}
function videosAdd (req, res, next) {
- req.checkFiles('videofile[0].originalname', 'Should have an input video').notEmpty()
- // TODO: move to constants and function
- req.checkFiles('videofile[0].mimetype', 'Should have a correct mime type').matches(/video\/(webm)|(mp4)|(ogg)/i)
+ req.checkBody('videofile', 'Should have a valid file').isVideoFile(req.files)
req.checkBody('name', 'Should have a valid name').isVideoNameValid()
req.checkBody('description', 'Should have a valid description').isVideoDescriptionValid()
req.checkBody('tags', 'Should have correct tags').isVideoTagsValid()
logger.debug('Checking videosUpdate parameters', { parameters: req.body })
checkErrors(req, res, function () {
- if (res.locals.video.isOwned() === false) {
- return res.status(403).send('Cannot update video of another pod')
- }
+ checkVideoExists(req.params.id, res, function () {
+ // We need to make additional checks
+ if (res.locals.video.isOwned() === false) {
+ return res.status(403).send('Cannot update video of another pod')
+ }
- if (res.locals.video.Author.userId !== res.locals.oauth.token.User.id) {
- return res.status(403).send('Cannot update video of another user')
- }
+ if (res.locals.video.Author.userId !== res.locals.oauth.token.User.id) {
+ return res.status(403).send('Cannot update video of another user')
+ }
- checkVideoExists(req.params.id, res, next)
+ next()
+ })
})
}