done

Author: ElenaDiachenko

controllers/contacts/getContactById.js

@@ -1,10 +1,15 @@
 const { Contact } = require('../../models');
-const { createError } = require('../../utils');
+const { getErrorMessage } = require('../../utils');
 
 const getContactById = async (req, res) => {
   const { contactId } = req.params;
-  const result = await Contact.findById(contactId);
-  if (!result) throw createError(404, `Contact with id=${contactId} not found`);
+  const { _id } = req.user;
+  const result = await Contact.findById(contactId, _id);
+  if (!result) {
+    return res
+      .status(404)
+      .json(getErrorMessage(404, `Contact with id: '${contactId}'  not found`));
+  }
 
   res.status(200).json({
     status: 'success',

controllers/contacts/removeContact.js

@@ -1,10 +1,15 @@
 const { Contact } = require('../../models');
-const { createError } = require('../../utils');
+const { getErrorMessage } = require('../../utils');
 
 const removeContact = async (req, res) => {
   const { contactId } = req.params;
-  const result = await Contact.findByIdAndRemove(contactId);
-  if (!result) throw createError(404, `Contact with id=${contactId} not found`);
+  const { _id } = req.user;
+  const result = await Contact.findByIdAndRemove(contactId, _id);
+  if (!result) {
+    return res
+      .status(404)
+      .json(getErrorMessage(404, `Contact with id: '${contactId}'  not found`));
+  }
 
   res.status(200).json({
     status: 'success',

controllers/contacts/updateContact.js

@@ -1,13 +1,19 @@
 const { Contact } = require('../../models');
-const { createError } = require('../../utils');
+const { getErrorMessage } = require('../../utils');
 
 const updateContact = async (req, res) => {
   const { contactId } = req.params;
+  const { _id } = req.user;
   const result = await Contact.findByIdAndUpdate(contactId, req.body, {
+    _id,
     new: true,
   });
 
-  if (!result) throw createError(404, `Contact with id=${contactId} not found`);
+  if (!result) {
+    return res
+      .status(404)
+      .json(getErrorMessage(404, `Contact with id=${contactId} not found`));
+  }
 
   res.status(200).json({
     status: 'success',

controllers/contacts/updateStatusContact.js

@@ -1,20 +1,29 @@
 const { Contact } = require('../../models');
-const { createError } = require('../../utils');
+const { getErrorMessage } = require('../../utils');
 
 const updateStatusContact = async (req, res) => {
   const { contactId } = req.params;
   const { favorite } = req.body;
+  const { _id } = req.user;
+
+  if (!favorite) {
+    return res.status(400).json(getErrorMessage(400, `Missing field favorite`));
+  }
 
-  if (!favorite) throw createError(400, `missing field favorite`);
   const result = await Contact.findByIdAndUpdate(
     contactId,
     { favorite },
     {
+      _id,
       new: true,
     },
   );
 
-  if (!result) return res.status(404).json(getErrorMessage(404, contactId));
+  if (!result) {
+    return res
+      .status(404)
+      .json(getErrorMessage(404, `Contact with id=${contactId} not found`));
+  }
 
   res.status(200).json({
     status: 'success',

controllers/users/index.js

@@ -2,10 +2,12 @@ const signup = require('./signup');
 const login = require('./login');
 const logout = require('./logout');
 const getCurrent = require('./getCurrent');
+const updateSubscription = require('./updateSubscription');
 
 module.exports = {
   signup,
   login,
   logout,
   getCurrent,
+  updateSubscription,
 };

controllers/users/login.js

@@ -1,22 +1,34 @@
 const bcrypt = require('bcrypt');
 const jwt = require('jsonwebtoken');
 const { User } = require('../../models');
-const { createError } = require('../../utils');
+const { getErrorMessage } = require('../../utils');
 const { joiLoginSchema } = require('../../models/user');
 const { SECRET_KEY } = process.env;
 
 const login = async (req, res) => {
-  const { error } = joiLoginSchema.validate(req.body);
-  if (error) throw createError(400, error.message);
+  // const { error } = joiLoginSchema.validate(req.body);
+  // if (error) throw createError(400, error.message);
 
   const { email, password } = req.body;
   const user = await User.findOne({ email });
 
