var config = require('../config');
|
|
var pageSize = config.pageSize;
|
|
|
|
var jwt = require('jsonwebtoken'); // used to create, sign, and verify tokens
|
|
var express = require("express");
|
|
var app = express();
|
|
app.set('superSecret', config.secret); // secret variable
|
|
var crypto = require('crypto');
|
|
var request = require('request');
|
|
|
|
//data models
|
|
var mongoose = require('mongoose');
|
|
var adminModel = mongoose.model('adminModel');
|
|
var userModel = mongoose.model('userModel');
|
|
var userController = require('../controllers/userController');
|
|
var notificationModel = mongoose.model('notificationModel');
|
|
var travelModel = mongoose.model('travelModel');
|
|
var travelCtrl = require('../controllers/travelController');
|
|
|
|
//POST - Insert a new User in the DB
|
|
/*exports.signup = function(req, res) {
|
|
|
|
|
|
var admin = new adminModel({
|
|
username: req.body.username,
|
|
password: crypto.createHash('sha256').update(req.body.password).digest('base64'),
|
|
email: req.body.email,
|
|
phone: req.body.phone,
|
|
telegram: req.body.telegram
|
|
});
|
|
if (admin.username == undefined) {
|
|
return res.status(500).jsonp("empty inputs");
|
|
} else if (admin.password == undefined) {
|
|
return res.status(500).jsonp("empty inputs");
|
|
} else if (admin.email == undefined) {
|
|
return res.status(500).jsonp("empty inputs");
|
|
}
|
|
adminPasswordGetted = crypto.createHash('sha256').update(req.body.adminPassword).digest('base64');
|
|
console.log(adminPasswordGetted);
|
|
console.log(adminConfig.passwordHash);
|
|
if (adminPasswordGetted != adminConfig.passwordHash) {
|
|
return res.status(500).jsonp("admin password not valid");
|
|
}
|
|
admin.save(function(err, admin) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
exports.login(req, res);
|
|
});
|
|
};*/
|
|
|
|
|
|
//POST - auth user
|
|
exports.login = function(req, res) {
|
|
// find the user
|
|
adminModel.findOne({
|
|
username: req.body.username
|
|
})
|
|
.select('+password')
|
|
.exec(function(err, user) {
|
|
|
|
if (err) throw err;
|
|
|
|
if (!user) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Authentication failed. User not found.'
|
|
});
|
|
} else if (user) {
|
|
|
|
req.body.password = crypto.createHash('sha256').update(req.body.password).digest('base64');
|
|
|
|
// check if password matches
|
|
if (user.password != req.body.password) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Authentication failed. Wrong password.'
|
|
});
|
|
} else {
|
|
|
|
// if user is found and password is right
|
|
// create a token
|
|
var token = jwt.sign({
|
|
foo: 'bar'
|
|
}, app.get('superSecret'), {
|
|
//expiresInMinutes: 1440 // expires in 24 hours
|
|
//expiresIn: '60m'
|
|
});
|
|
user.token = token;
|
|
user.save(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
//res.status(200).jsonp(travel);
|
|
console.log(user);
|
|
// return the information including token as JSON
|
|
user.password = "";
|
|
res.json({
|
|
success: true,
|
|
message: 'Enjoy your token!',
|
|
token: token,
|
|
user: user
|
|
});
|
|
});
|
|
|
|
}
|
|
|
|
}
|
|
|
|
});
|
|
};
|
|
exports.getAllAdmins = function(req, res) {
|
|
adminModel.find()
|
|
.limit(pageSize)
|
|
.skip(pageSize * Number(req.query.page))
|
|
.exec(function(err, admins) {
|
|
if (err) return res.send(500, err.message);
|
|
res.status(200).jsonp(admins);
|
|
});
|
|
};
|
|
exports.changePassword = function(req, res) {
|
|
//if(req.body.)
