feat: JWT saved in DB + logout api added

src/routes/api/index.ts

@@ -1,13 +1,12 @@
 import express from 'express'
-import jwt from 'jsonwebtoken'
 import dotenv from 'dotenv'
-import { InfoJWT } from '../../types'
 
 import driveRouter from './drive'
 import stpRouter from './stp'
 import userRouter from './user'
 import clientRouter from './client'
 import authRouter, { connectDB } from './auth'
+import { authenticateToken } from '../../utils'
 
 dotenv.config()
 connectDB()
@@ -20,32 +19,9 @@ router.use('/user', authenticateToken, verifyAdmin, userRouter)
 router.use('/client', authenticateToken, verifyAdmin, clientRouter)
 router.use('/auth', authRouter)
 
-function authenticateToken(req: any, res: any, next: any) {
-  const authHeader = req.headers['authorization']
-  const token = authHeader && authHeader.split(' ')[1]
-  if (token == null) return res.sendStatus(401)
-
-  jwt.verify(
-    token,
-    process.env.ACCESS_TOKEN_SECRET as string,
-    (err: any, data: any) => {
-      if (err) return res.sendStatus(403)
-
-      const user: InfoJWT = {
-        client_id: data?.client_id,
-        username: data?.username,
-        isadmin: data?.isadmin,
-        isactive: data?.isactive
-      }
-      req.user = user
-      next()
-    }
-  )
-}
-
 function verifyAdmin(req: any, res: any, next: any) {
   const { user } = req
-  if (!user.isadmin) return res.status(403).send('Admin account required')
+  if (!user?.isadmin) return res.status(403).send('Admin account required')
   next()
 }