tremor-tracker/src/app/api/signup/route.ts

import bcryptjs from "bcryptjs";
import { SignJWT } from "jose";
import { NextResponse } from "next/server";

import { env } from "@utils/env";
import { prisma } from "@utils/prisma";

import { passwordStrengthCheck } from "@utils/validation";

export async function POST(req: Request) {
	try {
		const { email, password, name } = await req.json();

		const foundUser = await prisma.user.findUnique({
			where: {
				email: email,
			},
		});

		if (foundUser) {
			return NextResponse.json({ message: "Sorry, this email is already in use" }, { status: 409 });
		}

		const passwordCheckResult = await passwordStrengthCheck(password);

		if (passwordCheckResult === "short") {
			return NextResponse.json({ message: "Your password is shorter than 8 characters" }, { status: 400 });
		} else if (passwordCheckResult === "long") {
			return NextResponse.json({ message: "Your password is longer than 16 characters" }, { status: 400 });
		} else if (passwordCheckResult === "no lower") {
			return NextResponse.json({ message: "Your password must contain a lowercase letters" }, { status: 400 });
		} else if (passwordCheckResult === "no upper") {
			return NextResponse.json({ message: "Your password must contain a uppercase letters" }, { status: 400 });
		} else if (passwordCheckResult === "no digit") {
			return NextResponse.json({ message: "Your password must contain a number" }, { status: 400 });
		} else if (passwordCheckResult === "no special") {
			return NextResponse.json({ message: "Your password must contain a special character (!@#$%^&*)" }, { status: 400 });
		} else if (passwordCheckResult === "end of function") {
			return NextResponse.json({ message: "Password check script failure" }, { status: 500 });
		} else {
			try {
				const newUser = await prisma.user.create({
					data: {
						name,
						email,
						passwordHash: await bcryptjs.hash(password, 10),
					},
				});

				// Link orders with matching email to the new user
				await prisma.order.updateMany({
					where: {
						email: email,
						userId: null, // Only update orders not already linked to a user
					},
					data: {
						userId: newUser.id,
					},
				});

				const user = await prisma.user.findUnique({
					where: { id: newUser.id },
					include: {
						earthquakes: true,
						observatories: true,
						artefacts: true,
						purchasedOrders: true,
						requests: true,
						scientist: {
							include: {
								superior: true,
								subordinates: true,
							},
						},
					},
				});
				const { passwordHash, ...userSansHash } = user!;

				const secret = new TextEncoder().encode(env.JWT_SECRET_KEY);
				const token = await new SignJWT({ userId: user!.id })
					.setProtectedHeader({ alg: "HS256" })
					.setExpirationTime("2w")
					.sign(secret);

				const response = NextResponse.json({ message: "Account Created", user: userSansHash }, { status: 201 });
				response.cookies.set("jwt", token, {
					httpOnly: true,
					secure: process.env.NODE_ENV === "production",
					sameSite: "strict",
					maxAge: 3600 * 168 * 2, // 2 weeks
					path: "/",
				});
				return response;
			} catch (error) {
				console.error("Error creating user:", error);
				return NextResponse.json({ message: "Internal Server Error" }, { status: 500 });
			}
		}
	} catch (error) {
		console.error("Error in signup endpoint:", error);
		return NextResponse.json({ message: "Internal Server Error" }, { status: 500 });
	}
}
Switched to local prismaclient 2025-05-19 14:36:29 +01:00			`import bcryptjs from "bcryptjs";`
			`import { SignJWT } from "jose";`
			`import { NextResponse } from "next/server";`
Added prisma stuff to auth api routes 2025-04-29 18:07:25 +01:00
Switched to local prismaclient 2025-05-19 14:36:29 +01:00			`import { env } from "@utils/env";`
Merge branch 'master' of 192.168.11.4:thowitz-work/tremor-tracker 2025-05-25 18:54:00 +01:00			`import { prisma } from "@utils/prisma";`
Added prisma stuff to auth api routes 2025-04-29 18:07:25 +01:00
Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`import { passwordStrengthCheck } from "@utils/validation";`
Added todos 2025-05-30 13:27:57 +01:00
Made a lotta changes 2025-05-09 10:30:12 +01:00			`export async function POST(req: Request) {`
Added prisma stuff to auth api routes 2025-04-29 18:07:25 +01:00			`try {`
Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`const { email, password, name } = await req.json();`
Added prisma stuff to auth api routes 2025-04-29 18:07:25 +01:00
Converted to a prisma singleton 2025-05-20 18:26:40 +01:00			`const foundUser = await prisma.user.findUnique({`
			`where: {`
Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`email: email,`
Converted to a prisma singleton 2025-05-20 18:26:40 +01:00			`},`
			`});`
Added prisma stuff to auth api routes 2025-04-29 18:07:25 +01:00
			`if (foundUser) {`
			`return NextResponse.json({ message: "Sorry, this email is already in use" }, { status: 409 });`
			`}`

