//File: controllers/userController.js var mongoose = require('mongoose'); var adminModel = mongoose.model('adminModel'); var userModel = mongoose.model('userModel'); var userController = require('../controllers/userController'); var notificationModel = mongoose.model('notificationModel'); var travelModel = mongoose.model('travelModel'); var travelCtrl = require('../controllers/travelController'); var config = require('../config'); var adminConfig = require('../adminConfig'); // get our config file var pageSize = config.pageSize; /* */ var jwt = require('jsonwebtoken'); // used to create, sign, and verify tokens var express = require("express"); var app = express(); var config = require('../config'); // get our config file app.set('superSecret', config.secret); // secret variable var crypto = require('crypto'); /* */ var request = require('request'); //POST - Insert a new User in the DB exports.signup = function(req, res) { var admin = new adminModel({ username: req.body.username, password: crypto.createHash('sha256').update(req.body.password).digest('base64'), email: req.body.email, phone: req.body.phone, telegram: req.body.telegram }); if (admin.username == undefined) { return res.status(500).jsonp("empty inputs"); } else if (admin.password == undefined) { return res.status(500).jsonp("empty inputs"); } else if (admin.email == undefined) { return res.status(500).jsonp("empty inputs"); } adminPasswordGetted = crypto.createHash('sha256').update(req.body.adminPassword).digest('base64'); console.log(adminPasswordGetted); console.log(adminConfig.passwordHash); if (adminPasswordGetted != adminConfig.passwordHash) { return res.status(500).jsonp("admin password not valid"); } admin.save(function(err, admin) { if (err) return res.send(500, err.message); exports.login(req, res); }); }; //POST - auth user exports.login = function(req, res) { // find the user adminModel.findOne({ username: req.body.username }) .select('+password') .exec(function(err, user) { if (err) throw err; if (!user) { res.json({ success: false, message: 'Authentication failed. User not found.' }); } else if (user) { req.body.password = crypto.createHash('sha256').update(req.body.password).digest('base64'); // check if password matches if (user.password != req.body.password) { res.json({ success: false, message: 'Authentication failed. Wrong password.' }); } else { // if user is found and password is right // create a token var token = jwt.sign({ foo: 'bar' }, app.get('superSecret'), { //expiresInMinutes: 1440 // expires in 24 hours //expiresIn: '60m' }); user.token = token; user.save(function(err, user) { if (err) return res.send(500, err.message); //res.status(200).jsonp(travel); console.log(user); // return the information including token as JSON user.password = ""; res.json({ success: true, message: 'Enjoy your token!', token: token, user: user }); }); } } }); }; exports.getAllAdmins = function(req, res) { adminModel.find() .limit(pageSize) .skip(pageSize * Number(req.query.page)) .exec(function(err, admins) { if (err) return res.send(500, err.message); res.status(200).jsonp(admins); }); }; exports.changePassword = function(req, res) { //if(req.body.) userModel.update({ 'token': req.headers['x-access-token'] }, req.body, function(err) { if (err) return console.log(err); exports.getUserByToken(req, res); }); }; exports.deleteTravel = function(req, res) { adminModel.findOne({ 'token': req.headers['x-access-token'] }) .exec(function(err, admin) { if (!admin) { res.json({ success: false, message: 'Admin not found' }); } else if (admin) { if (err) return res.send(500, err.message); travelModel.findById(req.params.travelid, function(err, travel) { if (err) return res.send(500, err.message); //add notification to the user who has created the travel userModel.findOne({ _id: travel.user }) .exec(function(err, user) { if (err) return res.send(500, err.message); if (!user) { //console.log("Notification not posible, user owner of the travel not exist"); } else if (user) { var notification = new notificationModel({ concept: "admin", message: "an admin has deleted your travel: " + travel.title, date: new Date(), icon: 'admin', link: "users/" + user._id, user: user._id }); notification.save(function(err, notification) { if (err) return res.send(500, err.message); user.notifications.push(notification._id); user.save(function(err, user) { if (err) return res.send(500, err.message); //notification added to user }); }); } }); travel.remove(function(err) { if (err) return res.send(500, err.message); travelCtrl.getAllTravels(req, res); }); }); } }); }; exports.deleteUser = function(req, res) { adminModel.findOne({ 'token': req.headers['x-access-token'] }) .exec(function(err, admin) { if (!admin) { res.json({ success: false, message: 'Admin not found' }); } else if (admin) { if (err) return res.send(500, err.message); userModel.findOne({ _id: req.params.userid }) .exec(function(err, user) { if (err) return res.send(500, err.message); if (!user) { res.json({ success: false, message: 'Delete user not posible, user not exist' }); } else if (user) { //delete all the travels of this user travelModel.find({ user: user._id }).remove().exec(function(err, data) {}); //delete all the comments of this user //now delete user user.remove(function(err) { if (err) return res.send(500, err.message); res.status(200).jsonp("deleted"); }); } }); } }); }; function isNodeInNodes(node, nodes) { for (var i = 0; i < nodes.length; i++) { if (node.title == nodes[i].title) { return (i); } } return (-1); } exports.network = function(req, res) { adminModel.findOne({ 'token': req.headers['x-access-token'] }) .exec(function(err, admin) { if (!admin) { res.json({ success: false, message: 'Admin not found' }); } else if (admin) { if (err) return res.send(500, err.message); userModel.find() .limit(pageSize) .skip(pageSize * Number(req.query.page)) .lean() //.populate({path: 'travels', populate: {path: 'joins', populate: {path: 'username'}}}) .populate('travels', 'title type joins') .populate('likes', 'username avatar') .exec(function(err, users) { if (err) return res.send(500, err.message); /*res.status(200).jsonp(users);*/ var nodes = []; var edges = []; for (var i = 0; i < users.length; i++) { var node = { title: users[i].username, label: users[i].username, image: users[i].avatar, shape: "image", id: users[i]._id, group: users[i]._id }; var lNode = isNodeInNodes(node, nodes); if (lNode < 0) { nodes.push(node); var uNode = nodes.length - 1; } for (var j = 0; j < users[i].likes.length; j++) { /*console.log(i + ", " + j); console.log(nodes);*/ var node = { title: users[i].likes[j].username, label: users[i].likes[j].username, image: users[i].likes[j].avatar, shape: "image", id: users[i].likes[j]._id }; var lNode = isNodeInNodes(node, nodes); if (lNode < 0) { //node no exist nodes.push(node); lNode = nodes.length - 1; } else { //node already exist } var edge = { from: users[i]._id, to: users[i].likes[j]._id, label: "like", arrows: "to", color: { color: "#E57373" //red300 } }; edges.push(edge); } for (var j = 0; j < users[i].travels.length; j++) { /*console.log(i + ", " + j); console.log(nodes);*/ var node = { title: users[i].travels[j].title, label: users[i].travels[j].title, image: "img/" + users[i].travels[j].type + ".png", shape: "image", id: users[i].travels[j]._id, value: "0.5", group: users[i]._id }; var lNode = isNodeInNodes(node, nodes); if (lNode < 0) { //node no exist nodes.push(node); lNode = nodes.length - 1; } else { //node already exist } var edge = { from: users[i]._id, to: users[i].travels[j]._id, color: { color: "#616161" //grey } }; edges.push(edge); //users joining travels /*for(var k=0; k