added hashed password when user signing up

2 years ago · fc62cde6f6
parent 486d9128ff
commit fc62cde6f6
1 changed files with 26 additions and 25 deletions
--- a/src/routes/(auth)/signup/+page.server.ts
+++ b/src/routes/(auth)/signup/+page.server.ts
@ -1,71 +1,72 @@
-import type { PageServerLoad, Actions } from './$types';
-import { fail } from '@sveltejs/kit';
-import { superValidate } from 'sveltekit-superforms/server';
-import { formSchema } from './schema';
-import { db } from '$lib/db';
-import { user as userSchema } from '$lib/db/schema';
-import { eq } from 'drizzle-orm';
-import { nanoid } from 'nanoid';
+import type { PageServerLoad, Actions } from './$types'
+import { fail } from '@sveltejs/kit'
+import { superValidate } from 'sveltekit-superforms/server'
+import { formSchema } from './schema'
+import { db } from '$lib/db'
+import { user as userSchema } from '$lib/db/schema'
+import { eq } from 'drizzle-orm'
+import { nanoid } from 'nanoid'

 export const load = (async () => {
 	return {
 		form: superValidate(formSchema),
-	};
-}) satisfies PageServerLoad;
+	}
+}) satisfies PageServerLoad

 export const actions: Actions = {
 	default: async (event) => {
-		const form = await superValidate(event, formSchema);
+		const form = await superValidate(event, formSchema)

 		if (!form.valid) {
 			return fail(400, {
 				form,
-			});
+			})
 		}

 		if (form.data.password !== form.data.password_confirm) {
 			return fail(400, {
 				form,
-			});
+			})
 		}

 		try {
 			const users = await db
 				.select()
 				.from(userSchema)
-				.where(eq(userSchema.email, form.data.email));
+				.where(eq(userSchema.email, form.data.email))

-			const user = users[0];
+			const user = users[0]

-			if (user) {
+			if (!user) {
+				const hashedPassword = await Bun.password.hash(form.data.password)
 				await db
 					.insert(userSchema)
-					.values({ email: form.data.email, password: form.data.password });
-				const token = nanoid(32);
+					.values({ email: form.data.email, password: hashedPassword })
+				const token = nanoid(32)
 				event.cookies.set('token', token, {
 					httpOnly: true,
 					sameSite: 'strict',
 					path: '/',
-				});
+				})
 				return {
 					form,
-				};
+				}
 			} else {
 				return fail(400, {
 					form,
-				});
+				})
 			}
 		} catch (error) {
 			if (error instanceof SyntaxError) {
 				return fail(400, {
 					form,
-				});
+				})
 			} else {
-				console.log(error);
+				console.log(error)
 				return fail(400, {
 					form,
-				});
+				})
 			}
 		}
 	},
-};
+}