move environmental variables to dotenv

author: Piotr Russ <mail@pruss.it> 2020-11-22 22:39:04 +0100
committer: Piotr Russ <mail@pruss.it> 2020-11-22 22:39:04 +0100
commit: 2f03b301d0c71524691871b9d03cdb5b9ad3e436 (patch)
tree: 0be7c90f4892eb2cc23e153c246a79216b926098 /server/middleware/auth.js
parent: 4569b85489e863465395f84e995dd3fdc44471b4 (diff)
download: website_creator-2f03b301d0c71524691871b9d03cdb5b9ad3e436.tar.gz
website_creator-2f03b301d0c71524691871b9d03cdb5b9ad3e436.tar.bz2
website_creator-2f03b301d0c71524691871b9d03cdb5b9ad3e436.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/server/middleware/auth.js b/server/middleware/auth.js
index 462b100..bec113d 100644
--- a/server/middleware/auth.js
+++ b/server/middleware/auth.js
@@ -10,13 +10,14 @@ const auth = async (req, res, next) => {
     }
 
     try {
-      const decoded = jwt.verify(token, 'replaceThisWithSecretString');
+      const decoded = jwt.verify(token, process.env.JWT_SECRET);
       req.userId = decoded._id;
       req.refreshToken = decoded.ref;
       return next();
     } catch(er) {
       if (er.message && er.message === 'jwt expired') {
-        const { _id, ref } = jwt.decode(token, 'replaceThisWithSecretString');
+        const { _id, ref } = jwt.decode(token, process.env.JWT_SECRET);
+        console.log('reading db to login')
         const user = await User.findById(_id);
 
         if (!user) {
author	Piotr Russ <mail@pruss.it>	2020-11-22 22:39:04 +0100
committer	Piotr Russ <mail@pruss.it>	2020-11-22 22:39:04 +0100
commit	2f03b301d0c71524691871b9d03cdb5b9ad3e436 (patch)
tree	0be7c90f4892eb2cc23e153c246a79216b926098 /server/middleware/auth.js
parent	4569b85489e863465395f84e995dd3fdc44471b4 (diff)
download	website_creator-2f03b301d0c71524691871b9d03cdb5b9ad3e436.tar.gz website_creator-2f03b301d0c71524691871b9d03cdb5b9ad3e436.tar.bz2 website_creator-2f03b301d0c71524691871b9d03cdb5b9ad3e436.zip