
+		});
+	}).catch(err => {
+		res.status(500).json({
+			"description": "Can not access User Page",
+			"error": err
+		});
+	})
+}
+
+exports.adminBoard = (req, res) => {
+	User.findOne({
+		where: {id: req.userId},
+		attributes: ['name', 'username', 'email'],
+		include: [{
+			model: Role,
+			attributes: ['id', 'name'],
+			through: {
+				attributes: ['userId', 'roleId'],
+			}
+		}]
+	}).then(user => {
+		res.status(200).json({
+			"description": "Admin Board",
+			"user": user
+		});
+	}).catch(err => {
+		res.status(500).json({
+			"description": "Can not access Admin Board",
+			"error": err
+		});
+	})
+}
+
+exports.managementBoard = (req, res) => {
+	User.findOne({
+		where: {id: req.userId},
+		attributes: ['name', 'username', 'email'],
+		include: [{
+			model: Role,
+			attributes: ['id', 'name'],
+			through: {
+				attributes: ['userId', 'roleId'],
+			}
+		}]
+	}).then(user => {
+		res.status(200).json({
+			"description": "Management Board",
+			"user": user
+		});
+	}).catch(err => {
+		res.status(500).json({
+			"description": "Can not access Management Board",
+			"error": err
+		});
+	})
+}

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/model/role.model.js

@@ -0,0 +1,13 @@
+module.exports = (sequelize, Sequelize) => {
+	const Role = sequelize.define('roles', {
+	  id: {
+        type: Sequelize.INTEGER,
+        primaryKey: true
+	  },
+	  name: {
+		  type: Sequelize.STRING
+	  }
+	});
+	
+	return Role;
+}

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/model/user.model.js

@@ -0,0 +1,18 @@
+module.exports = (sequelize, Sequelize) => {
+	const User = sequelize.define('users', {
+	  name: {
+		  type: Sequelize.STRING
+	  },
+	  username: {
+		  type: Sequelize.STRING
+	  },
+	  email: {
+		  type: Sequelize.STRING
+	  },
+	  password: {
+		  type: Sequelize.STRING
+	  }
+	});
+	
+	return User;
+}

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/router/router.js

@@ -0,0 +1,17 @@
+const verifySignUp = require('./verifySignUp');
+const authJwt = require('./verifyJwtToken');
+
+module.exports = function(app) {
+
+    const controller = require('../controller/controller.js');
+ 
+	app.post('/api/auth/signup', [verifySignUp.checkDuplicateUserNameOrEmail, verifySignUp.checkRolesExisted], controller.signup);
+	
+	app.post('/api/auth/signin', controller.signin);
+	
+	app.get('/api/test/user', [authJwt.verifyToken], controller.userContent);
+	
+	app.get('/api/test/pm', [authJwt.verifyToken, authJwt.isPmOrAdmin], controller.managementBoard);
+	
+	app.get('/api/test/admin', [authJwt.verifyToken, authJwt.isAdmin], controller.adminBoard);
+}

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/router/verifyJwtToken.js

@@ -0,0 +1,76 @@
+const jwt = require('jsonwebtoken');
+const config = require('../config/config.js');
+const db = require('../config/db.config.js');
+const Role = db.role;
+const User = db.user;
+
+verifyToken = (req, res, next) => {
+	let token = req.headers['x-access-token'];
+  
+	if (!token){
+		return res.status(403).send({ 
+			auth: false, message: 'No token provided.' 
+		});
+	}
+
+	jwt.verify(token, config.secret, (err, decoded) => {
+		if (err){
+			return res.status(500).send({ 
+					auth: false, 
+					message: 'Fail to Authentication. Error -> ' + err 
+				});
+		}
+		req.userId = decoded.id;
+		next();
+	});
+}
+
+isAdmin = (req, res, next) => {
+	let token = req.headers['x-access-token'];
+	
+	User.findByPk(req.userId)
+		.then(user => {
+			user.getRoles().then(roles => {
+				for(let i=0; i<roles.length; i++){
+					console.log(roles[i].name);
+					if(roles[i].name.toUpperCase() === "ADMIN"){
+						next();
+						return;
+					}
+				}
+				
+				res.status(403).send("Require Admin Role!");
+				return;
+			})
+		})
+}
+
+isPmOrAdmin = (req, res, next) => {
+	let token = req.headers['x-access-token'];
+	
+	User.findByPk(req.userId)
+		.then(user => {
+			user.getRoles().then(roles => {
+				for(let i=0; i<roles.length; i++){					
+					if(roles[i].name.toUpperCase() === "PM"){
+						next();
+						return;
+					}
+					
+					if(roles[i].name.toUpperCase() === "ADMIN"){
+						next();
+						return;
+					}
+				}
+				
+				res.status(403).send("Require PM or Admin Roles!");
+			})
+		})
+}
+
+const authJwt = {};
+authJwt.verifyToken = verifyToken;
+authJwt.isAdmin = isAdmin;
+authJwt.isPmOrAdmin = isPmOrAdmin;
+
+module.exports = authJwt;

Angular 10 Nodejs JWT Token Based Authentication Example - Backend-Sourcecode/app/router/verifySignUp.js

@@ -0,0 +1,49 @@
+const db = require('../config/db.config.js');
+const config = require('../config/config.js');
+const ROLEs = config.ROLEs; 
+const User = db.user;
+const Role = db.role;
+
+checkDuplicateUserNameOrEmail = (req, res, next) => {
+	// -> Check Username is already in use
+	User.findOne({
+		where: {
+			username: req.body.username
+		} 
+	}).then(user => {
+		if(user){
+			res.status(400).send("Fail -> Username is already taken!");
+			return;
+		}
+		
+		// -> Check Email is already in use
+		User.findOne({ 
+			where: {
+				email: req.body.email
+			} 
+		}).then(user => {
+			if(user){
+				res.status(400).send("Fail -> Email is already in use!");
+				return;
+			}
+				
+			next();
+		});
+	});
+}
+
+checkRolesExisted = (req, res, next) => {	
+	for(let i=0; i<req.body.roles.length; i++){
+		if(!ROLEs.includes(req.body.roles[i].toUpperCase())){
+			res.status(400).send("Fail -> Does NOT exist Role = " + req.body.roles[i]);
+			return;
+		}
+	}
+	next();
+}
+
+const signUpVerify = {};
+signUpVerify.checkDuplicateUserNameOrEmail = checkDuplicateUserNameOrEmail;
+signUpVerify.checkRolesExisted = checkRolesExisted;
+
+module.exports = signUpVerify;