UNPKG

sqlpad

Version:

Web app. Write SQL and visualize the results. Supports Postgres, MySQL, SQL Server, Crate, Vertica and SAP HANA.

github.com/rickbergfalk/sqlpad

rickbergfalk/sqlpad

78 lines (71 loc) 2.43 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
const router = require('express').Router(); const User = require('../models/User.js'); const email = require('../lib/email'); const mustBeAdmin = require('../middleware/must-be-admin.js'); const mustBeAuthenticated = require('../middleware/must-be-authenticated.js'); const sendError = require('../lib/sendError'); const config = require('../lib/config'); router.get('/api/users', mustBeAuthenticated, async function(req, res) { try { const users = await User.findAll(); return res.json({ users }); } catch (error) { sendError(res, error, 'Problem getting uers'); } }); // create/whitelist/invite user router.post('/api/users', mustBeAdmin, async function(req, res) { try { let user = await User.findOneByEmail(req.body.email); if (user) { return sendError(res, null, 'User already exists'); } user = new User({ email: req.body.email.toLowerCase(), role: req.body.role }); user = await user.save(); if (config.smtpConfigured()) { email.sendInvite(req.body.email).catch(error => console.error(error)); } return res.json({ user }); } catch (error) { sendError(res, error, 'Problem saving user'); } }); router.put('/api/users/:_id', mustBeAdmin, async function(req, res) { const { params, body, user } = req; if (user._id === params._id && user.role === 'admin' && body.role != null) { return sendError(res, null, "You can't unadmin yourself"); } try { const updateUser = await User.findOneById(params._id); if (!updateUser) { return sendError(res, null, 'user not found'); } // this route could handle potentially different kinds of updates // only update user properties that are explicitly provided in body if (body.role != null) { updateUser.role = body.role; } if (body.passwordResetId != null) { updateUser.passwordResetId = body.passwordResetId; } await updateUser.save(); return res.json({ user: updateUser }); } catch (error) { sendError(res, error, 'Problem saving user'); } }); router.delete('/api/users/:_id', mustBeAdmin, async function(req, res) { if (req.user._id === req.params._id) { return sendError(res, null, "You can't delete yourself"); } try { await User.removeOneById(req.params._id); return res.json({}); } catch (error) { sendError(res, error, 'Problem deleting user'); } }); module.exports = router;