@becomes/cms
Version:
Simple CMS for building APIs.
550 lines • 31.5 kB
JavaScript
"use strict";
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
return c > 3 && r && Object.defineProperty(target, key, r), r;
};
var __metadata = (this && this.__metadata) || function (k, v) {
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
};
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
return new (P || (P = Promise))(function (resolve, reject) {
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
step((generator = generator.apply(thisArg, _arguments || [])).next());
});
};
var __generator = (this && this.__generator) || function (thisArg, body) {
var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g;
return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
function verb(n) { return function (v) { return step([n, v]); }; }
function step(op) {
if (f) throw new TypeError("Generator is already executing.");
while (_) try {
if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
if (y = 0, t) op = [op[0] & 2, t.value];
switch (op[0]) {
case 0: case 1: t = op; break;
case 4: _.label++; return { value: op[1], done: false };
case 5: _.label++; y = op[1]; op = [0]; continue;
case 7: op = _.ops.pop(); _.trys.pop(); continue;
default:
if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
if (t[2]) _.ops.pop();
_.trys.pop(); continue;
}
op = body.call(thisArg, _);
} catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
}
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.TemplateController = void 0;
var purple_cheetah_1 = require("purple-cheetah");
var template_service_1 = require("./template.service");
var template_model_1 = require("./models/template.model");
var template_factory_1 = require("./factories/template.factory");
var prop_util_1 = require("../prop/prop-util");
var group_service_1 = require("../group/group.service");
var api_security_1 = require("../api/api-security");
var cache_control_1 = require("../cache-control");
var TemplateController = (function () {
function TemplateController() {
}
TemplateController_1 = TemplateController;
TemplateController.prototype.getAll = function (request) {
return __awaiter(this, void 0, void 0, function () {
var error, query, jwt, jwtValid, templates, ids;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
error = purple_cheetah_1.HttpErrorFactory.simple('getAll', this.logger);
query = request.query;
if (query.signature) {
try {
api_security_1.APISecurity.verify(query, request.body, request.method.toUpperCase(), request.originalUrl);
}
catch (e) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, e.message);
}
}
else {
jwt = purple_cheetah_1.JWTEncoding.decode(request.headers.authorization);
if (jwt instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwt.message);
}
else {
jwtValid = purple_cheetah_1.JWTSecurity.validateAndCheckTokenPermissions(jwt, [purple_cheetah_1.RoleName.ADMIN, purple_cheetah_1.RoleName.USER], purple_cheetah_1.PermissionName.READ, purple_cheetah_1.JWTConfigService.get('user-token-config'));
if (jwtValid instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwtValid.message);
}
}
}
if (!request.params.ids) return [3, 2];
ids = request.params.ids.split('-');
ids.forEach(function (id) {
if (purple_cheetah_1.StringUtility.isIdValid(id) === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, "Invalid ID '" + id + "' was provided.");
}
});
return [4, this.templateService.findAllById(ids)];
case 1:
templates = _a.sent();
return [3, 4];
case 2: return [4, this.templateService.findAll()];
case 3:
templates = _a.sent();
_a.label = 4;
case 4: return [2, {
templates: templates,
}];
}
});
});
};
TemplateController.prototype.getAllLite = function (request) {
return __awaiter(this, void 0, void 0, function () {
var error, query, jwt, jwtValid, templates, ids;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
error = purple_cheetah_1.HttpErrorFactory.simple('getAll', this.logger);
query = request.query;
if (query.signature) {
try {
api_security_1.APISecurity.verify(query, request.body, request.method.toUpperCase(), request.originalUrl);
}
catch (e) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, e.message);
}
}
else {
jwt = purple_cheetah_1.JWTEncoding.decode(request.headers.authorization);
if (jwt instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwt.message);
}
else {
jwtValid = purple_cheetah_1.JWTSecurity.validateAndCheckTokenPermissions(jwt, [purple_cheetah_1.RoleName.ADMIN, purple_cheetah_1.RoleName.USER], purple_cheetah_1.PermissionName.READ, purple_cheetah_1.JWTConfigService.get('user-token-config'));
