adding auth

Author: samadarshad

course-02/exercises/udacity-c2-restapi/.env

@@ -5,4 +5,5 @@ POSTGRES_HOST=database-1.cl5acgthoh69.eu-west-2.rds.amazonaws.com
 POSTGRES_DIALECT=postgres
 AWS_REGION=eu-west-2
 AWS_PROFILE=default
-AWS_MEDIA_BUCKET=324941539183-c2-bucket-dev
+AWS_MEDIA_BUCKET=324941539183-c2-bucket-dev
+JWT_SECRET=helloworld

course-02/exercises/udacity-c2-restapi/package-lock.json

@@ -16,7 +16,6 @@
   "author": "Gabriel Ruttner",
   "license": "ISC",
   "dependencies": {
-    "@types/bcrypt": "^3.0.0",
     "@types/jsonwebtoken": "^8.3.2",
     "aws-sdk": "^2.492.0",
     "bcrypt": "^5.0.0",
@@ -31,6 +30,7 @@
     "sequelize-typescript": "^0.6.11"
   },
   "devDependencies": {
+    "@types/bcrypt": "^3.0.0",
     "@types/bluebird": "^3.5.33",
     "@types/express": "^4.17.9",
     "@types/node": "^11.15.42",

course-02/exercises/udacity-c2-restapi/package.json

@@ -15,5 +15,8 @@ export const config = {
     "database": "udagram_prod",
     "host": "",
     "dialect": "postgres"
+  },
+  "jwt": {
+    "secret": process.env.JWT_SECRET
   }
 }

course-02/exercises/udacity-c2-restapi/src/config/config.ts

@@ -12,12 +12,16 @@ const router: Router = Router();
 
 async function generatePassword(plainTextPassword: string): Promise<string> {
     //@TODO Use Bcrypt to Generated Salted Hashed Passwords
-    return "NotYetImplemented"
+    const saltRounds = 10;
+    const salt = await bcrypt.genSalt(saltRounds);
+    const hash = await bcrypt.hash(plainTextPassword, salt);
+    return hash
 }
 
 async function comparePasswords(plainTextPassword: string, hash: string): Promise<boolean> {
     //@TODO Use Bcrypt to Compare your password to your Salted Hashed Password
-    return true
+    const compare = await bcrypt.compare(plainTextPassword, hash);
+    return compare
 }
 
 function generateJWT(user: User): string {