add JWT , auth for login/sign in and gust

Author: Nisreen Oweidat

src/app.js

@@ -5,10 +5,13 @@ const logger = require("morgan");
 const swaggerUi = require("swagger-ui-express");
 const YAML = require("yamljs");
 const swaggerDocument = YAML.load("./docs/swagger.yaml");
-
+const bcrypt = require("bcrypt");
+const jwt = require("jsonwebtoken");
 
 const indexRouter = require("./routes/index");
 const pokemonRouter = require("./routes/pokemon");
+const authRouter = require("./routes/auth");
+
 
 const app = express();
 
@@ -19,6 +22,7 @@ app.use(cookieParser());
 app.use(express.static(path.join(__dirname, "public")));
 
 app.use("/", indexRouter);
+app.use("/auth", authRouter);
 app.use("/pokemon", pokemonRouter);
 app.use("/api-docs", swaggerUi.serve, swaggerUi.setup(swaggerDocument));
 

src/controllers/pokemon.js

@@ -1,8 +1,9 @@
 
-const x = require("../db/pokedex.json");
-const pokedex = x;
+const pokedex = require("../db/pokedex.json");
 
 
+//=======================get/begin=======================//
+
 exports.getHp = (req, res) => {
     const { gte, lte, gt, lt } = req.query;
 
@@ -29,7 +30,7 @@ exports.getType = (req ,res) => {
     }
   });
 
-  if (pokemon.length === 0) {
+  if (!pokemon) {
     res.status(404).json({ error: "Pokemon not found" });
     return;
   }
@@ -58,4 +59,39 @@ exports.getId = (req, res) => {
   }
   res.json(pokemon);
 };
+//=======================get/ends=======================//
+
+
+//delete
+
+exports.deletePokemon = (req, res) => {
+  const id = req.params.id;
+  const index = pokedex.findIndex(p => p.id == id);
+  if (index === -1) {
+      return res.status(404).json({ error: "Pokemon not found" });
+  }
+  pokedex.splice(index, 1);
+  res.json({ message: "Pokemon deleted successfully" });
+};
+
+
+// //update
+
+exports.updatePokemon = (req, res) => {
+  const id = req.params.id;
+  const index = pokedex.findIndex(p => p.id == id);
+  if (index === -1) {
+      return res.status(404).json({ error: "Pokemon not found" });
+  }
+  pokedex[index] = { ...pokedex[index], ...req.body };
+  res.json(pokedex[index]);
+};    
+
+
+// create 
 
+exports.createPokemon = (req, res) => {
+  const newPokemon = req.body;
+  pokedex.push(newPokemon);
+  res.status(201).json(newPokemon); 
+}

src/middleware/authMiddleware.js

@@ -0,0 +1,22 @@
+
+
+const jwt = require("jsonwebtoken");
+
+const SECRET_KEY = "your_secret_key"; 
+
+
+exports.authenticateUser = (req, res, next) => {
+    const token = req.header("Authorization");
+
+    if (!token) {
+        return res.status(403).json({ error: "Access denied" });
+    }
+
+    try {
+        const decoded = jwt.verify(token.replace("Bearer ", ""), SECRET_KEY);
+        req.user = decoded;
+        next();
+    } catch (err) {
+        res.status(401).json({ error: "Invalid token" });
+    }
+};