router.post('/verifyIdDoc', async (req, res) => {
validateOwnIdSignature(req); // See Validating Signatures.
const { loginId, type, data } = req.body;
const user = await users.findByLoginId(loginId);
if (!user) {
return res.status(404).send();
}
const nameMatches =
data.firstName.toLowerCase() === user.firstName.toLowerCase() &&
data.lastName.toLowerCase() === user.lastName.toLowerCase();
if (!nameMatches) {
return res.status(403).json({ reason: 'name mismatch' });
}
return res.status(204).send();
});
