Auth Routes Broken Into Controller Files

[Flapjacck]

This pull request introduces a comprehensive set of authentication controllers for the backend, implementing all major endpoints needed for user registration, login, password management, email verification, and admin invitations. The controllers handle user validation, security checks, token management, and email communications, providing a robust authentication system.

The most important changes are:

Authentication Endpoints Implementation:

• Added register, login, logout, refresh, and refreshToken controllers to handle user registration, authentication, session management, and JWT token refresh logic. These controllers include input validation, password hashing, account status checks, and refresh token storage/revocation. [1] [2] [3] [4]

Password Reset & Verification Flows:

• Implemented forgotPassword, resetPassword, verifyResetCode, and verifyPasswordResetCode controllers to support secure password reset workflows, including code generation, validation, and password updating with checks against password reuse. [1] [2]

• Added verifyEmail and resendVerification controllers to handle user email verification via 6-digit codes, including resending codes and marking emails as verified. [1] [2]

User Profile & Role Management:

• Added me controller to allow authenticated users to retrieve their own profile information securely, excluding sensitive fields.

• Implemented invite controller to allow admins to create invite codes for new admin or interviewer account registration, supporting role-based access and invite expiration.

Controller Organization:

• Introduced a barrel export in index.ts to centralize and simplify imports of all authentication controllers.