diff --git a/src/controllers/api/account/deleteController.js b/src/controllers/api/account/deleteController.js index 0552da7..af70cbd 100644 --- a/src/controllers/api/account/deleteController.js +++ b/src/controllers/api/account/deleteController.js @@ -33,14 +33,17 @@ module.exports.post = async function(req, res){ const data = matchedData(req); //make sure we're not bullshitting ourselves here. - if(user == null || user.user == null){ - return errorHandler(res, 'You must be logged in to delete your account!', 'unauthorized'); + if(user == null){ + res.status(400); + return res.send('Invalid Session! Cannot delete account while logged out!'); } const userDB = await userModel.findOne({user: user.user}); + if(!userDB){ - return errorHandler(res, 'User not found!', 'unauthorized'); + res.status(400); + return res.send('Invalid User! Account must exist in order to delete!'); } await userDB.nuke(data.pass); diff --git a/src/controllers/api/account/updateController.js b/src/controllers/api/account/updateController.js index bb3fd3f..3a04355 100644 --- a/src/controllers/api/account/updateController.js +++ b/src/controllers/api/account/updateController.js @@ -46,12 +46,6 @@ module.exports.post = async function(req, res){ const {field, change} = data; const {user} = req.session; - //If the user is null - if(user == null || user.user == null){ - //BEFORE YOU BREAK MY HEART!!! - return errorHandler(res, 'You must be logged in to preform this action!', 'unauthorized'); - } - const userDB = await userModel.findOne({user: user.user}); const update = {}; @@ -92,7 +86,8 @@ module.exports.post = async function(req, res){ res.status(200); return res.send(update); }else{ - return errorHandler(res, 'User not found!', 'unauthorized'); + res.status(400); + return res.send({errors: [{msg:"User not found!"}]}); } }else{ res.status(400);