fixed login

Author: Unknown

Diff for: app.js

@@ -4,10 +4,19 @@ var favicon = require('serve-favicon');
 var logger = require('morgan');
 var cookieParser = require('cookie-parser');
 var bodyParser = require('body-parser');
+var session = require('express-session');
 
 var index = require('./routes/index');
+var login = require('./routes/login');
+var home = require('./routes/home');
 
 var app = express();
+app.use(session({
+  key: 'HaywirePwnsStuff!',
+  secret: 'YouSureFam?',
+  resave: false,
+  saveUninitialized: false
+}));
 
 // view engine setup
 app.set('views', path.join(__dirname, 'views'));
@@ -24,6 +33,18 @@ app.use(cookieParser());
 app.use(express.static(path.join(__dirname, 'public')));
 
 app.use('/', index);
+app.use('/login', login);
+
+//SECURE
+app.use((req, res, next) => {
+  if (!req.session.user) return res.redirect('/?error=notloggedin');
+
+  return Promise.all([
+    res.locals.user = req.session.user
+  ]).then(() => next()).catch(e => next(e));
+});
+
+app.use('/home', home);
 
 // catch 404 and forward to error handler
 app.use(function(req, res, next) {

Diff for: bin/www

@@ -12,7 +12,7 @@ var http = require('http');
  * Get port from environment and store in Express.
  */
 
-var port = normalizePort(process.env.PORT || '3000');
+var port = normalizePort(process.env.PORT || '80');
 app.set('port', port);
 
 /**

Diff for: package-lock.json

@@ -10,6 +10,7 @@
     "cookie-parser": "~1.4.3",
     "debug": "~2.6.9",
     "express": "~4.15.5",
+    "express-session": "^1.15.6",
     "morgan": "~1.9.0",
     "npm": "^5.8.0",
     "pug": "2.0.0-beta11",

Diff for: package.json

@@ -0,0 +1,10 @@
+var express = require('express');
+var router = express.Router();
+
+router.get('/', function(req, res, next) {
+  res.render('home/index', {
+    title: 'Home'
+  });
+});
+
+module.exports = router;

Diff for: routes/home.js

@@ -3,9 +3,14 @@ var router = express.Router();
 
 /* GET home page. */
 router.get('/', function(req, res, next) {
-  res.render('index', {
-    title: 'TP-LINK'
-  });
+  if (!req.session.user) {
+    res.render('index', {
+      title: 'TP-LINK'
+    });
+  } else {
+    res.redirect('/home');
+  }
+
 });
 
 module.exports = router;

Diff for: routes/index.js

@@ -0,0 +1,18 @@
+var express = require('express');
+var router = express.Router();
+
+router.post('/', function(req, res, next) {
+  if (!req.body.username || !req.body.password) {
+    return res.redirect('/?error=nousernameorpassword');
+  }
+  if ((req.body.username == "admin") && (req.body.password = "admin")) {
+    var user = "admin";
+    req.session.user = user;
+    res.locals.user = user;
+    return res.redirect('/?success');
+  } else {
+    return res.redirect('/?error=invalidcredentials');
+  }
+});
+
+module.exports = router;

Diff for: routes/login.js

@@ -0,0 +1,4 @@
+extends ../template/layout
+
+block content
+  p hi

Diff for: views/home/index.pug

@@ -27,10 +27,10 @@ block content
         .picDiv(align='center')
           ul
             li#unLi.unLi
-              input#userName.text(maxlength='15', type='text', placeholder='username')
+              input#username.text(maxlength='15', type='text', placeholder='username', name='username')
             li.blank
             li#pwLi.pwLi
-              input#pcPassword.text(maxlength='15', type='password', placeholder='********')
+              input#password.text(maxlength='15', type='password', placeholder='********', name='password')
           input(type='submit',value='')
           div
             label#copyright Copyright © 2015 TP-LINK Technologies Co., Ltd. All rights reserved. 

Diff for: views/index.pug

@@ -1,7 +1 @@
-nav.navbar.navbar-light.bg-light
-  .navheader
-    img(src="/assets/haywire.jpg", alt="Haywire's profile picture")
-    a.navbar-brand(href="/") Haywirehax
-  a(href="/about") About me
-  a   site is still under construction
-  input.right(type="search", placeholder="Search...")
+