From 187d5f2b1003f222d4224db1381e51e6da59dd5e Mon Sep 17 00:00:00 2001
From: Agusti Fernandez Pardo <git@agusti.me>
Date: Tue, 31 May 2022 18:53:41 +0200
Subject: [PATCH] docs: add some comments

---
 pages/api/users/index.ts | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/pages/api/users/index.ts b/pages/api/users/index.ts
index 122892f2e1..3839ae21b6 100644
--- a/pages/api/users/index.ts
+++ b/pages/api/users/index.ts
@@ -30,19 +30,18 @@ async function getAllorCreateUser(
   const isAdmin = await isAdminGuard(userId);
   if (method === "GET") {
     if (!isAdmin) {
-      const data = await prisma.user.findMany({
-        where: {
-          id: userId,
-        },
-      });
+      // If user is not ADMIN, return only his data.
+      const data = await prisma.user.findMany({ where: { id: userId } });
       const users = data.map((user) => schemaUserReadPublic.parse(user));
       if (users) res.status(200).json({ users });
     } else {
+      // If user is admin, return all users.
       const data = await prisma.user.findMany({});
       const users = data.map((user) => schemaUserReadPublic.parse(user));
       if (users) res.status(200).json({ users });
     }
   } else if (method === "POST") {
+    // If user is not ADMIN, return unauthorized.
     if (!isAdmin) res.status(401).json({ message: "You are not authorized" });
     else {
       const safeBody = schemaUserCreateBodyParams.safeParse(body);