-
Notifications
You must be signed in to change notification settings - Fork 91
/
user.js
50 lines (42 loc) · 1.57 KB
/
user.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
const express = require('express');
const bcrypt = require('bcryptjs');
const { requireAuth } = require('./middleware');
const { User } = require('../database/schemas');
const router = express.Router();
module.exports = router;
router.get('/', (req, res) => {
const user = (req.user && req.user.hidePassword()) || {};
res.send({ message: 'User info successfully retreived', user });
});
router.put('/password', requireAuth, (req, res) => {
const { oldPassword, newPassword } = req.body;
if (req.user.validPassword(oldPassword)) {
bcrypt.genSalt(10, (err, salt) => {
if (err) {
res.status(400).send({ err, message: 'Error updating password' });
}
bcrypt.hash(newPassword, salt, (err, hash) => {
if (err) {
res.status(400).send({ err, message: 'Error updating password' });
}
User.findByIdAndUpdate({ _id: req.user._id }, { password: hash }, err => {
if (err) {
res.status(400).send({ err, message: 'Error updating password' });
}
res.status(200).send({ message: 'Password successfully updated' });
});
});
});
} else {
res.status(400).send({ message: 'Old password did not match' });
}
});
router.put('/', requireAuth, (req, res) => {
req.body.updated_at = Date.now();
User.findByIdAndUpdate({ _id: req.user._id }, req.body, { new: true }, (err, user) => {
if (err) {
res.status(400).send({ err, message: 'Error updating user' });
}
res.status(200).send({ message: 'User successfully updated', user: user.hidePassword() });
});
});