Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/sbordelais-dev/citizeng

A turnkey user-password framework to create an systematically-authenticated HTTP-server.
https://github.com/sbordelais-dev/citizeng

authentication https-server passport-local socket-io sqlite3

Last synced: about 1 month ago
JSON representation

A turnkey user-password framework to create an systematically-authenticated HTTP-server.

Awesome Lists containing this project

README 

          
# citizeng

A turnkey username-password framework to create a systematically-authenticated HTTP-server. 

## Purpose

This project provides a parent HTTP-server class users can derive from to build authenticated Web services. It is supposed to be used on a **small** and **local network**. A particular attention is paid to ensure it can run easily on small devices (more particularly on a [Raspberry pi](https://www.raspberrypi.org/) system).

## Features

* Easy to integrate : just concentrate on your server design!

* Use [Passport](http://passportjs.org/) as an authentication method (*'passport-local'* strategy).

* Support real-time HTML rendering thanks to [socket.io](https://socket.io/) framework.

* Simple and lightweight users management using a [sqlite3](https://www.npmjs.com/package/sqlite3) database.

* Offer basic users management: list, add, remove and password change.

## Overview

### What does the framework provide?

The framework provides only **tree static routes** : `/login`, `/admin` and `/404`.



* The `/login` route presents a basic username/password login interface. This is where unhauthenticated users will be redirected to. Here the user could connect to the server and/or change its password on the fly.



* The `/admin` route presents a elementary users administration interface. This is where authorized users will be able to interact with the users database.



* The `/404` route provides a fordidden access page when the user try to access an non-authorized service (because it does not exist or because the user does not hav the right to access it).



> Note : Theses **static routes** are said to be **reserved**.



The framework provides a way to dynamically render services too thanks to the `socket.io` framework. The following routes are used for internal purpose:



* The `connect`, `connection`/`disconnect` routes are use to respectively open/close the `socket.io` connection.



* The `userpresent`, `userlist`, `useradd`, `userdelete` and `userchangepassword` are used to manage users database.



> Note : Theses **dynamic routes** are said to be **reserved**, too.



### Users type

This framework considers **tree types of users**, depending on their given access right :

1. `basic` user : it is the default user. It will access default services. It may not be able to reach user administration service (`/admin` route).

2. `super` user : it is an administrator user. It can reach `/admin` route.

3. `master` user : even if is the top-level-ever user type, it remains anecdotic because it is simply a `super` user (declared when inializing the server) that cannot be removed during the session.



> Note: A `basic` user can be removed from the users database by any `super` user. The `master` user cannot be removed from the users database.

### Password save strategy

User's password is never directly saved in the users database. To do so, sha512 is used to hash it before saving:

```JavaScript

function sha512(userpassword, salt){

  var hmac = crypto.createHmac('sha512', salt);

  hmac.update(userpassword);

  var value = hmac.digest('hex');

 return { salt:salt, hash:value };

};

```

## Installation

### Default installation

```Shell

npm install citizeng

```

### Installation for development

```Shell

# Clone the repository.

git clone https://github.com/LordHadder/citizeng.git mydir



# Go the cloned repository.

cd mydir



# Install required modules.

npm install express passport passport-local body-parser express-session sqlite3 socket.io nodemailer --save



# Run the demo.

node citizeng-demo

```

## How to use

### Default usage

First, you need to load `citizeng` module to retrieve an HTTP-server object:

```JavaScript

var citizeng = require("citizeng");

```

The server object must be initialized first by providing a `port number`, a master `user name` and and the master user `password`.



In the following sample, the server will be accessible from the URL **http://localhost:3030** by the `master` user **Groot** with password **root**:

```JavaScript

citizeng.init(3030, "Groot", "root");

```

To access services, just make [express](http://expressjs.com/)-like GET and POST requests. This sample render a specific HTML file depending on if the user is a `basic` or a `super` user:

```JavaScript

citizeng.get  ( "/"

              , path.join(__dirname, "index.html")         /* HTML file for basic user */

              , path.join(__dirname, "indexsuper.html"));  /* HTML file for super user */

```

Declaring a static **reserved** route may have no effect. The user will be redirected to the default administration page.

```JavaScript

citizeng.get("/admin", path.join(__dirname, "index.html"));

```

The following example shows how to use the `socket.io` layer to render dynamically a service.

```JavaScript

/* On client side, Emit a simple message. */

var socket = io.connect();

socket.emit("consolemessage", "Bonjour !!");



/* On server side, receive the message and just print. */

citizeng.ioset("consolemessage", function(data, ackfunc) {

  // Log.

  console.log(data);

});

```

Declaring a dynamic **reserved** route may have no effect.

```JavaScript

citizeng.ioset("useradd", function(data, ackfunc) {

  // Log.

  console.log("This may have not effect!");

});

```

Now start the server:

```JavaScript

citizeng.run();

```

### Support Javascript and CSS references

You will need to add the current path during initialization:

```JavaScript

citizeng.init(3030, "Groot", "root", Groot@mymail.com, __dirname);

```

Then, create subfolders named `/js` and `/css` in the current path to respectively put Javacript and CSS files.



For example, let's consider the custom CSS file **style-demo.css**, a possible way to reference it in HTML is:

```HTML



```

## Next things to do

- [ ] To make unit test ([mocha](https://mochajs.org/)?)

- [ ] To support secured protocol (HTTPS)

- [ ] To offer a way to stylize `/login`, `/admin` and `/404` HTML rendering (generic CSS)

## License

[MIT](https://github.com/socketio/socket.io/blob/master/LICENSE)