init commit

backend/middlewares/authMiddleware.js

@@ -0,0 +1,22 @@
+const jwt = require("jsonwebtoken");
+const User = require("../models/User");
+
+// Middleware to protect routes
+const protect = async (req, res, next) => {
+    try {
+        let token = req.headers.authorization;
+
+        if (token && token.startsWith("Bearer")) {
+            token = token.split(" ")[1]; // Extract token
+            const decoded = jwt.verify(token, process.env.JWT_SECRET);
+            req.user = await User.findById(decoded.id).select("-password");
+            next();
+        } else {
+            res.status(401).json({ message: "Not authorized, no token" });
+        }
+    } catch (error) {
+        res.status(401).json({ message: "Token failed", error: error.message });
+    }
+};
+
+module.exports = { protect };

backend/middlewares/uploadMiddleware.js

@@ -0,0 +1,25 @@
+const multer = require('multer');
+
+// Configure storage
+const storage = multer.diskStorage({
+  destination: (req, file, cb) => {
+    cb(null, 'uploads/');
+  },
+  filename: (req, file, cb) => {
+    cb(null, `${Date.now()}-${file.originalname}`);
+  },
+});
+
+// File filter
+const fileFilter = (req, file, cb) => {
+  const allowedTypes = ['image/jpeg', 'image/png', 'image/jpg'];
+  if (allowedTypes.includes(file.mimetype)) {
+    cb(null, true);
+  } else {
+    cb(new Error('Only .jpeg, .jpg and .png formats are allowed'), false);
+  }
+};
+
+const upload = multer({ storage, fileFilter });
+
+module.exports = upload;