nodebb/src/routes/api.js

"use strict";

var path = require('path'),
	async = require('async'),
	fs = require('fs'),
	nconf = require('nconf'),

	db = require('./../database'),
	user = require('./../user'),
	topics = require('./../topics'),
	posts = require('./../posts'),
	categories = require('./../categories'),
	meta = require('./../meta'),
	plugins = require('./../plugins'),
	utils = require('./../../public/src/utils'),
	pkg = require('./../../package.json');


function searchTerm(req, res, next) {
	if (!plugins.hasListeners('filter:search.query')) {
		return res.redirect('/404');
	}

	function searchPosts(callback) {
		plugins.fireHook('filter:search.query', {
			index: 'post',
			query: req.params.term
		}, function(err, pids) {
			if (err) {
				return callback(err);
			}

			posts.getPostSummaryByPids(pids, false, callback);
		});
	}

	function searchTopics(callback) {
		plugins.fireHook('filter:search.query', {
			index: 'topic',
			query: req.params.term
		}, function(err, tids) {
			if (err) {
				return callback(err);
			}

			topics.getTopicsByTids(tids, 0, callback);
		});
	}

	if ((req.user && req.user.uid) || meta.config.allowGuestSearching === '1') {
		async.parallel([searchPosts, searchTopics], function (err, results) {
			if (err) {
				return next(err);
			}

			if(!results) {
				results = [];
				results[0] = results[1] = [];
			}

			return res.json({
				show_no_topics: results[1].length ? 'hide' : '',
				show_no_posts: results[0].length ? 'hide' : '',
				show_results: '',
				search_query: req.params.term,
				posts: results[0],
				topics: results[1],
				post_matches : results[0].length,
				topic_matches : results[1].length
			});
		});
	} else {
		res.send(403);
	}
}

function upload(req, res, filesIterator, next) {
	if(!req.user) {
		return res.json(403, {message:'not allowed'});
	}
	var files = req.files.files;

	if(!Array.isArray(files)) {
		return res.json(500, {message: 'invalid files'});
	}

	if(Array.isArray(files[0])) {
		files = files[0];
	}

	function deleteTempFiles() {
		for(var i=0; i<files.length; ++i) {
			fs.unlink(files[i].path);
		}
	}

	async.map(files, filesIterator, function(err, images) {
		deleteTempFiles();

		if(err) {
			return res.send(500, err.message);
		}

		// IE8 - send it as text/html so browser won't trigger a file download for the json response
		// malsup.com/jquery/form/#file-upload
		res.send(200, req.xhr ? images : JSON.stringify(images));
	});
}

function uploadPost(req, res, next) {
	upload(req, res, function(file, next) {
		if(file.type.match(/image./)) {
			posts.uploadPostImage(file, next);
		} else {
			posts.uploadPostFile(file, next);
		}
	}, next);
}

function uploadThumb(req, res, next) {
	upload(req, res, function(file, next) {
		if(file.type.match(/image./)) {
			topics.uploadTopicThumb(file, next);
		} else {
			res.json(500, {message: 'Invalid File'});
		}
	}, next);
}

function getModerators(req, res, next) {
	categories.getModerators(req.params.cid, function(err, moderators) {
		res.json({moderators: moderators});
	});
}

function getTemplatesListing(req, res, next) {
	utils.walk(nconf.get('views_dir'), function (err, data) {
		data = data.concat(require('./plugins').getCustomTemplates())
				.filter(function(value, index, self) {
					return self.indexOf(value) === index;
				}).map(function(el) {
					return el.replace(nconf.get('views_dir') + '/', '');
				});

		res.json(data);
	});
}

module.exports =  function(app, middleware, controllers) {
	app.namespace('/api', function () {
		app.all('*', middleware.updateLastOnlineTime, middleware.prepareAPI);

		app.get('/config', controllers.api.getConfig);

		app.get('/user/uid/:uid', middleware.checkGlobalPrivacySettings, controllers.accounts.getUserByUID);
		app.get('/get_templates_listing', getTemplatesListing);
		app.get('/search/:term', searchTerm);
		app.get('/categories/:cid/moderators', getModerators);

		app.post('/post/upload', uploadPost);
		app.post('/topic/thumb/upload', uploadThumb);
	});

	// this should be in the API namespace
	// also, perhaps pass in :userslug so we can use checkAccountPermissions middleware - in future will allow admins to upload a picture for a user
	app.post('/user/uploadpicture', middleware.authenticate, middleware.checkGlobalPrivacySettings, /*middleware.checkAccountPermissions,*/ controllers.accounts.uploadPicture);
};
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`"use strict";`

cleaned up requires 11 years ago			`var path = require('path'),`
			`async = require('async'),`
upload changes, show progres in composer 11 years ago			`fs = require('fs'),`
template compiling init; changing themes now finally works on this branch 11 years ago			`nconf = require('nconf'),`
cleaned up requires 11 years ago
started moving out api functionality out of the route file into controllers/api.js 11 years ago			`db = require('./../database'),`
			`user = require('./../user'),`
			`topics = require('./../topics'),`
			`posts = require('./../posts'),`
			`categories = require('./../categories'),`
			`meta = require('./../meta'),`
			`plugins = require('./../plugins'),`
			`utils = require('./../../public/src/utils'),`
moved get_custom_templates into plugins.js 11 years ago			`pkg = require('./../../package.json');`
cleaned up webserver.js a bit, moved api routes to its own file, closes #54 12 years ago
user selectable pagination 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`function searchTerm(req, res, next) {`
			`if (!plugins.hasListeners('filter:search.query')) {`
			`return res.redirect('/404');`
			`}`
user selectable pagination 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`function searchPosts(callback) {`
			`plugins.fireHook('filter:search.query', {`
			`index: 'post',`
			`query: req.params.term`
			`}, function(err, pids) {`
			`if (err) {`
			`return callback(err);`
			`}`
template compiling init; changing themes now finally works on this branch 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`posts.getPostSummaryByPids(pids, false, callback);`
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`});`
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`}`

