Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Restricting route to static files in Express and Nodejs

Tags:

javascript

html

node.js

express

I am currently trying to restrict the routes to users who haven't been logged. My main issue is that even if I define a page with a get method such as:

 app.get('/alpha/information', isLoggedIn,
        function(req, res){
            res.sendFile(path.join(__dirname + '/alpha/pages/Example.html'));
        });

The user can sill just edit the url to: http://localhost:3000/alpha/pages/Example.html and access the page. Now I have read several similar questions on SO but I cannot find the answer. Some of which I was inspired were: Q1,Q2, Q3. Nonetheless I was unable to find a solution to my issue.

My current file structure is: FileStructureLink

I am trying to restrict access to Example.html, ExampleTwo.html and blabla.html

I am using this code to set up the requests but I guess they might not be right:

app.use(express.static(path.join(__dirname, 'Alpha')));
app.use(express.static(path.join(__dirname, '/')));
app.use('/', express.static(__dirname + '/login.html'));

This app.use('/', express.static(__dirname + '/login.html')); specifically is used to make the default localhost:3000/ load as localhost:3000/login

How can I restrict access to all the static html files without having to write a route for each of them?

middleware function:

function isLoggedIn(req, res, next) {
        console.log('here is Authenticated', req.isAuthenticated())
        if (req.isAuthenticated()){
            return next();
        }
        res.redirect('/login');
    }
like image 888
coderJoe Avatar asked Dec 18 '22 07:12

coderJoe

1 Answers

You can restrict your express static middleware, by attaching another middleware to it.

var express = require("express");
var path = require( "path" );
var app = express();

function isLoggedIn( req, res, next ) {
   console.log("trying restricted file");
   next();
}

app.use( '/Alpha', isLoggedIn, express.static( path.join( __dirname, 'Alpha' ) ) );
app.use( express.static( path.join( __dirname, 'anonymous' ) ) );

app.listen( 3000 );

By doing this every time you call localhost:3000/restricted/* will via isLoggedIn function.

EDIT: Code modified, according to your file structure.

like image 121
drinchev Avatar answered Dec 24 '22 01:12

drinchev
Sign in to Comment

Related questions

Angular 2 passing a click event to a reusable generic component
Angular 2, subscribe when coordinates are received
Detect class removal by code I have no control over
Angular 1.6.3 is not allowing a JSONP request that was allowed in 1.5.8
Real Time Javascript Calculation Based On Form Inputs
Lodash - Merge objects of two arrays on condition
Chart.js remove stacking
electron, printToPDF from BrowserWindow
remove image and its container if image is broken
Javascript Array.slice() vs Array.slice(0)
How does lazy module loading work in typescript?
Cannot read property 'drag' of undefined D3
Cannot read property '_root' of null in React Native when using NativeBase Toast component
Inner Radius is not changed in Chart.js (Doughnut Chart)
Arrow functions using call, apply, bind - not working? [duplicate]
set timeout to event listener function
Javascript - Find path to object reference in nested object
Get last 3 months names in select dropdown
Angular Js :Conditionally how to disable all button and links?
In Javascript collection, use value from earlier key/value in a later value [duplicate]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!