const jwt = require("jsonwebtoken"); import User from "../models/user"; const env = require("../enviroment/env"); const tempAuth = async(req, res, next) => { try { const token = req.params.tempToken; const decoded = await jwt.verify(token, env.password); const iv = decoded.iv; const user = await User.findOne({_id: decoded._id}) const encrpytionKey = user.getEncryptionKey(); const encryptedToken = user.encryptToken(token, encrpytionKey, iv); let tokenFound = false; for (let i = 0; i < user.tempTokens.length; i++) { const currentToken = user.tempTokens[i].token; if (currentToken === encryptedToken) { tokenFound = true; break; } } if (!user || !tokenFound) { throw new Error("User Not Found") } else { user.tempTokens = user.tempTokens.filter((filterToken) => { return filterToken.token !== encryptedToken }) await user.save(); req.user = user; req.auth = true; req.encryptedTempToken = encryptedToken; next(); } } catch (e) { console.log(e); res.status(401).send(); } } module.exports = tempAuth;