Project Round 2

c0d6ab3d · 65160394 · 647f8756 · c0d6ab3d · c0d6ab3d
Commit c0d6ab3d authored 2 months ago by 65160394
--- a/controllers/tourController.js
+++ b/controllers/tourController.js
@@ -21,38 +21,19 @@ exports.getTourDetails = async (req, res) => {

 const User = require('../models/tourModel');

-exports.getLogin = (req, res) => {
-    res.render('login', { message: null });
-};
-
-exports.getRegister = (req, res) => {
-    res.render('register', { message: null });
-};
-
 exports.postLogin = (req, res) => {
  const { email, password } = req.body;
-    User.comparePassword(email, password, (err, isMatch) => {
-        if (err || !isMatch) {
-            return res.render('login', { message: 'Invalid email or password' });
-        }
-        req.session.userId = email; // สามารถเก็บ ID หรืออีเมลของผู้ใช้ได้
-        res.redirect('/');
-    });
-};

-exports.postRegister = (req, res) => {
-    const { name, email, password, confirmPassword } = req.body;
-    if (password !== confirmPassword) {
-        return res.render('register', { message: 'Passwords do not match' });
+  User.comparePassword(req.db, email, password, (err, isMatch) => {
+      if (err) {
+          return res.status(500).json({ error: 'Error checking password' });
      }
-    User.findOne(email, (err, user) => {
-        if (user) {
-            return res.render('register', { message: 'Email already in use' });
+      if (isMatch) {
+          // รหัสผ่านถูกต้อง
+          res.send('Login successful');
+      } else {
+          // รหัสผ่านไม่ตรง
+          res.status(400).send('Invalid credentials');
      }
-        User.create(name, email, password, (err, userId) => {
-            if (err) return res.render('register', { message: 'Error creating user' });
-            req.session.userId = userId;
-            res.redirect('/');
-        });
  });
 };
--- a/models/tourModel.js
+++ b/models/tourModel.js
@@ -15,31 +15,34 @@ class Tour {
 const bcrypt = require('bcryptjs');

 class User {
-    static findOne(email, callback) {
+    // ค้นหาผู้ใช้จากอีเมล
+    static findOne(db, email, callback) {
        const query = 'SELECT * FROM users WHERE email = ?';
-        req.db.query(query, [email], (err, results) => {
+        db.query(query, [email], (err, results) => {
            if (err) return callback(err);
            callback(null, results[0]);
        });
    }

-    static create(name, email, password, callback) {
+    // สร้างผู้ใช้ใหม่และเก็บรหัสผ่านที่เข้ารหัส
+    static create(db, name, email, password, callback) {
        const query = 'INSERT INTO users (name, email, password) VALUES (?, ?, ?)';
        bcrypt.hash(password, 10, (err, hashedPassword) => {
            if (err) return callback(err);
-            req.db.query(query, [name, email, hashedPassword], (err, results) => {
+            db.query(query, [name, email, hashedPassword], (err, results) => {
                if (err) return callback(err);
                callback(null, results.insertId);
            });
        });
    }

-    static comparePassword(email, password, callback) {
-        User.findOne(email, (err, user) => {
+    // เปรียบเทียบรหัสผ่านที่ผู้ใช้กรอกกับรหัสผ่านที่เก็บในฐานข้อมูล
+    static comparePassword(db, email, password, callback) {
+        User.findOne(db, email, (err, user) => {
            if (err || !user) return callback(err || 'User not found');
            bcrypt.compare(password, user.password, (err, isMatch) => {
                if (err) return callback(err);
-                callback(null, isMatch);
+                callback(null, isMatch);  // isMatch จะเป็น true ถ้ารหัสผ่านตรงกัน
            });
        });
    }