peertube/server/controllers/api/users.ts

import * as express from 'express'
import { waterfall } from 'async'

import { database as db } from '../../initializers/database'
import { CONFIG, USER_ROLES } from '../../initializers'
import { logger, getFormatedObjects } from '../../helpers'
import {
  authenticate,
  ensureIsAdmin,
  usersAddValidator,
  usersUpdateValidator,
  usersRemoveValidator,
  usersVideoRatingValidator,
  paginationValidator,
  setPagination,
  usersSortValidator,
  setUsersSort,
  token
} from '../../middlewares'

const usersRouter = express.Router()

usersRouter.get('/me',
  authenticate,
  getUserInformation
)

usersRouter.get('/me/videos/:videoId/rating',
  authenticate,
  usersVideoRatingValidator,
  getUserVideoRating
)

usersRouter.get('/',
  paginationValidator,
  usersSortValidator,
  setUsersSort,
  setPagination,
  listUsers
)

usersRouter.post('/',
  authenticate,
  ensureIsAdmin,
  usersAddValidator,
  createUser
)

usersRouter.post('/register',
  ensureRegistrationEnabled,
  usersAddValidator,
  createUser
)

usersRouter.put('/:id',
  authenticate,
  usersUpdateValidator,
  updateUser
)

usersRouter.delete('/:id',
  authenticate,
  ensureIsAdmin,
  usersRemoveValidator,
  removeUser
)

usersRouter.post('/token', token, success)
// TODO: Once https://github.com/oauthjs/node-oauth2-server/pull/289 is merged, implement revoke token route

// ---------------------------------------------------------------------------

export {
  usersRouter
}

// ---------------------------------------------------------------------------

function ensureRegistrationEnabled (req: express.Request, res: express.Response, next: express.NextFunction) {
  const registrationEnabled = CONFIG.SIGNUP.ENABLED

  if (registrationEnabled === true) {
    return next()
  }

  return res.status(400).send('User registration is not enabled.')
}

function createUser (req: express.Request, res: express.Response, next: express.NextFunction) {
  const user = db.User.build({
    username: req.body.username,
    password: req.body.password,
    email: req.body.email,
    displayNSFW: false,
    role: USER_ROLES.USER
  })

  user.save().asCallback(function (err) {
    if (err) return next(err)

    return res.type('json').status(204).end()
  })
}

function getUserInformation (req: express.Request, res: express.Response, next: express.NextFunction) {
  db.User.loadByUsername(res.locals.oauth.token.user.username, function (err, user) {
    if (err) return next(err)

    return res.json(user.toFormatedJSON())
  })
}

function getUserVideoRating (req: express.Request, res: express.Response, next: express.NextFunction) {
  const videoId = '' + req.params.videoId
  const userId = +res.locals.oauth.token.User.id

  db.UserVideoRate.load(userId, videoId, null, function (err, ratingObj) {
    if (err) return next(err)

    const rating = ratingObj ? ratingObj.type : 'none'

    res.json({
      videoId,
      rating
    })
  })
}

function listUsers (req: express.Request, res: express.Response, next: express.NextFunction) {
  db.User.listForApi(req.query.start, req.query.count, req.query.sort, function (err, usersList, usersTotal) {
    if (err) return next(err)

    res.json(getFormatedObjects(usersList, usersTotal))
  })
}

function removeUser (req: express.Request, res: express.Response, next: express.NextFunction) {
  waterfall([
    function loadUser (callback) {
      db.User.loadById(req.params.id, callback)
    },

    function deleteUser (user, callback) {
      user.destroy().asCallback(callback)
    }
  ], function andFinally (err) {
    if (err) {
      logger.error('Errors when removed the user.', { error: err })
      return next(err)
    }

    return res.sendStatus(204)
  })
}

function updateUser (req: express.Request, res: express.Response, next: express.NextFunction) {
  db.User.loadByUsername(res.locals.oauth.token.user.username, function (err, user) {
    if (err) return next(err)

    if (req.body.password) user.password = req.body.password
    if (req.body.displayNSFW !== undefined) user.displayNSFW = req.body.displayNSFW

    user.save().asCallback(function (err) {
      if (err) return next(err)