if (jwtValid instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwtValid.message);
}
}
}
if (!request.params.ids) return [3, 2];
ids = request.params.ids.split('-');
ids.forEach(function (id) {
if (purple_cheetah_1.StringUtility.isIdValid(id) === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, "Invalid ID '" + id + "' was provided.");
}
});
return [4, this.templateService.findAllLiteById(ids)];
case 1:
templates = _a.sent();
return [3, 4];
case 2: return [4, this.templateService.findAllLite()];
case 3:
templates = _a.sent();
_a.label = 4;
case 4: return [2, {
templates: templates,
}];
}
});
});
};
TemplateController.prototype.getById = function (request) {
return __awaiter(this, void 0, void 0, function () {
var error, query, jwt, jwtValid, template;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
error = purple_cheetah_1.HttpErrorFactory.simple('getById', this.logger);
query = request.query;
if (purple_cheetah_1.StringUtility.isIdValid(request.params.id) === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, "Invalid ID '" + request.params.id + "' was provided.");
}
if (query.signature) {
try {
api_security_1.APISecurity.verify(query, request.body, request.method.toUpperCase(), request.originalUrl);
}
catch (e) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, e.message);
}
}
else {
jwt = purple_cheetah_1.JWTEncoding.decode(request.headers.authorization);
if (jwt instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwt.message);
}
else {
jwtValid = purple_cheetah_1.JWTSecurity.validateAndCheckTokenPermissions(jwt, [purple_cheetah_1.RoleName.ADMIN, purple_cheetah_1.RoleName.USER], purple_cheetah_1.PermissionName.READ, purple_cheetah_1.JWTConfigService.get('user-token-config'));
if (jwtValid instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwtValid.message);
}
}
}
return [4, this.templateService.findById(request.params.id)];
case 1:
template = _a.sent();
if (template === null) {
throw error.occurred(purple_cheetah_1.HttpStatus.NOT_FOUNT, "Template with ID '" + request.params.id + "' does now exist.");
}
return [2, {
template: template,
}];
}
});
});
};
TemplateController.prototype.add = function (request) {
return __awaiter(this, void 0, void 0, function () {
var error, jwt, jwtValid, template, templateWithSameName, addTemplateResult;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
error = purple_cheetah_1.HttpErrorFactory.simple('add', this.logger);
try {
purple_cheetah_1.ObjectUtility.compareWithSchema(request.body, {
type: {
__type: 'string',
__required: true,
},
name: {
__type: 'string',
__required: true,
},
desc: {
__type: 'string',
__required: false,
},
}, 'body');
}
catch (e) {
throw error.occurred(purple_cheetah_1.HttpStatus.BAD_REQUEST, e.message);
}
jwt = purple_cheetah_1.JWTEncoding.decode(request.headers.authorization);
if (jwt instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwt.message);
}
else {
jwtValid = purple_cheetah_1.JWTSecurity.validateAndCheckTokenPermissions(jwt, [purple_cheetah_1.RoleName.ADMIN, purple_cheetah_1.RoleName.USER], purple_cheetah_1.PermissionName.WRITE, purple_cheetah_1.JWTConfigService.get('user-token-config'));
if (jwtValid instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwtValid.message);
}
}
if (!template_model_1.TemplateType[request.body.type]) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, "Type '" + request.body.type + "' is not allowed.");
}
template = template_factory_1.TemplateFactory.instance;
template.type = template_model_1.TemplateType[request.body.type];
template.name = purple_cheetah_1.StringUtility.createSlug(request.body.name);
template.userId = jwt.payload.userId;
template.entryTemplate = [];
if (typeof request.body.desc !== 'undefined') {
template.desc = request.body.desc;
}
else {
template.desc = '';
}
return [4, this.templateService.findByName(template.name)];
case 1:
templateWithSameName = _a.sent();
if (templateWithSameName !== null) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, "Template with name '" + template.name + "' already exist.");
}
return [4, this.templateService.add(template)];
case 2:
addTemplateResult = _a.sent();
if (addTemplateResult === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.INTERNAL_SERVER_ERROR, "Failed to add Template to database.");
}
return [2, {
template: template,
}];
}
});
});
};
TemplateController.prototype.update = function (request) {
