lucien/bank-app
1
0
Fork 0
generated from lucien/api-template
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

add: added receivers

Browse source
This commit is contained in:
Lukian 2025-04-28 09:09:26 +02:00
parent 94e4d5750f
commit f0881f2025
6 changed files with 275 additions and 25 deletions
Download patch file Download diff file Expand all files Collapse all files

56
back/api/@me.js
View file

@ -1,6 +1,6 @@
const express = require('express');
const router = express.Router();
const { getConnection, getUserAccounts, getUserCards, getUserTransfers, setAccountBalance, getAccount, addTransfer } = require('../libs/mysql');
const { getConnection, getUserAccounts, getUserCards, getUserTransfers, setAccountBalance, getAccount, addTransfer, getUserReceivers, addReceiver, removeReceiver } = require('../libs/mysql');
const { checkAuth } = require('../libs/middlewares');
router.post('/', checkAuth, async (req, res) => {
@ -32,6 +32,60 @@ router.post('/transfers', checkAuth, async (req, res) => {
res.send(transfers);
});
router.post('/receivers', checkAuth, async (req, res) => {
const user = req.user;
const connection = await getConnection();
const receivers = await getUserReceivers(connection, user.id);
connection.end();
res.send(receivers);
});
router.post('/add-receiver', checkAuth, async (req, res) => {
const user = req.user;
const { account_id, name } = req.body;
if (!account_id || !name) {
return res.status(400).send({ error: 'Missing required fields' });
}
const connection = await getConnection();
const account = await getAccount(connection, account_id);
if (!account[0]) {
return res.status(400).send({ error: 'Invalid account ID' });
}
await addReceiver(connection, user.id, account_id, name);
connection.end();
res.send({ message: 'Receiver added successfully' });
});
router.post('/remove-receiver', checkAuth, async (req, res) => {
const user = req.user;
const { id } = req.body;
if (!id) {
return res.status(400).send({ error: 'Missing required fields' });
}
const connection = await getConnection();
const receiver = await getUserReceivers(connection, user.id);
if (!receiver[0]) {
return res.status(400).send({ error: 'Invalid receiver ID' });
}
if (receiver[0].user_id !== user.id) {
return res.status(403).send({ error: 'You are not authorized to remove this receiver' });
}
await removeReceiver(connection, id);
connection.end();
res.send({ message: 'Receiver removed successfully' });
});
router.post('/send-money', checkAuth, async (req, res) => {
const user = req.user;
const { account_from_id, account_to_id, amount, name } = req.body;