]>
Commit | Line | Data |
---|---|---|
9457bf88 C |
1 | 'use strict' |
2 | ||
0c1cbbfe | 3 | const express = require('express') |
9bd26629 | 4 | const waterfall = require('async/waterfall') |
fc51fde0 | 5 | |
f253b1c1 | 6 | const constants = require('../../initializers/constants') |
feb4bdfd | 7 | const db = require('../../initializers/database') |
f253b1c1 | 8 | const logger = require('../../helpers/logger') |
55fa55a9 | 9 | const utils = require('../../helpers/utils') |
f253b1c1 | 10 | const middlewares = require('../../middlewares') |
9bd26629 C |
11 | const admin = middlewares.admin |
12 | const oAuth = middlewares.oauth | |
5c39adb7 C |
13 | const pagination = middlewares.pagination |
14 | const sort = middlewares.sort | |
15 | const validatorsPagination = middlewares.validators.pagination | |
16 | const validatorsSort = middlewares.validators.sort | |
9bd26629 | 17 | const validatorsUsers = middlewares.validators.users |
9457bf88 | 18 | |
9457bf88 C |
19 | const router = express.Router() |
20 | ||
99a64bfe | 21 | router.get('/me', oAuth.authenticate, getUserInformation) |
9bd26629 | 22 | |
5c39adb7 C |
23 | router.get('/', |
24 | validatorsPagination.pagination, | |
25 | validatorsSort.usersSort, | |
26 | sort.setUsersSort, | |
27 | pagination.setPagination, | |
28 | listUsers | |
29 | ) | |
30 | ||
9bd26629 C |
31 | router.post('/', |
32 | oAuth.authenticate, | |
33 | admin.ensureIsAdmin, | |
34 | validatorsUsers.usersAdd, | |
35 | createUser | |
36 | ) | |
37 | ||
38 | router.put('/:id', | |
39 | oAuth.authenticate, | |
40 | validatorsUsers.usersUpdate, | |
41 | updateUser | |
42 | ) | |
43 | ||
68a3b9f2 | 44 | router.delete('/:id', |
9bd26629 C |
45 | oAuth.authenticate, |
46 | admin.ensureIsAdmin, | |
47 | validatorsUsers.usersRemove, | |
48 | removeUser | |
49 | ) | |
6606150c | 50 | |
69b0a27c | 51 | router.post('/token', oAuth.token, success) |
9bd26629 | 52 | // TODO: Once https://github.com/oauthjs/node-oauth2-server/pull/289 is merged, implement revoke token route |
9457bf88 C |
53 | |
54 | // --------------------------------------------------------------------------- | |
55 | ||
56 | module.exports = router | |
57 | ||
58 | // --------------------------------------------------------------------------- | |
59 | ||
9bd26629 | 60 | function createUser (req, res, next) { |
feb4bdfd | 61 | const user = db.User.build({ |
9bd26629 C |
62 | username: req.body.username, |
63 | password: req.body.password, | |
ad4a8a1c | 64 | email: req.body.email, |
9bd26629 C |
65 | role: constants.USER_ROLES.USER |
66 | }) | |
67 | ||
feb4bdfd | 68 | user.save().asCallback(function (err, createdUser) { |
9bd26629 C |
69 | if (err) return next(err) |
70 | ||
71 | return res.type('json').status(204).end() | |
72 | }) | |
73 | } | |
74 | ||
99a64bfe | 75 | function getUserInformation (req, res, next) { |
feb4bdfd | 76 | db.User.loadByUsername(res.locals.oauth.token.user.username, function (err, user) { |
99a64bfe C |
77 | if (err) return next(err) |
78 | ||
79 | return res.json(user.toFormatedJSON()) | |
80 | }) | |
81 | } | |
82 | ||
9bd26629 | 83 | function listUsers (req, res, next) { |
feb4bdfd | 84 | db.User.listForApi(req.query.start, req.query.count, req.query.sort, function (err, usersList, usersTotal) { |
9bd26629 C |
85 | if (err) return next(err) |
86 | ||
55fa55a9 | 87 | res.json(utils.getFormatedObjects(usersList, usersTotal)) |
9bd26629 C |
88 | }) |
89 | } | |
90 | ||
91 | function removeUser (req, res, next) { | |
92 | waterfall([ | |
98ac898a | 93 | function loadUser (callback) { |
feb4bdfd | 94 | db.User.loadById(req.params.id, callback) |
9bd26629 C |
95 | }, |
96 | ||
98ac898a | 97 | function deleteUser (user, callback) { |
feb4bdfd | 98 | user.destroy().asCallback(callback) |
9bd26629 C |
99 | } |
100 | ], function andFinally (err) { | |
101 | if (err) { | |
102 | logger.error('Errors when removed the user.', { error: err }) | |
103 | return next(err) | |
104 | } | |
105 | ||
10431358 | 106 | return res.sendStatus(204) |
9bd26629 C |
107 | }) |
108 | } | |
109 | ||
110 | function updateUser (req, res, next) { | |
feb4bdfd | 111 | db.User.loadByUsername(res.locals.oauth.token.user.username, function (err, user) { |
9bd26629 C |
112 | if (err) return next(err) |
113 | ||
114 | user.password = req.body.password | |
feb4bdfd | 115 | user.save().asCallback(function (err) { |
9bd26629 C |
116 | if (err) return next(err) |
117 | ||
10431358 | 118 | return res.sendStatus(204) |
9bd26629 C |
119 | }) |
120 | }) | |
121 | } | |
122 | ||
9457bf88 C |
123 | function success (req, res, next) { |
124 | res.end() | |
125 | } |