Login&Logout fix

/Dash ist jetzt sicher gegen unangemeldete user.
/logout funktioniert jetzt auch

express-server/routes/index.js

@@ -21,6 +21,14 @@ router.use(cookieSession({
 
 router.use(cookieParser());
 
+function isLoggedIn(req, res, next) {
+  console.log("Auth: ", req.session.passport.user.profile.id);
+  if (req.session.passport.user.profile.id) {
+    return next();
+  }
+  res.redirect('/')
+}
+
 router.get('/', (req, res) => {
     // if (req.session.passport.user.token) {
     //   res.redirect('/dash');
@@ -40,12 +48,12 @@ router.get('/auth/google/callback',
 );
 
 router.get('/logout', (req, res) => {
+  req.session.passport.user.profile.id = null;
   req.logout();
-  req.session = null;
   res.redirect('/');
 });
 
-router.get('/dash', function(req, res, next) {
+router.get('/dash', isLoggedIn, function(req, res, next) {
   // console.log("Session: ", req.session.passport.user.token);
   // console.log("User ID: " + req.session.passport.user.profile.id);
   // if (req.session.passport.user.token) {

express-server/views/index1.ejs

@@ -13,7 +13,11 @@
 
   <div class="container">
       <p>Logged in as: testuser1</p>
-      <br><br>
+      <br>
+      <div class="col s6">
+        <a href="/logout" class="waves-effect waves-light btn">Logout</a>
+    </div>
+      <br>
     <div class="row">
         <div class="input-field col s6">
           <input id="name" type="text" class="validate name">