if (!user || !user.is_active || user.is_deleted) {
return res.status(401).send({ success: false, user: null, token: null });
}
- const auth = await db.authentication.find_by_user_id(user.id);
- logger.warn(auth);
- if (auth.is_locked) {
- return res.status(401).send({ message: 'Your account is locked due to suspicious activity. Please contact us to continue.' });
- }
logger.warn(user);
- logger.warn(auth.password);
logger.warn(password);
const isValid = await user.comparePassword(password, auth);
if (!isValid) {
projects / phs-api.git / commitdiff