fredrik/org-todo-pwa
1
0
Fork 0
Code Issues 5 Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: fredrik:cleanup
Branches Tags
fredrik:main fredrik:reset fredrik:cleanup fredrik:tags fredrik:material-design
...
compare: fredrik:c993848278d9f1085f8c0d8d4df8e7a3332292cb
Branches Tags
fredrik:main fredrik:reset fredrik:cleanup fredrik:tags fredrik:material-design

7 Commits
cleanup ... c993848278

Author SHA1 Message Date
fredrik
c993848278 Merge pull request 'Längre intervall på healthcheck' (#17) from reset into main 
Reviewed-on: #17
 2025-01-24 23:17:55 +01:00
Fredrik Wahlberg
87feaa9880 Längre intervall på healthcheck 2025-01-24 23:17:02 +01:00
Fredrik Wahlberg
23a39247a1 Implement session-based authentication and add logout functionality 
Fix #15
 2025-01-24 22:02:54 +01:00
Fredrik Wahlberg
da2f568acf Implement server-side authentication and update login UI texts 2025-01-24 21:54:05 +01:00
Fredrik Wahlberg
1edcefbd64 Ta bort kolon vid tomma taggar. 
Fixar #12
 2025-01-24 21:40:16 +01:00
fredrik
276587f1dc Merge pull request 'cleanup' (#11) from cleanup into main 
Reviewed-on: #11
 2025-01-24 21:34:53 +01:00
fredrik
51656c0ee4 Merge pull request 'Lägg till autentisering och loggning, refaktorisera uppgifter till router' (#9) from cleanup into main 
Reviewed-on: #9
 2025-01-24 21:26:50 +01:00
8 changed files with 150 additions and 27 deletions
Expand all files Collapse all files

2
docker-compose.yml
View File

@@ -15,7 +15,7 @@ services:
- AUTH_PASSWORD=apa - AUTH_PASSWORD=apa
healthcheck: healthcheck:
test: ["CMD", "curl", "-f", "http://localhost:3044"] test: ["CMD", "curl", "-f", "http://localhost:3044"]
interval: 1m30s interval: 5m
timeout: 10s timeout: 10s
retries: 3 retries: 3
deploy: deploy:

9
middleware/auth.js
View File

@@ -1,15 +1,10 @@
const basicAuth = require('basic-auth'); const basicAuth = require('basic-auth');
const auth = (req, res, next) => { const auth = (req, res, next) => {
const user = basicAuth(req); if (req.session && req.session.user) {
const username = process.env.AUTH_USERNAME; // Use environment variables
const password = process.env.AUTH_PASSWORD; // Use environment variables
if (user && user.name === username && user.pass === password) {
return next(); return next();
} else { } else {
res.set('WWW-Authenticate', 'Basic realm="401"'); res.status(401).send('Authentication required.');
return res.status(401).send('Authentication required.');
} }
}; };

