From 6ea5c20cf3fa43fd062f3a86bab17d02601f6ad3 Mon Sep 17 00:00:00 2001
From: cirroskais <cirroskais@madhouselabs.net>
Date: Sat, 6 Jul 2024 01:03:55 -0400
Subject: [PATCH] messages

---
 src/routes/api/auth/register/+server.js | 16 +++++++++++++---
 1 file changed, 13 insertions(+), 3 deletions(-)

diff --git a/src/routes/api/auth/register/+server.js b/src/routes/api/auth/register/+server.js
index c614952..d27b763 100644
--- a/src/routes/api/auth/register/+server.js
+++ b/src/routes/api/auth/register/+server.js
@@ -1,10 +1,10 @@
 import { json } from '@sveltejs/kit';
 import { COOKIE } from '$lib/config';
-import { createUser, createSession } from '$lib/server/database';
+import { createUser, createSession, findUser } from '$lib/server/database';
 import { email } from '$lib/server/validator';
 
 export async function POST(event) {
-	const { request, cookies, locals } = event;
+	const { request, cookies } = event;
 	const body = await request.json();
 
 	if (!body?.username || body?.username.length > 16 || body?.username.length < 3)
@@ -16,8 +16,18 @@ export async function POST(event) {
 	if (!body?.password || body?.password.length > 128 || body?.password.length < 6)
 		return json({ error: 'Invalid password.' }, { status: 400 });
 
-	const user = await createUser(body?.username, body?.email, body?.password);
+	const usernameTaken = !!(await findUser({ username: body?.username }));
+	if (usernameTaken) return json({ error: 'That username is taken.' }, { status: 400 });
+
+	const emailUsed = !!(await findUser({ email: body?.email }));
+	if (emailUsed)
+		return json({ error: 'That email has been used too many times.' }, { status: 400 });
+
+	const user = await createUser(body?.username, body?.email, body?.password).catch((e) => {});
+	if (!user) return json({ error: 'Internal Server Error' }, { status: 500 });
+
 	const session = await createSession(user.id);
+	if (!session) return json({ error: 'Internal Server Error' }, { status: 500 });
 
 	cookies.set(COOKIE, session.id, { path: '/' });