Express dosn't get return of other function querying Mongodb

Question

I'm working in a simple API Key authentication, I just want to verify the given key against the user provied key.

I have a seperate file with the function querying the database, and returning true/false and the user object.

But in my route.js file, the return object is undefined even tough in my auth.js file it isn't.

I tried making the the function in router.get an async function using express-promise-router and making the function an await return var user = await auth.verify(req.params.uid, req.get("token")) but I don't realy know how async works.

router.js

[...]
router.get('/list/:uid', function(req, res) {
  var user = auth.verify(req.params.uid, req.get("token"))
  console.log("User: " + user) // <-- Undefined
  if (user.status) {
    res.send("Success")
  } else {
    res.status(403)
    res.json({status: 403, error: "Unkown User / Token"})
  }
})
[...]

auth.js

var db = require('./db')

var ObjectId = require('mongodb').ObjectId; 

module.exports = {
    verify: (uid, key) => {
        try {
            var collection = db.get().collection('users')
            const obj_id = new ObjectId(uid)
            const query = { _id: obj_id }
            collection.find(query).limit(1).toArray(function(err, user) {
                var status = 0;
                var usr = {};
                if (err) {throw err}else{status=1}
                if (user.length <= 0) {throw "NotExistingExc"; status = 0}else{
                    usr = user[0];
                    if (key != usr.api) status = 0
                }

                var returnObj = {
                    status: status,
                    user: usr
                } /* --> Is {
                              status: 1,
                              user: {
                                       _id: d47a2b30b3d2770606942bf0,
                                       name: 'Sh4dow',
                                       groups: [ 0 ],
                                       api: 'YWFiMDI1MGE4NjAyZTg0MWE3N2U0M2I1NzEzZGE1YjE='
                                    }
                            }
*/

                return returnObj;
            })
        } catch (e) {
            console.error(e)
            return {
                status: 0,
                user: {},
                error: e
            }
        }
    }
}

db.js (Idk if needed)

var MongoClient = require('mongodb').MongoClient

var state = {
  db: null,
}

exports.connect = function(url, done) {
  if (state.db) return done()

  MongoClient.connect(url, { useNewUrlParser: true }, function(err, db) {
    if (err) return done(err)
    state.db = db
    done()
  })
}

exports.get = function() {
  return state.db.db("database")
}

exports.close = function(done) {
  if (state.db) {
    state.db.close(function(err, result) {
      state.db = null
      state.mode = null
      done(err)
    })
  }
}

I want to have the returnObjin auth.js in the router.get of my route.js file.

Answer 1

Make auth.verify return a Promise which we can then await for it inside router, You can just make the callback async no need for express-promise-router

router.get('/list/:uid', async function(req, res) {
  try {
    var user = await auth.verify(req.params.uid, req.get("token"))
    console.log("User: " + user)
    if (user.status) {
      res.send("Success")
    } else {
      res.status(403).json({status: 403, error: "Unkown User / Token"})
    }
  } catch (e) {
    console.error(e)
    res.status(/* */).json(/* */)
  }
})

auth

module.exports = {
  verify: (uid, key) => new Promise((resolve, reject) => {
      var collection = db.get().collection('users')
      const obj_id = new ObjectId(uid)
      const query = { _id: obj_id }

      collection.find(query).limit(1).toArray(function(err, user) {
          var status = 0;
          var usr = {};
          if (err) {
            reject(err)
            return
          } else {
            status = 1
          }
          if (user.length <= 0) {
            reject(new Error("NotExistingExc"))
            return
          } else {
            usr = user[0]
            if (key != usr.api) status = 0
          }

          var returnObj = {
              status: status,
              user: usr
          } 

          resolve(returnObj);
      })
  }
}

Answer 2

In short, the reason you get undefined is because the code in auth.js is asyncronous. But you're really close. The toArray method in MongoDB returns a promise, so you need to make sure you return that promise and then use it in the router correctly.

In auth.js, make sure verify returns a promise - just add return!

return collection.find(query).limit(1).toArray(...)

And then, change your usage of the verify to the async/await you originally tried:

router.get('/list/:uid', async function(req, res) {
  var user = await auth.verify(req.params.uid, req.get("token"))
  // More code here...
})