nibgat-community
/
qr-menu


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116
							import jwt from "jsonwebtoken";
import {
    plainToInstance
} from "class-transformer";
import {
    validate
} from "class-validator";
import {
    User
} from "../../../models/User";
import {
    LoginResult,
    LoginInput
} from "./types";
import redis from "../../../config/redis";
import {
    formatValidationErrors
} from "../../../utils";

export const login = async (input: LoginInput): Promise<LoginResult> => {
    const dto = plainToInstance(LoginInput, input);
    const errors = await validate(dto);

    if (errors.length > 0) {
        const formattedErrors = formatValidationErrors(errors);
        return {
            code: 400,
            message: formattedErrors[0],
        };
    }

    const {
        password,
        mail
    } = input;

    const user = await User.findOne({
        mail
    });

    if (!user) {
        return {
            message: "User not found",
            code: 404,
        };
    }

    if (user.password !== password) {
        return {
            message: "Wrong password",
            code: 401,
        };
    }

    if (!user.isMailVerified) {
        return {
            message: "Please verify your email address.",
            code: 403,
            payload: {
                isMailVerified: user.isMailVerified,
                mail: user.mail,
            },
        };
    }

    const accessToken = jwt.sign(
        {
            companyName: user.companyName,
            fullName: user.fullName,
            userId: user._id,
            mail: user.mail
        },
        process.env.JWT_SECRET as string,
        {
            expiresIn: "4h"
        }
    );

    await redis.setex(`user:${user._id.toString()}`, 14400, accessToken);

    const refreshToken = jwt.sign(
        {
            companyName: user.companyName,
            fullName: user.fullName,
            userId: user._id,
            mail: user.mail
        },
        process.env.JWT_REFRESH_SECRET as string || process.env.JWT_SECRET as string,
        {
            expiresIn: "30d"
        }
    );

    user.refreshToken = refreshToken;
    await user.save();

    return {
        message: "Login successful",
        code: 200,
        payload: {
            refreshToken,
            accessToken,
            user: {
                phoneNumber: user.phoneNumber,
                companyName: user.companyName,
                userId: user._id.toString(),
                firstName: user.firstName,
                lastName: user.lastName,
                fullName: user.fullName,
                mail: user.mail,
            },
        },
    };
};

export default login;