app2-api/middlewares/accessValidator.js

'use strict';

const passport = require('passport');
const httpStatus = require('http-status');
const compose = require('../helpers/middleware.helper');

const isRegisteredUser = passport.authenticate('local', { session: false });
const isLoggedUser = passport.authenticate('jwt', { session: false });
const isAdministratorUser = compose([isLoggedUser,
    (req, res, next) => {
        const user = req.user;
        if (user.role >= 8) {
            next();
        } else {
            return res.status(httpStatus.UNAUTHORIZED).send('UNAUTHORIZED');
        }
    }
]);

module.exports = {
    isRegisteredUser,
    isLoggedUser,
    isAdministratorUser
};