diff options
author | Mateja <mail@matejamaric.com> | 2021-07-29 22:32:34 +0200 |
---|---|---|
committer | Mateja <mail@matejamaric.com> | 2021-07-29 22:32:34 +0200 |
commit | 6467c01cddf7333ff96de21b9ffe830c0d9bc7e4 (patch) | |
tree | 2f1e7ded2692fa9f1f51e2b6a145ba5edd1f33ca /server/controllers/user.js | |
parent | 104948f25ed38ef2ee354b271fb2368dca1b6c4d (diff) | |
download | mevn-ecommerce-6467c01cddf7333ff96de21b9ffe830c0d9bc7e4.tar.gz mevn-ecommerce-6467c01cddf7333ff96de21b9ffe830c0d9bc7e4.zip |
Added status codes to more API endpoints.
This should fix login bug on client where it sets empty token when bad
password is provided.
Diffstat (limited to 'server/controllers/user.js')
-rw-r--r-- | server/controllers/user.js | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/server/controllers/user.js b/server/controllers/user.js index 7a2b78a..404aaa2 100644 --- a/server/controllers/user.js +++ b/server/controllers/user.js @@ -8,7 +8,7 @@ module.exports = { register(req, res) { if (req.body.password !== req.body.confirmPassword) - res.json({status: "Passwords do not match!"}); + res.status(400).json({status: "Passwords do not match!"}); else { const newUser = new User({ firstname: req.body.firstname, @@ -32,13 +32,13 @@ module.exports = { login(req, res) { User.findOne({email: req.body.email}, (err, user) => { if (err) - res.json({status: "Database error.", error: err}); + res.status(500).json({status: "Database error.", error: err}); if (!user) return res.status(404).json({status: "No such user found!"}); if (!bcrypt.compareSync(req.body.password, user.password)) - res.json({status: "Wrong credentials!"}); + res.status(401).json({status: "Wrong credentials!"}); else { const payload = {sub: user._id}; const token = jwt.sign(payload, masterKey, {expiresIn: "1d"}); |