Fix duplicate user

gauthier-th · gauthier-th · commit d8013c83cf23 · 2024-05-21T14:34:36.000+02:00
diff --git a/api/database.js b/api/database.js
@@ -85,7 +85,7 @@ export async function getUserById(id) {
       if (err) {
         reject(err);
       } else {
-        delete row.password;
+        if (row) delete row.password;
         resolve(row);
       }
     });
@@ -98,7 +98,7 @@ export async function getUserByUsername(username, { keepPassword } = {}) {
       if (err) {
         reject(err);
       } else {
-        if (!keepPassword) delete row.password;
+        if (!keepPassword && row) delete row.password;
         resolve(row);
       }
     });
diff --git a/api/index.js b/api/index.js
@@ -17,6 +17,7 @@ import {
   getTranscriptionById,
   getTranscriptions,
   getUserById,
+  getUserByUsername,
   getUsers,
   updateUser,
 } from './database.js';
@@ -107,6 +108,10 @@ app.post('/api/users', jwtMiddleware, async (req, res) => {
   }
   const { username, password, email } = req.body;
   try {
+    if (await getUserByUsername(username)) {
+      res.status(400).send('Username is already used');
+      return;
+    }
     const user = await createUser({ username, password, email, role: 'user' });
     res.json(user);
   }
@@ -122,14 +127,14 @@ app.put('/api/users/:id', jwtMiddleware, async (req, res) => {
   const { username, password, email, role } = req.body;
   try {
     const user = await getUserById(req.params.id);
-    if (user.id === 1 && req.user.id !== 1) {
-      res.status(403).send('Forbidden');
-      return;
-    }
     if (!user) {
       res.status(404).send('User not found');
       return;
     }
+    if (user.id === 1 && req.user.id !== 1) {
+      res.status(403).send('Forbidden');
+      return;
+    }
     await updateUser({ id: user.id, username, password, email, role });
     res.status(204).send('User updated');
   }
diff --git a/api/package-lock.json b/api/package-lock.json
diff --git a/api/package.json b/api/package.json
@@ -1,6 +1,6 @@
 {
   "name": "whisper-dashboard-api",
-  "version": "1.0.1",
+  "version": "1.1.2",
   "description": "",
   "main": "index.js",
   "type": "module",
@@ -11,7 +11,7 @@
   },
   "keywords": [],
   "author": "",
-  "license": "ISC",
+  "license": "MIT",
   "dependencies": {
     "bcrypt": "^5.1.1",
     "cors": "^2.8.5",
diff --git a/app/package-lock.json b/app/package-lock.json
diff --git a/app/package.json b/app/package.json
@@ -1,7 +1,7 @@
 {
   "name": "whisper-dashboard-app",
   "private": true,
-  "version": "1.0.1",
+  "version": "1.1.2",
   "type": "module",
   "scripts": {
     "dev": "vite",
diff --git a/app/src/routes/admin.jsx b/app/src/routes/admin.jsx
@@ -5,7 +5,7 @@ import { RiLoader4Fill } from "react-icons/ri"
 import Modal from "../components/modal"
 import Select from "../components/select"
 
-function Logout() {
+function Admin() {
   const accessToken = useSelector((state) => state.accessToken)
   const loggedUser = useSelector((state) => state.user);
   const [users, setUsers] = useState(null)
@@ -37,7 +37,12 @@ function Logout() {
 
