frontend et backend: Connexion d'un utilisateur

2020-04-06 16:46:03 +02:00
parent 8c37dbaaf4
commit 76298b6087
11 changed files with 184 additions and 31 deletions
--- a/api/controllers/users.js
+++ b/api/controllers/users.js
@ -35,8 +35,12 @@ exports.register = async (req, res, next) => {

 exports.login = async (req, res, next) => {
    const { email, password } = req.body;
+    const errors = validationResult(req);
+    if (!errors.isEmpty()) {
+        return errorHandling(next, { message: errors.array()[0].msg, statusCode: 400 });
+    }
    try {
-        const user = await Users.findOne({ where: { email, isConfirmed: true } });
+        const user = await Users.findOne({ where: { email } });
        if (!user) {
            return errorHandling(next, { message: "Le mot de passe ou l'adresse email n'est pas valide.", statusCode: 400 });
        }
@ -44,6 +48,9 @@ exports.login = async (req, res, next) => {
        if (!isEqual) {
            return errorHandling(next, { message: "Le mot de passe ou l'adresse email n'est pas valide.", statusCode: 400 });
        }
+        if (!user.isConfirmed) {
+            return errorHandling(next, { message: "Vous devez valider votre adresse email pour votre première connexion.", statusCode: 400 });
+        }
        const token = jwt.sign({ 
            email: user.email, userId: user.id
        }, JWT_SECRET, { expiresIn: '1h' });
@ -67,7 +74,7 @@ exports.confirmEmail = async (req, res, next) => {
        user.tempToken = null;
        user.isConfirmed = true;
        await user.save();
-        return res.redirect(`${FRONT_END_HOST}/login`);
+        return res.redirect(`${FRONT_END_HOST}/login?isConfirmed=true`);
    } catch (error) {
        console.log(error);
        errorHandling(next, serverError);
--- a/api/routes/users.js
+++ b/api/routes/users.js
@ -1,12 +1,22 @@
-const { Router }      = require('express');
-const { body }        = require('express-validator');
-const usersController = require('../controllers/users');
-const Users           = require('../models/users');
+const { Router }         = require('express');
+const { body }           = require('express-validator');
+const usersController    = require('../controllers/users');
+const { requiredFields } = require('../assets/config/errors');
+const Users              = require('../models/users');

 const UsersRouter = Router();

 // Permet de se connecter
-UsersRouter.post('/login', usersController.login);
+UsersRouter.post('/login', [
+    body('email')
+        .not()
+        .isEmpty()
+        .withMessage(requiredFields.message),
+    body('password')
+        .not()
+        .isEmpty()
+        .withMessage(requiredFields.message)
+], usersController.login);

 // TODO: Récupère les informations public d'un profil
 // UsersRouter.get('/profile/:userName', usersController.getUserInfo);