+router.post('/register', access.unlogged, access.ajax, (req,res) => {
+ const name = req.body.name;
+ const email = req.body.email;
+ const notify = !!req.body.notify;
+ if (UserModel.checkNameEmail({name: name, email: email})) {
+ UserModel.create(name, email, notify, (err, ret) => {
+ if (!!err) {
+ const msg = err.code == "SQLITE_CONSTRAINT"
+ ? "User name or email already in use"
+ : "User creation failed. Try again";
+ res.json({errmsg: msg});
+ } else {
+ const user = {
+ id: ret.id,
+ name: name,
+ email: email,
+ };
+ setAndSendLoginToken("Welcome to " + params.siteURL, user, res);
+ res.json({});
+ }
+ });
+ }
+});
+
+// NOTE: this method is safe because the sessionToken must be guessed