X-Git-Url: https://git.auder.net/?p=vchess.git;a=blobdiff_plain;f=server%2Froutes%2Fproblems.js;h=746be9aac124faf108ec3b7d5328de901254b701;hp=c45a1baccd43f0aa5925d4bfb8c65393d76d382d;hb=a9e7935190d8fc112e674add05e86b8d0152e8df;hpb=89021f181ac0689bbc785ce0ebd9a910e66352b0 diff --git a/server/routes/problems.js b/server/routes/problems.js index c45a1bac..746be9aa 100644 --- a/server/routes/problems.js +++ b/server/routes/problems.js @@ -1,70 +1,57 @@ -// AJAX methods to get, create, update or delete a problem - let router = require("express").Router(); const access = require("../utils/access"); +const params = require("../config/parameters"); const ProblemModel = require("../models/Problem"); const sanitizeHtml = require('sanitize-html'); -router.get("/problems", (req,res) => { - const probId = req.query["pid"]; - if (!!probId) - { - if (!probId.match(/^[0-9]+$/)) - return res.json({errmsg: "Wrong problem ID"}); - ProblemModel.getOne(req.query["pid"], (err,problem) => { - access.checkRequest(res, err, problem, "Problem not found", () => { - res.json({problem: problem}); - }); +router.post("/problems", access.logged, access.ajax, (req,res) => { + if (ProblemModel.checkProblem(req.body.prob)) { + const problem = { + vid: req.body.prob.vid, + fen: req.body.prob.fen, + uid: req.userId, + instruction: sanitizeHtml(req.body.prob.instruction), + solution: sanitizeHtml(req.body.prob.solution), + }; + ProblemModel.create(problem, (err, ret) => { + res.json(err || ret); }); } else - { - ProblemModel.getAll((err,problems) => { - res.json(err || {problems:problems}); - }); - } + res.json({}); }); -router.post("/problems", access.logged, access.ajax, (req,res) => { - const error = ProblemModel.checkProblem(req.body.prob); - if (!!error) - return res.json({errmsg:error}); - const problem = - { - vid: req.body.prob.vid, - fen: req.body.prob.fen, - uid: req.userId, - instruction: sanitizeHtml(req.body.prob.instruction), - solution: sanitizeHtml(req.body.prob.solution), - }; - ProblemModel.create(problem, (err,ret) => { - return res.json(err || {pid:ret.pid}); - }); +router.get("/problems", access.ajax, (req,res) => { + const probId = req.query["id"]; + const cursor = req.query["cursor"]; + if (!!probId && !!probId.match(/^[0-9]+$/)) { + ProblemModel.getOne(probId, (err, problem) => { + res.json(err || {problem: problem}); + }); + } else if (!!cursor && !!cursor.match(/^[0-9]+$/)) { + const onlyMine = (req.query["mode"] == "mine"); + const uid = parseInt(req.query["uid"]); + ProblemModel.getNext(uid, onlyMine, cursor, (err, problems) => { + res.json(err || { problems: problems }); + }); + } }); router.put("/problems", access.logged, access.ajax, (req,res) => { - const pid = req.body.pid; - let error = ""; - if (!pid.toString().match(/^[0-9]+$/)) - error = "Wrong problem ID"; - let obj = req.body.newProb; - error = ProblemModel.checkProblem(obj); - obj.instruction = sanitizeHtml(obj.instruction); - obj.solution = sanitizeHtml(obj.solution); - if (!!error) - return res.json({errmsg: error}); - ProblemModel.update(pid, obj, (err) => { - res.json(err || {}); - }); + let obj = req.body.prob; + if (ProblemModel.checkProblem(obj)) { + obj.instruction = sanitizeHtml(obj.instruction); + obj.solution = sanitizeHtml(obj.solution); + ProblemModel.safeUpdate(obj, req.userId, params.devs); + } + res.json({}); }); router.delete("/problems", access.logged, access.ajax, (req,res) => { const pid = req.query.id; - if (!pid.match(/^[0-9]+$/)) - res.json({errmsg: "Bad problem ID"}); - ProblemModel.safeRemove(pid, req.userId, err => { - res.json(err || {}); - }); + if (pid.toString().match(/^[0-9]+$/)) + ProblemModel.safeRemove(pid, req.userId, params.devs); + res.json({}); }); module.exports = router;