kek-Sec/user.js

## user.js
var mongoose = require('mongoose');
var uniqueValidator = require('mongoose-unique-validator');
var crypto = require('crypto');
var jwt = require('jsonwebtoken');
var secret = require('../config').secret;


var UserSchema = new mongoose.Schema({
    username:
    {
        type: String,
        lowercase: true,
        unique: true,
        required: [true, "can't be blank"],
        match: [/^[a-zA-Z0-9]+$/, 'is invalid'],
        index: true
    },
    email:
    {
        type: String,
        lowercase: true,
        unique: true,
        required: [true, "can't be blank"],
        match: [/\S+@\S+\.\S+/, 'is invalid'],
        index: true
    },
    bio: String,
    hash: String,
    salt: String
}, { timestamps: true });

UserSchema.plugin(uniqueValidator, { message: 'is already taken.' });

//#region methods

UserSchema.methods.setPassword = function (password) {
    this.salt = crypto.randomBytes(16).toString('hex');
    this.hash = crypto.pbkdf2Sync(password, this.salt, 10000, 512, 'sha512').toString('hex');
};

UserSchema.methods.validPassword = function(password) {
    var hash = crypto.pbkdf2Sync(password, this.salt, 10000, 512, 'sha512').toString('hex');
    return this.hash === hash;
};

UserSchema.methods.generateJWT = function(){

    var today = new Date();
    var exp = new Date(today);
    exp.setDate(today.getDate + 30);

    return jwt.sign(
        {
            id: this.id,
            username: this.username,
            exp: parseInt(exp.getTime() / 1000),
        }, secret
    );

};

UserSchema.methods.toAuthJson = function(){
    return{
        username: this.username,
        email: this.email,
        token: this.generateJWT(),
        image: this.image
    };
};

//#endregion

mongoose.model('User', UserSchema);
	var mongoose = require('mongoose');
	var uniqueValidator = require('mongoose-unique-validator');
	var crypto = require('crypto');
	var jwt = require('jsonwebtoken');
	var secret = require('../config').secret;


	var UserSchema = new mongoose.Schema({
	username:
	{
	type: String,
	lowercase: true,
	unique: true,
	required: [true, "can't be blank"],
	match: [/^[a-zA-Z0-9]+$/, 'is invalid'],
	index: true
	},
	email:
	{
	type: String,
	lowercase: true,
	unique: true,
	required: [true, "can't be blank"],
	match: [/\S+@\S+\.\S+/, 'is invalid'],
	index: true
	},
	bio: String,
	hash: String,
	salt: String
	}, { timestamps: true });

	UserSchema.plugin(uniqueValidator, { message: 'is already taken.' });

	//#region methods

	UserSchema.methods.setPassword = function (password) {
	this.salt = crypto.randomBytes(16).toString('hex');
	this.hash = crypto.pbkdf2Sync(password, this.salt, 10000, 512, 'sha512').toString('hex');
	};

	UserSchema.methods.validPassword = function(password) {
	var hash = crypto.pbkdf2Sync(password, this.salt, 10000, 512, 'sha512').toString('hex');
	return this.hash === hash;
	};

	UserSchema.methods.generateJWT = function(){

	var today = new Date();
	var exp = new Date(today);
	exp.setDate(today.getDate + 30);

	return jwt.sign(
	{
	id: this.id,
	username: this.username,
	exp: parseInt(exp.getTime() / 1000),
	}, secret
	);

	};

	UserSchema.methods.toAuthJson = function(){
	return{
	username: this.username,
	email: this.email,
	token: this.generateJWT(),
	image: this.image
	};
	};

	//#endregion

	mongoose.model('User', UserSchema);