Set up user identification from the JWT token.

d71bbb1e · Federico Hurtado · 86152a40 · d71bbb1e · d71bbb1e · d71bbb1e
Commit d71bbb1e authored 4 months ago by Federico Hurtado
--- a/backend/config/auth/auth.login.js
+++ b/backend/config/auth/auth.login.js
@@ -35,11 +35,16 @@ const casLogin = async function (req, res, next) {
    // sign the token with secret key
    const token = jwt.sign(payload, JWT_SECRET, { expiresIn: "1h" });
-    console.log("sending token for use in localhost");
+    // Set the token as an HTTP-only cookie
+    res.cookie("auth_token", token, {
+      maxAge: 3600000, // 1 hour in milliseconds
+    });
+    console.log("sent token for use in localhost");
    console.log("Frontend: ", process.env.FRONTEND_URL);
-    res.redirect(`${process.env.FRONTEND_URL}/home?token=${token}`);
+    res.redirect(`${process.env.FRONTEND_URL}/home`);
    return;
  }
@@ -79,6 +84,10 @@ const casLogin = async function (req, res, next) {
      // sign the token with secret key
      const token = jwt.sign(payload, JWT_SECRET, { expiresIn: "1h" });
+      res.cookie("auth_token", token, {
+        maxAge: 3600000, // 1 hour in milliseconds
+      });
      // document a successful login
      try {
        const timestamp = new Date(); // Current timestamp
@@ -89,7 +98,7 @@ const casLogin = async function (req, res, next) {
      // Send the JWT token to the frontend
      console.log("sending JWT To: ", process.env.FRONTEND_URL);
-      res.redirect(`${process.env.FRONTEND_URL}/home?token=${token}`);
+      res.redirect(`${process.env.FRONTEND_URL}/home`);
      console.log("Successfully authenticated and generated token.");
    });

--- a/backend/config/database/databaseInitializer.js
+++ b/backend/config/database/databaseInitializer.js
@@ -77,9 +77,10 @@ class DatabaseInitializer {
    try {
      await addRoleIfNotExists(1, "guest", "Guest access");
-      await addRoleIfNotExists(2, "admin", "Admin access");
+      await addRoleIfNotExists(2, "user", "Basic user access");
-      await addRoleIfNotExists(3, "classChampion", "Class champion access");
+      await addRoleIfNotExists(3, "admin", "Admin access");
-      await addRoleIfNotExists(4, "orgLeader", "Org leader access");
+      await addRoleIfNotExists(4, "classChampion", "Class champion access");
+      await addRoleIfNotExists(5, "orgLeader", "Org leader access");
      console.log("Roles initialized successfully.");
    } catch (error) {
      console.log("error initializing roles: ", error);

--- a/backend/config/database/schema.sql
+++ b/backend/config/database/schema.sql
@@ -131,7 +131,4 @@ CREATE TABLE IF NOT EXISTS changeLog (
    oldValues TEXT,                       -- JSON format for previous values
    newValues TEXT,                       -- JSON format for new values
    FOREIGN KEY (userId) REFERENCES users(userID)
 );
\ No newline at end of file
-INSERT INTO countryLookup (countryId, name) 
-VALUES (1, 'United States');
--- a/frontend/package-lock.json
+++ b/frontend/package-lock.json
--- a/frontend/src/components/Home/Home.js
+++ b/frontend/src/components/Home/Home.js
@@ -8,56 +8,44 @@ import { jwtDecode } from "jwt-decode";
 Home page where users will be redirected after log in or continuing as a guest
 */
 function Home() {
-  // username and privilage to be extracted from JWT token
+  // when the page mounts check for auth tokens
-  const [username, setUsername] = useState("");
+  useEffect(() => {
-  const [privilege, setPrivilege] = useState("");
+    const readLoginCookie = () => {
+      try {
-  const extractTokenFromUrl = () => {
+        // find the auth cookie sent from the backend
-    const params = new URLSearchParams(window.location.search);
+        const cookies = document.cookie;
-    const token = params.get("token");
+        const cookieArray = cookies.split("; ");
+        const authCookie = cookieArray.find((cookie) =>
-    // no token found
+          cookie.startsWith("auth_token=")
-    if (!token) {
+        );
-      // user will be seen as a guest
-      setUsername("guest");
-      setPrivilege("guest");
-    }
-    // decode the token and set the user info
+        // return early if no cookie found
-    try {
+        if (!authCookie) {
-      const decoded = jwtDecode(token);
+          console.log("cannot find auth cookie.");
-      setUsername(decoded.username);
+          return;
-      setPrivilege(decoded.role);
+        }
-    } catch (error) {
-      console.error("Error decoding token: ", error);
-    }
-  };
-  // useEffect to make the API call
+        // extract the token from the cookie
-  useEffect(() => {
+        const token = authCookie.split("=")[1];
-    extractTokenFromUrl(); // extract the username and role from the token
-  }, []);
-  return (
+        // decode the token
-    // <div>
+        const decoded = jwtDecode(token);
-    //   <h1>Home Page</h1>
-    //   <p>
+        console.log("decoded token: ", decoded);
-    //     Below are the results of calling the backend server. The API URL should
-    //     be localhost in development and be
-    //     http://corpsdirectory.discovery.cs.vt.edu/api in the cluster.
-    //   </p>
-    //   {/* Display data if it exists */}
+        // extract details from token and store them in memory
-    //   <p>
+        localStorage.setItem("userId", decoded.id);
-    //     Data: {data ? <span>{JSON.stringify(data)}</span> : <span>&nbsp;</span>}
+        localStorage.setItem("peopleId", decoded.peopleId);
-    //   </p>
+        localStorage.setItem("role", decoded.role);
+      } catch (error) {
+        console.log("error reading cookie: ", error);
+      }
+    };
-    //   <p>API URL: {process.env.REACT_APP_API_URL}</p>
+    readLoginCookie();
+  }, []);
-    //   {/* display error if there is an error*/}
+  return (
-    //   <p>Error: {error ? <span>{error}</span> : <span>&nbsp;</span>}</p>
-    // </div>
    <>
      <div className="text-center">
        <h1 className="thin-veranda">VT Cadet Directory</h1>
@@ -70,16 +58,7 @@ function Home() {
              Virginia Tech Corps of Cadets Directory
            </h1>
            {/*Adding this here so you guys see how to access but feel free to change it*/}
-            {username && (
-              <div>
-                <h2>
-                  Welcome, <strong>{username}</strong>!
-                </h2>
-                <p>
-                  Your role: <strong>{privilege}</strong>
-                </p>
-              </div>
-            )}
            <h1 className="description-font">
              Lorem ipsum odor amet, consectetuer adipiscing elit. Primis quam
              vel posuere lobortis inceptos. Nostra sociosqu tristique sagittis
@@ -105,28 +84,6 @@ function Home() {
          <img src={logo} alt="Corps Logo" className="logo" width={400} />
        </div>
      </div>
-      <div className="selection-section">
-        <div className="button-container">
-          {/* <div className="button-wrapper">
-            <button className="action-button">
-              <img src={logo} width={70} alt="Browse" className="icon" />
-            </button>
-            <span>Browse</span>
-          </div> */}
-          {/* <div className="button-wrapper">
-            <button className="action-button">
-              <img src={logo} alt="Search" className="icon" />
-            </button>
-            <span>Search</span>
-          </div> */}
-          {/* <div className="button-wrapper">
-            <button className="action-button">
-              <img src={logo} alt="Message" className="icon" />
-            </button>
-            <span>Message</span>
-          </div> */}
-        </div>
-      </div>
    </>
  );
 }

