polysignal_hackaton / backend /src /auth /auth.routes.js
Cifo_Administrador
Fixes de bug de login y telegram
7493ff2
Raw
History Blame Contribute Delete
1.25 kB
/**
* Rutas REST de autenticacion.
*
* Endpoints:
* POST /api/v1/auth/login
* β†’ rateLimitLogin (5 intentos / 15 min)
* β†’ validate(loginSchema)
* β†’ authController.login
* β†’ Devuelve JWT + objeto usuario.
*
* GET /api/v1/auth/me
* β†’ requireAuth
* β†’ authController.me
* β†’ Devuelve el usuario autenticado (req.user).
*
* POST /api/v1/auth/logout
* β†’ requireAuth (verifica token valido y no bloqueado)
* β†’ authController.logout
* β†’ Invalida el jti del token en la denylist; responde 200.
*/
import { Router } from 'express';
import * as ctrl from './auth.controller.js';
import { loginSchema, registerSchema } from './auth.validators.js';
import { validate } from '../middlewares/validate.js';
import { requireAuth } from '../middlewares/requireAuth.js';
import { rateLimitLogin } from '../middlewares/rateLimitLogin.js';
const router = Router();
router.post('/login', rateLimitLogin, validate(loginSchema), ctrl.login);
router.post('/register', validate(registerSchema), ctrl.register);
router.get('/me', requireAuth, ctrl.me);
router.post('/logout', requireAuth, ctrl.logout);
router.put('/telegram', requireAuth, ctrl.updateTelegram);
export default router;