[work]-on uploading images & signup user

Author: sourabh

.env

@@ -1,3 +1,11 @@
 PORT = 4000
+DB_URL = mongodb://localhost:27017/tshrtshopapp
+
 JWT_SECRET = thisismyjwtpersonalsecret
-JWT_EXPIRY = 7d
+JWT_EXPIRY = 3d
+COOKIE_TIME = 3d
+
+CLOUDINARY_NAME = djqf9vhkq
+CLOUDINARY_API_KEY = 333799583579346
+CLOUDINARY_API_SECRET = NQvSauVhU6fjJ5Wrd_GDqMHTVu4
+

app.js

@@ -18,16 +18,23 @@ app.use(morgan("tiny"));
 
 //COOKIES AND FILE-UPLOAD MIDDLEWARE
 app.use(cookieParser());
-app.use(fileUpload());
+app.use(
+  fileUpload({
+    useTempFiles: true,
+    tempFileDir: "/tmp/",
+  })
+);
 
 //REGULAR MIDDLEWARE
 app.use(express.json());
-app.use(express.urlencoded({extended:true}))
+app.use(express.urlencoded({ extended: true }));
 
 // BRINGS ROUTES
 const home = require("./routes/home");
+const user = require("./routes/user");
 
 // USING MIDDLEWARE
 app.use("/api/v1", home);
+app.use("/api/v1", user);
 
 module.exports = app;

config/db.js

@@ -0,0 +1,18 @@
+const mongoose = require("mongoose");
+const { DB_URL } = process.env;
+
+const connectWithDb = () => {
+  mongoose
+    .connect(DB_URL, {
+      useNewUrlParser: true,
+      useUnifiedTopology: true,
+    })
+    .then(console.log("DB CONNECTED SUCCESSFULLY"))
+    .catch((error) => {
+      console.log(`DB CONNECTION FAILED`);
+      console.log(error);
+      process.exit(1);
+    });
+};
+
+module.exports = connectWithDb;

controllers/user.js

@@ -0,0 +1,40 @@
+const User = require("../models/user");
+const BigPromise = require("../middlewares/bigPromise");
+const CustomError = require("../utils/customError");
+const cookieToken = require("../utils/cookieToken");
+const fileUpload = require("express-fileupload");
+const cloudinary = require("cloudinary");
+
+exports.signup = BigPromise(async (req, res, next) => {
+  // UPLOAD IMAGE
+  let result;
+  if (req.files) {
+    let file = req.files.photo;
+    result = await cloudinary.v2.uploader.upload(file, {
+      folder: "users",
+      width: 150,
+      crop: "scale",
+    });
+  }
+
+  // INVITE FIELD
+  const { name, email, password } = req.body;
+
+  // EXITS,OR NOT
+  if (!email || !name || !password) {
+    return next(new CustomError("Name,email,password are required!", 400));
+  }
+
+  // NEW ENTRY ON DB
+  const user = await User.create({
+    name,
+    email,
+    password,
+    photo: {
+      id: result.public_id,
+      secure_url: result.secure_url,
+    },
+  });
+
+  cookieToken(user, res);
+});

index.js

@@ -1,6 +1,20 @@
 require("dotenv").config();
-const app = require("./app")
+const app = require("./app");
+const connectWithDb = require("./config/db");
+const cloudinary = require("cloudinary");
+
+// CONNECT TO DATABASE
+connectWithDb();
+
+// CLOUDINARY CONFIG
+cloudinary.config({
+  clound_name: process.env.CLOUDINARY_NAME,
+  api_key: process.env.CLOUDINARY_API_KEY,
+  api_key: process.env.CLOUDINARY_API_SECRET,
+});
 
 app.listen(process.env.PORT, () => {
-    console.log(`Example app listening on port http://localhost:${process.env.PORT}/api/v1`)
-  })
+  console.log(
+    `Example app listening on port http://localhost:${process.env.PORT}/api/v1`
+  );
+});

models/user.js

@@ -2,6 +2,7 @@ const mongoose = require("mongoose");
 const validator = require("validator");
 const bcrypt = require("bcryptjs");
 const jwt = require("jsonwebtoken");
+const crypto = require("crypto");
 
 const userSchema = new mongoose.Schema({
   name: {
@@ -18,7 +19,7 @@ const userSchema = new mongoose.Schema({
   password: {
     type: String,
     required: [true, "Please provide an password"],
-    minlength: [6, "password should be atleast 8 char"],
+    minlength: [6, "password should be atleast 6 char"],
     select: false,
   },
   role: {
@@ -58,11 +59,25 @@ userSchema.methods.isValidatedPassword = async function (userSendPassword) {
 
 //CREATE AND RETURN JWT TOKEN
 userSchema.methods.getJwtToken = function () {
-  jwt.sign({ id: this._id }, process.env.JWT_SECRET, {
+  return jwt.sign({ id: this._id }, process.env.JWT_SECRET, {
     expiresIn: process.env.JWT_EXPIRY,
   });
 };
 
