Home Explore Help
Register Sign In
fgm
/
front__codeschool-angular-2
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 0ad841a423
Branches Tags
front__codescho...
/
app
/
server
/
modules
/
routes
/
note.js

note.js 2.4 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. var models = require('../models');
    2. 

  2. var Note = models.Note;
    3. 

  3. var User = models.User;
    4. 

  4. var Category = models.Category;
    5. 

  5. var noteSafeParams = ["id", "link","description","title","icon","content", "userId", 'CategoryId'];
    6. 

  6. var userSafeParams = ['id', 'name', 'username', 'bio', 'twitter_handle', 'site'];
    7. 

  7. 

  8. module.exports = function(app) {
    9. 

  9.   app.get('/notes', function(req, res) {
    10. 

  10.     models.sequelize.sync().on('success', function() {
    11. 

  11.       Note.findAll({attributes: noteSafeParams, include: [Category, {model: User, attributes: userSafeParams}]}).success(function(notes) {
    12. 

  12.         res.json(notes);
    13. 

  13.       })
    14. 

  14.     });
    15. 

  15.   });
    16. 

  16.   
    17. 

  17.   app.post('/notes', function(req, res) {
    18. 

  18.     models.sequelize.sync().on('success', function() {
    19. 

  19.       Note.create({UserId: req.user.id, CategoryId: req.param('CategoryId'), link: req.param('link'), title: req.param('title'), content: req.param('content'), description: req.param('description'), icon: req.param('icon')}).success(function(notes) {
    20. 

  20.         res.json(notes);
    21. 

  21.       })
    22. 

  22.     });
    23. 

  23.   });
    24. 

  24.   
    25. 

  25.   app.put('/notes', function(req, res) {
    26. 

  26.     var param;
    27. 

  27.     var updateParams = {};
    28. 

  28.     var noteId = parseInt(req.param('id'));
    29. 

  29. 

  30.     models.sequelize.sync().on('success', function() {
    31. 

  31.       Note.find({where: {id: noteId}, attributes: noteSafeParams, include: [Category]}).success(function(note) {
    32. 

  32. 

  33.         // Return an 401 aunauthorized if a user tries to editor another user's note
    34. 

  34.         if(!req.user || req.user.id !== note.values.UserId) {
    35. 

  35.           res.status(401);
    36. 

  36.           res.json({error: "You are not authorized to edit this note"});
    37. 

  37.           return;
    38. 

  38.         }
    39. 

  39.         
    40. 

  40.         // Loop through the noteSafeParams and update their values from the given ones.
    41. 

  41.         for(var i=0, l = noteSafeParams.length; i < l; i++ ) {
    42. 

  42.           param = noteSafeParams[i];
    43. 

  43.           updateParams[param] = req.param(param);
    44. 

  44.         }
    45. 

  45. 

  46.         note.updateAttributes(updateParams).success(function() {
    47. 

  47.           res.json(note);
    48. 

  48.         });
    49. 

  49.       });
    50. 

  50.     });
    51. 

  51.   });
    52. 

  52. 

  53.   app.get('/notes/:id', function(req, res) {
    54. 

  54.     var noteId = parseInt(req.params.id, 10);
    55. 

  55.     
    56. 

  56.     // If a note is not found at the given id, return an empty object
    57. 

  57.     if(!noteId) {
    58. 

  58.       res.json({});
    59. 

  59.       return;
    60. 

  60.     }
    61. 

  61. 

  62.     models.sequelize.sync().on('success', function() {
    63. 

  63.       Note.find({where: {id: noteId}, attributes: noteSafeParams, include: [Category, {model: User, attributes: userSafeParams}]}).success(function(note) {
    64. 

  64.         res.json(note);
    65. 

  65.       });
    66. 

  66.     });
    67. 

  67.   });
    68. 

  68. };
    69.