|
|
userModel.update({
|
|
'token': req.headers['x-access-token']
|
|
}, req.body,
|
|
function(err) {
|
|
if (err) return console.log(err);
|
|
exports.getUserByToken(req, res);
|
|
});
|
|
};
|
|
|
|
|
|
exports.deleteTravel = function(req, res) {
|
|
adminModel.findOne({
|
|
'token': req.headers['x-access-token']
|
|
})
|
|
.exec(function(err, admin) {
|
|
if (!admin) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Admin not found'
|
|
});
|
|
} else if (admin) {
|
|
if (err) return res.send(500, err.message);
|
|
travelModel.findById(req.params.travelid, function(err, travel) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
//add notification to the user who has created the travel
|
|
userModel.findOne({
|
|
_id: travel.user
|
|
})
|
|
.exec(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
if (!user) {
|
|
//console.log("Notification not posible, user owner of the travel not exist");
|
|
} else if (user) {
|
|
var notification = new notificationModel({
|
|
concept: "admin",
|
|
message: "an admin has deleted your travel: " + travel.title,
|
|
date: new Date(),
|
|
icon: 'admin',
|
|
link: "users/" + user._id,
|
|
user: user._id
|
|
});
|
|
notification.save(function(err, notification) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
user.notifications.push(notification._id);
|
|
user.save(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
//notification added to user
|
|
});
|
|
});
|
|
}
|
|
});
|
|
travel.remove(function(err) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
travelCtrl.getAllTravels(req, res);
|
|
});
|
|
});
|
|
}
|
|
});
|
|
};
|
|
|
|
exports.deleteUser = function(req, res) {
|
|
adminModel.findOne({
|
|
'token': req.headers['x-access-token']
|
|
})
|
|
.exec(function(err, admin) {
|
|
if (!admin) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Admin not found'
|
|
});
|
|
} else if (admin) {
|
|
if (err) return res.send(500, err.message);
|
|
userModel.findOne({
|
|
_id: req.params.userid
|
|
})
|
|
.exec(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
if (!user) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Delete user not posible, user not exist'
|
|
});
|
|
} else if (user) {
|
|
//delete all the travels of this user
|
|
travelModel.find({
|
|
user: user._id
|
|
}).remove().exec(function(err, data) {});
|
|
|
|
//delete all the comments of this user
|
|
|
|
//now delete user
|
|
user.remove(function(err) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
res.status(200).jsonp("deleted");
|
|
});
|
|
}
|
|
});
|
|
}
|
|
});
|
|
};
|
|
|
|
function isNodeInNodes(node, nodes) {
|
|
for (var i = 0; i < nodes.length; i++) {
|
|
if (node.title == nodes[i].title) {
|
|
return (i);
|
|
}
|
|
}
|
|
return (-1);
|
|
}
|
|
exports.network = function(req, res) {
|
|
adminModel.findOne({
|
|
'token': req.headers['x-access-token']
|
|
})
|
|
.exec(function(err, admin) {
|
|
if (!admin) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Admin not found'
|
|
});
|
|
} else if (admin) {
|
|
if (err) return res.send(500, err.message);
|
|
userModel.find()
|
|
.limit(pageSize)
|
|
.skip(pageSize * Number(req.query.page))
|
|
.lean()
|
|
//.populate({path: 'travels', populate: {path: 'joins', populate: {path: 'username'}}})
|
|
.populate('travels', 'title type joins')
|
|
.populate('likes', 'username avatar')
|
|
.exec(function(err, users) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
/*res.status(200).jsonp(users);*/
|
|
var nodes = [];
|
|
var edges = [];
|
|
for (var i = 0; i < users.length; i++) {
|
|
var node = {
|
|
title: users[i].username,
|
|
label: users[i].username,
|
|
image: users[i].avatar,
|
|
shape: "image",
|
|
id: users[i]._id,
|
|
group: users[i]._id
|
|
};
|
|
var lNode = isNodeInNodes(node, nodes);
|
|
if (lNode < 0) {
|
|
