This module is a authentication lib built on top of couch's user model.
- couchdb
- nodejs
var couchUser = require('express-user-couchdb');
var express = require('express');
var cookieParser = require('cookie-parser');
var session = require('express-session');
var app = express();
// Required for session storage
app.use(cookieParser());
app.use(session({ secret: 'Use something else here.'}));
// The request_defaults node is required if you have turned the Admin Party off
app.use(couchUser({
users: 'http://localhost:5984/_users',
request_defaults: {
auth: {
user: 'couchAdminUserName',
pass: 'couchAdminPassword'
}
},
email: {
...
},
adminRoles: [ 'admin' ],
validateUser: function(data, cb) {...}
}));
The optional adminRoles attribute allows you to specify one or more administrative roles that are allowed to add, update, and delete users.
The optional validateUser allows you to specify extra validation other than username/password. For example, checking for greater than x number of login attempts. The first argument data is an object that has request, user, and headers fields. The reason the callback pattern is used to pass out the result is that you can do async calls within this function (like check another database, etc).
Example validateUser function.
validateUser: function(data, cb) {
var MAX_FAILED_LOGIN = 5;
var req = data.req; //all the fields in data is captured from /api/user/signin callback function
var user = data.user;
var headers = data.headers;
var outData = { // This object will be attached to the session
userInfo: "userAge" // req.session.userInfo will be "userAge"
};
if(data.user.failedLogin > MAX_FAILED_LOGIN) {
//fails check
var errorPayload = {
statusCode: 403, //if not included will default to 401
message: 'Exceeded fail login attempts', //if not included will default to 'Invalid User Login'
error: 'Forbidden' //if not included will default 'unauthorized'
}
cb(errorPayload);
} else {
//passess check
cb(null, outData);
}
}
Before you can use this module, you need to run a setup process to add the required views to the couchDb Users table, there is an init.js
file that does this for you. You can include it in your Gruntfile as a task.
grunt.registerTask('setup', 'setup database', function() {
var userSetup = require('./node_modules/express-user-couchdb/init');
userSetup('http://localhost:5984/_users', function(err) {
console.log("configured express-user-couchdb module");
});
});
or you can invoke via command line
node ./node_modules/express-user-couchdb/init http://localhost:5984/_users
Create a new user account. If config.verify is set, the user will be sent an email with a link to verify their account. If the user trying to login has enabled set to false, they will be notified to contact an admin to reactivate their account.
{
"name": "user",
"password": "password",
"email": "[email protected]",
"data": {}
}
Allow a user to log in. If config.verify is set, then the user is required to validate their email address before logging in.
{
"name": "user",
"password": "password"
}
{
"name": "user"
}
The currently logged in user. Returns a 401 error if the user is not currently logged in.
If the user trying to retrieve their password has enabled set to false, they will be notified to contact an admin to reactivate their account.
{
"email": "[email protected]"
}
Send an email to a user that includes a verification code and link to verify their account.
{
"name": "email"
}
Confirm that a user's email address is valid using a previously generated verification code.
Reset a user's password (requires the code generated using /api/user/forgot).
{
"name": "user",
"code": "code"
}
Return a list of users matching the specified roles.
[{ user... }, { user2... }]
Create a new user. If config.adminRoles is set, the user making this call must have one of the specified roles.
{
"name": "user1",
"type": "user",
"password": "foo",
"roles": ['admin']
}
Returns the user whose name matches :name.
{
"_id": "org.couchdb.user:user1",
"_rev": "1-123456",
"name": "user1",
"type": "user",
"password": "foo",
"roles": ['admin']
}
Updates the user specified by :name. If config.adminRoles is set, then a user must have an admin role to be able to update anyone else's record. Non-admins cannot update their own role information.
{
"_id": "org.couchdb.user:user1",
"_rev": "1-123456",
"name": "user1",
"type": "user",
"password": "foo",
"roles": ['admin']
}
Removes the specified user. If config.adminRoles is set, then a user must have an admin role to be able to delete a user.
{
"_id": "org.couchdb.user:user1",
"_rev": "1-123456",
"name": "user1",
"type": "user",
"password": "foo",
"roles": ['admin']
}
var user = require('express-user-couchdb');
var config = {
users: 'http://localhost:5984/_users',
email ....
};
app.config(function() {
// handle other requests first
app.use(express.router);
// handle core requests
app.use(user(config));
});
node init.js [couchdb users db]
express-user-couchdb has the capability to attach to an smtp server and send emails for certain user events. And you have the ability to manipulate the e-mail templates.
express-user-couchdb uses the nodemailer and email-templates modules to perform the email process, but you need to pass in the config settings in the config argument of the module:
Here is an example of the config settings:
{
couch: 'http://localhost:5984/_users',
email: {
service: 'SMTP',
SMTP: {
....
},
templateDir: ....
}
}
to setup the forgot password email template you need to create a folder called forgot
in the email template directory, then in that folder you need to create a style.css, html.ejs, and text.ejs. These files will be used to build your email template. Here is an example of the text.ejs
Foo App
#######
We are sorry you forgot your password, in order to reset your password, we need you to click the link below.
Copy Link:
http://fooapp.com/account/reset?code=<%= user.code %>
and paste into your browsers url.
Thank you for supporting our application, please let us know if you have any questions or concerns.
Thanks
The Team
If you plan to enable the users to register, you may want to send a confirmation email to them when they sign up.
You would follow the same steps above, but instead of creating a forgot folder, you would need to create a confirm folder and place your css, html.ejs, and text.ejs files.
Pull requests are welcome.
MIT
Please add issues to the github repo.
- CouchDb Team
- NodeJS Team
- NodeMailier
- Nano Team
- Email-Templates