first add basic project

Author: ajaykchetu

.gitignore

@@ -0,0 +1,13 @@
+.idea/
+.vscode/
+node_modules/
+build
+.DS_Store
+*.tgz
+my-app*
+template/src/__tests__/__snapshots__/
+lerna-debug.log
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+/.changelog

app/routes.js

@@ -0,0 +1,110 @@
+module.exports = function(app, passport, SERVER_SECRET) {
+
+  // default message
+  app.get('/', function (req, res) {
+    res.send('<html><body><p>Welcome to the database</p></body></html>');
+  });
+
+// =========== authenticate login info and generate access token ===============
+
+  app.post('/login', function(req, res, next) {
+  passport.authenticate('local-login', function(err, user, info) {
+      if (err) { return next(err); }
+      // stop if it fails
+      if (!user) { return res.json({ message: 'Invalid Username of Password' }); }
+
+      req.logIn(user, function(err) {
+        // return if does not match
+        if (err) { return next(err); }
+
+        // generate token if it succeeds
+        const db = {
+          updateOrCreate: function(user, cb){
+            cb(null, user);
+          }
+        };
+        db.updateOrCreate(req.user, function(err, user){
+          if(err) {return next(err);}
+          // store the updated information in req.user again
+          req.user = {
+            id: user.username
+          };
+        });
+
+        // create token
+        const jwt = require('jsonwebtoken');
+        req.token = jwt.sign({
+          id: req.user.id,
+        }, SERVER_SECRET);
+
+        // lastly respond with json
+        return res.status(200).json({
+          user: req.user,
+          token: req.token
+        });
+      });
+    })(req, res, next);
+  });
+
+// =============================================================================
+
+// ==================== Allows users to create accounts ========================
+
+  app.post('/signup', passport.authenticate('local-signup', {
+    successRedirect : '/signup/successjson',
+    failureRedirect : '/signup/failurejson',
+    failureFlash : true
+    }));
+  // return messages for signup users
+  app.get('/signup/successjson', function(req, res) {
+    res.json({ message: 'Successfully created user' });
+  });
+
+  app.get('/signup/failurejson', function(req, res) {
+    res.json({ message: 'This user already exists' });
+  });
+
+// =============================================================================
+
+// ================= Protected APIs for authenticated Users ====================
+
+  // get tools and routes
+  var expressJwt = require('express-jwt'),
+      REST_POST = require('../routes/REST_POST'),
+      REST_GET = require('../routes/REST_GET'),
+      REST_EDIT = require('../routes/REST_EDIT'),
+      REST_DELETE = require('../routes/REST_DELETE');
+
+  // authenticate access token
+  const authenticate = expressJwt({secret : SERVER_SECRET});
+
+  // GET, EndPoint:
+  // https://127.0.0.1:5000/product/api/all?order={orderby}
+  app.get('/product/api/get/all', authenticate, REST_GET.getAllRecords);
+
+  // GET, Endpoint:
+  // https://127.0.0.1:5000/product/api/?c={target_column}&q={target_value}&order={orderby}
+  app.get('/product/api/get', authenticate, REST_GET.findByColumn);
+
+  // GET, EndPoint:
+  // https://127.0.0.1:5000/product/api/search/?c={target_column}&start={start}&end={end}&order={orderby}
+  app.get('/product/api/get/search', authenticate, REST_GET.rangeSearch);
+
+  // POST, Endpoint:
+  // https://127.0.0.1:5000/product/api/add/?content=1,2,3...
+  app.post('/product/api/add', authenticate, REST_POST.addOne);
+
+  // POST, Endpoint:
+  // https://127.0.0.1:5000/product/api/add/?content[0]=1,2,3,...&content[1]=1,2,3...
+  app.post('/product/api/add/batch/', authenticate, REST_POST.addBatch);
+
+  // EDIT, Endpoint:
+  // https://127.0.0.1:5000/product/api/edit/:orderID/?content={}
+  app.post('/product/api/edit/:id', authenticate, REST_EDIT);
+
+  // Endpoint: https://127.0.0.1:5000/product/api/delete/?id={orderID}
+  app.delete('/product/api/delete/', authenticate, REST_DELETE);
+
+// =============================================================================
+
+}

