add verification of current password to updatePassword for user

The backend should provide current open job applications.

Step 1. Ta reda på vilka fält som behövs
Step 2. Skapa Model
Step 3. Skapa Controller(funktionalitet för att skapa, ta bort, uppdatera, hämta)
Step 4. Skapa route
Step 5. Skapa API Call igenom Insomnia

title
description
prefered knowledge
experience
Applications: [{
Namn
Efternamn
Email
TelefonNR
Personligt brev
När man sökte jobbet
CV (BLOB)
}]

Create a script to populate the database with data

when creating a new employee as a admin i should be able to post the data and the image in one request.

Step 1: Create Model with following fields:
firstName
lastName
email
phone
image(egen task senare)

Add the same labels from the frontend project to the backend project.

There is a middleware, authenticateBasicUser.js, that verifies the token to the user before making the API call.

What to do:
Add this middleware to all API calls in the route files that require user verification. This does NOT include the API calls that require admin prevledige.

important note:
The API calls that run this middleware will require a id field that is sent through the body, request.body.id.
This might require further refactorization if the id is received in any other form. Also note that this can cause the client side API's to stop working and might require some refactoring. Make sure you document which frontend calls that might require refactoring.

When a user registers on the application he/she is required to verify email within a time limit.

1. Send email verification when a user registers with a URL

2. when the user clicks on the URL atached to the email he/she will be rendered to the client(frontend) application that updates

Note: What do we do with users that register but have not verified their email?

This is a backend issue that requires discussion.

Suggestion:

1. User attempt to register
2. Backend checks if the email is in the newsubscription
3. if it is. remove from newsubscription
4. create account

When a user registered on the application a email should be sent to the new registered account.

The user is required to press the link that is sent to verify the auth of the email.

When the user clicks on the email sent they should be rendered to a view that makes a API call to set isEmailVerified from false to true

Important Note:
What happens to users that dont follow this instruction?

When signing in to the system a array with a object is returned. Instead the object itself should be returned.

The array is then turned into a object when recieved in the frontend. This must be adjusted aswell.

enable swish as payment method

Default role 'user' and 'admin' role.
'student' might be added in the future.

example of how this can be done:
https://soshace.com/implementing-role-based-access-control-in-a-node-js-application/

research how to save uploaded image to folder
create avatar to employees model
adding avatar to crud operations where nessecary

Only users with admin_role privilege should be able to make admin api calls.

Blocked by: #37

currently blocked: #122

Add logic to send a file(CV) when applying for a career

Currently there is a script that populates the database. Write further logic to create data for relational models aswell.

Create a proper readme file with instructions on how to get the project up and running for new developers

If a signed in user decides to update any data about the her/him the token should be verified on the serverside to ensure that nobody else is manipulating that specific data.

When a user in the client gets navigated to the 404Page the error should be reported and emailed for documentation.

Create a API call that emails the error

Applicants: [{
firstName:
lastName:
dateOfBirth:
email:
phoneNumber:
cv:
personalLetter:

}]

Create/put function on Career controller

create the rest call so that people can send emails via the contact form