#167484590: create user profiles upon successful registration #18
Conversation
raymond42
requested review from
mkiterian,
Jkadhuwa,
placideirandora,
harerakalex and
malaba6
![hound[bot]](https://avatars.githubusercontent.com/in/3598?s=60&v=4){kind=small}
| @@ -0,0 +1,17 @@ | |||
| import model from '../sequelize/models'; | |||
There was a problem hiding this comment.
Parsing error: 'import' and 'export' may appear only with 'sourceType: module'
src/controllers/profile.js
Outdated
| @@ -0,0 +1,110 @@ | |||
| import { config } from 'dotenv'; | |||
There was a problem hiding this comment.
Parsing error: 'import' and 'export' may appear only with 'sourceType: module'
src/config/passport/passport.js
Outdated
| @@ -0,0 +1,48 @@ | |||
| import passport from 'passport'; | |||
There was a problem hiding this comment.
Parsing error: 'import' and 'export' may appear only with 'sourceType: module'
src/controllers/profile.js
Outdated
| import { User } from '../sequelize/models'; | ||
|
|
||
| config(); | ||
| cloudinary.config({ |
There was a problem hiding this comment.
This cloudinary config would be better if you put it in config folder. And rename the name of this controller to profileController
src/middleware/editProfile.js
Outdated
|
|
||
| if (trueUsername !== suggestedUsername) { | ||
| return res.status(403).send({ | ||
| error: 'sorry! you can not edit the profile that is not yours' |
There was a problem hiding this comment.
For this error message. I think it'd be better if the message started with a capital letter and instead of can not, cannot would be a better option in this case Reference to this article
There was a problem hiding this comment.
I have noticed that actually, you can upload a picture twice. Well, that is disastrous for our account because we are using a limited subscription. If you could make sure that when the user uploads a picture, it checks if the picture already exists. if so, it just uses the uploaded one.
yes, you are right. let me implement that. thanks |
src/controllers/profile.js
Outdated
| cloud_name: process.env.cloudinaryName, | ||
| api_key: process.env.cloudinaryApiKey, | ||
| api_secret: process.env.cloudinarySecretKey, | ||
| }); |
There was a problem hiding this comment.
I think it would be good that we all adhere to the convention on naming environment variable by using _ instead of camel case like in this case.
So instead of cloudinaryName, u can use CLOUDINARY_NAME
There was a problem hiding this comment.
I think it would be good that we all adhere to the convention on naming environment variable by using
_instead of camel case like in this case.
So instead ofcloudinaryName, u can useCLOUDINARY_NAME
Thank you. On it now
There was a problem hiding this comment.
- You should use the same route parameter name for consistency. You should use the one in lower case: username.
- You should capitalize the variable name: userfound as userFound because it is made up with 2 words.
- I think you should protect the route for retrieving a user profile because I was able to retrieve the route without having logged in.
- I think you should remove the status as we agreed. This error message got triggered when I tried to update my profile.
- You should remove those purple characters for the error message to be easily read.
thanks for the feedback. I am going to work on them. However, on feedback number 3, I think It's not necessary to protect the route because you are limiting the user to get the other profiles of the people. If a person could get or read other people's article also he should be able to get their profiles. And on feedback 4, because It's not me who worked on authentications, I did not want to touch into other people's file. So We agreed with the TTL to make the chore of cleaning up the codebase |
| @@ -0,0 +1,110 @@ | |||
| import { config } from 'dotenv'; | |||
There was a problem hiding this comment.
Parsing error: 'import' and 'export' may appear only with 'sourceType: module'
raymond42
force-pushed
the
ft-user-profile-#167484590
branch
from
74ac92d
to
301d266
Compare
raymond42
force-pushed
the
ft-user-profile-#167484590
branch
from
301d266
to
45b5bd1
Compare
raymond42
force-pushed
the
ft-user-profile-#167484590
branch
from
45b5bd1
to
1b8176f
Compare
About the feedback 3, The user will be able to retrieve other user's profiles as long as they have logged in. Therefore, Protecting the route will not block the user from retrieving others' profiles. About the feedback 4, You are allowed to do that because I also did it when I removed the status messages from Malaba's user controller. I think it is okay. |
@placideirandora I talked to TTL about this. and we agreed to make a chore of doing that |
Ok. It is because when I received the feedback about email confirmation link, I asked if I could modify other's methods for me to be able to implement the feedback and he told that I could do that. For me, I removed them already. So, That chore will be only for removing that one that I have mentioned for you to remove. A chore to remove one status message. |
raymond42
force-pushed
the
ft-user-profile-#167484590
branch
from
1b8176f
to
ab19b45
Compare
raymond42
changed the title
raymond42
force-pushed
the
ft-user-profile-#167484590
branch
from
ab19b45
to
bdf4fbe
Compare
raymond42
force-pushed
the
ft-user-profile-#167484590
branch
from
bdf4fbe
to
c54cfb1
Compare
What does this PR do?
It implements:
Description of Task to be done?
How should this be manually tested?
npm installlocalhost:3000/api/v1/usersusingPOSTmethod.4.- add this env variable for cloudinary into your dotenv
localhost:3000/api/v1/profile/usernameusingPUTmethod.using formdata you can update the following information with this example:
What are the relevant pivotal tracker stories?
create user profiles upon successful registration
screen shots