config/database.js

@@ -0,0 +1,10 @@
+// config/database.js
+module.exports = {
+    'connection': {
+        'host': 'localhost',
+        'user': 'root',
+        'password': ''
+    },
+	'database': 'excelData',
+  'users_table': 'users'
+};

config/passport.js

@@ -0,0 +1,91 @@
+// load all the things needed
+var LocalStrategy   = require('passport-local').Strategy;
+
+// load up the user model
+var mysql = require('mysql');
+var bcrypt = require('bcrypt');
+var dbconfig = require('./database');
+var connection = mysql.createConnection(dbconfig.connection);
+
+connection.query('USE ' + dbconfig.database);
+
+module.exports = function(passport) {
+
+    // passport set up; required for persistent login sessions
+    // passport needs ability to serialize and unserialize users out of session
+
+    // used to serialize the user for the session
+    passport.serializeUser(function(user, done) {
+        done(null, user.id);
+    });
+
+    // used to deserialize the user
+    passport.deserializeUser(function(id, done) {
+        connection.query("SELECT * FROM users WHERE id = ? ",[id], function(err, rows){
+            done(err, rows[0]);
+        });
+    });
+
+    // handles signup
+    passport.use(
+        'local-signup',
+        new LocalStrategy({
+            usernameField : 'username',
+            passwordField : 'password',
+            nameField : 'name',
+            passReqToCallback : true
+        },
+        function(req, username, password, done) {
+            connection.query("SELECT * FROM users WHERE username = ?",[username], function(err, rows) {
+                if (err)
+                    return done(err);
+                if (rows.length) {
+                    return done(null, false, req.flash('signupMessage', 'That username is already taken.'));
+                } else {
+                    console.log(req.body)
+                    // if there is no user with that username then create the user
+
+                    var newUserMysql = {
+                        username: username,
+                        password: bcrypt.hashSync(password, bcrypt.genSaltSync(10)),  // use the generateHash function in our user model
+                        name: req.body.name
+                    };
+
+                    var insertQuery = "INSERT INTO users ( username, password, name ) values (?,?,?)";
+
+                    connection.query(insertQuery,[newUserMysql.username, newUserMysql.password, newUserMysql.name],function(err, rows) {
+                        newUserMysql.id = rows.insertId;
+
+                        return done(null, newUserMysql);
+                    });
+                }
+            });
+        })
+    );
+
+    // handles login
+    passport.use(
+        'local-login',
+        new LocalStrategy({
+            usernameField : 'username',
+            passwordField : 'password',
+            passReqToCallback : true
+        },
+        function(req, username, password, done) {
+            connection.query("SELECT * FROM users WHERE username = ?",[username], function(err, rows){
+                if (err)
+                    return done(err);
+                if (!rows.length) {
+                    return done(null, false, req.flash('loginMessage', 'No user found.'));
+                }
+
+                // if the user is found but the password is wrong
+                if (!bcrypt.compareSync(password, rows[0].password))
+                    return done(null, false, req.flash('loginMessage', 'Oops! Wrong password.'));
+
+                // all is well, return successful user
+                return done(null, rows[0]);
+            });
+        })
+    );
+};

model/dbconnection.js

@@ -0,0 +1,18 @@
+var mysql = require('mysql');
+
+var connection = mysql.createConnection({
+  host     : 'http://localhost:8080',
+  user     : 'root',
+  password : '',
+  database : 'excelData'
+});
+
+try {
+	connection.connect();
+  console.log('Connected to the MYSQL database');
+
+} catch(e) {
+	console.log('Database Connetion failed:' + e);
+}
+
+module.exports = connection;