      return res.sendStatus(204)
    })
  })
}

function success (req: express.Request, res: express.Response, next: express.NextFunction) {
  res.end()
}
require -> import 2017-06-05 15:53:49 -04:00			`import * as express from 'express'`
First typescript iteration 2017-05-15 16:22:03 -04:00			`import { waterfall } from 'async'`
OAuth server: first draft 2016-03-21 06:56:33 -04:00
Type models 2017-05-22 14:58:25 -04:00			`import { database as db } from '../../initializers/database'`
First typescript iteration 2017-05-15 16:22:03 -04:00			`import { CONFIG, USER_ROLES } from '../../initializers'`
			`import { logger, getFormatedObjects } from '../../helpers'`
			`import {`
			`authenticate,`
			`ensureIsAdmin,`
			`usersAddValidator,`
			`usersUpdateValidator,`
			`usersRemoveValidator,`
			`usersVideoRatingValidator,`
			`paginationValidator,`
			`setPagination,`
			`usersSortValidator,`
			`setUsersSort,`
			`token`
			`} from '../../middlewares'`

			`const usersRouter = express.Router()`

			`usersRouter.get('/me',`
			`authenticate,`
Add like/dislike system for videos 2017-03-08 15:35:43 -05:00			`getUserInformation`
			`)`

First typescript iteration 2017-05-15 16:22:03 -04:00			`usersRouter.get('/me/videos/:videoId/rating',`
			`authenticate,`
			`usersVideoRatingValidator,`
Add like/dislike system for videos 2017-03-08 15:35:43 -05:00			`getUserVideoRating`
			`)`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00
First typescript iteration 2017-05-15 16:22:03 -04:00			`usersRouter.get('/',`
			`paginationValidator,`
			`usersSortValidator,`
			`setUsersSort,`
			`setPagination,`
Server: add user list sort/pagination 2016-08-16 16:31:45 -04:00			`listUsers`
			`)`

First typescript iteration 2017-05-15 16:22:03 -04:00			`usersRouter.post('/',`
			`authenticate,`
			`ensureIsAdmin,`
			`usersAddValidator,`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`createUser`
			`)`

First typescript iteration 2017-05-15 16:22:03 -04:00			`usersRouter.post('/register',`
Server: add ability to register new user 2017-04-09 06:08:36 -04:00			`ensureRegistrationEnabled,`
First typescript iteration 2017-05-15 16:22:03 -04:00			`usersAddValidator,`
Server: add ability to register new user 2017-04-09 06:08:36 -04:00			`createUser`
			`)`

First typescript iteration 2017-05-15 16:22:03 -04:00			`usersRouter.put('/:id',`
			`authenticate,`
			`usersUpdateValidator,`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`updateUser`
			`)`

First typescript iteration 2017-05-15 16:22:03 -04:00			`usersRouter.delete('/:id',`
			`authenticate,`
			`ensureIsAdmin,`
			`usersRemoveValidator,`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`removeUser`
			`)`
Server: move clients in its own file 2016-08-05 10:09:39 -04:00
First typescript iteration 2017-05-15 16:22:03 -04:00			`usersRouter.post('/token', token, success)`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`// TODO: Once https://github.com/oauthjs/node-oauth2-server/pull/289 is merged, implement revoke token route`
OAuth server: first draft 2016-03-21 06:56:33 -04:00
			`// ---------------------------------------------------------------------------`

First typescript iteration 2017-05-15 16:22:03 -04:00			`export {`
			`usersRouter`
			`}`
OAuth server: first draft 2016-03-21 06:56:33 -04:00
			`// ---------------------------------------------------------------------------`

Type functions 2017-06-10 16:15:25 -04:00			`function ensureRegistrationEnabled (req: express.Request, res: express.Response, next: express.NextFunction) {`
First typescript iteration 2017-05-15 16:22:03 -04:00			`const registrationEnabled = CONFIG.SIGNUP.ENABLED`
Server: add ability to register new user 2017-04-09 06:08:36 -04:00
			`if (registrationEnabled === true) {`
			`return next()`
			`}`

			`return res.status(400).send('User registration is not enabled.')`
			`}`

Type functions 2017-06-10 16:15:25 -04:00			`function createUser (req: express.Request, res: express.Response, next: express.NextFunction) {`
First version with PostgreSQL 2016-12-11 15:50:51 -05:00			`const user = db.User.build({`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`username: req.body.username,`
			`password: req.body.password,`
Add email to users 2017-02-18 03:29:59 -05:00			`email: req.body.email,`
Server: Add NSFW in user profile 2017-04-03 15:24:36 -04:00			`displayNSFW: false,`
First typescript iteration 2017-05-15 16:22:03 -04:00			`role: USER_ROLES.USER`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`})`

