UNPKG

bot18

Version:

A high-frequency cryptocurrency trading bot by Zenbot creator @carlos8f

bot18.net

carlos8f/bot18

148 lines (147 loc) 5.31 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
var bcryptjs = require('bcryptjs') var uuid = require('../lib/uuid') var isEmail = require('isemail').validate var pwTester = require('owasp-password-strength-test') module.exports = function container (get, set) { return get('controller')() .post('/login', function (req, res, next) { if (req.user) return res.redirect('/') if (!req.body.email) { req.error('E-mail is required.') } else if (!isEmail(req.body.email)) { req.error('E-mail is invalid.') } if (!req.body.password) { req.error('Password is required.') } if (req.inputError) { return next() } get('db.users').select({query: {email: req.body.email.toLowerCase()}}, function (err, users) { if (err) { req.error('Unexpected server error while processing your request (error code: LLAMA). Please try again.') return next() } var user = users.pop() if (!user) { req.error('E-mail not found.') return next() } else { bcryptjs.compare(req.body.password, user.password, function (err, passwordOk) { if (err) { req.error('Unexpected server error while processing your request (error code: PIGGY). Please try again.') return next() } if (passwordOk) { req.success('Welcome back, ' + user.username + '!') req.login(user) return res.redirect('/dashboard') } else { req.error('Bad password.') } return next() }) } }) }) .add('/login', function (req, res, next) { if (req.user) return res.redirect('/dashboard') res.vars.is_login = true res.vars.title = 'Log In - ' + res.vars.title res.render('auth/login') }) .post('/register', function (req, res, next) { var user = { id: uuid(), email: (req.body.email || '').trim().toLowerCase(), username: (req.body.username || '').trim(), username_lc: (req.body.username || '').trim().toLowerCase(), time_registered: new Date().getTime(), remote_ip: req.addr, last_access: new Date().getTime(), last_access_url: req.url, last_access_agent: req.headers['user-agent'], last_access_method: req.method, last_access_ip: req.addr } if (!req.body.email) { req.error('E-mail required.') } else if (!isEmail(req.body.email)) { req.error('E-mail not valid.') } if (!req.body.username) { req.error('Username required.') } else if (!req.body.username.match(/^[A-Za-z]{1}[A-Za-z0-9_-]{2,}$/)) { req.error('Username must consist of: A-Z, a-z, 0-9, dashes, underscores, at least 3 characters, starting with a letter.') } else if (req.body.username.length > 29) { req.error('Username needs to be shorter, < 30 chars.') } if (!req.body.password) { req.error('Password required.') } else if (req.body.password !== req.body.password2) { req.error('Password confirmed incorrectly.') } else { var password_info = pwTester.test(req.body.password) if (password_info.requiredTestErrors.length) { password_info.requiredTestErrors.forEach(function (text) { req.error(text) }) } } if (req.inputError) { return next() } get('db.users').select({query: {email: user.email}}, function (err, already_registered) { if (err) { req.error('Unexpected server error while processing your request (error code: PONY). Please try again.') return next() } if (already_registered[0]) { req.error('E-mail already registered.') return next() } get('db.users').select({query: {username_lc: user.username_lc}}, function (err, already_registered) { if (err) { req.error('Unexpected server error while processing your request (error code: KIWI). Please try again.') return next() } if (already_registered[0]) { req.error('Username already registered.') return next() } bcryptjs.hash(req.body.password, get('conf.auth.strength'), function (err, hash) { if (err) return next(err) user.password = hash get('db.users').save(user, function (err, user) { if (err) { req.error('Unexpected server error while processing your request (error code: APE). Please try again.') return next() } req.login(user) req.success('Your account was created! Congrats!') res.redirect('/dashboard') }) }) }) }) }) .add('/register', function (req, res, next) { if (req.user) return res.redirect('/dashboard') res.vars.is_register = true res.vars.title = 'Register - ' + res.vars.title res.render('auth/register') }) .get('/logout', function (req, res, next) { // @todo: check csrf token req.logout() res.redirect('/') }) }