theis.gaedigk/mcs-lose
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: add authentication and admin features

Browse Source 
- Added `jose` library for JWT token generation and verification.
- Implemented login functionality with token storage using cookies.
- Created `HeaderAdmin` component for admin panel with login/logout capabilities.
- Developed `LoginForm` component for user authentication.
- Added `Table` component to display data with caching from localStorage.
- Introduced `SubHeaderAdmin` for additional admin actions.
- Enhanced `database.js` with functions for admin login and fetching table data.
- Updated `server.js` to handle new routes for login and table data retrieval.
- Modified `package.json` and `package-lock.json` to include new dependencies.
This commit is contained in:
Theis Gaedigk
2025-08-12 22:56:58 +02:00
parent 97eaf1e484
commit 8c2049fa24
15 changed files with 744 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
backend/services/database.js
View File

@@ -2,7 +2,7 @@ import mysql from "mysql2";
import dotenv from "dotenv";
dotenv.config();
// Create a MySQL connection pool using environment variables for configuration
// Ein einzelner Pool reicht; der zweite Pool benutzte fälschlich DB_TABLE als Datenbank
const pool = mysql
.createPool({
host: process.env.DB_HOST,
@@ -32,3 +32,21 @@ export async function query(params) {
return { success: false };
}
}
export async function loginAdmin(username, password) {
const [rows] = await pool.query(
"SELECT * FROM admin_user WHERE username = ? AND password = ?",
[username, password]
);
if (rows.length > 0) return { success: true };
return { success: false };
}
export async function getTableData() {
const [result] = await pool.query("SELECT * FROM lose");
if (result.length > 0) {
return { success: true, data: result };
}
return { success: false };
}

26
backend/services/tokenService.js Normal file
View File

@@ -0,0 +1,26 @@
import { SignJWT, jwtVerify } from "jose";
import env from "dotenv";
env.config();
const secret = new TextEncoder().encode(process.env.SECRET_KEY);
export async function generateToken(payload) {
const newToken = await new SignJWT(payload)
.setProtectedHeader({ alg: "HS256" })
.setIssuedAt()
.setExpirationTime("2h") // Token valid for 2 hours
.sign(secret);
console.log("Generated token: ", newToken);
return newToken;
}
export async function authenticate(req, res, next) {
const authHeader = req.headers["authorization"];
const token = authHeader && authHeader.split(" ")[1]; // Bearer <token>
if (token == null) return res.sendStatus(401); // No token present
const { payload } = await jwtVerify(token, secret);
req.user = payload;
next();
}