pchab · shantanukanade · Apr 3, 2014 · Apr 9, 2014 · Apr 9, 2014 · Apr 22, 2014
diff --git a/.gitignore b/.gitignore
@@ -1,2 +1,3 @@
 .DS_Store
 node_modules/
+data/
diff --git a/README.md b/README.md
@@ -21,6 +21,14 @@ It requires [node.js](http://nodejs.org/download/)
 The server will run on port 3000.
 You can test it in the (Chrome) browser at localhost:3000.
 
+## User Database
+
+Using a local MongoDB
+
+* mongod --dbpath ./data --port 1664
+
+You can configure the url in /config/database.js
+
 ## Author
 
 - Pierre Chabardes
diff --git a/app.js b/app.js
@@ -1,33 +1,51 @@
 /**
  * Module dependencies.
  */
-var express = require('express')
-  , http = require('http')
-  , path = require('path')
-  , streams = require('./app/streams.js')();
-
-var app = express()
-  , server = http.createServer(app)
-  , io = require('socket.io').listen(server);
-
-// all environments
-app.set('port', 3000);
-app.set('views', __dirname + '/views');
-app.set('view engine', 'ejs');
-app.use(express.favicon(__dirname + '/public/images/favicon.ico'));
-app.use(express.logger('dev'));
-app.use(express.bodyParser());
-app.use(express.methodOverride());
-app.use(app.router);
-app.use(express.static(path.join(__dirname, 'public')));
+var express  = require('express')
+  , http     = require('http')
+  , path     = require('path')
+  , mongoose = require('mongoose')
+  , passport = require('passport')
+  , flash    = require('connect-flash')
+  , streams  = require('./app/streams.js')();
+
+var app      = express()
+  , server   = http.createServer(app)
+  , configDB = require('./config/database.js')
+  , io       = require('socket.io').listen(server);
+
+mongoose.connect(configDB.url);
+require('./config/passport')(passport); // pass passport for configuration
+
+app.configure(function() {
+  // all environments
+  app.set('port', 3000);
+  app.set('views', __dirname + '/views');
+  app.set('view engine', 'ejs');
+  app.use(express.favicon(__dirname + '/public/images/favicon.ico'));
+  app.use(express.logger('dev'));
+  app.use(express.cookieParser());
+  app.use(express.bodyParser());
+  app.use(express.methodOverride());
+
+  // required for passport
+  app.use(express.session({ secret: 'ilovemaplesyruppancakes' })); // session secret
+  app.use(passport.initialize());
+  app.use(passport.session()); // persistent login sessions
+  app.use(flash()); // use connect-flash for flash messages stored in session
+
+  app.use(app.router);
+  app.use(express.static(path.join(__dirname, 'public')));
+});
+
 
 // development only
 if ('development' == app.get('env')) {
   app.use(express.errorHandler());
 }
 
 // routing
-require('./app/routes.js')(app, streams);
+require('./app/routes.js')(app, streams, passport);
 
 /**
  * Socket.io event handling

diff --git a/app/models/user.js b/app/models/user.js
@@ -0,0 +1,25 @@
+var mongoose = require('mongoose');
+var bcrypt   = require('bcrypt-nodejs');
+
+// define the schema for our user model
+var userSchema = mongoose.Schema({
+
+    local       : {
+        username: String,
+        password: String,
+    }
+});
+
+// methods ======================
+// generating a hash
+userSchema.methods.generateHash = function(password) {
+    return bcrypt.hashSync(password, bcrypt.genSaltSync(8), null);
+};
+
+// checking if password is valid
+userSchema.methods.validPassword = function(password) {
+    return bcrypt.compareSync(password, this.local.password);
+};
+
+// create the model for users and expose it to our app
+module.exports = mongoose.model('User', userSchema);
diff --git a/app/routes.js b/app/routes.js
@@ -1,50 +1,82 @@
-module.exports = function(app, streams) {
+module.exports = function(app, streams, passport) {
 
-  // GET home 
+  // HOME PAGE (with login links)
   var index = function(req, res) {
-    res.render('index', { 
-                          title: 'Project RTC', 
-                          header: 'WebRTC live streaming',
-                          footer: '[email protected]',
-                          id: req.params.id
+    res.render('index', {  
+                          title: 'Project RTC'
                         });
   };
 
-  // GET crowd
-  var crowd = function(req, res) {
-    res.render('crowd', { 
-                          title: 'Project RTC', 
-                          footer: ''
+  // LOGIN PAGE 
+  var login = function(req, res) {
+    res.render('login', {  
+                          title: 'Project RTC',
+                          message: req.flash('loginMessage')
                         });
   };
 
