nehalist/gist:e7b55f1303b1af36023c815eda7731ae

## gistfile1.txt
// api/models/Passport.js
var bcrypt = require('bcryptjs');

/**
 * Hash a passport password.
 *
 * @param {Object}   password
 * @param {Function} next
 */
function hashPassword (passport, next) {
  if (passport.password) {
    bcrypt.hash(passport.password, 10, function (err, hash) {
      passport.password = hash;
      next(err, passport);
    });
  } else {
    next(null, passport);
  }
}

/**
 * Passport Model
 *
 * The Passport model handles associating authenticators with users. An authen-
 * ticator can be either local (password) or third-party (provider). A single
 * user can have multiple passports, allowing them to connect and use several
 * third-party strategies in optional conjunction with a password.
 *
 * Since an application will only need to authenticate a user once per session,
 * it makes sense to encapsulate the data specific to the authentication process
 * in a model of its own. This allows us to keep the session itself as light-
 * weight as possible as the application only needs to serialize and deserialize
 * the user, but not the authentication data, to and from the session.
 */
var Passport = {
  attributes: {
    // Required field: Protocol
    //
    // Defines the protocol to use for the passport. When employing the local
    // strategy, the protocol will be set to 'local'. When using a third-party
    // strategy, the protocol will be set to the standard used by the third-
    // party service (e.g. 'oauth', 'oauth2', 'openid').
    protocol: { type: 'alphanumeric', required: true },

    // Local fields: Password, Access Token
    //
    // When the local strategy is employed, a password will be used as the
    // means of authentication along with either a username or an email.
    //
    // accessToken is used to authenticate API requests. it is generated when a
    // passport (with protocol 'local') is created for a user.
    password    : { type: 'string', minLength: 8 },
    accessToken : { type: 'string' },

    // Provider fields: Provider, identifer and tokens
    //
    // "provider" is the name of the third-party auth service in all lowercase
    // (e.g. 'github', 'facebook') whereas "identifier" is a provider-specific
    // key, typically an ID. These two fields are used as the main means of
    // identifying a passport and tying it to a local user.
    //
    // The "tokens" field is a JSON object used in the case of the OAuth stan-
    // dards. When using OAuth 1.0, a `token` as well as a `tokenSecret` will
    // be issued by the provider. In the case of OAuth 2.0, an `accessToken`
    // and a `refreshToken` will be issued.
    provider   : { type: 'alphanumericdashed' },
    identifier : { type: 'string' },
    tokens     : { type: 'json' },

    // Associations
    //
    // Associate every passport with one, and only one, user. This requires an
    // adapter compatible with associations.
    //
    // For more information on associations in Waterline, check out:
    // https://github.com/balderdashy/waterline
    user: { model: 'User', required: true },

    /**
     * Validate password used by the local strategy.
     *
     * @param {string}   password The password to validate
     * @param {Function} next
     */
    validatePassword: function (password, next) {
      bcrypt.compare(password, this.password, next);
    }

  },

  /**
   * Callback to be run before creating a Passport.
   *
   * @param {Object}   passport The soon-to-be-created Passport
   * @param {Function} next
   */
  beforeCreate: function (passport, next) {
    hashPassword(passport, next);
  },

  /**
   * Callback to be run before updating a Passport.
   *
   * @param {Object}   passport Values to be updated
   * @param {Function} next
   */
  beforeUpdate: function (passport, next) {
    hashPassword(passport, next);
  }
};

module.exports = Passport;

// api/models/User.js
var User = {
  // Enforce model schema in the case of schemaless databases
  schema: true,

  attributes: {
    username  : { type: 'string', unique: true },
    email     : { type: 'email',  unique: true },
    passports : { collection: 'Passport', via: 'user' }
  }
};

module.exports = User;
	// api/models/Passport.js
	var bcrypt = require('bcryptjs');

	/**
	* Hash a passport password.
	*
	* @param {Object} password
	* @param {Function} next
	*/
	function hashPassword (passport, next) {
	if (passport.password) {
	bcrypt.hash(passport.password, 10, function (err, hash) {
	passport.password = hash;
	next(err, passport);
	});
	} else {
	next(null, passport);
	}
	}

	/**
	* Passport Model
	*
	* The Passport model handles associating authenticators with users. An authen-
	* ticator can be either local (password) or third-party (provider). A single
	* user can have multiple passports, allowing them to connect and use several
	* third-party strategies in optional conjunction with a password.
	*
	* Since an application will only need to authenticate a user once per session,
	* it makes sense to encapsulate the data specific to the authentication process
	* in a model of its own. This allows us to keep the session itself as light-
	* weight as possible as the application only needs to serialize and deserialize
	* the user, but not the authentication data, to and from the session.
	*/
	var Passport = {
	attributes: {
	// Required field: Protocol
	//
	// Defines the protocol to use for the passport. When employing the local
	// strategy, the protocol will be set to 'local'. When using a third-party
	// strategy, the protocol will be set to the standard used by the third-
	// party service (e.g. 'oauth', 'oauth2', 'openid').
	protocol: { type: 'alphanumeric', required: true },

	// Local fields: Password, Access Token
	//
	// When the local strategy is employed, a password will be used as the
	// means of authentication along with either a username or an email.
	//
	// accessToken is used to authenticate API requests. it is generated when a
	// passport (with protocol 'local') is created for a user.
	password : { type: 'string', minLength: 8 },
	accessToken : { type: 'string' },

	// Provider fields: Provider, identifer and tokens
	//
	// "provider" is the name of the third-party auth service in all lowercase
	// (e.g. 'github', 'facebook') whereas "identifier" is a provider-specific
	// key, typically an ID. These two fields are used as the main means of
	// identifying a passport and tying it to a local user.
	//
	// The "tokens" field is a JSON object used in the case of the OAuth stan-
	// dards. When using OAuth 1.0, a `token` as well as a `tokenSecret` will
	// be issued by the provider. In the case of OAuth 2.0, an `accessToken`
	// and a `refreshToken` will be issued.
	provider : { type: 'alphanumericdashed' },
	identifier : { type: 'string' },
	tokens : { type: 'json' },

	// Associations
	//
	// Associate every passport with one, and only one, user. This requires an
	// adapter compatible with associations.
	//
	// For more information on associations in Waterline, check out:
	// https://github.com/balderdashy/waterline
	user: { model: 'User', required: true },

	/**
	* Validate password used by the local strategy.
	*
	* @param {string} password The password to validate
	* @param {Function} next
	*/
	validatePassword: function (password, next) {
	bcrypt.compare(password, this.password, next);
	}

	},

	/**
	* Callback to be run before creating a Passport.
	*
	* @param {Object} passport The soon-to-be-created Passport
	* @param {Function} next
	*/
	beforeCreate: function (passport, next) {
	hashPassword(passport, next);
	},

	/**
	* Callback to be run before updating a Passport.
	*
	* @param {Object} passport Values to be updated
	* @param {Function} next
	*/
	beforeUpdate: function (passport, next) {
	hashPassword(passport, next);
	}
	};

	module.exports = Passport;

	// api/models/User.js
	var User = {
	// Enforce model schema in the case of schemaless databases
	schema: true,

	attributes: {
	username : { type: 'string', unique: true },
	email : { type: 'email', unique: true },
	passports : { collection: 'Passport', via: 'user' }
	}
	};

	module.exports = User;