patrickjieraldjuan
/
csp2-juan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Updated controller for resetPassword to check if uqual to old password

Browse Source
master
Patrick Jierald Francisco Juan 8 months ago
parent 0f1e3affba
commit 6bf9b83f7e
1 changed files with 9 additions and 9 deletions
Show Stats Download Patch File Download Diff File

18
controllers/userControllers.js
Unescape Escape View File

@ -146,18 +146,18 @@ module.exports.resetPassword = async (req, res) => {
// Get user ID from the JWT token passed in the authorization headers // Get user ID from the JWT token passed in the authorization headers
const userId = req.user.id; const userId = req.user.id;
// Get the old and new passwords from the request body // Get the new password from the request body
const { oldPassword, newPassword } = req.body; const { newPassword } = req.body;
// Fetch the user from the database User.findOne({email : req.user.email}).then(result =>
const user = await User.findById(userId);
// Check if the old password is equal to the new password const isPasswordEqualtoOld = bcrypt.compareSync(newPassword, result.password);
const isOldPasswordEqual = await bcrypt.compare(oldPassword, user.password);
if (isOldPasswordEqual) { if(isPasswordEqualtoOld){
return res.status(400).json({ error: "Old password should not be equal to the new password." });
} return response.send({message: "New password should not be same with old password"});
}
// Hash the new password // Hash the new password
const hashedPassword = await bcrypt.hash(newPassword, 10); const hashedPassword = await bcrypt.hash(newPassword, 10);

Write Preview
Loading…
Cancel
Save