fix: add JWT middleware to private API routes

2026-04-08 16:44:41 +05:30
parent 9c44c66b22
commit fb298cb846
7 changed files with 21 additions and 17 deletions
@@ -11,8 +11,8 @@ import jwtAuthMiddleware from "../middleware/auth.js";
 const router = express.Router();

 router.post("/", createAcademicsResearch);
-router.get("/getAll", getAcademicsResearch);
-router.get("/:id", getSingleAcademicsResearch);
+router.get("/getAll", jwtAuthMiddleware, getAcademicsResearch);
+router.get("/:id", jwtAuthMiddleware, getSingleAcademicsResearch);
 router.delete("/:id", jwtAuthMiddleware, deleteAcademicsResearch);

 export default router;
@@ -13,11 +13,11 @@ const router = express.Router();

 /* PUBLIC */

-router.get("/getall", getAppointments);
+router.get("/getall", jwtAuthMiddleware, getAppointments);
 router.post("/", createAppointment);

-router.get("/:id", getAppointment);
-router.patch("/:id", updateAppointment);
+router.get("/:id", jwtAuthMiddleware, getAppointment);
+router.patch("/:id", jwtAuthMiddleware, updateAppointment);
 router.delete("/:id", jwtAuthMiddleware, deleteAppointment);

 export default router;
@@ -13,13 +13,13 @@ import jwtAuthMiddleware from "../middleware/auth.js";
 const router = express.Router();

 /* PUBLIC */
-
-router.get("/getAll", getCandidates);
-router.get("/:id", getCandidate);
-router.get("/career/:careerId", getCandidatesByCareer);
-
 router.post("/", createCandidate);
-router.patch("/:id", updateCandidate);
+
+router.get("/getAll", jwtAuthMiddleware, getCandidates);
+router.get("/:id", jwtAuthMiddleware, getCandidate);
+router.get("/career/:careerId", jwtAuthMiddleware, getCandidatesByCareer);
+
+router.patch("/:id", jwtAuthMiddleware, updateCandidate);
 router.delete("/:id", jwtAuthMiddleware, deleteCandidate);

 export default router;
@@ -10,8 +10,8 @@ const router = express.Router();

 router.get("/getAll", getAllCareers);

-router.post("/", createCareer);
-router.patch("/:id", updateCareer);
-router.delete("/:id", deleteCareer);
+router.post("/", jwtAuthMiddleware, createCareer);
+router.patch("/:id", jwtAuthMiddleware, updateCareer);
+router.delete("/:id", jwtAuthMiddleware, deleteCareer);

 export default router;
@@ -1,6 +1,7 @@
 import express from "express";
 import {
 	getAllDepartments,
+	getDepartmentByName,
 	createDepartment,
 	updateDepartment,
 	deleteDepartment,
@@ -11,6 +12,7 @@ const router = express.Router();

 // Public
 router.get("/getAll", getAllDepartments);
+router.get("/search", getDepartmentByName);

 // Protected
 router.post("/", jwtAuthMiddleware, createDepartment);
@@ -7,6 +7,7 @@ import {
 	getDoctorTimings,
 	getDoctorTimingById,
 	getDoctorByDoctorId,
+	getDoctorsByDepartmentId,
 } from "../controllers/doctor.controller.js";

 import jwtAuthMiddleware from "../middleware/auth.js";
@@ -14,9 +15,10 @@ import jwtAuthMiddleware from "../middleware/auth.js";
 const router = express.Router();

 router.get("/getAll", getAllDoctors);
-router.get("/:doctorId", getDoctorByDoctorId);
+router.get("/search", getDoctorsByDepartmentId);
 router.get("/getTimings", getDoctorTimings);
 router.get("/getTimings/:doctorId", getDoctorTimingById);
+router.get("/:doctorId", getDoctorByDoctorId);

 router.post("/", jwtAuthMiddleware, createDoctor);
 router.patch("/:doctorId", jwtAuthMiddleware, updateDoctor);
@@ -12,8 +12,8 @@ const router = express.Router();

 router.post("/", createInquiry);

-router.get("/getAll", getInquiries);
-router.get("/:id", getInquiry);
+router.get("/getAll", jwtAuthMiddleware, getInquiries);
+router.get("/:id", jwtAuthMiddleware, getInquiry);
 router.delete("/:id", jwtAuthMiddleware, deleteInquiry);

 export default router;