var express = require('express');
var app = express();
var http = require('http').Server(app);
var cookie = require("cookie-session");
var session = require("express-session");
app.use(cookie('keyboard cat'));
app.use(session({
secret: 'keyboard cat'
}));
var csrf = require('csurf');
var bodyParser = require('body-parser');
app.use(csrf());
app.use(function(err, req, res, next) {
if (err.code !== 'EBADCSRFTOKEN') return next(err);
res.status(403).json({"error": "session has expired or tampered with"});
});
app.use(express.static(__dirname + '/public'));
app.use(bodyParser.urlencoded({extended: true}));
app.use(bodyParser.json());
app.post("/register", function(req, res) {
var email = req.body.email;
var password = req.body.password;
console.log('login done');
console.log(req.body);
res.json({"done":"done"});
});
app.get("/register", function(req, res) {
res.json({"csrf": req.csrfToken()});
});
http.listen(3000, function() {
console.log('Express app started');
});