1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
|
const router = require('express').Router()
const User = require('../model/User')
const createJwt = require('../helpers/createJwt')
const sendMail = require('../helpers/sendMail')
// Verify (send verification email)
router.get('/verify', async (req, res) => {
try {
const { email } = req.user
if (!email) throw new Error()
const { verify } = await User.findOne({ email })
sendMail({
to: email,
subject: 'Verification Code',
text: `Last step missing - verify your account.\nYour verification code: ${verify}`,
html: `<h2>Last step missing - verify your account.</h2><br/><h3>Your verification code: <b>${verify}</b></h3>`,
})
res.status(204).send()
} catch (err) {
res.status(401).send({ error: 'Could not verify user' })
}
})
// Verify
router.post('/verify', async (req, res) => {
try {
const { email } = req.user
const code = req.body.code
if (!email || !code) throw new Error()
const user = await User.verify({ email, code })
if (!user) throw new Error()
const jwtToken = createJwt(user)
res.status(200).send({ jwtToken })
} catch (err) {
res.status(401).send({ error: 'Could not verify user' })
}
})
// Logout (pass sessionId or will logout one from jwt)
router.post('/logout', async (req, res) => {
try {
const { email, sessionId } = req.user
if (!email || !(req.body.sessionId || sessionId)) throw new Error()
await User.removeSession({ email, sessionId: req.body.sessionId || sessionId })
res.status(204).send()
} catch (err) {
res.status(401).send({ error: 'Could not logout' })
}
})
// User sessions
router.get("/sessions", async (req, res) => {
const { email } = req.user
try {
const sessions = await User.getSessions({ email })
res.send({ sessions })
} catch (err) {
res.status(401).send({ error: 'Error getting sessions' })
}
})
module.exports = router
|