return __awaiter(this, void 0, void 0, function () {
var error, body, jwt, jwtValid, template, changeDetected, templateWithSameName, _a, e_1, updateTemplateResult, changes_1, entries, _b, _c, _i, i, entry, updateEntryResult;
return __generator(this, function (_e) {
switch (_e.label) {
case 0:
error = purple_cheetah_1.HttpErrorFactory.simple('update', this.logger);
body = JSON.parse(JSON.stringify(request.body));
try {
purple_cheetah_1.ObjectUtility.compareWithSchema(body, {
_id: {
__type: 'string',
__required: true,
},
name: {
__type: 'string',
__required: false,
},
desc: {
__type: 'string',
__required: false,
},
defaults: {
__type: 'object',
__required: false,
__child: {
title: {
__type: 'string',
__required: false,
},
coverImageUri: {
__type: 'string',
__required: false,
},
},
},
changes: {
__type: 'object',
__required: false,
__child: {
props: {
__type: 'array',
__required: true,
__child: {
__type: 'object',
__content: prop_util_1.PropUtil.changesSchema,
},
},
},
},
}, 'body');
}
catch (e) {
throw error.occurred(purple_cheetah_1.HttpStatus.BAD_REQUEST, e.message);
}
if (purple_cheetah_1.StringUtility.isIdValid(request.body._id) === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, "Invalid ID '" + request.body._d + "' was provided.");
}
jwt = purple_cheetah_1.JWTEncoding.decode(request.headers.authorization);
if (jwt instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwt.message);
}
else {
jwtValid = purple_cheetah_1.JWTSecurity.validateAndCheckTokenPermissions(jwt, [purple_cheetah_1.RoleName.ADMIN, purple_cheetah_1.RoleName.USER], purple_cheetah_1.PermissionName.WRITE, purple_cheetah_1.JWTConfigService.get('user-token-config'));
if (jwtValid instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwtValid.message);
}
}
return [4, this.templateService.findById(request.body._id)];
case 1:
template = _e.sent();
if (template === null) {
throw error.occurred(purple_cheetah_1.HttpStatus.NOT_FOUNT, "Template with ID '" + request.body._id + "' does not exist.");
}
changeDetected = false;
if (!(typeof request.body.name !== 'undefined' &&
request.body.name !== template.name)) return [3, 3];
changeDetected = true;
template.name = purple_cheetah_1.StringUtility.createSlug(request.body.name);
return [4, this.templateService.findByName(template.name)];
case 2:
templateWithSameName = _e.sent();
if (templateWithSameName !== null) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, "Template with name '" + template.name + "' already exist.");
}
_e.label = 3;
case 3:
if (typeof request.body.desc !== 'undefined' &&
request.body.desc !== template.desc) {
changeDetected = true;
template.desc = request.body.desc;
}
if (typeof request.body.defaults !== 'undefined') {
if (!template.defaults) {
template.defaults = {
title: '',
coverImageUri: '',
};
}
if (typeof request.body.defaults.title === 'string') {
template.defaults.title = request.body.defaults.title;
}
if (typeof request.body.defaults.coverImageUri === 'string') {
template.defaults.coverImageUri = request.body.defaults.coverImageUri;
}
}
if (!(typeof request.body.entryTemplate !== 'undefined')) return [3, 7];
if (typeof request.body.changes === 'undefined') {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, 'When updating entryTemplate, changes must be provided.');
}
changeDetected = true;
_e.label = 4;
case 4:
_e.trys.push([4, 6, , 7]);
_a = template;
return [4, prop_util_1.PropUtil.getPropsFromUntrustedObject(request.body.entryTemplate, this.groupService)];
case 5:
_a.entryTemplate = _e.sent();
return [3, 7];
case 6:
e_1 = _e.sent();
throw error.occurred(purple_cheetah_1.HttpStatus.BAD_REQUEST, e_1.message);
case 7:
if (changeDetected === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, 'Noting to update.');
}
return [4, this.templateService.update(template)];
case 8:
updateTemplateResult = _e.sent();
if (updateTemplateResult === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.INTERNAL_SERVER_ERROR, 'Failed to update the Template in database.');
}
if (!(typeof request.body.changes !== 'undefined')) return [3, 13];
changes_1 = { props: request.body.changes.props };
if (!(changes_1.props.length > 0)) return [3, 13];
return [4, cache_control_1.CacheControl.Entry.findAllById(template.entryIds)];
case 9:
entries = _e.sent();
_b = [];
for (_c in entries)
_b.push(_c);
_i = 0;
_e.label = 10;
case 10:
if (!(_i < _b.length)) return [3, 13];
i = _b[_i];
entry = entries[i];
entry.content.forEach(function (content) {