72
package-lock.json generated
View File

@@ -14,6 +14,7 @@
"debug": "^4.4.0", "debug": "^4.4.0",
"dotenv": "^16.4.7", "dotenv": "^16.4.7",
"express": "^4.21.2", "express": "^4.21.2",
"express-session": "^1.18.1",
"fs": "^0.0.1-security" "fs": "^0.0.1-security"
} }
}, },
@@ -308,6 +309,50 @@
"url": "https://opencollective.com/express" "url": "https://opencollective.com/express"
} }
}, },
"node_modules/express-session": {
"version": "1.18.1",
"resolved": "https://registry.npmjs.org/express-session/-/express-session-1.18.1.tgz",
"integrity": "sha512-a5mtTqEaZvBCL9A9aqkrtfz+3SMDhOVUnjafjo+s7A9Txkq+SVX2DLvSp1Zrv4uCXa3lMSK3viWnh9Gg07PBUA==",
"dependencies": {
"cookie": "0.7.2",
"cookie-signature": "1.0.7",
"debug": "2.6.9",
"depd": "~2.0.0",
"on-headers": "~1.0.2",
"parseurl": "~1.3.3",
"safe-buffer": "5.2.1",
"uid-safe": "~2.1.5"
},
"engines": {
"node": ">= 0.8.0"
}
},
"node_modules/express-session/node_modules/cookie": {
"version": "0.7.2",
"resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.2.tgz",
"integrity": "sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==",
"engines": {
"node": ">= 0.6"
}
},
"node_modules/express-session/node_modules/cookie-signature": {
"version": "1.0.7",
"resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.0.7.tgz",
"integrity": "sha512-NXdYc3dLr47pBkpUCHtKSwIOQXLVn8dZEuywboCOJY/osA0wFSLlSawr3KN8qXJEyX66FcONTH8EIlVuK0yyFA=="
},
"node_modules/express-session/node_modules/debug": {
"version": "2.6.9",
"resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
"integrity": "sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA==",
"dependencies": {
"ms": "2.0.0"
}
},
"node_modules/express-session/node_modules/ms": {
"version": "2.0.0",
"resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz",
"integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A=="
},
"node_modules/express/node_modules/debug": { "node_modules/express/node_modules/debug": {
"version": "2.6.9", "version": "2.6.9",
"resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz", "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
@@ -584,6 +629,14 @@
"node": ">= 0.8" "node": ">= 0.8"
} }
}, },
"node_modules/on-headers": {
"version": "1.0.2",
"resolved": "https://registry.npmjs.org/on-headers/-/on-headers-1.0.2.tgz",
"integrity": "sha512-pZAE+FJLoyITytdqK0U5s+FIpjN0JP3OzFi/u8Rx+EV5/W+JTWGXG8xFzevE7AjBfDqHv/8vL8qQsIhHnqRkrA==",
"engines": {
"node": ">= 0.8"
}
},
"node_modules/parseurl": { "node_modules/parseurl": {
"version": "1.3.3", "version": "1.3.3",
"resolved": "https://registry.npmjs.org/parseurl/-/parseurl-1.3.3.tgz", "resolved": "https://registry.npmjs.org/parseurl/-/parseurl-1.3.3.tgz",
@@ -623,6 +676,14 @@
"url": "https://github.com/sponsors/ljharb" "url": "https://github.com/sponsors/ljharb"
} }
}, },
"node_modules/random-bytes": {
"version": "1.0.0",
"resolved": "https://registry.npmjs.org/random-bytes/-/random-bytes-1.0.0.tgz",
"integrity": "sha512-iv7LhNVO047HzYR3InF6pUcUsPQiHTM1Qal51DcGSuZFBil1aBBWG5eHPNek7bvILMaYJ/8RU1e8w1AMdHmLQQ==",
"engines": {
"node": ">= 0.8"
}
},
"node_modules/range-parser": { "node_modules/range-parser": {
"version": "1.2.1", "version": "1.2.1",
"resolved": "https://registry.npmjs.org/range-parser/-/range-parser-1.2.1.tgz", "resolved": "https://registry.npmjs.org/range-parser/-/range-parser-1.2.1.tgz",
@@ -828,6 +889,17 @@
"node": ">= 0.6" "node": ">= 0.6"
} }
}, },
"node_modules/uid-safe": {
"version": "2.1.5",
"resolved": "https://registry.npmjs.org/uid-safe/-/uid-safe-2.1.5.tgz",
"integrity": "sha512-KPHm4VL5dDXKz01UuEd88Df+KzynaohSL9fBh096KWAxSKZQDI2uBrVqtvRM4rwrIrRRKsdLNML/lnaaVSRioA==",
"dependencies": {
"random-bytes": "~1.0.0"
},
"engines": {
"node": ">= 0.8"
}
},
"node_modules/unpipe": { "node_modules/unpipe": {
"version": "1.0.0", "version": "1.0.0",
"resolved": "https://registry.npmjs.org/unpipe/-/unpipe-1.0.0.tgz", "resolved": "https://registry.npmjs.org/unpipe/-/unpipe-1.0.0.tgz",

1
package.json
View File

@@ -15,6 +15,7 @@
"debug": "^4.4.0", "debug": "^4.4.0",
"dotenv": "^16.4.7", "dotenv": "^16.4.7",
"express": "^4.21.2", "express": "^4.21.2",
"express-session": "^1.18.1",
"fs": "^0.0.1-security" "fs": "^0.0.1-security"
} }
} }

