[github/Chocobozzz/PeerTube.git] / server / controllers / api / users.ts

import * as express from 'express'

import { database as db } from '../../initializers/database'
import { USER_ROLES } from '../../initializers'
import { logger, getFormatedObjects } from '../../helpers'
import {
  authenticate,
  ensureIsAdmin,
  ensureUserRegistrationAllowed,
  usersAddValidator,
  usersUpdateValidator,
  usersRemoveValidator,
  usersVideoRatingValidator,
  paginationValidator,
  setPagination,
  usersSortValidator,
  setUsersSort,
  token
} from '../../middlewares'
import { UserVideoRate as FormatedUserVideoRate, UserCreate, UserUpdate } from '../../../shared'

const usersRouter = express.Router()

usersRouter.get('/me',
  authenticate,
  getUserInformation
)

usersRouter.get('/me/videos/:videoId/rating',
  authenticate,
  usersVideoRatingValidator,
  getUserVideoRating
)

usersRouter.get('/',
  paginationValidator,
  usersSortValidator,
  setUsersSort,
  setPagination,
  listUsers
)

usersRouter.post('/',
  authenticate,
  ensureIsAdmin,
  usersAddValidator,
  createUser
)

usersRouter.post('/register',
  ensureUserRegistrationAllowed,
  usersAddValidator,
  createUser
)

usersRouter.put('/:id',
  authenticate,
  usersUpdateValidator,
  updateUser
)

usersRouter.delete('/:id',
  authenticate,
  ensureIsAdmin,
  usersRemoveValidator,
  removeUser
)

usersRouter.post('/token', token, success)
// TODO: Once https://github.com/oauthjs/node-oauth2-server/pull/289 is merged, implement revoke token route

// ---------------------------------------------------------------------------

export {
  usersRouter
}

// ---------------------------------------------------------------------------

function createUser (req: express.Request, res: express.Response, next: express.NextFunction) {
  const body: UserCreate = req.body

  const user = db.User.build({
    username: body.username,
    password: body.password,
    email: body.email,
    displayNSFW: false,
    role: USER_ROLES.USER
  })

  user.save()
    .then(() => res.type('json').status(204).end())
    .catch(err => next(err))
}

function getUserInformation (req: express.Request, res: express.Response, next: express.NextFunction) {
  db.User.loadByUsername(res.locals.oauth.token.user.username)
    .then(user => res.json(user.toFormatedJSON()))
    .catch(err => next(err))
}

function getUserVideoRating (req: express.Request, res: express.Response, next: express.NextFunction) {
  const videoId = +req.params.videoId
  const userId = +res.locals.oauth.token.User.id

  db.UserVideoRate.load(userId, videoId, null)
    .then(ratingObj => {
      const rating = ratingObj ? ratingObj.type : 'none'
      const json: FormatedUserVideoRate = {
        videoId,
        rating
      }
      res.json(json)
    })
    .catch(err => next(err))
}

function listUsers (req: express.Request, res: express.Response, next: express.NextFunction) {
  db.User.listForApi(req.query.start, req.query.count, req.query.sort)
    .then(resultList => {
      res.json(getFormatedObjects(resultList.data, resultList.total))
    })
    .catch(err => next(err))
}

function removeUser (req: express.Request, res: express.Response, next: express.NextFunction) {
  db.User.loadById(req.params.id)
    .then(user => user.destroy())
    .then(() => res.sendStatus(204))
    .catch(err => {
      logger.error('Errors when removed the user.', err)
      return next(err)
    })
}

function updateUser (req: express.Request, res: express.Response, next: express.NextFunction) {
  const body: UserUpdate = req.body

  db.User.loadByUsername(res.locals.oauth.token.user.username)
    .then(user => {
      if (body.password) user.password = body.password
      if (body.displayNSFW !== undefined) user.displayNSFW = body.displayNSFW

      return user.save()
    })
    .then(() => res.sendStatus(204))
    .catch(err => next(err))
}

