openhim-core
Version:
The OpenHIM core application that provides logging and routing of http requests
142 lines (106 loc) • 5.99 kB
JavaScript
;
Object.defineProperty(exports, "__esModule", {
value: true
});
exports.getVisualizers = getVisualizers;
exports.getVisualizer = getVisualizer;
exports.addVisualizer = addVisualizer;
exports.updateVisualizer = updateVisualizer;
exports.removeVisualizer = removeVisualizer;
var _winston = _interopRequireDefault(require("winston"));
var _visualizer = require("../model/visualizer");
var authorisation = _interopRequireWildcard(require("./authorisation"));
var utils = _interopRequireWildcard(require("../utils"));
function _getRequireWildcardCache() { if (typeof WeakMap !== "function") return null; var cache = new WeakMap(); _getRequireWildcardCache = function () { return cache; }; return cache; }
function _interopRequireWildcard(obj) { if (obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
// Endpoint that returns all visualizers
async function getVisualizers(ctx) {
// Must be admin
if (!authorisation.inGroup('admin', ctx.authenticated)) {
return utils.logAndSetResponse(ctx, 403, `User ${ctx.authenticated.email} is not an admin, API access to getVisualizers denied.`, 'info');
}
try {
ctx.body = await _visualizer.VisualizerModelAPI.find().exec();
} catch (err) {
utils.logAndSetResponse(ctx, 500, `Could not fetch visualizers via the API: ${err}`, 'error');
}
} // Endpoint that returns specific visualizer by visualizerId
async function getVisualizer(ctx, visualizerId) {
// Must be admin
if (!authorisation.inGroup('admin', ctx.authenticated)) {
return utils.logAndSetResponse(ctx, 403, `User ${ctx.authenticated.email} is not an admin, API access to getVisualizer denied.`, 'info');
}
visualizerId = unescape(visualizerId);
try {
const result = await _visualizer.VisualizerModelAPI.findById(visualizerId).exec();
if (!result) {
ctx.body = `Visualizer with _id ${visualizerId} could not be found.`;
ctx.status = 404;
} else {
ctx.body = result;
}
} catch (err) {
utils.logAndSetResponse(ctx, 500, `Could not fetch visualizer via the API: ${err}`, 'error');
}
} // Endpoint to add new visualizer
async function addVisualizer(ctx) {
// Must be admin user
if (!authorisation.inGroup('admin', ctx.authenticated)) {
return utils.logAndSetResponse(ctx, 403, `User ${ctx.authenticated.email} is not an admin, API access to addVisualizer denied.`, 'info');
}
if (!ctx.request.rawBody) {
return utils.logAndSetResponse(ctx, 404, 'Cannot Add Visualizer, no request object', 'info');
}
try {
const visualizer = new _visualizer.VisualizerModelAPI(ctx.request.body);
await visualizer.save();
ctx.body = 'Visualizer successfully created';
ctx.status = 201;
_winston.default.info('User %s created visualizer with id %s', ctx.authenticated.email, visualizer.id);
} catch (err) {
utils.logAndSetResponse(ctx, 500, `Could not add visualizer via the API: ${err}`, 'error');
}
} // Endpoint to update specific visualizer by visualizerId
async function updateVisualizer(ctx, visualizerId) {
// Must be admin
if (!authorisation.inGroup('admin', ctx.authenticated)) {
return utils.logAndSetResponse(ctx, 403, `User ${ctx.authenticated.email} is not an admin, API access to updateVisualizer denied.`, 'info');
}
if (!ctx.request.rawBody) {
return utils.logAndSetResponse(ctx, 404, `Cannot Update Visualizer with _id ${visualizerId}, no request object`, 'info');
}
const visualizerData = ctx.request.body;
visualizerId = unescape(visualizerId); // Ignore _id if it exists, a user shouldn't be able to update the internal id
if (visualizerData._id) {
delete visualizerData._id;
}
try {
const result = await _visualizer.VisualizerModelAPI.findByIdAndUpdate(visualizerId, visualizerData).exec();
if (!result) {
return utils.logAndSetResponse(ctx, 404, `Cannot Update Visualizer with _id ${visualizerId}, does not exist`, 'info');
}
ctx.body = `Successfully updated visualizer with _id ${visualizerId}`;
_winston.default.info(`User ${ctx.authenticated.email} updated visualizer with _id ${visualizerId}`);
} catch (e) {
utils.logAndSetResponse(ctx, 500, `Could not update visualizer with _id ${visualizerId} via the API ${e}`, 'error');
}
} // Endpoint to remove specific visualizer by visualizerId
async function removeVisualizer(ctx, visualizerId) {
// Must be admin
if (!authorisation.inGroup('admin', ctx.authenticated)) {
return utils.logAndSetResponse(ctx, 403, `User ${ctx.authenticated.email} is not an admin, API access to removeVisualizer denied.`, 'info');
}
visualizerId = unescape(visualizerId);
try {
const v = await _visualizer.VisualizerModelAPI.findByIdAndRemove(visualizerId).exec();
if (!v) {
return utils.logAndSetResponse(ctx, 404, `Could not find visualizer with _id ${visualizerId}`, 'info');
}
ctx.body = `Successfully removed visualizer with _id ${visualizerId}`;
_winston.default.info(`User ${ctx.authenticated.email} removed visualizer with _id ${visualizerId}`);
} catch (e) {
utils.logAndSetResponse(ctx, 500, `Could not remove visualizer with _id ${visualizerId} via the API ${e}`, 'error');
}
}
//# sourceMappingURL=visualizers.js.map