Updated controller for resetPassword to check if uqual to old password

controllers/userControllers.js

@@ -146,17 +146,17 @@ module.exports.resetPassword = async (req, res) => {
     // Get user ID from the JWT token passed in the authorization headers
     const userId = req.user.id;
 
-    // Get the old and new passwords from the request body
+    // Get the new password from the request body
-    const { oldPassword, newPassword } = req.body;
+    const { newPassword } = req.body;
 
-    // Fetch the user from the database
+    User.findOne({email : req.user.email}).then(result =>
-    const user = await User.findById(userId);
+
+        const isPasswordEqualtoOld = bcrypt.compareSync(newPassword, result.password);
+
+        if(isPasswordEqualtoOld){
 
-    // Check if the old password is equal to the new password
+          return response.send({message: "New password should not be same with old password"});
-    const isOldPasswordEqual = await bcrypt.compare(oldPassword, user.password);
 
-    if (isOldPasswordEqual) {
-      return res.status(400).json({ error: "Old password should not be equal to the new password." });
         }
 
     // Hash the new password