Skip to content

GitLab

Switch branch/tag
Find file Normal viewHistoryPermalink
users.js 3.31 KB
Newer Older
abergavenny's avatar
Version 1.0.0  
abergavenny committed
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127 
import { validationResult } from 'express-validator'

import { Building, User } from '../db/index.js'
import { getUserFromRequest, success, warning } from '../helpers/index.js'
import { hashString } from '../utils/crypto.js'

import { ResponseCode } from '../ENUMS.js'

export const allowOrRevokeSharing = async (req, res) => {
  const validationErrors = validationResult(req)

  if (!validationErrors.isEmpty()) {
    return warning(res, { code: ResponseCode.ValidationError })
  }

  const { accessor, role } = getUserFromRequest(req)
  const { id } = req.params
  const { sharingAllowed } = req.body

  if (accessor === id || role === 'administrator') {
    const result = await User.findOneAndUpdate({ _id: id, role: 'user' }, {
      sharingAllowed,
      updatedAt: Date.now()
    }, {
      new: true,
      runValidators: true
    }).select('_id sharingAllowed role')

    if (result) {
      return success(res, { code: ResponseCode.UpdateSuccess })
    }

    return warning(res, { code: ResponseCode.NotFound })
  }

  warning(res, { code: ResponseCode.NotAllowed })
}

export const getUser = async (req, res) => {
  const validationErrors = validationResult(req)

  if (!validationErrors.isEmpty()) {
    return warning(res, { code: ResponseCode.ValidationError })
  }

  const { id } = req.params

  const result = await User.findById(id).select('_id email username role sharingData createdAt updatedAt')

  if (result) {
    return success(res, { data: result })
  }

  warning(res, { code: ResponseCode.NotFound })
}

export const getUsers = async (req, res) => {
  const { accessor } = getUserFromRequest(req)
  const building = await Building.find({ owner: accessor })

  if (building) {
    const buildingIds = building.map(element => element._id)

    const result = await User.find({ linkedTo: { $in: buildingIds } }).select('_id email username role sharingData createdAt updatedAt')

    if (result) {
      return success(res, { data: result })
    }
  }

  warning(res, { code: ResponseCode })
}

export const updatePassword = async (req, res) => {
  const validationErrors = validationResult(req)

  if (!validationErrors.isEmpty()) {
    return warning(res, { code: ResponseCode.ValidationError })
  }

  const { id } = req.params
  const { newPassword } = req.body

  const result = await User.findOneAndUpdate({ _id: id }, {
    encryptedPassword: hashString(newPassword),
    updatedAt: Date.now()
  }, {
    new: true,
    runValidators: true
  })

  if (result) {
    return success(res, { code: ResponseCode.UpdateSuccess })
  }

  warning(res, { code: ResponseCode.NotFound })
}

export const updateUser = async (req, res) => {
  const validationErrors = validationResult(req)

  if (!validationErrors.isEmpty()) {
    return warning(res, { code: ResponseCode.ValidationError })
  }

  const { accessor, role } = getUserFromRequest(req)
  const { id } = req.params
  const { email } = req.body

  if (accessor === id || role === 'administrator') {
    const result = await User.findOneAndUpdate({ _id: id, role: 'user' }, {
      email,
      updatedAt: Date.now()
    }, {
      new: true,
      runValidators: true
    }).select('_id email role')

    if (result) {
      return success(res, { code: ResponseCode.UpdateSuccess })
    }

    return warning(res, { code: ResponseCode.NotFound })
  }

  warning(res, { code: ResponseCode.NotAllowed })
}

Dies ist die Gitlab-Instanz des Transferportals der Hochschule für Technik Stuttgart. Hier geht es zurück zum Portal