fix(optimization): limit fields retrieval for user

lib/server/getUserByLoginToken.js

@@ -15,8 +15,10 @@ export async function getUserByLoginToken(loginToken) {
   // the hashed token is the key to find the possible current user in the db
   const hashedToken = Accounts._hashLoginToken(loginToken);
 
-  // get the possible user from the database
-  const user = await Meteor.users.rawCollection().findOne({ [USER_TOKEN_PATH]: hashedToken });
+  // get the possible user from the database with minimal fields
+  const fields = { _id: 1, 'services.resume': 1 };
+  const user = await Meteor.users.rawCollection()
+    .findOne({ [USER_TOKEN_PATH]: hashedToken }, { fields });
 
   if (!user) { throw NO_VALID_USER_ERROR; }