Curso de Desarrollo de APIs con Sails.js
Curso de Desarrollo de APIs con Sails.js

Introducción

1

Qué aprenderás sobre API con Sails.js

2

Presentando el proyecto

Comenzando con Sails

3

Introducción a Sails.js

4

Estructura de archivos

5

Preparación del ambiente de desarrollo

Setup de Espacio de Trabajo

6

Generando rutas REST con blueprint

7

Instalación de MongoDB

8

Conexión a Mongo

9

Instalar MySQL y usarlo con Sails (a través de WaterLine)

CRUD

10

Entendiendo operaciones CRUD

11

Crear modelo de rodada

12

Crear app de Ionic

13

Obtener todas las Rodadas: preparando la aplicación para mostrar datos

14

Obtener todas las Rodadas: mostrando los datos

15

Crear Rodada: recibiendo parámetros desde la URL

16

Crear Rodada: enviando información desde el formulario

17

Actualizar Rodada

18

Eliminar Rodadas

Autenticación y Usuarios

19

Obtener Rodada

20

Crear Modelo y Controller de Usuarios

21

Implementar validación de modelo

22

Nueva versión de la librería Joi

23

Crear Usuario

24

Cifrado de contraseña

25

Implementación de Login

Sistemas Externos

26

Uso de JSON Web Token

27

Policies: verificar si usuario está loggeado

28

Agregar usuario a Ride

29

Preparando la App para implementar el Login y Sign up

30

Implementando Login

31

Implementando Sign up

32

Agregar puntos de Rodada

33

Obtener API Keys para Clima y Distancias

34

Integración Google Geocoding: definiendo la lógica

35

Integración Google Geocoding: probando la funcionalidad

36

Integración Weather API

37

Desplegar clima, distancia y tiempo en cada punto de Rodada

Cierre

38

Cierre

You don't have access to this class

Keep learning! Join and start boosting your career

If you already have an account,

Aprovecha el precio especial y haz tu profesión a prueba de IA

Antes: $249

Currency
$209
Suscríbete

Termina en:

0 Días
11 Hrs
10 Min
21 Seg
Curso de Desarrollo de APIs con Sails.js

Curso de Desarrollo de APIs con Sails.js

Eduardo Ibarra

Eduardo Ibarra

Crear Usuario

23/38
Resources

How to securely store a user in the database?

When developing applications, proper and secure handling of user data is essential. In this context, we will focus on how to securely store a user in the database after preliminary validation.

How to validate and extract data from the parameter object?

At this stage, we have validated that both the email and the password are valid data. Now, we need to store this data in the database and handle it securely. We start by changing the way we extract the parameters:

const { email, password } = await Joi.validate(req.body, schema);

This code block uses destructuring to assign the email and password values directly to specific variables, thanks to the previous validation with Joi. This simplifies access to these parameters in subsequent functions.

How do we store data using models?

Once the data has been obtained and validated, it is stored in the database. The next step is to use models to interact with it:

const user = await Users.create({ email, password });

This fragment shows the creation of a user in the database, using the create method of the Users model. Thanks to the asynchrony and the use of await, the write operation to the database is handled efficiently, without the need to import files due to the global way in which the models are defined.

Why is it important to encrypt passwords?

When storing data in the database, security is a priority. A common and critical mistake is to store passwords in plain text, something that could leave the application vulnerable to attack. If a hacker gains access to this unencrypted data, they could impersonate users. In addition, if the application handles sensitive data such as credit card information, the risk increases considerably.

The next essential step is to encrypt passwords before storing them, thus preventing their exposure. This process protects not only users but also the overall integrity of the application.

What is the next step in password security?

In the next stage, password encryption will be explored to ensure that even if unauthorized access is gained to the database, the passwords are unreadable. For encryption, specialized algorithms are used that convert passwords into unrecognizable strings of text that cannot be easily reversed.

Securing data does not end with validation and initial saving. Implementing robust security practices, such as encryption, is vital to protecting user information and maintaining the trustworthiness of your application. We encourage developers to continue to learn and implement data protection techniques that meet today's needs and regulations.

Contributions 2

Questions 0

Sort by:

Want to see more contributions, questions and answers from the community?

alexandermiss

alexandermiss

4 years ago

Mi modelo usuario:

module.exports = {

  attributes: {

    name: { type: 'string' },
    username: { type: 'string' },
    email: { type: 'string' },
    password: { type: 'string' },

    // El rol de usuario dentro del sistema
    role: {type: 'string', isIn: ['superadmin', 'admin', 'guest'], defaultsTo: 'guest' },

    // Plan del usuario: basic es un usuario gratuito, expert es usuario premium.
    plan: { type: 'string', isIn: ['basic', 'expert'], defaultsTo: 'basic' },

    // Si el usuario valido via correo electronico
    activated: { type: 'boolean', defaultsTo: false },

    // Si es un usuario verificado, como Twitter
    verified: { type: 'boolean', defaultsTo: false },

    // Si el usuario esta activo dentro de la plataforma
    status: { type: 'string', isIn: ['active', 'deleted'], defaultsTo: 'active' },

    // Perfil public o privado
    isPrivate: { type: 'boolean', defaultsTo: true }

  },
 
};
Naldo Duran

Naldo Duran

4 years ago