finish auth routes, create cookie token, fix folder structure, add context to FE

author: Piotr Russ <mail@pruss.it> 2020-11-18 23:15:38 +0100
committer: Piotr Russ <mail@pruss.it> 2020-11-18 23:15:38 +0100
commit: 1870f3fdf43707a15fda0f609a021f516f45eb63 (patch)
tree: fbaf527a47cd89a171df18da4b41e8ce34668555 /server/middleware/auth.js
parent: e06ec920f7a5d784e674c4c4b4e6d1da3dc7391d (diff)
download: website_creator-1870f3fdf43707a15fda0f609a021f516f45eb63.tar.gz
website_creator-1870f3fdf43707a15fda0f609a021f516f45eb63.tar.bz2
website_creator-1870f3fdf43707a15fda0f609a021f516f45eb63.zip
1 files changed, 7 insertions, 2 deletions
diff --git a/server/middleware/auth.js b/server/middleware/auth.js
index 091d3a7..42d93a4 100644
--- a/server/middleware/auth.js
+++ b/server/middleware/auth.js
@@ -3,7 +3,12 @@ const User = require('../models/User');
 
 const auth = async (req, res, next) => {
   try {
-    const token = req.header('Authorization').replace('Bearer ', '');
+    const token = req.cookies.token || '';
+
+    if (!token) {
+      throw new Error();
+    }
+
     const decoded = jwt.verify(token, 'replaceThisWithSecretString');
     const user = await User.findOne({ _id: decoded._id, 'tokens.token': token });
 
@@ -15,7 +20,7 @@ const auth = async (req, res, next) => {
     req.user = user;
     next();
   } catch (err) {
-    res.status(401).send({ error: 'Not authenticated.' });
+    res.redirect('/login');
   }
 
 };
author	Piotr Russ <mail@pruss.it>	2020-11-18 23:15:38 +0100
committer	Piotr Russ <mail@pruss.it>	2020-11-18 23:15:38 +0100
commit	1870f3fdf43707a15fda0f609a021f516f45eb63 (patch)
tree	fbaf527a47cd89a171df18da4b41e8ce34668555 /server/middleware/auth.js
parent	e06ec920f7a5d784e674c4c4b4e6d1da3dc7391d (diff)
download	website_creator-1870f3fdf43707a15fda0f609a021f516f45eb63.tar.gz website_creator-1870f3fdf43707a15fda0f609a021f516f45eb63.tar.bz2 website_creator-1870f3fdf43707a15fda0f609a021f516f45eb63.zip