From 9ad16fcff73595d7bb3bcce81423c7784c69e8a2 Mon Sep 17 00:00:00 2001
From: Antony Kurniawan <antonynugroho467@gmail.com>
Date: Wed, 8 Oct 2025 11:35:15 +0700
Subject: [PATCH] fix: user route

---
 routes/users.route.js | 48 +++++++++++++++++++++----------------------
 1 file changed, 23 insertions(+), 25 deletions(-)

diff --git a/routes/users.route.js b/routes/users.route.js
index bc7fd21..44fbfb4 100644
--- a/routes/users.route.js
+++ b/routes/users.route.js
@@ -1,32 +1,30 @@
-const {
-  getAllUsers,
-  createUser,
-  deleteUser,
-  getUserById,
-  updateUser,
-  getUserProfile,
-  getAllRoles,
-  getAllStatusUsers
-} = require("../controllers/users.controller");
-const router = require("express").Router();
-const verifyAdmin = require("../middleware/verifyRole");
-const verifyToken = require("../middleware/verifyToken");
+const express = require('express');
+const UserController = require('../controllers/users.controller');
+const verifyToken = require('../middleware/verifyToken');
+const verifyAccess = require('../middleware/verifyAcces');
 
-router.get("/roles", getAllRoles);
+const router = express.Router();
 
-router.get('/profile', verifyToken.verifyAccessToken, getUserProfile);
+// Get all users
+router.get('/', verifyToken.verifyAccessToken, UserController.getAllUsers);
 
-router.route("/")
-  .get(verifyToken.verifyAccessToken, getAllUsers)
-  .post(verifyToken.verifyAccessToken, createUser);
+// Get user by ID
+router.get('/:id', verifyToken.verifyAccessToken, UserController.getUserById);
 
-router
-  .route("/status")
-  .get(verifyToken.verifyAccessToken, getAllStatusUsers);
+// Create new user
+router.post('/', verifyToken.verifyAccessToken, verifyAccess(), UserController.createUser);
+
+// Update user
+router.put('/:id', verifyToken.verifyAccessToken, verifyAccess(), UserController.updateUser);
+
+// Delete user
+router.delete('/:id', verifyToken.verifyAccessToken, verifyAccess(), UserController.deleteUser);
+
+// Change user password
+router.put('/change-password/:id', verifyToken.verifyAccessToken, verifyAccess(), UserController.changePassword);
+
+// Approve user
+router.put('/:id/approve', verifyToken.verifyAccessToken, verifyAccess(), UserController.approveUser);
 
-router.route("/:id")
-  .get(verifyToken.verifyAccessToken, getUserById)
-  .put(verifyToken.verifyAccessToken, updateUser)
-  .delete(verifyToken.verifyAccessToken, deleteUser);
 
 module.exports = router;