add auth middleware to get user info route

lucfersan · lucfersan · commit fbc2971312e1 · 2021-10-05T01:24:36.000-03:00
diff --git a/src/controllers/GetUserInfoController.ts b/src/controllers/GetUserInfoController.ts
@@ -4,15 +4,11 @@ import { GetUserInfoService } from '@/services'
 
 export class GetUserInfoController {
   async handle(req: Request, res: Response): Promise<Response> {
-    const { username } = req.body
-
-    if (!username) {
-      return res.status(400).json({ error: 'Username is required.' })
-    }
+    const id = req.userId
 
     const getUserInfoService = new GetUserInfoService()
 
-    const user = await getUserInfoService.execute({ username })
+    const user = await getUserInfoService.execute({ id })
 
     return res.status(200).json(user)
   }
diff --git a/src/middlewares/auth.ts b/src/middlewares/auth.ts
@@ -2,16 +2,16 @@ import { NextFunction, Request, Response } from 'express'
 import { verify } from 'jsonwebtoken'
 
 type TokenPayload = {
-  id: string
+  sub: string
   iat: number
   exp: number
 }
 
-export const ensureAuthenticated = async (
+export const ensureAuthenticated = (
   req: Request,
   res: Response,
   next: NextFunction
-): Promise<Response | void> => {
+): Response | void => {
   const authHeader = req.headers.authorization
 
   if (!authHeader) {
@@ -22,7 +22,7 @@ export const ensureAuthenticated = async (
 
   try {
     const decoded = verify(token, process.env.JWT_SECRET)
-    const { id } = decoded as TokenPayload
+    const { sub: id } = decoded as TokenPayload
     req.userId = id
 
     return next()
diff --git a/src/routes/users.routes.ts b/src/routes/users.routes.ts
@@ -5,6 +5,7 @@ import {
   GetUserInfoController,
   AuthenticateUserController
 } from '@/controllers'
+import { ensureAuthenticated } from '@/middlewares'
 
 const usersRouter = Router()
 
@@ -14,6 +15,6 @@ const getUserInfoController = new GetUserInfoController()
 
 usersRouter.post('/', createUserController.handle)
 usersRouter.post('/login', authenticateUserController.handle)
-usersRouter.get('/', getUserInfoController.handle)
+usersRouter.get('/', ensureAuthenticated, getUserInfoController.handle)
 
 export { usersRouter }
diff --git a/src/services/GetUserInfoService.ts b/src/services/GetUserInfoService.ts
@@ -3,13 +3,13 @@ import { prisma } from '@/prisma'
 import { User } from '@prisma/client'
 
 type Params = {
-  username: string
+  id: string
 }
 
 export class GetUserInfoService {
-  async execute({ username }: Params): Promise<User> {
+  async execute({ id }: Params): Promise<User> {
     const user = await prisma.user.findUnique({
-      where: { username }
+      where: { id }
     })
 
     if (!user) {
