Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Mongoose: How can I access a select:false property in a schema method?

Tags:

mongodb

mongoose

Quick code:

var userSchema = new mongoose.Schema({
    username: String,
    password: {type: String, select: false}
});

userSchema.methods.checkPassword = function(password, done) {
    console.log(password);      // Password to check
    console.log(this.password); // stored password
    ...
};

I don't want the password to be accessible by default, but I need a method to check against a user inputted password before authenticating the user. I know I can do a query to the DB to include these values, but I'm a bit lost on how I could access the hidden property on the schema method itself. this in the method itself is just the returned query, so it seems like it is inaccessible? Should I be doing the checkPassword() function elsewhere?

like image 588
enrique-ramirez Avatar asked Mar 03 '15 17:03

enrique-ramirez

People also ask

What is select false in Mongoose schema?

select: false makes field values not accessible using "this. field_name" · Issue #1596 · Automattic/mongoose · GitHub.

What can Mongoose specify in a schema?

A Mongoose schema defines the structure of the document, default values, validators, etc., whereas a Mongoose model provides an interface to the database for creating, querying, updating, deleting records, etc.

What does $Set do in Mongoose?

The $set operator replaces the value of a field with the specified value. The $set operator expression has the following form: { $set: { <field1>: <value1>, ... } } To specify a <field> in an embedded document or in an array, use dot notation.

What is __ V in MongoDB?

The __v field is called the version key. It describes the internal revision of a document. This __v field is used to track the revisions of a document. By default, its value is zero ( __v:0 ).

2 Answers

You can explicitly allow the password field (with {select:"false"}) to be returned in your find call with "+" operator before field e.g.:

User.findOne({}).select("+password") // "+" = allow select hidden field
like image 195
Denys Pugachov Avatar answered Sep 22 '22 08:09

Denys Pugachov

You can use select to select password in query. This is an example query.

User.findOne().select('password').exec(callback);

And this must be what you want to check password.

userSchema.methods.checkPassword = function(password, done) {
    User.findOne({username: this.username}).select('password').exec(function (err, user) {
        if (user.password == password)
            return true;
        else 
            return false;
    });
}

I hope this might help you.

like image 21
Khay Avatar answered Sep 20 '22 08:09

Khay
Sign in to Comment

Related questions

pymongo + gevent: throw me a banana and just monkey_patch?
Can MongoDB and its drivers preserve the ordering of document elements
mongod runs but only outputs all output going to path and that's it
Using find() to search for nested keys in MongoDB
MongoDB: How to set another field (different from _id) as ID of mongo document?
MongoDB $oid vs ObjectId
Restore data Mongodb from JSON
Meteor find using $in with array of Ids
MongoDB - objects? Why do I need _id in aggregate
Handling Custom BSON Marshaling
Not able to connect MongoDB Compass
Spring Data MongoDB how to assign expiration time programmatically
Why does the docker-compose healthcheck of my mongo container always fail?
How to show base64 image in react?
Wonder: Is MongoDB _id unique by default?
How can I edit/rename keys during json.load in python?
Referencing the whole document in MongoDB Aggregation Pipeline
MongoDB - Mongoid map reduce basic operation
MongoDB : Failed to connect to 127.0.0.1:27017, reason: errno:61 Connection refused
MongoDB $addtoSet and $set in the same operation

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!