Refactor dbQueries to include is_locked field in queryAccountInfoByEmail function

Author: Wassim-Rached

src/helpers/dbQueries.ts

@@ -4,14 +4,15 @@ type Account = {
   id: number;
   password: string;
   is_email_verified: boolean;
+  is_locked: boolean;
 };
 
 export async function queryAccountInfoByEmail(
   email: string
 ): Promise<Account | null> {
   try {
     const result = await query(
-      "SELECT id,password,is_email_verified FROM accounts WHERE email = $1",
+      "SELECT id,password,is_email_verified,is_locked FROM accounts WHERE email = $1",
       [email]
     );
 

src/routers.ts

@@ -86,6 +86,10 @@ export function handleRoutes(app: Express) {
       return res.status(401).json({ message: "Invalid credentials" });
     }
 
+    if (userInfo.is_locked) {
+      return res.status(403).json({ message: "Account is locked" });
+    }
+
     if (
       config.security.requireEmailVerification &&
       !userInfo.is_email_verified