-  // GET join
-  var join = function(req, res) {
-    res.render('join', { 
+  // LOGOUT PAGE 
+  var logout = function(req, res) {
+    req.logout();
+    res.redirect('/');
+  };
+
+  // SIGNUP PAGE 
+  var signup = function(req, res) {
+    res.render('signup', { 
+                            title: 'Project RTC',
+                            message: req.flash('signupMessage') 
+                          });
+  };
+
+  // GET main 
+  var main = function(req, res) {
+    res.render('main', { 
                           title: 'Project RTC', 
-                          footer: ''
+                          header: 'WebRTC live streaming',
+                          footer: '[email protected]',
+                          id: req.params.id,
+                          user: req.user.local.username
                         });
   };
 
   // GET streams as JSON
   var displayStreams = function(req, res) {
-    var id = req.params.id;
     var streamList = streams.getStreams();
     // JSON exploit to clone streamList.public
-    var data = (JSON.parse(JSON.stringify(streamList.public))); 
-
-    /* 
-     * if a specific id is requested, always add the stream even if private
-     */
-    if(!!id) {
-      data[id] = streamList.public[id] || streamList.private[id];
-    } 
+    var data = (JSON.parse(JSON.stringify(streamList))); 
 
     res.json(200, data);
   };
 
+  // route middleware to make sure a user is logged in
+  var isLoggedIn = function(req, res, next) {
+
+    // if user is authenticated in the session, carry on 
+    if (req.isAuthenticated())
+      return next();
+
+    // if they aren't redirect them to the home page
+    res.redirect('/');
+  }
+
   app.get('/streams', displayStreams);
-  app.get('/streams/:id', displayStreams);
+  app.get('/main', isLoggedIn, main);
+  app.get('/login', login);
+  // process the login form
+  app.post('/login', passport.authenticate('local-login', {
+    successRedirect : '/main', // redirect to the secure profile section
+    failureRedirect : '/login',   // redirect back to the signup page if there is an error
+    failureFlash    : true        // allow flash messages
+  }));
+  app.get('/logout', logout);
+  app.get('/signup', signup);
+  // process the signup form
+  app.post('/signup', passport.authenticate('local-signup', {
+    successRedirect : '/main',   // redirect to the secure main section
+    failureRedirect : '/signup', // redirect back to the signup page if there is an error
+    failureFlash    : true       // allow flash messages
+  }));
   app.get('/', index);
-  app.get('/:id', index);
+  app.get('/:id', isLoggedIn, main);
 }
diff --git a/app/socketHandler.js b/app/socketHandler.js
@@ -18,15 +18,15 @@ module.exports = function(io, streams) {
     client.on('readyToStream', function(options) {
       console.log('-- ' + client.id + ' is ready to stream --');
 
-      streams.addStream(client.id, options.name, options.privacy); 
+      streams.addStream(client.id, options.name); 
     });
 
     client.on('rate', function(rating) {
       streams.rate(rating.id, client.id, rating.points);
     });
 
     client.on('update', function(options) {
-      streams.update(client.id, options.name, options.privacy);
+      streams.update(client.id, options.name);
     });
 
     function leave() {

diff --git a/app/streams.js b/app/streams.js
@@ -3,10 +3,7 @@ module.exports = function() {
    * available streams 
    * the id key is considered unique (provided by socket.io)
    */
-  var streamList = {
-    public: {},
-    private: {}
-  };
+  var streamList = {};
 
   /**
    * Stream object
@@ -21,19 +18,18 @@ module.exports = function() {
   }
 
   return {
-    addStream : function(id, name, isPrivate) {
+    addStream : function(id, name) {
       var stream = new Stream(name);
-      isPrivate ? streamList.private[id] = stream : streamList.public[id] = stream;
+      streamList[id] = stream;
     },
 
     removeStream : function(id) {
-      delete streamList.public[id];
-      delete streamList.private[id];
+      delete streamList[id];
     },
 
     // rate function
     rate : function(id, rater, rating) {
-      var stream = (streamList.public[id] || streamList.private[id]);
+      var stream = streamList[id];
       if(stream.raters[rater] || stream.raters[rater] === null) {
         stream.rating += rating - stream.raters[rater];
       } else {
@@ -44,12 +40,12 @@ module.exports = function() {
     },
 
     // update function
-    update : function(id, name, isPrivate) {
-      var stream = streamList.public[id] || streamList.private[id];
+    update : function(id, name) {
+      var stream = streamList[id];
       stream.name = name;
 
       this.removeStream(id);     
-      isPrivate ? streamList.private[id] = stream : streamList.public[id] = stream;
+      streamList[id] = stream;
     },
 
     getStreams : function() {

diff --git a/config/database.js b/config/database.js
@@ -0,0 +1,6 @@
+// config/database.js
+module.exports = {
+
+	'url' : 'mongodb://localhost:1664'
+
+};