From 9d14ecef1578233c3d9532eda164757e8237e6c1 Mon Sep 17 00:00:00 2001
From: Atiwit Pattanapukdee <65160394@go.buu.ac.th>
Date: Sun, 16 Mar 2025 22:26:17 +0700
Subject: [PATCH] Project Round 2

---
 controllers/tourController.js | 15 +++++++++++----
 1 file changed, 11 insertions(+), 4 deletions(-)

diff --git a/controllers/tourController.js b/controllers/tourController.js
index f697054..9faf9bf 100644
--- a/controllers/tourController.js
+++ b/controllers/tourController.js
@@ -57,20 +57,27 @@ exports.postLogin = async (req, res) => {
   const { email, password } = req.body;
 
   try {
-      const isMatch = await User.comparePassword(email, password);
+      const user = await User.findOne(email); // หาผู้ใช้จากฐานข้อมูล
+
+      if (!user) {
+          return res.render('login', { message: 'Invalid email or password' });
+      }
+
+      const isMatch = await User.comparePassword(email, password); // ตรวจสอบรหัสผ่าน
       if (!isMatch) {
           return res.render('login', { message: 'Invalid email or password' });
       }
 
-      req.session.userId = email;
-      req.session.userName = user.name;
-      res.redirect('/');
+      req.session.userId = user.email; // เก็บ email ใน session
+      req.session.userName = user.name; // เก็บชื่อผู้ใช้ใน session
+      res.redirect('/'); // เมื่อ login สำเร็จให้ไปหน้า home
   } catch (err) {
       console.error(err);
       res.render('login', { message: 'Error logging in' });
   }
 };
 
+
 exports.logout = (req, res) => {
   req.session.destroy(() => {
       res.redirect('/login');
-- 
GitLab