refactor: use requireAuth in updates routes (required-auth)

server/api/updates/index.post.js

@@ -1,31 +1,10 @@
-import jwt from "jsonwebtoken";
 import Update from "../../models/update.js";
-import { connectDB } from "../../utils/mongoose.js";
 import { validateBody } from "../../utils/validateBody.js";
 import { updateCreateSchema } from "../../utils/schemas.js";
 
 export default defineEventHandler(async (event) => {
-  await connectDB();
-
-  const token = getCookie(event, "auth-token");
-
-  if (!token) {
-    throw createError({
-      statusCode: 401,
-      statusMessage: "Not authenticated",
-    });
-  }
-
-  let memberId;
-  try {
-    const decoded = jwt.verify(token, useRuntimeConfig().jwtSecret);
-    memberId = decoded.memberId;
-  } catch (err) {
-    throw createError({
-      statusCode: 401,
-      statusMessage: "Invalid or expired token",
-    });
-  }
+  const member = await requireAuth(event);
+  const memberId = member._id.toString();
 
   const body = await validateBody(event, updateCreateSchema);