-
Notifications
You must be signed in to change notification settings - Fork 0
/
index.js
221 lines (183 loc) · 6.41 KB
/
index.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
// required NPM libraries
require('dotenv').config()
// const Express = require('express')
const ejsLayouts = require('express-ejs-layouts')
// require all middleware
const helmet = require('helmet')
const session = require('express-session')
const flash = require('connect-flash')
const passport = require('./config/ppConfig')
const db = require('./models')
const isLoggedIn = require('./middleware/isLoggedIn')
const Spotify = require('node-spotify-api');
let methodOverride = require('method-override')
const express = require('express')
var request = require('request')
var cors = require('cors')
var querystring = require('querystring')
var cookieParser = require('cookie-parser')
var client_id = process.env.CLIENT_ID
var client_secret = process.env.CLIENT_SECRET
var redirect_uri = process.env.REDIRECT_URI
let localStorage = require('localStorage')
// generates random string containing numbers and letters
// @param {number}
// @return {string}
var generateRandomString = function (length) {
var text = ""
var possible = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789'
for (var i = 0; i < length; i++) {
text += possible.charAt(Math.floor(Math.random() * possible.length))
}
return text
}
var stateKey = 'spotify_auth_state'
// var app = express();
// session library to store session date
const SequelizeStore = require('connect-session-sequelize')(session.Store)
// APP setup
const app = express()
app.use(express.urlencoded({ extended: false }))
app.use(express.static(__dirname + '/public'))
app.set('view engine', 'ejs')
app.use(ejsLayouts)
app.use(require('morgan')('dev'))
app.use(helmet())
app.use(express.static('public'))
app.use(methodOverride("_method"))
// sequelize store class
const sessionStore = new SequelizeStore({
db: db.sequelize,
expiration: 1000 * 60 * 30
})
// decalre attributes for session
app.use(session({
secret: process.env.SESSION_SECRET,
store: sessionStore,
resave: false,
saveUninitialized: true
}))
sessionStore.sync()
app.use(express.static(__dirname + '/public'))
.use(cors())
.use(cookieParser());
// initialize flash messages, passport, and sessions
app.use(passport.initialize())
app.use(passport.session())
app.use(flash())
// directs us to the next route
app.use(function (req, res, next) {
res.locals.alerts = req.flash()
res.locals.currentUser = req.user
next()
})
// ROUTES
app.get('/', function (req, res) {
console.log('I am here')
res.render('index')
})
app.get('/login', function (req, res) {
console.log(redirect_uri)
var state = generateRandomString(16);
res.cookie(stateKey, state);
// your application requests authorization
var scope = 'user-read-private user-read-email playlist-modify-public user-library-read user-library-modify playlist-read-collaborative playlist-modify-private';
res.redirect('https://accounts.spotify.com/authorize?' +
querystring.stringify({
response_type: 'code',
client_id: client_id,
scope: scope,
redirect_uri: redirect_uri,
state: state
}));
})
app.get('/profile', function (req, res) {
// your application requests refresh and access tokens
// after checking the state parameter
console.log('🌞')
var code = req.query.code || null;
var state = req.query.state || null;
var storedState = req.cookies ? req.cookies[stateKey] : null;
if (state === null || state !== storedState) {
res.redirect('/#' +
querystring.stringify({
error: 'state_mismatch'
}));
} else {
res.clearCookie(stateKey);
var authOptions = {
url: 'https://accounts.spotify.com/api/token',
form: {
code: code,
redirect_uri: redirect_uri,
grant_type: 'authorization_code'
},
headers: {
'Authorization': 'Basic ' + (new Buffer.from(client_id + ':' + client_secret).toString('base64'))
},
json: true
};
request.post(authOptions, function (error, response, body) {
if (!error && response.statusCode === 200) {
var access_token = body.access_token,
refresh_token = body.refresh_token;
localStorage.setItem('spotifyToken', access_token)
var options = {
url: 'https://api.spotify.com/v1/me',
headers: { 'Authorization': 'Bearer ' + access_token },
json: true
};
// use the access token to access the Spotify Web API
request.get(options, function (error, response, body) {
res.render('profile/profile', { body })
});
// we can also pass the token to the browser to make requests from there
// res.redirect('/#' +
querystring.stringify({
})
} else {
res.redirect('/#' +
querystring.stringify({
error: 'invalid_token'
}));
}
});
}
})
// Token refresh route
app.get('/refresh_token', function (req, res) {
// requesting access token from refresh token
var refresh_token = req.query.refresh_token;
var authOptions = {
url: 'https://accounts.spotify.com/api/token',
headers: { 'Authorization': 'Basic ' + (new Buffer.from(client_id + ':' + client_secret).toString('base64')) },
form: {
grant_type: 'refresh_token',
refresh_token: refresh_token
},
json: true
};
request.post(authOptions, function (error, response, body) {
if (!error && response.statusCode === 200) {
var access_token = body.access_token;
res.send({
'access_token': access_token
});
}
});
});
app.get('/playlist', function (req, res, body) {
res.render('playlist/playlist', { body })
})
app.get('/logout', function (req, res) {
req.logout()
res.redirect('/')
})
// call on routes from controller folder
app.use('/auth', require('./controllers/auth'))
app.use('/playlist', require('./controllers/playlist'))
app.use('/track', require('./controllers/track'))
// initialize Server
app.listen(process.env.PORT || 3000, () => {
console.log(`firing on all ${process.env.PORT} cylinders`)
})