Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

syntax error at or near "AND" #97

Open
parimal-10 opened this issue Dec 11, 2023 · 0 comments
Open

syntax error at or near "AND" #97

parimal-10 opened this issue Dec 11, 2023 · 0 comments

Comments

@parimal-10
Copy link

parimal-10 commented Dec 11, 2023
edited
Loading

This is my code

I am using postgresql, I am able to register as a new user but the login process throws this error??
What to do??

passport.use(new GoogleStrategy({
    clientID: process.env["CLIENT_ID"],
    clientSecret: process.env["CLIENT_SECRET"],
    callbackURL: "http://localhost:3000/oauth2/redirect/google",
    scope: ["profile"],
    state: true
}, function verify(accessToken, refreshToken, profile, cb) {
    db.query(
        "SELECT * FROM federated_credentials WHERE provider = ? AND subject = ?", [
        "https://accounts.google.com",
        profile.id
    ], function (err, cred) {
        if (err) { return cb(err); }

        console.log(profile);

        if (!cred) {
        // The account at Google has not logged in to this app before.  Create a
        // new user record and associate it with the Google account.
        db.run("INSERT INTO users (name) VALUES (?)", [
            profile.displayName
        ], function (err) {
            if (err) { return cb(err); }

            var id = this.lastID;
            db.run("INSERT INTO federated_credentials (user_id, provider, subject) VALUES (?, ?, ?)", [
                id,
                "https://accounts.google.com",
                profile.id
            ], function (err) {
                if (err) { return cb(err); }

                var user = {
                    id: id,
                    name: profile.displayName
                };
                return cb(null, user);
            });
        });
    } else {
        // The account at Google has previously logged in to the app.  Get the
        // user record associated with the Google account and log the user in.
        db.query("SELECT * FROM users WHERE id = ?", [cred.user_id], function (err, user) {
            if (err) { return cb(err); }
            if (!user) { return cb(null, false); }
            return cb(null, user);
        });
    }
});

}
));

This is my rest of the code for reference

import dotenv from "dotenv"
dotenv.config()

import express from "express"
import bodyParser from "body-parser"
import pg from "pg"
import bcrypt from "bcrypt"
import session from "express-session"
import passport from "passport"
import { Strategy as LocalStrategy } from "passport-local"
import GoogleStrategy from "passport-google-oauth20"

const app = express();
const port = 3000;
const saltRounds = 10;
initialize(passport);

const db = new pg.Client({
user: "postgres",
host: "localhost",
database: "auth",
password: "Parimal_10",
port: 5432,
});
db.connect()

function initialize(passport) {
async function authenticateUser(username, password, done) {

    try {
        const response = await db.query(
            "SELECT * FROM users WHERE username = $1",
            [username]
        );

        const user = response.rows[0];

        bcrypt.compare(password, user.password, function (err, result) {
            if (err) {
                throw err;
            }

            if (result) {
                return done(null, user);
            } else {
                return done(null, false, { message: "Password is not correct" });
            }
        })
    } catch (err) {
        return done(null, false, { message: "The username is not registered" })
    }
}

passport.use(
    new LocalStrategy({
        usernameField: "username",
        passwordField: "password",
    }, authenticateUser)
);

passport.serializeUser((user, done) => {
    return done(null, user.id)
});

passport.deserializeUser(async (id, done) => {
    const result = await db.query(
        "SELECT * FROM users WHERE id = $1",
        [id]
    );

    return done(null, result.rows[0]);
})

}

//Middlewares
app.use(bodyParser.urlencoded({ extended: true }));
app.use(express.static("public"));
app.set("view engine", "ejs");

app.use(session({
secret: "Harry Potter",
resave: false,
saveUninitialized: false
}));
app.use(passport.initialize());
app.use(passport.session());

passport.use(new GoogleStrategy({
clientID: process.env["CLIENT_ID"],
clientSecret: process.env["CLIENT_SECRET"],
callbackURL: "http://localhost:3000/oauth2/redirect/google",
scope: ["profile"],
state: true
}, function verify(accessToken, refreshToken, profile, cb) {
db.query(
"SELECT * FROM federated_credentials WHERE provider = ? AND subject = ?", [
"https://accounts.google.com",
profile.id
], function (err, cred) {
if (err) { return cb(err); }

    console.log(profile);

    if (!cred) {
        // The account at Google has not logged in to this app before.  Create a
        // new user record and associate it with the Google account.
        db.run("INSERT INTO users (name) VALUES (?)", [
            profile.displayName
        ], function (err) {
            if (err) { return cb(err); }

            var id = this.lastID;
            db.run("INSERT INTO federated_credentials (user_id, provider, subject) VALUES (?, ?, ?)", [
                id,
                "https://accounts.google.com",
                profile.id
            ], function (err) {
                if (err) { return cb(err); }

                var user = {
                    id: id,
                    name: profile.displayName
                };
                return cb(null, user);
            });
        });
    } else {
        // The account at Google has previously logged in to the app.  Get the
        // user record associated with the Google account and log the user in.
        db.query("SELECT * FROM users WHERE id = ?", [cred.user_id], function (err, user) {
            if (err) { return cb(err); }
            if (!user) { return cb(null, false); }
            return cb(null, user);
        });
    }
});

}
));

app.get("/", (req, res) => {
res.render("home");
});

app.get("/login", (req, res) => {
res.render("login");
});

app.get("/register", (req, res) => {
res.render("register");
});

app.get("/secrets", function (req, res) {
if (req.isAuthenticated()) {
res.render("secrets");
} else {
res.redirect("/login")
}
});

app.get("/login/google", passport.authenticate("google"));

app.get("/oauth2/redirect/google",
passport.authenticate("google", { failureRedirect: "/login", failureMessage: true }),
function (req, res) {
res.render("secrets");
}
);

app.post("/register", async (req, res) => {
const username = req.body.username;
const password = req.body.password;

try {
    bcrypt.hash(password, saltRounds, async function (err, hash) {
        // Store hash in your password DB.
        try {
            await db.query(
                "INSERT INTO users (username, password) VALUES ($1, $2)",
                [username, hash]
            )

            res.redirect("login")
        } catch (err) {
            console.log(err.message);
            res.send("Username already exists")
        }
    });
} catch (err) {
    console.log(err.message);
    res.send("Username already exists")
}

});

app.post("/login", passport.authenticate("local", {
successRedirect: "/secrets", // Redirect to the secrets page upon successful login
failureRedirect: "/login", // Redirect back to the login page if authentication fails
}));

app.get("/logout", function (req, res) {
req.logout(function(err) {
if (err) {
return next(err);
}
res.redirect("/");
});
});

app.listen(port, () => {
console.log(The port ${port} is up and running);
});
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@parimal-10