server.js

import http from 'http';
import express from 'express';
import cors from 'cors';
import bodyParser from 'body-parser';
import mongoose from 'mongoose';
import falcor from 'falcor';
import falcorExpress from 'falcor-express';
import Router from 'falcor-router';
import routes from './routes.js';
import jwt from 'jsonwebtoken';
import expressJwt from 'express-jwt';

let jwtSecret = 'here_goes_the_secret_normally_it_lives_in_an_enviroment_variable';

var app = express();
app.server = http.createServer(app);

// CORS - 3rd party middleware
app.use(cors());

// This is required by falcor-express middleware to work correctly with falcor-browser
app.use(bodyParser.json({
  extended: false
}));




app.use('/api', expressJwt({secret: jwtSecret}).unless({
  path: [
    // here goes unauthenticated paths
  ]
}));
app.use(function (err, req, res, next) {
  if (err.name === 'UnauthorizedError') {
    res.status(401).send('Invalid token...');
  }
});

var mockedUser = {
  username: 'kamil',
  password: '123'
};


// UTIL FUNCTIONS
const authenticate = (req, res, next) => {
  console.info("TEST", 1);
  let body = req.body;
  if (!body.username || !body.password) {
    console.info("TEST", 2);
    res.status(400).end('Username or password is missing');
    return;
  }

  if(body.username !== mockedUser.username || body.password !== mockedUser.password) {
    res.status(401).end('Username or password is incorrect');
    return;
  }
  next();
}


app.post('/login', authenticate, (req, res) => {
  let token = jwt.sign({
    username: mockedUser.username
  }, jwtSecret);
  res.send({
    token: token,
    user: mockedUser
  });
});

app.get('/api/me', (req, res) => {
  res.send({ user: req.user, works: "yes" });
});

app.use('/model.json', falcorExpress.dataSourceRoute(function(req, res) {
  return new Router(routes);
}));

app.use(express.static('dist'));

app.server.listen(process.env.PORT || 3000);
console.log(`Started on port ${app.server.address().port}`);

export default app;