-function sanitizeUserInput(fen, instructions, solution)
-{
- if (!fen.match(/^[a-zA-Z0-9, /-]*$/))
- return "Bad characters in FEN string";
- instructions = sanitizeHtml(instructions);
- solution = sanitizeHtml(solution);
- if (instructions.length == 0)
- return "Empty instructions";
- if (solution.length == 0)
- return "Empty solution";
- return {
- fen: fen,
- instructions: instructions,
- solution: solution
- };
-}
-
-// Get one problem (TODO: vid unused, here for URL de-ambiguification)
-router.get("/problems/:vid([0-9]+)/:id([0-9]+)", access.ajax, (req,res) => {
- const pid = req.params["id"];
- ProblemModel.getOne(pid, (err,problem) => {
- if (!!err)
- return res.json(err);
- return res.json({problem: problem});
- });
-});
-
-// Fetch N previous or next problems
-router.get("/problems/:vid([0-9]+)", access.ajax, (req,res) => {
- const vid = req.params["vid"];
- const directionStr = (req.query.direction == "forward" ? ">" : "<");
- const lastDt = req.query.last_dt;
- const type = req.query.type;
- if (!lastDt.match(/[0-9]+/))
- return res.json({errmsg: "Bad timestamp"});
- if (!["others","mine"].includes(type))
- return res.json({errmsg: "Bad type"});
- ProblemModel.fetchN(vid, req.userId, type, directionStr, lastDt, MaxNbProblems,
- (err,problems) => {
- if (!!err)
- return res.json(err);
- return res.json({problems: problems});
- }
- );
+router.get("/problems", (req,res) => {
+ const probId = req.query["pid"];
+ if (!!probId)
+ {
+ if (!probId.match(/^[0-9]+$/))
+ return res.json({errmsg: "Wrong problem ID"});
+ ProblemModel.getOne(req.query["pid"], (err,problem) => {
+ access.checkRequest(res, err, problem, "Problem not found", () => {
+ res.json({problem: problem});
+ });
+ });
+ }
+ else
+ {
+ ProblemModel.getAll((err,problems) => {
+ res.json(err || {problems:problems});
+ });
+ }