UmairJibran · marksuit42 · Oct 17, 2024 · Oct 18, 2024 · UmairJibran · Oct 18, 2024
diff --git a/JWT/index.js b/JWT/index.js
@@ -0,0 +1,24 @@
+const jwt = require("jsonwebtoken");
+const config = require("../config");
+
+const jwtToken = { auth: {} };
+
+// Function to generate JWT token
+const generateToken = (payload) => {
+  return jwt.sign(payload, config.get("jwt_secret"), { expiresIn: "1h" });
+};
+
+// Function to verify JWT token
+const verifyToken = (token) => {
+  try {
+    return jwt.verify(token, config.get("jwt_secret"));
+  } catch (err) {
+    console.error("Token verification failed:", err);
+    return null;
+  }
+};
+
+jwtToken.generateToken = generateToken;
+jwtToken.verifyToken = verifyToken;
+
+module.exports = jwtToken;
diff --git a/firebase/index.js b/firebase/index.js
diff --git a/middleware/authenticateUser.js b/middleware/authenticateUser.js
@@ -1,26 +1,55 @@
-const { auth } = require("../firebase");
+const jwt = require("jsonwebtoken");
 const config = require("../config");
 
-const authenticateUser = async (req, res, next) => {
+// Function to generate JWT token
+const generateToken = (payload) => {
+  return jwt.sign(payload, config.get("jwt_secret"), { expiresIn: "1h" });
+};
+
+// Function to verify JWT token
+const verifyToken = (token) => {
   try {
-    if (config.get("env") === "test_remote") next();
-    const headerToken = req.headers.authorization;
-    if (!headerToken) {
-      return res.status(401).send({ message: "No token provided" });
-    }
-
-    if (headerToken && headerToken.split(" ")[0] !== "Bearer") {
-      res.status(401).send({ message: "Invalid token" });
-    }
-
-    let token = headerToken.split(" ")[1];
-    await auth.verifyIdToken(token);
-
-    next();
-  } catch (error) {
-    req.log.error(error);
-    res.status(403).send({ message: "Could not authorize" });
+    return jwt.verify(token, config.get("jwt_secret"));
+  } catch (err) {
+    console.error("Token verification failed:", err);
+    return null;
+  }
+};
+
+// Example usage in authenticateUser function
+const authenticateUser = (req, res) => {
+  const { username, password } = req.body;
+
+  // Replace this with your user authentication logic
+  const user = authenticateWithDatabase(username, password);
+
+  if (user) {
+    const token = generateToken({ id: user.id, username: user.username });
+    res.json({ token });
+  } else {
+    res.status(401).json({ message: "Authentication failed" });
   }
 };
 
-module.exports = authenticateUser;
+// Example middleware to protect routes
+const authenticateMiddleware = (req, res, next) => {
+  const token = req.headers["authorization"];
+
+  if (!token) {
+    return res.status(403).json({ message: "No token provided" });
+  }
+
+  const decoded = verifyToken(token);
+
+  if (!decoded) {
+    return res.status(401).json({ message: "Failed to authenticate token" });
+  }
+
+  req.user = decoded;
+  next();
+};
+
+module.exports = {
+  authenticateUser,
+  authenticateMiddleware,
+};