func AuthenticateUser(mobile, password *string, ms *services.MySQL) (*User, *app.Msg) {
u := User{}
query := "SELECT id, password FROM users WHERE mobile = ?"
dbError := ms.QueryRow(query, mobile).Scan(&u.Id, &u.Password)
if dbError != nil {
return nil, app.NewErrMsg("Invalid credentials")
} else {
err := bcrypt.CompareHashAndPassword([]byte(u.Password), []byte(*password))
if err != nil {
return nil, app.NewErrMsg("Invalid credentials")
}
return &u, nil
}
}
