admin/AuthenticatedAPI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

changed to bcrypt.compare when comparing password with the db

Browse Source
This commit is contained in:
F04C
2024-09-19 09:15:05 +08:00
parent 8e47cea502
commit 2110ca4669
1 changed files with 7 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
api/routes/user.js
+7 -2
View File
@@ -1,6 +1,7 @@
const express = require("express"); const express = require("express");
const router = express.Router(); const router = express.Router();
const jwt = require("jsonwebtoken"); const jwt = require("jsonwebtoken");
const bcrypt = require("bcrypt");
const db = require("../../config/db"); const db = require("../../config/db");
// User login endpoint // User login endpoint
@@ -12,7 +13,7 @@ router.post("/login", (req, res) => {
} }
const sql = "SELECT * FROM tbl_user WHERE username = ?"; const sql = "SELECT * FROM tbl_user WHERE username = ?";
db.query(sql, [username], (err, results) => { db.query(sql, [username], async (err, results) => {
if (err) { if (err) {
console.error(err); console.error(err);
return res.status(500).send("Server error"); return res.status(500).send("Server error");
@@ -24,10 +25,14 @@ router.post("/login", (req, res) => {
const user = results[0]; const user = results[0];
if (password === user.password) { // Compare provided password with the hashed password in the database
const isMatch = await bcrypt.compare(password, user.password);
if (isMatch) {
let jwtSecretKey = process.env.JWT_SECRET_KEY || "defaultSecretKey"; let jwtSecretKey = process.env.JWT_SECRET_KEY || "defaultSecretKey";
let data = { userId: user.id, username: user.username }; let data = { userId: user.id, username: user.username };
// Create JWT token
const token = jwt.sign(data, jwtSecretKey, { expiresIn: "1d" }); const token = jwt.sign(data, jwtSecretKey, { expiresIn: "1d" });
return res.json({ token }); return res.json({ token });
} else { } else {