changes_1.props.forEach(function (change) {
if (change.remove === true) {
content.props = content.props.filter(function (prop) { return prop.name !== change.name.old; });
}
else {
content.props.forEach(function (prop) {
if (prop.name === change.name.old) {
prop.name = change.name.new;
prop.required = change.required;
}
});
}
});
});
return [4, cache_control_1.CacheControl.Entry.update(entry)];
case 11:
updateEntryResult = _e.sent();
if (updateEntryResult === false) {
this.logger.error('update', "Failed to update Entry '" + entry._id.toHexString() + "'.");
}
_e.label = 12;
case 12:
_i++;
return [3, 10];
case 13: return [2, {
template: template,
}];
}
});
});
};
TemplateController.prototype.deleteById = function (request) {
return __awaiter(this, void 0, void 0, function () {
var error, jwt, jwtValid, template, deleteTemplateResult;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
error = purple_cheetah_1.HttpErrorFactory.simple('deleteById', this.logger);
if (purple_cheetah_1.StringUtility.isIdValid(request.params.id) === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.FORBIDDEN, "Invalid ID '" + request.params.id + "' was provided.");
}
jwt = purple_cheetah_1.JWTEncoding.decode(request.headers.authorization);
if (jwt instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwt.message);
}
else {
jwtValid = purple_cheetah_1.JWTSecurity.validateAndCheckTokenPermissions(jwt, [purple_cheetah_1.RoleName.ADMIN, purple_cheetah_1.RoleName.USER], purple_cheetah_1.PermissionName.DELETE, purple_cheetah_1.JWTConfigService.get('user-token-config'));
if (jwtValid instanceof Error) {
throw error.occurred(purple_cheetah_1.HttpStatus.UNAUTHORIZED, jwtValid.message);
}
}
return [4, this.templateService.findById(request.params.id)];
case 1:
template = _a.sent();
if (template === null) {
throw error.occurred(purple_cheetah_1.HttpStatus.NOT_FOUNT, "Template with ID '" + request.params.id + "' does not exist.");
}
return [4, this.templateService.deleteById(request.params.id)];
case 2:
deleteTemplateResult = _a.sent();
if (deleteTemplateResult === false) {
throw error.occurred(purple_cheetah_1.HttpStatus.INTERNAL_SERVER_ERROR, "Failed to delete Template from database.");
}
return [4, cache_control_1.CacheControl.Entry.deleteAllById(template.entryIds)];
case 3:
_a.sent();
return [2, {
message: 'Success.',
}];
}
});
});
};
var TemplateController_1;
__decorate([
purple_cheetah_1.AppLogger(TemplateController_1),
__metadata("design:type", purple_cheetah_1.Logger)
], TemplateController.prototype, "logger", void 0);
__decorate([
purple_cheetah_1.Service(template_service_1.TemplateService),
__metadata("design:type", template_service_1.TemplateService)
], TemplateController.prototype, "templateService", void 0);
__decorate([
purple_cheetah_1.Service(group_service_1.GroupService),
__metadata("design:type", group_service_1.GroupService)
], TemplateController.prototype, "groupService", void 0);
__decorate([
purple_cheetah_1.Get('/all'),
__metadata("design:type", Function),
__metadata("design:paramtypes", [Object]),
__metadata("design:returntype", Promise)
], TemplateController.prototype, "getAll", null);
__decorate([
purple_cheetah_1.Get('/all/lite'),
__metadata("design:type", Function),
__metadata("design:paramtypes", [Object]),
__metadata("design:returntype", Promise)
], TemplateController.prototype, "getAllLite", null);
__decorate([
purple_cheetah_1.Get('/:id'),
__metadata("design:type", Function),
__metadata("design:paramtypes", [Object]),
__metadata("design:returntype", Promise)
], TemplateController.prototype, "getById", null);
__decorate([
purple_cheetah_1.Post(),
__metadata("design:type", Function),
__metadata("design:paramtypes", [Object]),
__metadata("design:returntype", Promise)
], TemplateController.prototype, "add", null);
__decorate([
purple_cheetah_1.Put(),
__metadata("design:type", Function),
__metadata("design:paramtypes", [Object]),
__metadata("design:returntype", Promise)
], TemplateController.prototype, "update", null);
__decorate([
purple_cheetah_1.Delete('/:id'),
__metadata("design:type", Function),
__metadata("design:paramtypes", [Object]),
__metadata("design:returntype", Promise)
], TemplateController.prototype, "deleteById", null);
TemplateController = TemplateController_1 = __decorate([
purple_cheetah_1.Controller('/template')
], TemplateController);
return TemplateController;
}());
exports.TemplateController = TemplateController;
//# sourceMappingURL=template.controller.js.map