--- a/frontend/src/components/NavBar/Navbar.js
+++ b/frontend/src/components/NavBar/Navbar.js
@@ -36,29 +36,67 @@ const Navbar = () => {
      <ul className={styles.navList}>
        {/* Common Links */}
        <li>
-          <Link to="/home">Home</Link>
+          <Link
+            to="/home"
+            className={({ isActive }) => (isActive ? "active" : "")}
+          >
+            Home
+          </Link>
        </li>
        <li>
-          <Link to="/browse">Browse</Link>
+          <Link
+            to="/browse"
+            className={({ isActive }) => (isActive ? "active" : "")}
+          >
+            Browse
+          </Link>
        </li>
        <li>
-          <Link to="/search">Search</Link>
+          <Link
+            to="/search"
+            className={({ isActive }) => (isActive ? "active" : "")}
+          >
+            Search
+          </Link>
        </li>
        {/* Links for logged-out users */}
        {!isLoggedIn && (
-          <>
+          <li>
+            <Link
+              to="/login"
+              className={({ isActive }) => (isActive ? "active" : "")}
+            >
+              Login
+            </Link>
+          </li>
+        )}
+        {/* Admin-specific Links */}
+        {isLoggedIn &&
+          (role === "admin" ||
+            role === "classChampion" ||
+            role === "orgLeader") && (
            <li>
-              <Link to="/login">Login</Link>
+              <Link
+                to="/admin/dashboard"
+                className={({ isActive }) => (isActive ? "active" : "")}
+              >
+                Admin
+              </Link>
            </li>
-          </>
+          )}
-        )}
        {/* Links for logged-in users */}
        {isLoggedIn && (
          <>
            <li>
-              <Link to="/my-profile">My Profile</Link>
+              <Link
+                to="/my-profile"
+                className={({ isActive }) => (isActive ? "active" : "")}
+              >
+                My Profile
+              </Link>
            </li>
            <li>
              <button onClick={handleLogout} className={styles.logoutButton}>
@@ -67,16 +105,6 @@ const Navbar = () => {
            </li>
          </>
        )}
-        {/* Admin-specific Link */}
-        {isLoggedIn &&
-          (role === "admin" ||
-            role === "classChampion" ||
-            role === "orgLeader") && (
-            <li>
-              <Link to="/admin/dashboard">Admin</Link>
-            </li>
-          )}
      </ul>
    </nav>
  );

--- a/frontend/src/components/NavBar/NavbarStyles.module.css
+++ b/frontend/src/components/NavBar/NavbarStyles.module.css
@@ -18,7 +18,7 @@
 /* Navbar links */
 .navList li a {
-  margin: 0 80px; /* Increase margin to space out links */
+  margin: 0 80px; /* Space out links */
  color: white;
  text-decoration: none;
  font-size: 20px;
@@ -28,7 +28,7 @@
 /* Hover effect for navbar links */
 .navList li a:hover {
-  color: rgb(13, 28, 84); /* Changes text color on hover */
+  color: rgb(13, 28, 84); /* Hover color */
 }
 /* Underline effect on hover */
@@ -44,5 +44,29 @@
 }
 .navList li a:hover::after {
-  width: 100%; /* Expands underline on hover */
+  width: 100%; /* Expands underline */
+}
+/* Active link styling */
+.navList li a.activeLink {
+  font-weight: bold;
+  color: rgb(0, 47, 255); /* Same as underline color */
+}
+/* Logout button styles */
+.logoutButton {
+  background-color: white;
+  color: black;
+  border: none;
+  padding: 8px 15px;
+  font-size: 16px;
+  font-weight: 500;
+  border-radius: 5px;
+  cursor: pointer;
+  transition: all 0.3s ease-in-out;
+}
+.logoutButton:hover {
+  background-color: rgb(0, 47, 255); /* Matches underline hover */
+  color: white;
 }