nodes.push(node);
|
|
var uNode = nodes.length - 1;
|
|
}
|
|
for (var j = 0; j < users[i].likes.length; j++) {
|
|
/*console.log(i + ", " + j);
|
|
console.log(nodes);*/
|
|
var node = {
|
|
title: users[i].likes[j].username,
|
|
label: users[i].likes[j].username,
|
|
image: users[i].likes[j].avatar,
|
|
shape: "image",
|
|
id: users[i].likes[j]._id
|
|
};
|
|
var lNode = isNodeInNodes(node, nodes);
|
|
if (lNode < 0) {
|
|
//node no exist
|
|
nodes.push(node);
|
|
lNode = nodes.length - 1;
|
|
} else {
|
|
//node already exist
|
|
|
|
}
|
|
var edge = {
|
|
from: users[i]._id,
|
|
to: users[i].likes[j]._id,
|
|
label: "like",
|
|
arrows: "to",
|
|
color: {
|
|
color: "#E57373" //red300
|
|
}
|
|
};
|
|
edges.push(edge);
|
|
}
|
|
for (var j = 0; j < users[i].travels.length; j++) {
|
|
/*console.log(i + ", " + j);
|
|
console.log(nodes);*/
|
|
var node = {
|
|
title: users[i].travels[j].title,
|
|
label: users[i].travels[j].title,
|
|
image: "img/" + users[i].travels[j].type + ".png",
|
|
shape: "image",
|
|
id: users[i].travels[j]._id,
|
|
value: "0.5",
|
|
group: users[i]._id
|
|
};
|
|
var lNode = isNodeInNodes(node, nodes);
|
|
if (lNode < 0) {
|
|
//node no exist
|
|
nodes.push(node);
|
|
lNode = nodes.length - 1;
|
|
} else {
|
|
//node already exist
|
|
|
|
}
|
|
var edge = {
|
|
from: users[i]._id,
|
|
to: users[i].travels[j]._id,
|
|
color: {
|
|
color: "#616161" //grey
|
|
}
|
|
};
|
|
edges.push(edge);
|
|
|
|
//users joining travels
|
|
/*for(var k=0; k<users[i].travels[j].joins.length; k++){
|
|
var node = {
|
|
title: users[i].travels[j].joins[k].username,
|
|
label: users[i].travels[j].joins[k].username,
|
|
image: users[i].travels[j].joins[k].avatar,
|
|
shape: "image",
|
|
id: users[i].travels[j].joins[k]._id
|
|
};
|
|
var lNode = isNodeInNodes(node, nodes);
|
|
if (lNode<0){
|
|
//node no exist
|
|
nodes.push(node);
|
|
lNode = nodes.length -1;
|
|
}
|
|
var edge={
|
|
from: users[i].travels[j].joins[k]._id,
|
|
to: users[i].travels[j]._id,
|
|
color: {
|
|
color: "#4DD0E1"//cyan300
|
|
}
|
|
};
|
|
edges.push(edge);
|
|
}*/
|
|
}
|
|
|
|
}
|
|
var resp = {
|
|
nodes: nodes,
|
|
edges: edges
|
|
};
|
|
res.status(200).jsonp(resp);
|
|
});
|
|
}
|
|
});
|
|
};
|
|
exports.getUserNetwork = function(req, res) {
|
|
adminModel.findOne({
|
|
'token': req.headers['x-access-token']
|
|
})
|
|
.exec(function(err, admin) {
|
|
if (!admin) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Admin not found'
|
|
});
|
|
} else if (admin) {
|
|
if (err) return res.send(500, err.message);
|
|
userModel.findOne({
|
|
_id: req.params.userid
|
|
})
|
|
.lean()
|
|
.populate('travels', 'title type joins')
|
|
.populate('likes', 'username avatar')
|
|
.exec(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
/*res.status(200).jsonp(users);*/
|
|
var nodes = [];
|
|
var edges = [];
|
|
//for (var i = 0; i < users.length; i++) {
|
|
var node = {
|
|
title: user.username,
|
|
label: user.username,
|
|
image: user.avatar,
|
|
shape: "image",
|
|
id: user._id,
|
|
group: user._id
|
|
};
|
|
var lNode = isNodeInNodes(node, nodes);
|
|
if (lNode < 0) {
|
|
nodes.push(node);
|
|
var uNode = nodes.length - 1;
|
|
}
|
|
for (var j = 0; j < user.likes.length; j++) {
|
|
/*console.log(i + ", " + j);
|
|
console.log(nodes);*/
|
|
var node = {
|
|
title: user.likes[j].username,
|
|
label: user.likes[j].username,
|
|
image: user.likes[j].avatar,
|
|
shape: "image",
|
|
id: user.likes[j]._id
|
|
};
|
|
var lNode = isNodeInNodes(node, nodes);
|
|
if (lNode < 0) {
|
|
//node no exist
|
|
nodes.push(node);
|
|
lNode = nodes.length - 1;
|
|
} else {
|
|
//node already exist
|
|
|
|
}
|
|
var edge = {
|
|
from: user._id,
|
|
to: user.likes[j]._id,
|
|
label: "like",
|
|
arrows: "to",
|
|
color: {
|
|
color: "#E57373" //red300
