Add select method to avoid sending sensitive data in response for ava…

…tar update api
Jawad-Ali2 · Jul 16, 2023 · b4cae38 · b4cae38
1 parent 10ebd35
commit b4cae38
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/src/controllers/apps/auth/user.controllers.js b/src/controllers/apps/auth/user.controllers.js
@@ -487,6 +487,8 @@ const updateUserAvatar = asyncHandler(async (req, res) => {
       },
     },
     { new: true }
+  ).select(
+    "-password -refreshToken -emailVerificationToken -emailVerificationExpiry"
   );
 
   // remove the old avatar