added a restriction middleware

be/src/controllers/auth/signup.ts

@@ -4,6 +4,7 @@ import asyncHandler from '../../utils/async-handler';
 import sendToken from '../../services/sendJwtToken';
 import { iUser } from '../../interfaces';
 import AppError from '../../utils/app-error';
+import sendEmail from '../../utils/email';
 
 const signup: RequestHandler = async (req, res, next) => {
   const { email, password, role, name } = req.body;
@@ -18,6 +19,8 @@ const signup: RequestHandler = async (req, res, next) => {
     role: role || 'student',
   };
 
+  sendEmail(email, 'Registration Email', 'Welcome to CLP');
+
   const user: iUser = await User.create(payload);
 
   return sendToken(user, 201, res);

be/src/middlewares/protect.ts

@@ -7,11 +7,7 @@ import asyncHandler from '../utils/async-handler';
 
 const protect: RequestHandler = async (req, res, next) => {
   const [type, token] = (req.headers.authorization || '').split(' ');
-
-  if (!token) {
-    return next(new AppError('Invalid token. Please login', 401));
-  }
-
+  if (!token) return next(new AppError('Invalid token. Please login', 401));
   if (type.toLowerCase() !== 'bearer' || !token) {
     return next(
       new AppError('You are not logged in. Please login to get access', 401),

be/src/middlewares/restrictTo.ts

@@ -0,0 +1,16 @@
+import { RequestHandler } from 'express';
+import AppError from '../utils/app-error';
+
+const restrictTo = (...role: string[]) => {
+  const restrcitFn: RequestHandler = (req, res, next) => {
+    if (!role.includes(req.user.role)) {
+      return next(
+        new AppError('You do not have permission to perform this action', 403),
+      );
+    } else return next();
+  };
+
+  return restrcitFn;
+};
+
+export default restrictTo;