227 lines
8.4 KiB
JavaScript
227 lines
8.4 KiB
JavaScript
const express = require('express')
|
|
const mysql = require("mysql")
|
|
const dotenv = require('dotenv')
|
|
const app = express()
|
|
const path = require("path")
|
|
const publicDir = path.join(__dirname, './public')
|
|
const bcrypt = require("bcryptjs")
|
|
const bodyParser = require('body-parser')
|
|
const dateFormat = require('dateformat');
|
|
|
|
|
|
/* Connexion à la BDD MySQL */
|
|
dotenv.config({ path: './.env'})
|
|
const db = mysql.createConnection({
|
|
host: process.env.DATABASE_HOST,
|
|
port: process.env.DATABASE_PORT,
|
|
user: process.env.DATABASE_USER,
|
|
password: process.env.DATABASE_PASSWORD,
|
|
database: process.env.DATABASE
|
|
})
|
|
db.connect((error) => {
|
|
if(error) {
|
|
console.log(error)
|
|
} else {
|
|
console.log("MySQL connected!")
|
|
}
|
|
})
|
|
|
|
app.set('view engine', 'hbs');
|
|
app.use(express.static(publicDir));
|
|
app.use('/css', express.static(__dirname + '/node_modules/bootstrap/dist/css'));
|
|
app.use(bodyParser.urlencoded({extended: false}));
|
|
app.use(express.json())
|
|
|
|
|
|
// ******************************************* Arrivée sur la page d'accueil *******************************************
|
|
app.get("/", (req, res) => {
|
|
let today = dateFormat(new Date(), "yyyymmdd");
|
|
|
|
// On récupère la liste des sessions actives
|
|
db.query('SELECT ID, topic, DATE_FORMAT(scheduled_on, "%d/%m/%Y") as "date", DATE_FORMAT(scheduled_on, "%Hh%i") as "heure" FROM session WHERE DATE_FORMAT(scheduled_on, "%Y%m%d") >= ?', [today], async (error, result) => {
|
|
if(error){
|
|
console.log(error);
|
|
}
|
|
|
|
if (result.length == 0) {
|
|
res.render("login-session", { error: 'Aucune session disponible' });
|
|
}
|
|
else {
|
|
res.render("login-session", { select: result} );
|
|
}
|
|
})
|
|
});
|
|
|
|
app.get("/index", (req, res) => { res.render("index") });
|
|
app.get("/login", (req, res) => { res.render("login") });
|
|
app.get("/register", (req, res) => {
|
|
res.render("register", { session: req.query.s, role: req.query.r})
|
|
});
|
|
|
|
|
|
// ******************************************* Création d'un nouveau compte *******************************************
|
|
app.post("/auth/register", (req, res) => {
|
|
const { gender, name, firstname, nickname, title, email, password, password_confirm, session, role } = req.body
|
|
|
|
let requete = '';
|
|
if (nickname != '') {
|
|
requete = "SELECT * FROM user WHERE UPPER(nickname) = '?'".replace("?", nickname.toUpperCase());
|
|
}
|
|
if (email != '') {
|
|
requete = "SELECT * FROM user WHERE UPPER(email) = '?'".replace("?", email.toUpperCase());
|
|
}
|
|
|
|
if (requete.length > 0) {
|
|
let topic, sessionDate;
|
|
|
|
db.query(requete, async (error, result) => {
|
|
if(error){
|
|
console.log(error)
|
|
}
|
|
if( result.length > 0 ) {
|
|
return res.render('register', {
|
|
error: 'Adresse email ou pseudo déjà utilisé : modifiez votre saisie ou bien cliquez sur le lien ci-dessus pour vous connecter',
|
|
session: session, role: role
|
|
})
|
|
} else if(password !== password_confirm) {
|
|
return res.render('register', {
|
|
error: 'Vos mots de passe ne correspondent pas',
|
|
session: session, role: role
|
|
})
|
|
}
|
|
|
|
db.query('SELECT topic, DATE_FORMAT(scheduled_on, "%d/%m/%Y %H:%i") as "date" FROM session WHERE id = ?', [session], (err, result) => {
|
|
if(error){
|
|
console.log(error)
|
|
}
|
|
if( result.length > 0 ) {
|
|
topic = result[0].topic;
|
|
sessionDate = result[0].date;
|
|
}
|
|
})
|
|
|
|
let hashedPassword = await bcrypt.hash(password, 8);
|
|
db.query('INSERT INTO user SET?', {gender : (gender != undefined ? gender : ""), firstname: firstname, name: name, title: title, email: email, nickname : nickname, password: hashedPassword}, (err, result) => {