+  if (!user) {
+    return res
+      .status(401)
+      .json(getErrorMessage(401, 'Email or password is wrong'));
+  }
+
   const comparePassword = bcrypt.compareSync(password, user.password);
-  if (!user || !comparePassword) {
-    throw createError(401, 'Email or password is wrong');
+  if (!comparePassword) {
+    return res
+      .status(401)
+      .json(getErrorMessage(401, 'Email or password is wrong'));
   }
 
+  // {
+  //   throw Error(401, 'Email or password is wrong');
+  // }
+
   const payload = {
     id: user._id,
   };

controllers/users/signup.js

@@ -1,16 +1,16 @@
 const bcrypt = require('bcrypt');
 const { User } = require('../../models');
-const { createError } = require('../../utils');
-const { joiSignupSchema } = require('../../models/user');
+const { getErrorMessage } = require('../../utils');
 
 const signup = async (req, res) => {
-  const { error } = joiSignupSchema.validate(req.body);
-  if (error) throw createError(400, error.message);
-
   const { email, password, subscription } = req.body;
 
   const user = await User.findOne({ email });
-  if (user) throw createError(409, `Email: '${email}' in use`);
+  if (user) {
+    return res
+      .status(409)
+      .json(getErrorMessage(409, `Email: '${email}' in use`));
+  }
 
   const hashPassword = bcrypt.hashSync(password, bcrypt.genSaltSync(10));
   const result = await User.create({

controllers/users/updateSubscription.js

@@ -0,0 +1,31 @@
+const { User } = require('../../models');
+const { getErrorMessage } = require('../../utils');
+
+const updateSubscription = async (req, res) => {
+  const { _id, subscription } = req.user;
+
+  if (!subscription) {
+    return res
+      .status(400)
+      .json(getErrorMessage(400, `Missing field subscription`));
+  }
+
+  const result = await User.findByIdAndUpdate(
+    _id,
+    { subscription: req.body.subscription },
+    {
+      new: true,
+    },
+  );
+
+  res.status(200).json({
+    status: 'success',
+    code: 200,
+    data: {
+      email: result.email,
+      subscription: result.subscription,
+    },
+  });
+};
+
+module.exports = updateSubscription;

middlewares/auth.js

@@ -1,5 +1,5 @@
 const jwt = require('jsonwebtoken');
-const { createError } = require('../utils');
+const { getErrorMessage } = require('../utils');
 const { User } = require('../models');
 const { SECRET_KEY } = process.env;
 
@@ -8,11 +8,14 @@ const auth = async (req, res, next) => {
   const [bearer, token] = authorization.split(' ');
 
   try {
-    if (bearer !== 'Bearer') throw createError(401, 'Not authorized');
+    if (bearer !== 'Bearer')
+      return res.status(401).json(getErrorMessage(401, 'Not authorized'));
 
     const { id } = jwt.verify(token, SECRET_KEY);
     const user = await User.findById(id);
-    if (!user || !user.token) throw createError(401, 'Not authorized');
+    if (!user || !user.token) {
+      return res.status(401).json(getErrorMessage(401, 'Not authorized'));
+    }
 
     req.user = user;
     next();

models/user.js

@@ -38,10 +38,15 @@ const joiLoginSchema = Joi.object({
     .required(),
 });
 
+const joiSubscriptionSchema = Joi.object({
+  subscription: Joi.string().valueOf('starter', 'pro', 'business').required(),
+});
+
 const User = model('user', userSchema);
 
 module.exports = {
   User,
   joiSignupSchema,
   joiLoginSchema,
+  joiSubscriptionSchema,
 };