Section 10-Authentication And Authorization

Author: Boghdady

.gitignore

@@ -2,4 +2,4 @@ node_modules/
 
 config.env
 
-uploads/
+uploads/``

middlewares/errorMiddleware.js

@@ -1,25 +1,33 @@
-const sendErrorForDev = (err, res) => {
-  return res.status(err.statusCode).json({
+const ApiError = require('../utils/apiError');
+
+const sendErrorForDev = (err, res) =>
+  res.status(err.statusCode).json({
     status: err.status,
     error: err,
     message: err.message,
     stack: err.stack,
   });
-};
 
-const sendErrorForProd = (err, res) => {
-  return res.status(err.statusCode).json({
+const sendErrorForProd = (err, res) =>
+  res.status(err.statusCode).json({
     status: err.status,
     message: err.message,
   });
-};
+
+const handleJwtInvalidSignature = () =>
+  new ApiError('Invalid token, please login again..', 401);
+
+const handleJwtExpired = () =>
+  new ApiError('Expired token, please login again..', 401);
 
 const globalError = (err, req, res, next) => {
   err.statusCode = err.statusCode || 500;
   err.status = err.status || 'error';
   if (process.env.NODE_ENV === 'development') {
     sendErrorForDev(err, res);
   } else {
+    if (err.name === 'JsonWebTokenError') err = handleJwtInvalidSignature();
+    if (err.name === 'TokenExpiredError') err = handleJwtExpired();
     sendErrorForProd(err, res);
   }
 };

models/userModel.js

@@ -0,0 +1,55 @@
+const mongoose = require('mongoose');
+const bcrypt = require('bcryptjs');
+
+const userSchema = new mongoose.Schema(
+  {
+    name: {
+      type: String,
+      trim: true,
+      required: [true, 'name required'],
+    },
+    slug: {
+      type: String,
+      lowercase: true,
+    },
+    email: {
+      type: String,
+      required: [true, 'email required'],
+      unique: true,
+      lowercase: true,
+    },
+    phone: String,
+    profileImg: String,
+
+    password: {
+      type: String,
+      required: [true, 'password required'],
+      minlength: [6, 'Too short password'],
+    },
+    passwordChangedAt: Date,
+    passwordResetCode: String,
+    passwordResetExpires: Date,
+    passwordResetVerified: Boolean,
+    role: {
+      type: String,
+      enum: ['user', 'manager', 'admin'],
+      default: 'user',
+    },
+    active: {
+      type: Boolean,
+      default: true,
+    },
+  },
+  { timestamps: true }
+);
+
+userSchema.pre('save', async function (next) {
+  if (!this.isModified('password')) return next();
+  // Hashing user password
+  this.password = await bcrypt.hash(this.password, 12);
+  next();
+});
+
+const User = mongoose.model('User', userSchema);
+
+module.exports = User;