PeerTube/server/controllers/api/users.js

125 lines
3.0 KiB
JavaScript
Raw Normal View History

2016-03-21 11:56:33 +01:00
'use strict'
const express = require('express')
const waterfall = require('async/waterfall')
2016-07-01 16:16:40 +02:00
const constants = require('../../initializers/constants')
2016-12-11 21:50:51 +01:00
const db = require('../../initializers/database')
const logger = require('../../helpers/logger')
2017-01-04 20:59:23 +01:00
const utils = require('../../helpers/utils')
const middlewares = require('../../middlewares')
const admin = middlewares.admin
const oAuth = middlewares.oauth
2016-08-16 22:31:45 +02:00
const pagination = middlewares.pagination
const sort = middlewares.sort
const validatorsPagination = middlewares.validators.pagination
const validatorsSort = middlewares.validators.sort
const validatorsUsers = middlewares.validators.users
2016-03-21 11:56:33 +01:00
const router = express.Router()
router.get('/me', oAuth.authenticate, getUserInformation)
2016-08-16 22:31:45 +02:00
router.get('/',
validatorsPagination.pagination,
validatorsSort.usersSort,
sort.setUsersSort,
pagination.setPagination,
listUsers
)
router.post('/',
oAuth.authenticate,
admin.ensureIsAdmin,
validatorsUsers.usersAdd,
createUser
)
router.put('/:id',
oAuth.authenticate,
validatorsUsers.usersUpdate,
updateUser
)
router.delete('/:id',
oAuth.authenticate,
admin.ensureIsAdmin,
validatorsUsers.usersRemove,
removeUser
)
2016-08-05 16:09:39 +02:00
router.post('/token', oAuth.token, success)
// TODO: Once https://github.com/oauthjs/node-oauth2-server/pull/289 is merged, implement revoke token route
2016-03-21 11:56:33 +01:00
// ---------------------------------------------------------------------------
module.exports = router
// ---------------------------------------------------------------------------
function createUser (req, res, next) {
2016-12-11 21:50:51 +01:00
const user = db.User.build({
username: req.body.username,
password: req.body.password,
role: constants.USER_ROLES.USER
})
2016-12-11 21:50:51 +01:00
user.save().asCallback(function (err, createdUser) {
if (err) return next(err)
return res.type('json').status(204).end()
})
}
function getUserInformation (req, res, next) {
2016-12-11 21:50:51 +01:00
db.User.loadByUsername(res.locals.oauth.token.user.username, function (err, user) {
if (err) return next(err)
return res.json(user.toFormatedJSON())
})
}
function listUsers (req, res, next) {
2016-12-11 21:50:51 +01:00
db.User.listForApi(req.query.start, req.query.count, req.query.sort, function (err, usersList, usersTotal) {
if (err) return next(err)
2017-01-04 20:59:23 +01:00
res.json(utils.getFormatedObjects(usersList, usersTotal))
})
}
function removeUser (req, res, next) {
waterfall([
function loadUser (callback) {
2016-12-11 21:50:51 +01:00
db.User.loadById(req.params.id, callback)
},
function deleteUser (user, callback) {
2016-12-11 21:50:51 +01:00
user.destroy().asCallback(callback)
}
], function andFinally (err) {
if (err) {
logger.error('Errors when removed the user.', { error: err })
return next(err)
}
return res.sendStatus(204)
})
}
function updateUser (req, res, next) {
2016-12-11 21:50:51 +01:00
db.User.loadByUsername(res.locals.oauth.token.user.username, function (err, user) {
if (err) return next(err)
user.password = req.body.password
2016-12-11 21:50:51 +01:00
user.save().asCallback(function (err) {
if (err) return next(err)
return res.sendStatus(204)
})
})
}
2016-03-21 11:56:33 +01:00
function success (req, res, next) {
res.end()
}