# Pastebin 6E7CGUX9
async function handleLogin(req, res) {
  try {
    const user = await users.validateUser(req.body.email, req.body.password)
    if (!user) return res.status(422).json({ error: message })
    authTokens.setAuthToken(user.guid).then(token => {
      req.session.authToken = token
      res.json({ user: users.cleanUserForClient(user) })
    })
  }
  catch (error) {
    return res.status(422).json({ error, login: 'failure' })
  }
}

router.post('/login', (req, res) => {
  if (!req.body.email || !req.body.password) return res.status(422).json({ error: message })
  handleLogin(req, res)
})