Type functions 2017-06-10 16:15:25 -04:00			`user.save().asCallback(function (err) {`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`if (err) return next(err)`

			`return res.type('json').status(204).end()`
			`})`
			`}`

Type functions 2017-06-10 16:15:25 -04:00			`function getUserInformation (req: express.Request, res: express.Response, next: express.NextFunction) {`
First version with PostgreSQL 2016-12-11 15:50:51 -05:00			`db.User.loadByUsername(res.locals.oauth.token.user.username, function (err, user) {`
Server: allow user to get its informations (/users/me) 2016-08-05 11:19:08 -04:00			`if (err) return next(err)`

			`return res.json(user.toFormatedJSON())`
			`})`
			`}`

Type functions 2017-06-10 16:15:25 -04:00			`function getUserVideoRating (req: express.Request, res: express.Response, next: express.NextFunction) {`
			`const videoId = '' + req.params.videoId`
			`const userId = +res.locals.oauth.token.User.id`
Add like/dislike system for videos 2017-03-08 15:35:43 -05:00
Type models 2017-05-22 14:58:25 -04:00			`db.UserVideoRate.load(userId, videoId, null, function (err, ratingObj) {`
Add like/dislike system for videos 2017-03-08 15:35:43 -05:00			`if (err) return next(err)`

			`const rating = ratingObj ? ratingObj.type : 'none'`

			`res.json({`
			`videoId,`
			`rating`
			`})`
			`})`
			`}`

Type functions 2017-06-10 16:15:25 -04:00			`function listUsers (req: express.Request, res: express.Response, next: express.NextFunction) {`
First version with PostgreSQL 2016-12-11 15:50:51 -05:00			`db.User.listForApi(req.query.start, req.query.count, req.query.sort, function (err, usersList, usersTotal) {`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`if (err) return next(err)`

First typescript iteration 2017-05-15 16:22:03 -04:00			`res.json(getFormatedObjects(usersList, usersTotal))`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`})`
			`}`

Type functions 2017-06-10 16:15:25 -04:00			`function removeUser (req: express.Request, res: express.Response, next: express.NextFunction) {`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`waterfall([`
Server: use video hook to send information to other pods when a video is deleted 2016-12-29 05:17:11 -05:00			`function loadUser (callback) {`
First version with PostgreSQL 2016-12-11 15:50:51 -05:00			`db.User.loadById(req.params.id, callback)`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`},`

Server: use video hook to send information to other pods when a video is deleted 2016-12-29 05:17:11 -05:00			`function deleteUser (user, callback) {`
First version with PostgreSQL 2016-12-11 15:50:51 -05:00			`user.destroy().asCallback(callback)`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`}`
			`], function andFinally (err) {`
			`if (err) {`
			`logger.error('Errors when removed the user.', { error: err })`
			`return next(err)`
			`}`

Server: fix status code when updating/removing a user 2016-08-05 12:08:55 -04:00			`return res.sendStatus(204)`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`})`
			`}`

Type functions 2017-06-10 16:15:25 -04:00			`function updateUser (req: express.Request, res: express.Response, next: express.NextFunction) {`
First version with PostgreSQL 2016-12-11 15:50:51 -05:00			`db.User.loadByUsername(res.locals.oauth.token.user.username, function (err, user) {`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`if (err) return next(err)`

Server: Add NSFW in user profile 2017-04-03 15:24:36 -04:00			`if (req.body.password) user.password = req.body.password`
			`if (req.body.displayNSFW !== undefined) user.displayNSFW = req.body.displayNSFW`

First version with PostgreSQL 2016-12-11 15:50:51 -05:00			`user.save().asCallback(function (err) {`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`if (err) return next(err)`

Server: fix status code when updating/removing a user 2016-08-05 12:08:55 -04:00			`return res.sendStatus(204)`
Implement user API (create, update, remove, list) 2016-08-04 16:32:36 -04:00			`})`
			`})`
			`}`

Type functions 2017-06-10 16:15:25 -04:00			`function success (req: express.Request, res: express.Response, next: express.NextFunction) {`
OAuth server: first draft 2016-03-21 06:56:33 -04:00			`res.end()`
			`}`