|
|
if(error) {
|
|
console.log(error)
|
|
} else {
|
|
return res.render('login', { session: session, role: role, email: email, nickname: nickname, topic: topic, session_date: sessionDate })
|
|
}
|
|
})
|
|
})
|
|
}
|
|
})
|
|
|
|
// ******************************************* Connexion sur le compte utilisateur *******************************************
|
|
app.post("/auth/check-login", (req, res) => {
|
|
const { email, nickname, password, role, session } = req.body
|
|
|
|
if (email == '' && nickname == '') {
|
|
return res.render('login', {
|
|
error: 'Veuillez saisir soit votre pseudo, soit une adresse email',
|
|
"session": session,
|
|
"role": role
|
|
})
|
|
}
|
|
|
|
db.query('SELECT * FROM user WHERE email = ? OR nickname = ?', [email,nickname], async (error, result) => {
|
|
if(error){
|
|
console.log(error)
|
|
}
|
|
|
|
if( result.length == 0 ) {
|
|
return res.render('login', {
|
|
error: 'Utilisateur inconnu : veuillez créer votre compte via le lien ci-dessus',
|
|
"session": session,
|
|
"role": role
|
|
})
|
|
}
|
|
|
|
var userId = result[0].ID
|
|
bcrypt.compare(password, result[0].password, function(err, result) {
|
|
if(result) {
|
|
|
|
// Le user est connecté avec succès : on vérifie qu'il n'est pas déjà inscrit à la session et si pas le cas, on l'inscrit et on incrémente le compteur des participants
|
|
db.query('SELECT * FROM participation WHERE user = ?', [userId], async (error, result) => {
|
|
if(error) {
|
|
console.log(error)
|
|
}
|
|
|
|
if (result.length == 0) {
|
|
db.query('INSERT INTO participation (user, session, role_during_session) VALUES (?,?,?)', [userId, session[0], role[0]], function (err, result) {
|
|
if (err) throw err;
|
|
console.log("1 record inserted");
|
|
});
|
|
|
|
db.query('UPDATE session SET nb_of_participants = nb_of_participants + 1 WHERE ID=?', session, function (err, result) {
|
|
if (err) throw err;
|
|
console.log("1 record updated");
|
|
});
|
|
}
|
|
})
|
|
|
|
if (role == 'A') {
|
|
res.redirect('https://slave.thecoredev.fr');
|
|
}
|
|
else {
|
|
res.redirect('https://slave.thecoredev.fr');
|
|
}
|
|
}
|
|
else {
|
|
return res.render('login', {
|
|
error: 'Mot de passe incorrect : corriger votre saisie',
|
|
"session": session,
|
|
"role": role
|
|
})
|
|
}
|
|
})
|
|
})
|
|
})
|
|
|
|
|
|
// ******************************************* Connexion sur la session *******************************************
|
|
app.post("/auth/check-session", (req, res) => {
|
|
|
|
const { session, session_password, role } = req.body
|
|
let listeSessions;
|
|
|
|
let today = dateFormat(new Date(), "yyyymmdd");
|
|
db.query('SELECT ID, topic, DATE_FORMAT(scheduled_on, "%d/%m/%Y") as "date", DATE_FORMAT(scheduled_on, "%Hh%i") as "heure" FROM session WHERE DATE_FORMAT(scheduled_on, "%Y%m%d") >= ?', [today], async (error, result) => {
|
|
if(error){
|
|
console.log(error);
|
|
}
|
|
if (result.length == 0) {
|
|
res.redirect('');
|
|
}
|
|
else {
|
|
listeSessions = result;
|
|
}
|
|
});
|
|
|
|
db.query('SELECT password, topic, DATE_FORMAT(scheduled_on, "%d/%m/%Y %H:%i") as "date" FROM session WHERE ID = ?', [session], async (error, result) => {
|
|
if(error){
|
|
console.log(error)
|
|
}
|
|
if( result.length == 0 ) {
|
|
return res.render('login-session', {
|
|
error: 'Session inconnue : veuillez saisir un identifiant de session valide'
|
|
})
|
|
}
|
|
else {
|
|
if (result[0].password === session_password) {
|
|
return res.render('login', {"session": session, "role": role, "topic": result[0].topic, "session_date": result[0].date})
|
|
}
|
|
else {
|
|
return res.render('login-session', {
|
|
"error": "Mot de passe incorrect : corriger votre saisie",
|
|
"select": listeSessions
|
|
})
|
|
}
|
|
}
|
|
})
|
|
})
|
|
|
|
|
|
app.listen(5005, ()=> {
|
|
console.log("server started on port 5005")
|
|
}) |