Files
afrov2/app/api/auth/login/route.ts
2026-04-26 22:46:32 +02:00

62 lines
1.7 KiB
TypeScript

import { NextRequest, NextResponse } from 'next/server';
import prisma from '@/lib/prisma';
import bcrypt from 'bcryptjs';
export async function POST(request: NextRequest) {
try {
const { email, password } = await request.json();
if (!email || !password) {
return NextResponse.json(
{ error: 'Email et mot de passe requis' },
{ status: 400 }
);
}
// Find user
const user = await prisma.user.findUnique({
where: { email }
});
if (!user) {
return NextResponse.json(
{ error: 'Identifiants invalides' },
{ status: 401 }
);
}
// Check password
const isPasswordValid = await bcrypt.compare(password, user.password);
if (!isPasswordValid) {
return NextResponse.json(
{ error: 'Identifiants invalides' },
{ status: 401 }
);
}
// Check if email is verified
if (!user.emailVerified) {
return NextResponse.json(
{ error: 'Veuillez vérifier votre adresse email avant de vous connecter.' },
{ status: 403 }
);
}
// Omit password from response
const { password: _, ...userWithoutPassword } = user;
return NextResponse.json(
{ message: 'Connexion réussie', user: userWithoutPassword },
{ status: 200 }
);
} catch (error) {
console.error('Login error:', error);
return NextResponse.json(
{ error: 'Une erreur est survenue lors de la connexion' },
{ status: 500 }
);
}
}