🐛 (user) fix user check password

2025-07-01 00:55:25 +07:00
parent e7857e0384
commit 3ef7f1a249
7 changed files with 82 additions and 19 deletions
--- a/src/modules/user/controller/checkUserPassword.controller.ts
+++ b/src/modules/user/controller/checkUserPassword.controller.ts
@ -2,11 +2,26 @@ import { Context } from "elysia";
 import { checkUserPasswordService } from "../services/checkUserPassword.service";
 import { jwtDecode } from "../../../helpers/http/jwt/decode";
 import { getCookie } from "../../../helpers/http/userHeader/cookies/getCookies";
+import { mainErrorHandler } from "../../../helpers/error/handler";
+import { returnWriteResponse } from "../../../helpers/callback/httpResponse";

 export const checkUserPasswordController = async (
  ctx: Context & { body: { password: string } }
 ) => {
-  const cookie = getCookie(ctx);
-  const jwtPayload = jwtDecode(cookie.auth_token!);
-  return checkUserPasswordService(jwtPayload, ctx.body.password);
+  try {
+    const cookie = getCookie(ctx);
+    const jwtPayload = jwtDecode(cookie.auth_token!);
+    const checkUserPassword = await checkUserPasswordService(
+      jwtPayload.user.username,
+      ctx.body.password
+    );
+    return returnWriteResponse(
+      ctx.set,
+      204,
+      "Password is valid",
+      checkUserPassword
+    );
+  } catch (error) {
+    return mainErrorHandler(ctx.set, error);
+  }
 };
--- a/src/modules/user/repositories/findUserByEmailOrUsername.repository.ts
+++ b/src/modules/user/repositories/findUserByEmailOrUsername.repository.ts
@ -1,16 +1,20 @@
+import { FindUserByEmailOrUsernameOptions } from "../services/findUserByEmailOrUsername.service";
 import { userModel } from "../user.model";

-export const findUserByEmailOrUsernameRepo = async (identifier: string) => {
+export const findUserByEmailOrUsernameRepo = async (
+  identifier: string,
+  options: FindUserByEmailOrUsernameOptions
+) => {
  const userData =
    (await userModel.findUnique({
      where: { email: identifier },
      include: {
        roles: {
          omit: {
-            createdBy: true,
-            createdAt: true,
-            updatedAt: true,
-            deletedAt: true,
+            createdBy: !options.verbose,
+            createdAt: !options.verbose,
+            updatedAt: !options.verbose,
+            deletedAt: !options.verbose,
          },
        },
      },
@ -20,10 +24,10 @@ export const findUserByEmailOrUsernameRepo = async (identifier: string) => {
      include: {
        roles: {
          omit: {
-            createdBy: true,
-            createdAt: true,
-            updatedAt: true,
-            deletedAt: true,
+            createdBy: !options.verbose,
+            createdAt: !options.verbose,
+            updatedAt: !options.verbose,
+            deletedAt: !options.verbose,
          },
        },
      },
--- a/src/modules/user/services/checkUserPassword.service.ts
+++ b/src/modules/user/services/checkUserPassword.service.ts
@ -1,8 +1,26 @@
-import { JWTAuthToken } from "../../../helpers/http/jwt/decode/types";
+import { AppError } from "../../../helpers/error/instances/app";
+import { ErrorForwarder } from "../../../helpers/error/instances/forwarder";
+import { comparePassword } from "../../../helpers/security/password/compare";
+import { findUserByEmailOrUsernameService } from "./findUserByEmailOrUsername.service";
+import { User } from "@prisma/client";

 export const checkUserPasswordService = async (
-  jwtPayload: JWTAuthToken,
+  username: string,
  password: string
 ) => {
-  return `id user "${jwtPayload.userId}" cek password "${password}"`;
+  try {
+    const userData = (await findUserByEmailOrUsernameService(username, {
+      verbose: true,
+    })) as User;
+    const RawPassword = userData.password;
+
+    const matchingPassword = await comparePassword(password, RawPassword);
+    if (!matchingPassword) {
+      throw new AppError(401, "Invalid Credential");
+    }
+
+    return true;
+  } catch (error) {
+    ErrorForwarder(error);
+  }
 };
--- a/src/modules/user/services/findUserByEmailOrUsername.service.ts
+++ b/src/modules/user/services/findUserByEmailOrUsername.service.ts
@ -1,9 +1,19 @@
+import { AppError } from "../../../helpers/error/instances/app";
 import { ErrorForwarder } from "../../../helpers/error/instances/forwarder";
 import { findUserByEmailOrUsernameRepo } from "../repositories/findUserByEmailOrUsername.repository";

-export const findUserByEmailOrUsernameService = async (identifier: string) => {
+export interface FindUserByEmailOrUsernameOptions {
+  verbose?: boolean;
+}
+
+export const findUserByEmailOrUsernameService = async (
+  identifier: string,
+  options: FindUserByEmailOrUsernameOptions = {}
+) => {
  try {
-    const userData = await findUserByEmailOrUsernameRepo(identifier);
+    const userData = await findUserByEmailOrUsernameRepo(identifier, options);
+    if (!userData) throw new AppError(404, "User not found");
+
    return userData;
  } catch (error) {
    ErrorForwarder(error);