X-Git-Url: https://git.auder.net/?a=blobdiff_plain;f=server%2Futils%2Faccess.js;h=bf6430cae96b5278bf0ccb86cfe9d6effba6fcd6;hb=fccaa87852129f8f27c66a9d3b626f91868109c8;hp=732353f2d75ee3b1fd8b902e60f0a7e290c975b0;hpb=0234201fb338fc239d6f613c677fa932c7c3697c;p=vchess.git

diff --git a/server/utils/access.js b/server/utils/access.js
index 732353f2..bf6430ca 100644
--- a/server/utils/access.js
+++ b/server/utils/access.js
@@ -1,12 +1,11 @@
 var UserModel = require("../models/User");
 
-module.exports =
-{
+module.exports = {
   // Prevent access to "users pages"
   logged: function(req, res, next) {
     const callback = () => {
       if (!loggedIn)
-        res.json({errmsg: "Error: try to delete cookies"});
+        res.json({ errmsg: "Error: try to delete cookies" });
       else next();
     };
     let loggedIn = undefined;
@@ -14,18 +13,20 @@ module.exports =
       loggedIn = false;
       callback();
     } else {
-      UserModel.getOne("sessionToken", req.cookies.token, function(err, user) {
-        if (!!user) {
-          req.userId = user.id;
-          req.userName = user.name;
-          loggedIn = true;
-        } else {
-          // Token in cookies presumably wrong: erase it
-          res.clearCookie("token");
-          loggedIn = false;
+      UserModel.getOne(
+        "sessionToken", req.cookies.token, "id",
+        (err, user) => {
+          if (!!user) {
+            req.userId = user.id;
+            loggedIn = true;
+          } else {
+            // Token in cookies presumably wrong: erase it
+            res.clearCookie("token");
+            loggedIn = false;
+          }
+          callback();
         }
-        callback();
-      });
+      );
     }
   },
 
@@ -33,25 +34,25 @@ module.exports =
   unlogged: function(req, res, next) {
     // Just a quick heuristic, which should be enough
     const loggedIn = !!req.cookies.token;
-    if (loggedIn) res.json({errmsg: "Error: try to delete cookies"});
+    if (loggedIn) res.json({ errmsg: "Error: try to delete cookies" });
     else next();
   },
 
   // Prevent direct access to AJAX results
   ajax: function(req, res, next) {
-    if (!req.xhr) res.json({errmsg: "Unauthorized access"});
+    if (!req.xhr) res.json({ errmsg: "Unauthorized access" });
     else next();
   },
 
-  // Check for errors before callback (continue page loading). TODO: better name.
+  // Check for errors before callback (continue page loading). (TODO: name?)
   checkRequest: function(res, err, out, msg, cb) {
-    if (!!err) res.json({errmsg: err.errmsg || err.toString()});
+    if (!!err) res.json({ errmsg: err.errmsg || err.toString() });
     else if (
       !out ||
       (Array.isArray(out) && out.length == 0) ||
       (typeof out === "object" && Object.keys(out).length == 0)
     ) {
-      res.json({errmsg: msg});
+      res.json({ errmsg: msg });
     } else cb();
   }
-}
+};