package.json

@@ -0,0 +1,32 @@
+{
+  "name": "node-api",
+  "version": "1.0.0",
+  "private": true,
+  "scripts": {
+    "start": "node server.js",
+    "database": "node scripts/create_database.js"
+  },
+  "dependencies": {
+    "bcrypt": "^1.0.3",
+    "body-parser": "^1.17.2",
+    "connect-flash": "^0.1.1",
+    "cookie-parser": "^1.4.3",
+    "cors": "^2.8.4",
+    "debug": "~2.6.3",
+    "ejs": "^2.5.7",
+    "express": "^4.15.4",
+    "express-jwt": "^5.3.0",
+    "express-session": "^1.15.5",
+    "fs": "0.0.1-security",
+    "https": "^1.0.0",
+    "jade": "~1.11.0",
+    "jsonwebtoken": "^7.4.3",
+    "morgan": "^1.8.2",
+    "mysql": "^2.14.1",
+    "passport": "^0.4.0",
+    "passport-http-bearer": "^1.0.1",
+    "passport-local": "^1.0.0",
+    "path": "^0.12.7",
+    "serve-favicon": "~2.4.2"
+  }
+}

routes/REST_DELETE.js

@@ -0,0 +1,23 @@
+// product/api/delete/?id={orderID}
+module.exports = function (req,res) {
+	var connection = require('../model/dbconnection');
+	// Delete by order id
+	var id = req.query.id;
+
+	connection.query('DELETE FROM saleData WHERE Order_ID = ?', [id], function(err, result) {
+  		if (!err){
+  			var response = [];
+
+			if (result.affectedRows != 0) {
+				response.push({'result' : 'success'});
+			} else {
+				response.push({'msg' : 'No Result Found'});
+			}
+
+			res.setHeader('Content-Type', 'application/json');
+	    	res.status(200).send(JSON.stringify(response));
+  		} else {
+		    res.status(400).send(err);
+	  	}
+	});
+};

routes/REST_EDIT.js

@@ -0,0 +1,62 @@
+// product/api/edit/:orderID/?content={}
+module.exports = function (req,res) {
+	var connection = require('../model/dbconnection');
+	var response = [];
+
+	// split content in the url to arrays
+	var arr = req.query.content.split(',');
+
+	// Make sure required content is provided
+	if (
+		typeof req.params.id !== 'undefined' &&
+		arr.length == 21
+	) {
+
+		// Pair content with column
+		var id = req.params.id;
+		var content = {
+			Row_ID: arr[0], // Order_ID cannot be edited
+			Order_Date: arr[2],
+			Order_Priority: arr[3],
+			Order_Quantity: arr[4],
+			Sales: arr[5],
+			Discount: arr[6],
+			Ship_Mode: arr[7],
+			Profit: arr[8],
+			Unit_Price: arr[9],
+			Shipping_Cost: arr[10],
+			Customer_Name: arr[11],
+			Province: arr[12],
+			Region: arr[13],
+			Customer_Segment: arr[14],
+			Product_Category: arr[15],
+			Product_Sub_Category: arr[16],
+			Product_Name: arr[17],
+			Product_Container: arr[18],
+			Product_Base_Margin: arr[19],
+			Ship_Date: arr[20]
+		};
+
+		connection.query('UPDATE saleData SET ? WHERE Order_ID = ?', [content, id],
+			function(err, result) {
+		  		if (!err){
+
+					if (result.affectedRows != 0) {
+						response.push({'result' : 'success'});
+					} else {
+						response.push({'msg' : 'No Result Found'});
+					}
+
+					res.setHeader('Content-Type', 'application/json');
+			    	res.status(200).send(JSON.stringify(response));
+		  		} else {
+				    res.status(400).send(err);
+			  	}
+			});
+
+	} else {
+		response.push({'result' : 'error', 'msg' : 'Please fill required information'});
+		res.setHeader('Content-Type', 'application/json');
+    res.send(200, JSON.stringify(response));
+	}
+};