-router.get("/send/answer", access.ajax, (req,res) => {
- let aid = req.query["aid"];
- let number = req.query["number"];
- let password = req.query["password"];
- let input = JSON.parse(req.query["answer"]);
+router.get("/assessments/monitor", access.ajax, (req,res) => {
+ const password = req.query["password"];
+ const examName = req.query["aname"];
+ const courseCode = req.query["ccode"];
+ const initials = req.query["initials"];
+ // TODO: sanity checks
+ CourseModel.getByRefs(initials, courseCode, (err,course) => {
+ access.checkRequest(res,err,course,"Course not found", () => {
+ if (password != course.password)
+ return res.json({errmsg: "Wrong password"});
+ AssessmentModel.getByRefs(initials, courseCode, examName, (err2,assessment) => {
+ access.checkRequest(res,err2,assessment,"Assessment not found", () => {
+ res.json({
+ students: course.students,
+ assessment: assessment,
+ secret: params.secret,
+ });
+ });
+ });
+ });
+ });
+});
+
+router.put("/assessments/answer", access.ajax, (req,res) => {
+ let aid = req.body["aid"];
+ let number = req.body["number"];
+ let password = req.body["password"];
+ let input = JSON.parse(req.body["answer"]);