Use mongo for express session storage

duncanfwalker · Jul 6, 2017 · 051da79 · 051da79
1 parent af1a9c9
commit 051da79
Show file tree

Hide file tree

Showing 4 changed files with 10 additions and 2 deletions.
diff --git a/.env.dist b/.env.dist
@@ -1,4 +1,4 @@
-MONGODBURI=localhost:27017
+MONGODBURI=mongodb://localhost:27017
 NEXMO_API_KEY=<add key here>
 NEXMO_API_SECRET=<add secret here>
 NODE_ENV=production

diff --git a/.travis.yml b/.travis.yml
@@ -7,6 +7,7 @@ script:
 - npm run build
 install:
 - npm i -g npm@latest
+- cp .env.dist .env
 - npm install
 - cd client
 - npm install
@@ -15,7 +16,7 @@ install:
 services:
 - mongodb
 env:
-- MONGODBURI=localhost:27017/smsup
+- MONGODBURI=mongodb://localhost:27017/smsup
   SUPPORTED_LOCALES=en,fa,so
   ACTIVE_GATEWAY=nexmo
   MEXCOM_PREMIUM_KEYWORDS=APPS10

diff --git a/package.json b/package.json
@@ -26,8 +26,10 @@
     "babel-preset-react": "^6.16.0",
     "bluebird": "^3.4.7",
     "body-parser": "~1.15.2",
+    "connect-mongodb-session": "^1.3.0",
     "cookie-parser": "~1.4.3",
     "debug": "~2.2.0",
+    "eslint-plugin-flowtype": "^2.34.1",
     "express": "~4.14.0",
     "express-ipfilter": "^0.2.1",
     "express-session": "^1.15.2",

diff --git a/server/admin/admin-auth.js b/server/admin/admin-auth.js
@@ -3,6 +3,7 @@ const passwordless = require('passwordless');
 const MongoStore = require('passwordless-mongostore-bcrypt-node');
 const logger = require('winston');
 const session = require('express-session');
+const MongoSessionStore = require('connect-mongodb-session')(session);
 
 const loginForm = `<html>
 <body>
@@ -35,6 +36,10 @@ function setupAuth(app) {
     secret: process.env.ADMIN_AUTH_SECRET,
     resave: false,
     saveUninitialized: true,
+    store: new MongoSessionStore({
+      uri: process.env.MONGODBURI,
+      collection: 'sessions',
+    }),
   }));
 
   app.post(