feat(server): add POST /api/auth/register and /api/auth/login

- Add register endpoint with email/password validation, bcrypt hashing - Add login endpoint with rate limiting per IP (5 attempts/min) - Add helper functions: validatePassword, hashPassword, comparePassword, isAdminEmail - Add checkLoginRateLimit for brute-force protection - Add bcrypt dependency - Remove avatarType column from User (migration)
2026-05-22 11:26:00 +05:00
parent 924d7b7b77
commit c3e4f5bdd2
6 changed files with 156 additions and 2 deletions
@@ -82,7 +82,6 @@ model User {
  lastName     String?
  gender       String?
  avatar       String?
-  avatarType   String?
  avatarStyle  String?
  passwordHash String?
  createdAt    DateTime @default(now())