✨ Check for verified emails on logic

Author: AnandChowdhary

src/crud/email.ts

@@ -100,7 +100,14 @@ export const getEmailObject = async (email: string) => {
   ))[0];
 };
 
-export const getUserVerifiedEmails = async (userId: number) => {
+export const getUserVerifiedEmails = async (user: User | number) => {
+  let userId = 0;
+  if (typeof user === "object" && user.id) {
+    userId = user.id;
+  } else if (typeof user === "number") {
+    userId = user;
+  }
+  if (!userId) throw new Error(ErrorCode.USER_NOT_FOUND);
   return <Email[]>(
     await query("SELECT * FROM emails WHERE userId = ? AND isVerified = 1", [
       userId

src/interfaces/enum.ts

@@ -48,7 +48,8 @@ export enum ErrorCode {
   INVALID_LOGIN = "401/invalid-login",
   INSUFFICIENT_PERMISSION = "401/insufficient-permission",
   DEFAULT = "500/server-error",
-  EMAIL_CANNOT_DELETE = "400/email.cannotDelete"
+  EMAIL_CANNOT_DELETE = "400/email.cannotDelete",
+  UNVERIFIED_EMAIL = "401/unverified-email"
 }
 
 export enum Templates {

src/rest/auth.ts

@@ -1,7 +1,12 @@
 import { User } from "../interfaces/tables/user";
 import { createUser, updateUser, getUserByEmail, getUser } from "../crud/user";
 import { InsertResult } from "../interfaces/mysql";
-import { createEmail, updateEmail, getEmail } from "../crud/email";
+import {
+  createEmail,
+  updateEmail,
+  getEmail,
+  getUserVerifiedEmails
+} from "../crud/email";
 import { mail } from "../helpers/mail";
 import {
   verifyToken,
@@ -45,6 +50,8 @@ export const login = async (
   locals: Locals
 ) => {
   const user = await getUserByEmail(email, true);
+  const verifiedEmails = await getUserVerifiedEmails(user);
+  if (!verifiedEmails.length) throw new Error(ErrorCode.UNVERIFIED_EMAIL);
   if (!user.password) throw new Error(ErrorCode.MISSING_PASSWORD);
   if (!user.id) throw new Error(ErrorCode.USER_NOT_FOUND);
   const correctPassword = await compare(password, user.password);