Fixed the authorization for the PUT api after testing failure

Author: GauravWalia19

routes/api/v1/API.js

@@ -19,7 +19,7 @@ const {
     setSearchUserInCache,
 } = require('../../../src/cache')
 // import middlewares
-const {authenticateAPI} = require('../../../src/auth')
+const {authenticatePutAPI, authenticateGetAPI} = require('../../../src/auth')
 const {updateValidator, searchValidator} = require('../../../src/validator')
 
 /**
@@ -208,7 +208,7 @@ router.get('/randomCodes', async (req, res, next) => {
  **/
 router.put(
     '/rateCode',
-    authenticateAPI,
+    authenticatePutAPI,
     updateValidator,
     async (req, res, next) => {
         try {
@@ -305,7 +305,7 @@ router.put(
  **/
 router.get(
     '/searchUser',
-    authenticateAPI,
+    authenticateGetAPI,
     searchValidator,
     async (req, res, next) => {
         try {

src/auth.js

@@ -1,6 +1,6 @@
 const {validateToken} = require('./engine')
 
-async function authenticateAPI(req, res, next) {
+async function authenticateGetAPI(req, res, next) {
     const {authorization} = req.headers
 
     if (authorization && authorization.startsWith('Bearer ')) {
@@ -24,6 +24,28 @@ async function authenticateAPI(req, res, next) {
     }
 }
 
+async function authenticatePutAPI(req, res, next) {
+    const {codeRatingEngineToken} = req.body
+
+    if (codeRatingEngineToken === undefined) {
+        return res.status(401).json({
+            status: 401,
+            message: 'Invalid Token !! Please send the valid token',
+        })
+    } else {
+        const tokenFound = await validateToken(codeRatingEngineToken)
+        if (Array.isArray(tokenFound) && tokenFound.length > 0) {
+            next()
+        } else {
+            return res.status(401).json({
+                status: 401,
+                message: 'Invalid Token !! Please send the valid token',
+            })
+        }
+    }
+}
+
 module.exports = {
-    authenticateAPI,
+    authenticateGetAPI,
+    authenticatePutAPI,
 }

test/test.js

@@ -41,7 +41,7 @@ describe('testing the code rating engine APIs', () => {
         request(app)
             .get('/api/v1/searchUser')
             .query({username: SEARCH_USER})
-            .send({codeRatingEngineToken: token})
+            .set('Authorization', `Bearer ${token}`)
             .expect(200)
             .end((err, res) => {
                 if (err) done(err)