|
|
}
|
|
};
|
|
edges.push(edge);
|
|
}
|
|
for (var j = 0; j < user.travels.length; j++) {
|
|
/*console.log(i + ", " + j);
|
|
console.log(nodes);*/
|
|
var node = {
|
|
title: user.travels[j].title,
|
|
label: user.travels[j].title,
|
|
image: "img/" + user.travels[j].type + ".png",
|
|
shape: "image",
|
|
id: user.travels[j]._id,
|
|
value: "0.5",
|
|
group: user._id
|
|
};
|
|
var lNode = isNodeInNodes(node, nodes);
|
|
if (lNode < 0) {
|
|
//node no exist
|
|
nodes.push(node);
|
|
lNode = nodes.length - 1;
|
|
} else {
|
|
//node already exist
|
|
|
|
}
|
|
var edge = {
|
|
from: user._id,
|
|
to: user.travels[j]._id,
|
|
color: {
|
|
color: "#616161" //grey
|
|
}
|
|
};
|
|
edges.push(edge);
|
|
}
|
|
//add users that has add like to the user
|
|
userModel.find({
|
|
likes: req.params.userid
|
|
})
|
|
.exec(function(err, users) {
|
|
for (var i = 0; i < users.length; i++) {
|
|
/*console.log(i + ", " + j);
|
|
console.log(nodes);*/
|
|
var node = {
|
|
title: users[i].username,
|
|
label: users[i].username,
|
|
image: users[i].avatar,
|
|
shape: "image",
|
|
id: users[i]._id
|
|
};
|
|
var lNode = isNodeInNodes(node, nodes);
|
|
if (lNode < 0) {
|
|
//node no exist
|
|
nodes.push(node);
|
|
lNode = nodes.length - 1;
|
|
} else {
|
|
//node already exist
|
|
|
|
}
|
|
var edge = {
|
|
from: users[i]._id,
|
|
to: req.params.userid,
|
|
label: "like",
|
|
arrows: "to",
|
|
color: {
|
|
color: "#E57373" //red300
|
|
}
|
|
};
|
|
edges.push(edge);
|
|
}
|
|
|
|
var resp = {
|
|
nodes: nodes,
|
|
edges: edges
|
|
};
|
|
res.status(200).jsonp(resp);
|
|
});
|
|
|
|
//}
|
|
|
|
});
|
|
}
|
|
});
|
|
};
|
|
|
|
|
|
// user validation
|
|
exports.validateUser = function(req, res) {
|
|
adminModel.findOne({
|
|
'token': req.headers['x-access-token']
|
|
})
|
|
.exec(function(err, admin) {
|
|
if (!admin) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Admin not found'
|
|
});
|
|
} else if (admin) {
|
|
if (err) return res.send(500, err.message);
|
|
userModel.findOne({
|
|
_id: req.params.userid
|
|
})
|
|
.exec(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
user.validated = true;
|
|
user.validatedBy = admin._id;
|
|
|
|
var notification = new notificationModel({
|
|
concept: "admin",
|
|
message: "an admin has validated your account",
|
|
date: new Date(),
|
|
icon: 'admin',
|
|
link: "users/" + user._id,
|
|
user: user._id
|
|
});
|
|
notification.save(function(err, notification) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
user.notifications.push(notification._id);
|
|
user.save(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
userController.getUserById(req, res);
|
|
});
|
|
});
|
|
});
|
|
}
|
|
});
|
|
};
|
|
// user unvalidate
|
|
exports.unvalidateUser = function(req, res) {
|
|
adminModel.findOne({
|
|
'token': req.headers['x-access-token']
|
|
})
|
|
.exec(function(err, admin) {
|
|
if (!admin) {
|
|
res.json({
|
|
success: false,
|
|
message: 'Admin not found'
|
|
});
|
|
} else if (admin) {
|
|
if (err) return res.send(500, err.message);
|
|
userModel.findOne({
|
|
_id: req.params.userid
|
|
})
|
|
.exec(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
user.validated = false;
|
|
user.validatedBy = admin._id;
|
|
|
|
var notification = new notificationModel({
|
|
concept: "admin",
|
|
message: "an admin has unvalidated your account",
|
|
date: new Date(),
|
|
icon: 'admin',
|
|
link: "users/" + user._id,
|
|
user: user._id
|
|
});
|
|
notification.save(function(err, notification) {
|
|
if (err) return res.send(500, err.message);
|
|
|
|
user.notifications.push(notification._id);
|
|
user.save(function(err, user) {
|
|
if (err) return res.send(500, err.message);
|
|
userController.getUserById(req, res);
|
|
});
|
|
});
|
|
|
|
});
|
|
}
|
|
});
|
|
};
|