function success (req: express.Request, res: express.Response, next: express.NextFunction) {
  res.end()
}
Commit	Line	Data
4d4e5cd4	1	import * as express from 'express'
9457bf88	2
e02643f3	3	import { database as db } from '../../initializers/database'
6fcd19ba	4	import { USER_ROLES } from '../../initializers'
65fcc311 C	5	import { logger, getFormatedObjects } from '../../helpers'
	6	import {
	7	authenticate,
	8	ensureIsAdmin,
291e8d3e	9	ensureUserRegistrationAllowed,
65fcc311 C	10	usersAddValidator,
	11	usersUpdateValidator,
	12	usersRemoveValidator,
	13	usersVideoRatingValidator,
	14	paginationValidator,
	15	setPagination,
	16	usersSortValidator,
	17	setUsersSort,
	18	token
	19	} from '../../middlewares'
4771e000	20	import { UserVideoRate as FormatedUserVideoRate, UserCreate, UserUpdate } from '../../../shared'
65fcc311 C	21
	22	const usersRouter = express.Router()
	23
	24	usersRouter.get('/me',
	25	authenticate,
d38b8281 C	26	getUserInformation
	27	)
	28
65fcc311 C	29	usersRouter.get('/me/videos/:videoId/rating',
	30	authenticate,
	31	usersVideoRatingValidator,
d38b8281 C	32	getUserVideoRating
d38b8281 C	33	)
9bd26629	34
65fcc311 C	35	usersRouter.get('/',
	36	paginationValidator,
	37	usersSortValidator,
	38	setUsersSort,
	39	setPagination,
5c39adb7 C	40	listUsers
	41	)
	42
65fcc311 C	43	usersRouter.post('/',
	44	authenticate,
	45	ensureIsAdmin,
	46	usersAddValidator,
9bd26629 C	47	createUser
	48	)
	49
65fcc311	50	usersRouter.post('/register',
291e8d3e	51	ensureUserRegistrationAllowed,
65fcc311	52	usersAddValidator,
2c2e9092 C	53	createUser
	54	)
	55
65fcc311 C	56	usersRouter.put('/:id',
	57	authenticate,
	58	usersUpdateValidator,
9bd26629 C	59	updateUser
	60	)
	61
65fcc311 C	62	usersRouter.delete('/:id',
	63	authenticate,
	64	ensureIsAdmin,
	65	usersRemoveValidator,
9bd26629 C	66	removeUser
9bd26629 C	67	)
6606150c	68
65fcc311	69	usersRouter.post('/token', token, success)
9bd26629	70	// TODO: Once https://github.com/oauthjs/node-oauth2-server/pull/289 is merged, implement revoke token route
9457bf88 C	71
	72	// ---------------------------------------------------------------------------
	73
65fcc311 C	74	export {
	75	usersRouter
	76	}
9457bf88 C	77
	78	// ---------------------------------------------------------------------------
	79
69818c93	80	function createUser (req: express.Request, res: express.Response, next: express.NextFunction) {
4771e000 C	81	const body: UserCreate = req.body
4771e000 C	82
feb4bdfd	83	const user = db.User.build({
4771e000 C	84	username: body.username,
	85	password: body.password,
	86	email: body.email,
1d49e1e2	87	displayNSFW: false,
65fcc311	88	role: USER_ROLES.USER
9bd26629 C	89	})
9bd26629 C	90
6fcd19ba C	91	user.save()
	92	.then(() => res.type('json').status(204).end())
	93	.catch(err => next(err))
9bd26629 C	94	}
9bd26629 C	95
69818c93	96	function getUserInformation (req: express.Request, res: express.Response, next: express.NextFunction) {
6fcd19ba C	97	db.User.loadByUsername(res.locals.oauth.token.user.username)
	98	.then(user => res.json(user.toFormatedJSON()))
	99	.catch(err => next(err))
99a64bfe C	100	}
99a64bfe C	101
69818c93	102	function getUserVideoRating (req: express.Request, res: express.Response, next: express.NextFunction) {
0a6658fd	103	const videoId = +req.params.videoId
69818c93	104	const userId = +res.locals.oauth.token.User.id
d38b8281	105
6fcd19ba C	106	db.UserVideoRate.load(userId, videoId, null)
	107	.then(ratingObj => {
	108	const rating = ratingObj ? ratingObj.type : 'none'
	109	const json: FormatedUserVideoRate = {
	110	videoId,
	111	rating
	112	}
	113	res.json(json)
	114	})
	115	.catch(err => next(err))
d38b8281 C	116	}
d38b8281 C	117
69818c93	118	function listUsers (req: express.Request, res: express.Response, next: express.NextFunction) {
6fcd19ba C	119	db.User.listForApi(req.query.start, req.query.count, req.query.sort)
	120	.then(resultList => {
	121	res.json(getFormatedObjects(resultList.data, resultList.total))
	122	})
	123	.catch(err => next(err))
9bd26629 C	124	}
9bd26629 C	125
69818c93	126	function removeUser (req: express.Request, res: express.Response, next: express.NextFunction) {
6fcd19ba C	127	db.User.loadById(req.params.id)
	128	.then(user => user.destroy())
	129	.then(() => res.sendStatus(204))
	130	.catch(err => {
ad0997ad	131	logger.error('Errors when removed the user.', err)
9bd26629	132	return next(err)
6fcd19ba	133	})
9bd26629 C	134	}
9bd26629 C	135
69818c93	136	function updateUser (req: express.Request, res: express.Response, next: express.NextFunction) {
4771e000 C	137	const body: UserUpdate = req.body
4771e000 C	138
6fcd19ba C	139	db.User.loadByUsername(res.locals.oauth.token.user.username)
6fcd19ba C	140	.then(user => {
4771e000 C	141	if (body.password) user.password = body.password
4771e000 C	142	if (body.displayNSFW !== undefined) user.displayNSFW = body.displayNSFW
1d49e1e2	143
6fcd19ba	144	return user.save()
9bd26629	145	})
6fcd19ba C	146	.then(() => res.sendStatus(204))
6fcd19ba C	147	.catch(err => next(err))
9bd26629 C	148	}
9bd26629 C	149
69818c93	150	function success (req: express.Request, res: express.Response, next: express.NextFunction) {
9457bf88 C	151	res.end()
9457bf88 C	152	}