From 07673586c2594f6e8830a8e1e5c6ba60c9f262c5 Mon Sep 17 00:00:00 2001
From: Giuseppe Raffa <77052701+sesee3@users.noreply.github.com>
Date: Sat, 4 Apr 2026 19:21:12 +0200
Subject: [PATCH] refactor: reorganize auth routes by separating view and API
 endpoints. Added some layer security to the most private apis

---
 auth/src/routes/users.js          | 2 +-
 auth/src/routes/views/sessions.js | 5 ++++-
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/auth/src/routes/users.js b/auth/src/routes/users.js
index 596335d..ce6ee2a 100644
--- a/auth/src/routes/users.js
+++ b/auth/src/routes/users.js
@@ -1,4 +1,4 @@
-// api.mebboat.it/users
+// api.mebboat.it/api/users
 
 const router = require('express').Router();
 const { query } = require('../storage/database');
diff --git a/auth/src/routes/views/sessions.js b/auth/src/routes/views/sessions.js
index 0ebfc35..4cc4edd 100644
--- a/auth/src/routes/views/sessions.js
+++ b/auth/src/routes/views/sessions.js
@@ -1,6 +1,9 @@
 const router = require('express').Router();
+const userAuth = require('../../middlewares/user.security');
 
-router.get('/', userAuth, (req, res) => {
+router.use(userAuth);
+
+router.get('/', (req, res) => {
     res.render('sessions');
 });