Code Monkey home page Code Monkey logo

nodeshuttle-example's Introduction

Node CLI Shuttle Example

Introduction

This is an example of what can be achieved by using shuttle's node CLI package to quickly bootstrap a Next.js application that uses Rust as a back end, complete with commands that integrate both sides together already built in.

We will be building a fully working login portal with a dashboard.

Preview

How To Use

You'll need Rust installed, as well as cargo shuttle. You can install cargo shuttle by running the following command:

  cargo install cargo-shuttle

You can also use binstall for the installation:

  cargo binstall cargo-shuttle

Note that this will require protoc due to a recent release change; you can see more about this here.

Once that's done, all you need to do is to install the dependencies on the root of the project and then log in with shuttle using npm run shuttle-login, then you can run this project locally or deploy it!

Note: Make sure you change the Shuttle.toml file to be a different project name otherwise you will get a 400 error.

Packages/libs used

  • Next: The whole point of this repo.

  • React: The whole point of this repo (Next builds on React, so this is an unspoken pre-requisite).

  • TailwindCSS: CSS.

  • Autoprefix / PostCSS: CSS (TailwindCSS pre-requisites).

  • shuttle_service: The whole point of this repo.

  • shuttle_shared_db: Using shuttle's provisioned database.

  • shuttle_secrets: shuttle secrets capabilities (environment variables).

  • sync_wrapper: A wrapper for making async things, sync (default for deploying axum via shuttle)

  • axum: A popular Rust web framework with easy to use syntax and highly compatible with tower-http middleware.

  • axum_extra: An add-on library for axum.

  • tower_http: A Rust library for using many different types of middleware (rate limiting, auth, cors... etc) as well as easily making your own.

  • bcrypt: Salted password hash encryption.

  • lettre: A library for sending emails over SMTP.

  • serde: A library for serializing and deserializing structs (required for Axum).

  • rand: A random generator crate. We use this to generate session IDs but also can use it to generate random new strings, which is useful for password resets.

  • sqlx: A library for working with databases and creating async connection pools.

nodeshuttle-example's People

Contributors

joshua-mo-143 avatar

Stargazers

 avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar

Watchers

 avatar

nodeshuttle-example's Issues

Currently any existing user will create a session regardless of password

https://github.com/joshua-mo-143/nodeshuttle-example/blob/1c37bbce8fc4898cce48e13cec8778f276b65b71/backend/src/router.rs#L120C1-L122C14

First of all, I really appreciate this example app, I used it to help set up my own Next.js/Axum project. However, while working on my project I noticed that they way that the password is verified here with bcrypt results in any valid user being granted a session, even if the passwords don't match.
It seems to be that bcrypt::verify returns a result, which here is left wrapped - so unless there is an error when you try to compare the hashed passwords, the session is created. I would suggest changing the code to something like:

        if bcrypt::verify(password, res.get("password")).unwrap() == false {
            println!("Unauthorized");
            return Err(Error::RowNotFound);
        }

I mean, maybe unwrap() is not the right call, but this at least ensures that if the hashed passwords don't match, a session will not be created

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.