Skip to content

Create middleware to check if email is already in use for account changes. #619

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 5 commits into from
Closed

Create middleware to check if email is already in use for account changes. #619

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
42d1893
Returns error 409 with proper email.
Dec 14, 2019
dfd25c4
Made it into middleware
Dec 17, 2019
fd5b855
Update account.model.js
Dec 17, 2019
be1b3d9
Update account.model.js
Dec 17, 2019
32bfc18
Added comment
Dec 17, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions constants/error.constant.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ const VOLUNTEER_404_MESSAGE = "Volunteer not found";
const SETTINGS_404_MESSAGE = "Settings not found";

const ACCOUNT_TYPE_409_MESSAGE = "Wrong account type";
const ACCOUNT_EMAIL_409_MESSAGE = "Email already in use";
const SPONSOR_ID_409_MESSAGE = "Conflict with sponsor accountId link";
const VOLUNTEER_ID_409_MESSAGE = "Conflict with volunteer accountId link";
const HACKER_ID_409_MESSAGE = "Conflict with hacker accountId link";
Expand Down Expand Up @@ -50,6 +51,7 @@ module.exports = {
TEAM_404_MESSAGE: TEAM_404_MESSAGE,
RESUME_404_MESSAGE: RESUME_404_MESSAGE,
ACCOUNT_TYPE_409_MESSAGE: ACCOUNT_TYPE_409_MESSAGE,
ACCOUNT_EMAIL_409_MESSAGE: ACCOUNT_EMAIL_409_MESSAGE,
SPONSOR_ID_409_MESSAGE: SPONSOR_ID_409_MESSAGE,
VOLUNTEER_ID_409_MESSAGE: VOLUNTEER_ID_409_MESSAGE,
TEAM_MEMBER_409_MESSAGE: TEAM_MEMBER_409_MESSAGE,
Expand Down
21 changes: 20 additions & 1 deletion middlewares/account.middleware.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -156,6 +156,24 @@ async function addAccount(req, res, next) {
return next();
}

/**
* @async
* @function validateUniqueEmail
* @param {{params:{id: string}, body: {email: string}}} req
* @param {*} res
* @description Gets an account by email in req.body, and if found ensures id matches req.params.id
*/
async function validateUniqueEmail(req, res, next) {
const acc = await Services.Account.findByEmail(req.body.email);
if (acc && acc.id != req.params.id) {
return next({
status: 409,
message: Constants.Error.ACCOUNT_EMAIL_409_MESSAGE,
});
}
return next();
}

/**
* Updates an account that is specified by req.params.id
* @param {{params:{id: string}, body: *}} req
Expand Down Expand Up @@ -254,5 +272,6 @@ module.exports = {
updatePassword: Middleware.Util.asyncMiddleware(updatePassword),
addAccount: Middleware.Util.asyncMiddleware(addAccount),
updateAccount: Middleware.Util.asyncMiddleware(updateAccount),
inviteAccount: Middleware.Util.asyncMiddleware(inviteAccount)
inviteAccount: Middleware.Util.asyncMiddleware(inviteAccount),
validateUniqueEmail: Middleware.Util.asyncMiddleware(validateUniqueEmail)
};
3 changes: 2 additions & 1 deletion routes/api/account.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ const Services = {
};

module.exports = {
activate: function(apiRouter) {
activate: function (apiRouter) {
const accountRouter = express.Router();

/**
Expand Down Expand Up @@ -252,6 +252,7 @@ module.exports = {
Middleware.parseBody.middleware,
Middleware.Account.parsePatch,

Middleware.Account.validateUniqueEmail,
Middleware.Account.updateAccount,
Middleware.Auth.sendConfirmAccountEmail,
// no parse account because will use req.body as information
Expand Down