+// GENERATE FORGOT PASSWORD TOKEN (STRING)
+userSchema.methods.getForgotPasswordToken = function () {
+  // GENERATE A LONG AND RANDOM STRING
+  const forgotToken = crypto.randomBytes(20).toString("hex");
+  // GETTING A HASH - MAKE SURE TO GET HASH ON backend
+  this.forgotPasswordToken = crypto
+    .createHash("sha256")
+    .update(forgotToken)
+    .digest("hex");
+  // TIME OF TOKEN
+  this.forgotPasswordExpiry = Date.now() + 20 * 60 * 1000;
+  return forgotToken;
+};
+
 
 module.exports = mongoose.model("User", userSchema);
 

routes/user.js

@@ -0,0 +1,7 @@
+const express = require("express");
+const router = express.Router();
+const {signup} = require("../controllers/user");
+
+router.route('/signup').post(signup);
+
+module.exports = router;

map_project.js tracking_project/map_project.js

@@ -1,4 +1,6 @@
 /*
+@NOTE: Create first "CustomError"(🗃️utils), "bigPromise"(🗃️middlewares) for Error Handling BEFOUR Start PROJECT;
+
 @ABOUT_ROUTES:
 Ref: ✈️🔗https://expressjs.com/en/5x/api.html#router
 
@@ -73,6 +75,7 @@ IN this we'r discussing about methods for VALIDATING the password that were pass
 -It just return true & false value weather you login or not !!
 
 -----------------NEW--------------------
+
 @SECTION: USER MODEL & SIGNUP 
 @TITLE: CREATING JWT TOKEN 
 @LOCATION: 🗃️models/user.js
@@ -90,4 +93,72 @@ IN this we'r discussing about methods for VALIDATING the password that were pass
 -🎯Then provide secrete Come from .env 
 -🎯Then pass expiry time 
 
+
+🥊🥊-----------------------@NEW@----------------------------🥊🥊
+
+
+@SECTION: USER MODEL & SIGNUP 
+@TITLE: FORGOT PASSWORT & CRYPTO HASHING  
+@ABOUT:user schema 
+@LOCATION: 🗃️models/user.js
+@OVERVIEW: 
+Ref: 🔗✈️https://www.npmjs.com/package/nanoid
+Ref: 🔗✈️https://www.npmjs.com/package/randomstring
+Ref: 🔗✈️https://www.npmjs.com/package/uuid
+
+!Ref: 🔗✈️https://stackoverflow.com/questions/1349404/generate-random-string-characters-in-javascript
+!Ref: 🔗✈️https://en.wikipedia.org/wiki/Cryptographic_hash_function
+
+-🎯ForgotPasswordToken It just Normal String Nothing more than that don't consider as a jsonwebtoken 
+-🎯Need to Stored this String Into DATABASE itself & send to frontend somebuddy else 
+-🎯use crypto package take Refference of 2nd last link 
+-🎯we can perform simply No need to woryy on 'createHash,digest,update' & all stuff just go & simply stored like this.forgotPasswordExpiry = forgotToken it's OK !! No Problem 
+-🎯But,OPTIONAlY Moving one step ahead BEFOUR one Read about last wikipedia Link 
+-🎯About ref link 
+   it Generate STRING which "fix in size" + find message only via "Bruit Force" which take long years & info not that much valuable + So in order to Resolve "Cryptographic_hash_function" Need of it; 
+   
+
+-@PROCESS 
+ ^ Generate a long and random String 
+   [nanoid,randomstring,uuid]
+ ^ But😗, we'r using CRYPTO not any one of them it just for knowledge 
+ ^ we'don't have to install it come with node itself;
+ ^ take Refference of last two below link study perpose & with the help of that createHash update & digest 
+
+
+----------------------------SECTION 
+
+@TITLE: USER ROUTES AND POSTMAN 
+@LOCATION: 🗃️MODEL/user/
+
+🔺-"/forgotPassword "- request an email How to reset Password + 
+🔺-"/password/reset/:token" - The whole idea behind this Grabbed this UNIC string(via :token) just created at earlier Via CRYPTO 
+& want to Grabbed this "URL" itself if "STRING" Matches with my DATABASE STRING So everything reset in backend itself; this is how it work;
+Note: ALSO Allow PASSWORD Body itself 
+🔺- Need All user info "/"
+🔺- "/password/update" && "/user/update"
+
+-----------------------------SECTION
+
+@LOCATION: 🗃️CONTROLLER/user.js
+@TITLE:SIGNUP A USER & COOKIE 
+
+  /*SEND Cookie Value 
+  -🎯Optionally You can send msg Hey, user is created Go & Login
+  -🎯But,here once Registerd then want send HIM cookie token & GRABBED It That's convection 
+  -🎯Now able to access Methods Now that we done on Model/user "getJwtToken" it'll give me token 
+  -🎯want set some options & throw it on "Cookie"
+  -🎯Why Json for mobile perspective that's why you see easily token on web But.
+
+  Cookie token we need use frequently So create 🗃️utils/cookieToken/
+  
+
+
+
+
+
+
+
+
+
 */

utils/cookieToken.js

@@ -0,0 +1,19 @@
+const cookieToken = (user, res) => {
+  // GRABBED TOKEN
+  const token = user.getJwtToken();
+
+  // PASS TOKEN INTO OPTIONS THEN COOKIE
+  const options = {
+    expires: new Date(Date.now() + 3 * 24 * 60 * 60 * 1000),
+    httpOnly: true,
+  };
+
+  user.password = undefined;
+  res.status(200).cookie("token", token, options).json({
+    success: true,
+    token,
+    user,
+  });
+};
+
+module.exports = cookieToken;