   async function createUser() {
     try {
+      if (!users) return
       if (!username || !email || !password) return
+      if (users.find((user) => user.username === username)) {
+        toast.error('An user with the same username already exists!')
+        return
+      }
       const response = await fetch(`${import.meta.env.VITE_API_URL || "/api"}/users`, {
         method: 'POST',
         headers: {
@@ -66,61 +71,61 @@ function Logout() {
   return (
     <div className="flex flex-col justify-center items-center gap-3">
       <h1 className="text-3xl">Admin panel</h1>
-      <h2 className="text-xl mt-4">Create an user</h2>
-      <div className="w-96 max-w-full">
-        <label className="input-label" htmlFor="username">
-          Username
-        </label>
-        <input
-          className="input-field"
-          id="username"
-          type="username"
-          placeholder="Username"
-          value={username}
-          onChange={(e) => setUsername(e.target.value)}
-          onKeyDown={(e) => e.key === 'Enter' && emailInput.current.focus()}
-        />
-      </div>
-      <div className="w-96 max-w-full">
-        <label className="input-label" htmlFor="email">
-          Email
-        </label>
-        <input
-          ref={emailInput}
-          className="input-field"
-          id="email"
-          type="email"
-          placeholder="Email"
-          value={email}
-          onChange={(e) => setEmail(e.target.value)}
-          onKeyDown={(e) => e.key === 'Enter' && passwordInput.current.focus()}
-        />
-      </div>
-      <div className="w-96 max-w-full">
-        <label className="input-label" htmlFor="password">
-          Password
-        </label>
-        <input
-          ref={passwordInput}
-          className="input-field"
-          id="password"
-          type="password"
-          placeholder="Password"
-          value={password}
-          onChange={(e) => setPassword(e.target.value)}
-          onKeyDown={(e) => e.key === 'Enter' && createUser()}
-        />
-      </div>
-      <button className="button max-w-full" onClick={() => createUser()}>
-        Create user
-      </button>
       <h2 className="text-xl mt-6">Users list</h2>
       {!users && (
         <div className="flex justify-center items-center">
           <RiLoader4Fill className="text-3xl animate-spin" />
         </div>
       )}
-      {users && (
+      {users && <>
+        <h2 className="text-xl mt-4">Create an user</h2>
+        <div className="w-96 max-w-full">
+          <label className="input-label" htmlFor="username">
+            Username
+          </label>
+          <input
+            className="input-field"
+            id="username"
+            type="username"
+            placeholder="Username"
+            value={username}
+            onChange={(e) => setUsername(e.target.value)}
+            onKeyDown={(e) => e.key === 'Enter' && emailInput.current.focus()}
+          />
+        </div>
+        <div className="w-96 max-w-full">
+          <label className="input-label" htmlFor="email">
+            Email
+          </label>
+          <input
+            ref={emailInput}
+            className="input-field"
+            id="email"
+            type="email"
+            placeholder="Email"
+            value={email}
+            onChange={(e) => setEmail(e.target.value)}
+            onKeyDown={(e) => e.key === 'Enter' && passwordInput.current.focus()}
+          />
+        </div>
+        <div className="w-96 max-w-full">
+          <label className="input-label" htmlFor="password">
+            Password
+          </label>
+          <input
+            ref={passwordInput}
+            className="input-field"
+            id="password"
+            type="password"
+            placeholder="Password"
+            value={password}
+            onChange={(e) => setPassword(e.target.value)}
+            onKeyDown={(e) => e.key === 'Enter' && createUser()}
+          />
+        </div>
+        <button className="button max-w-full" onClick={() => createUser()}>
+          Create user
+        </button>
         <div className="mt-2 rounded-lg border border-gray-600 p-4">
           <div className="flex flex-col gap-1">
             <div className="grid grid-cols-5 gap-4 mb-2 font-bold">
@@ -148,7 +153,7 @@ function Logout() {
             ))}
           </div>
         </div>
-      )}
+      </>}
     </div>
   )
 }
@@ -308,4 +313,4 @@ function DeleteUserModal({ user, getUsers }) {
   </>
 }
 
-export default Logout
+export default Admin

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "whisper-dashboard-app",`
`3`	`3`	`"private": true,`
`4`		`- "version": "1.0.1",`
	`4`	`+ "version": "1.1.2",`
`5`	`5`	`"type": "module",`
`6`	`6`	`"scripts": {`
`7`	`7`	`"dev": "vite",`