			`const passwordCheckResult = await passwordStrengthCheck(password);`

			`if (passwordCheckResult === "short") {`
			`return NextResponse.json({ message: "Your password is shorter than 8 characters" }, { status: 400 });`
			`} else if (passwordCheckResult === "long") {`
			`return NextResponse.json({ message: "Your password is longer than 16 characters" }, { status: 400 });`
			`} else if (passwordCheckResult === "no lower") {`
			`return NextResponse.json({ message: "Your password must contain a lowercase letters" }, { status: 400 });`
			`} else if (passwordCheckResult === "no upper") {`
			`return NextResponse.json({ message: "Your password must contain a uppercase letters" }, { status: 400 });`
			`} else if (passwordCheckResult === "no digit") {`
			`return NextResponse.json({ message: "Your password must contain a number" }, { status: 400 });`
			`} else if (passwordCheckResult === "no special") {`
			`return NextResponse.json({ message: "Your password must contain a special character (!@#$%^&*)" }, { status: 400 });`
			`} else if (passwordCheckResult === "end of function") {`
			`return NextResponse.json({ message: "Password check script failure" }, { status: 500 });`
			`} else {`
			`try {`
Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`const newUser = await prisma.user.create({`
Converted to a prisma singleton 2025-05-20 18:26:40 +01:00			`data: {`
			`name,`
			`email,`
Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`passwordHash: await bcryptjs.hash(password, 10),`
			`},`
			`});`

			`// Link orders with matching email to the new user`
			`await prisma.order.updateMany({`
			`where: {`
			`email: email,`
			`userId: null, // Only update orders not already linked to a user`
			`},`
			`data: {`
			`userId: newUser.id,`
Converted to a prisma singleton 2025-05-20 18:26:40 +01:00			`},`
			`});`

Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`const user = await prisma.user.findUnique({`
			`where: { id: newUser.id },`
			`include: {`
			`earthquakes: true,`
			`observatories: true,`
			`artefacts: true,`
			`purchasedOrders: true,`
			`requests: true,`
			`scientist: {`
			`include: {`
			`superior: true,`
			`subordinates: true,`
			`},`
			`},`
			`},`
			`});`
			`const { passwordHash, ...userSansHash } = user!;`
Made some changes 2025-05-13 22:53:17 +01:00
			`const secret = new TextEncoder().encode(env.JWT_SECRET_KEY);`
Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`const token = await new SignJWT({ userId: user!.id })`
Made some changes 2025-05-13 22:53:17 +01:00			`.setProtectedHeader({ alg: "HS256" })`
			`.setExpirationTime("2w")`
			`.sign(secret);`

Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`const response = NextResponse.json({ message: "Account Created", user: userSansHash }, { status: 201 });`
Made some changes 2025-05-13 22:53:17 +01:00			`response.cookies.set("jwt", token, {`
			`httpOnly: true,`
			`secure: process.env.NODE_ENV === "production",`
			`sameSite: "strict",`
			`maxAge: 3600 * 168 * 2, // 2 weeks`
			`path: "/",`
			`});`
			`return response;`
Added prisma stuff to auth api routes 2025-04-29 18:07:25 +01:00			`} catch (error) {`
Updated signup route to remove csv stuff and add linking to previous non-account orders 2025-05-31 18:07:06 +01:00			`console.error("Error creating user:", error);`
Added prisma stuff to auth api routes 2025-04-29 18:07:25 +01:00			`return NextResponse.json({ message: "Internal Server Error" }, { status: 500 });`
			`}`
			`}`
			`} catch (error) {`
			`console.error("Error in signup endpoint:", error);`
			`return NextResponse.json({ message: "Internal Server Error" }, { status: 500 });`
			`}`
			`}`