			`function searchTopics(callback) {`
			`plugins.fireHook('filter:search.query', {`
			`index: 'topic',`
			`query: req.params.term`
			`}, function(err, tids) {`
			`if (err) {`
			`return callback(err);`
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`}`
lots of pagination work, query params, ajaxify to pids 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`topics.getTopicsByTids(tids, 0, callback);`
			`});`
			`}`
interim commit 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`if ((req.user && req.user.uid) \|\| meta.config.allowGuestSearching === '1') {`
			`async.parallel([searchPosts, searchTopics], function (err, results) {`
			`if (err) {`
			`return next(err);`
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`}`
closes #651 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`if(!results) {`
			`results = [];`
			`results[0] = results[1] = [];`
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`}`
closes #1087 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`return res.json({`
			`show_no_topics: results[1].length ? 'hide' : '',`
			`show_no_posts: results[0].length ? 'hide' : '',`
			`show_results: '',`
			`search_query: req.params.term,`
			`posts: results[0],`
			`topics: results[1],`
			`post_matches : results[0].length,`
			`topic_matches : results[1].length`
			`});`
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`});`
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`} else {`
			`res.send(403);`
			`}`
			`}`

			`function upload(req, res, filesIterator, next) {`
			`if(!req.user) {`
			`return res.json(403, {message:'not allowed'});`
			`}`
			`var files = req.files.files;`

			`if(!Array.isArray(files)) {`
			`return res.json(500, {message: 'invalid files'});`
			`}`

			`if(Array.isArray(files[0])) {`
			`files = files[0];`
			`}`

			`function deleteTempFiles() {`
			`for(var i=0; i<files.length; ++i) {`
			`fs.unlink(files[i].path);`
			`}`
			`}`
cleaned up webserver.js a bit, moved api routes to its own file, closes #54 12 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`async.map(files, filesIterator, function(err, images) {`
			`deleteTempFiles();`
hiding search buttons and route when search is not configured 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`if(err) {`
			`return res.send(500, err.message);`
			`}`
express-namespaceing routes 12 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`// IE8 - send it as text/html so browser won't trigger a file download for the json response`
			`// malsup.com/jquery/form/#file-upload`
			`res.send(200, req.xhr ? images : JSON.stringify(images));`
			`});`
			`}`

			`function uploadPost(req, res, next) {`
			`upload(req, res, function(file, next) {`
			`if(file.type.match(/image./)) {`
			`posts.uploadPostImage(file, next);`
			`} else {`
			`posts.uploadPostFile(file, next);`
			`}`
			`}, next);`
			`}`

			`function uploadThumb(req, res, next) {`
			`upload(req, res, function(file, next) {`
			`if(file.type.match(/image./)) {`
			`topics.uploadTopicThumb(file, next);`
			`} else {`
			`res.json(500, {message: 'Invalid File'});`
			`}`
			`}, next);`
			`}`
index topic titles too 12 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`function getModerators(req, res, next) {`
			`categories.getModerators(req.params.cid, function(err, moderators) {`
			`res.json({moderators: moderators});`
			`});`
			`}`

			`function getTemplatesListing(req, res, next) {`
			`utils.walk(nconf.get('views_dir'), function (err, data) {`
moved get_custom_templates into plugins.js 11 years ago			`data = data.concat(require('./plugins').getCustomTemplates())`
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`.filter(function(value, index, self) {`
			`return self.indexOf(value) === index;`
			`}).map(function(el) {`
			`return el.replace(nconf.get('views_dir') + '/', '');`
			`});`
index topic titles too 12 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`res.json(data);`
			`});`
			`}`
index topic titles too 12 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`module.exports = function(app, middleware, controllers) {`
			`app.namespace('/api', function () {`
			`app.all('*', middleware.updateLastOnlineTime, middleware.prepareAPI);`
upload changes, show progres in composer 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`app.get('/config', controllers.api.getConfig);`
upload changes, show progres in composer 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`app.get('/user/uid/:uid', middleware.checkGlobalPrivacySettings, controllers.accounts.getUserByUID);`
			`app.get('/get_templates_listing', getTemplatesListing);`
			`app.get('/search/:term', searchTerm);`
			`app.get('/categories/:cid/moderators', getModerators);`
upload changes, show progres in composer 11 years ago
one final push, cleanup + organize + lint; made feeds/meta/plugins routes follow same pattern as other route files 11 years ago			`app.post('/post/upload', uploadPost);`
			`app.post('/topic/thumb/upload', uploadThumb);`
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`});`

notifications route; added middleware.authenticate to user/uploadpicture api route 11 years ago			`// this should be in the API namespace`
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`// also, perhaps pass in :userslug so we can use checkAccountPermissions middleware - in future will allow admins to upload a picture for a user`
notifications route; added middleware.authenticate to user/uploadpicture api route 11 years ago			`app.post('/user/uploadpicture', middleware.authenticate, middleware.checkGlobalPrivacySettings, /middleware.checkAccountPermissions,/ controllers.accounts.uploadPicture);`
moved api-only routes into routes/api.js, cleanup & linting 11 years ago			`};`