46
public/app.js
View File

@@ -17,11 +17,15 @@ document.addEventListener('DOMContentLoaded', function() {
const loginMessage = document.getElementById('loginMessage'); const loginMessage = document.getElementById('loginMessage');
// Check if user is already logged in // Check if user is already logged in
if (sessionStorage.getItem('loggedIn') === 'true') { fetch('/check-session')
loginContainer.style.display = 'none'; .then(response => response.json())
appContainer.style.display = 'block'; .then(data => {
loadTags(); if (data.loggedIn) {
} loginContainer.style.display = 'none';
appContainer.style.display = 'block';
loadTags();
}
});
loginForm.addEventListener('submit', function(e) { loginForm.addEventListener('submit', function(e) {
e.preventDefault(); e.preventDefault();
@@ -29,15 +33,27 @@ document.addEventListener('DOMContentLoaded', function() {
const username = document.getElementById('username').value; const username = document.getElementById('username').value;
const password = document.getElementById('password').value; const password = document.getElementById('password').value;
// Simple authentication check (replace with your own logic) // Send credentials to the server for validation
if (username === 'fredrik' && password === 'apa') { fetch('/login', {
sessionStorage.setItem('loggedIn', 'true'); method: 'POST',
loginContainer.style.display = 'none'; headers: {
appContainer.style.display = 'block'; 'Content-Type': 'application/json',
loadTags(); 'Authorization': 'Basic ' + btoa(username + ':' + password)
} else { }
loginMessage.textContent = 'Invalid username or password'; })
} .then(response => {
if (response.ok) {
sessionStorage.setItem('loggedIn', 'true');
loginContainer.style.display = 'none';
appContainer.style.display = 'block';
loadTags();
} else {
loginMessage.textContent = 'Invalid username or password';
}
})
.catch(error => {
loginMessage.textContent = 'Error logging in';
});
}); });
document.getElementById('taskForm').addEventListener('submit', function(e) { document.getElementById('taskForm').addEventListener('submit', function(e) {
@@ -52,7 +68,7 @@ document.addEventListener('DOMContentLoaded', function() {
// Structure data for Org mode // Structure data for Org mode
const taskData = { const taskData = {
subject: `${subject} :${tags}:`, subject: tags ? `${subject} :${tags}:` : subject,
description, description,
scheduled scheduled
}; };

8
public/index.html
View File

@@ -14,14 +14,14 @@
</head> </head>
<body> <body>
<div id="loginContainer" class="container"> <div id="loginContainer" class="container">
<h1 class="center-align">Login</h1> <h1 class="center-align">Logga in</h1>
<form id="loginForm"> <form id="loginForm">
<div class="input-field"> <div class="input-field">
<label for="username">Username:</label> <label for="username">Användarnamn:</label>
<input type="text" id="username" required> <input type="text" id="username" required>
</div> </div>
<div class="input-field"> <div class="input-field">
<label for="password">Password:</label> <label for="password">Lösenord:</label>
<input type="password" id="password" required> <input type="password" id="password" required>
</div> </div>
<button class="btn waves-effect waves-light" type="submit">Login</button> <button class="btn waves-effect waves-light" type="submit">Login</button>
@@ -48,7 +48,7 @@
</div> </div>
<div class="input-field"> <div class="input-field">
<label for="tags">Tags (separated by commas):</label> <label for="tags">Taggar (separera med komma):</label>
<input type="text" id="tags" class="autocomplete"> <input type="text" id="tags" class="autocomplete">
</div> </div>

27
routes/auth.js Normal file
View File

@@ -0,0 +1,27 @@
const express = require('express');
const basicAuth = require('basic-auth');
const router = express.Router();
router.post('/login', (req, res) => {
const user = basicAuth(req);
const username = process.env.AUTH_USERNAME;
const password = process.env.AUTH_PASSWORD;
if (user && user.name === username && user.pass === password) {
req.session.user = user.name;
res.status(200).send('Login successful');
} else {
res.status(401).send('Authentication required');
}
});
router.post('/logout', (req, res) => {
req.session.destroy((err) => {
if (err) {
return res.status(500).send('Error logging out');
}
res.status(200).send('Logout successful');
});
});
module.exports = router;

12
server.js
View File

@@ -1,15 +1,27 @@
require('dotenv').config(); require('dotenv').config();
const express = require('express'); const express = require('express');
const bodyParser = require('body-parser'); const bodyParser = require('body-parser');
const session = require('express-session');
const debug = require('debug')('app'); const debug = require('debug')('app');
const tasksRouter = require('./routes/tasks'); const tasksRouter = require('./routes/tasks');
const authRouter = require('./routes/auth');
const app = express(); const app = express();
const port = 3044; const port = 3044;
app.use(bodyParser.json()); app.use(bodyParser.json());
app.use(express.static('public')); app.use(express.static('public'));
// Configure session middleware
app.use(session({
secret: process.env.SESSION_SECRET || 'default_secret', // Use a strong secret in production
resave: false,
saveUninitialized: true,
cookie: { secure: false } // Set to true if using HTTPS
}));
app.use('/', tasksRouter); app.use('/', tasksRouter);
app.use('/', authRouter);
app.listen(port, () => { app.listen(port, () => {
debug(`Server running at http://localhost:${port}`); debug(`Server running at http://localhost:${port}`);