change authenticated() to return token so users can request their data

BUMETCS673 · Oct 6, 2024 · 47f29af · 47f29af
1 parent ada6b1a
commit 47f29af
Show file tree

Hide file tree

Showing 3 changed files with 31 additions and 4 deletions.
diff --git a/code/client/src/components/ManageProfile.js b/code/client/src/components/ManageProfile.js
@@ -2,9 +2,12 @@ import { useEffect, useState } from "react";
 import apiClient from "../services/apiClient.js";
 import { Box, Typography, TextField, MenuItem, Button } from "@mui/material";
 import { box, bigTitle, inputBackground, menuPropsStyles, submitButton } from "./style/styles.js";
+import { authenticated } from "../utils/authenticate.js";
 
 function ManageProfile() {
 
+
+
   const [profileData, setProfileData] = useState({
     userId: "",
     email: "",
@@ -19,8 +22,16 @@ function ManageProfile() {
   const [errorMessage, setErrorMessage] = useState('');
 
   useEffect(() => {
+    const token = authenticated()
+
+    if (token) {
+
+    }
+
     apiClient
-      .get("/api/users/manage-profile") // Fetch user profile data from the backend (e.g., /manage-profile)
+      .get("/api/users/manage-profile", {
+        headers: { Authorization: `Bearer ${token}` }
+      }) // Fetch user profile data from the backend (e.g., /manage-profile)
       .then((res) => {
         setProfileData(res.data); 
       })

diff --git a/code/client/src/utils/authenticate.js b/code/client/src/utils/authenticate.js
@@ -12,6 +12,7 @@ export function authenticated() {
             window.location.href = '/login';
         }
     }
+    return token
 }
 
 function validateToken(token) {

diff --git a/code/server/controllers/userController.js b/code/server/controllers/userController.js
@@ -17,10 +17,25 @@ exports.viewUsers = async (req, res) => {
 // Manage Profile (GET)
 exports.manageProfile = async (req, res) => {
   try {
-    const userId = 1; // Hardcoded, should be dynamic (e.g., from token)
-    const userProfile = await User.findOne({ userId });
+    // Get token from Authorization header
+    const authHeader = req.headers['authorization'];
+    if (!authHeader) {
+      return res.status(401).json({ message: 'Authorization header is missing' });
+    }
+
+    const token = authHeader.split(' ')[1];
+    if (!token) {
+      return res.status(401).json({ message: 'Token is missing' });
+    }
+
+    // Verify and decode the token
+    const secretKey = process.env.SECRET_KEY;
+    const decoded = jwt.verify(token, secretKey);
 
-    console.log(userProfile)
+    // Extract userId from the decoded token
+    const userId = decoded.userId;
+
+    const userProfile = await User.findOne({ userId });
 
     if (!userProfile) {
       return res.status(404).json({ message: 'User not found' });
-Original file line number
+Diff line change
@@ Expand Up / @@ -12,6 +12,7 @@ export function authenticated() { @@
                 window.location.href = '/login';
             }
         }
+        return token
     }
     function validateToken(token) {
@@ Expand Down @@