UNPKG

antisocial-friends/routes/friend-update.js

Version:

4.6 kBJavaScriptView Raw

1// Copyright Michael Rhodes. 2017,2018. All Rights Reserved.
2// This file is licensed under the MIT License.
3// License text available at https://opensource.org/licenses/MIT
4
5var fixIfBehindProxy = require('../lib/utilities').fixIfBehindProxy;
6var debug = require('debug')('antisocial-friends');
7var VError = require('verror').VError;
8var WError = require('verror').WError;
9var async = require('async');
10var request = require('request');
11var _ = require('lodash');
12
13module.exports = function mountFriendUpdate(antisocialApp) {
14
var router = antisocialApp.router;
var config = antisocialApp.config;
var db = antisocialApp.db;
var authUserMiddleware = antisocialApp.authUserMiddleware;
19
var updateRegex = /^\/([a-zA-Z0-9\-.]+)\/friend-update$/;
21
debug('mounting GET /username/friend-update', updateRegex);
23
router.post(updateRegex, authUserMiddleware, function handleFriendUpdate(req, res) {
var matches = req.path.match(updateRegex);
var username = matches[1];
27
var endpoint = req.body.endpoint;
29
if (!endpoint) {
	debug('endpoint not supplied');
	return res.status(400).send('endpoint not supplied');
}
34
if (!endpoint.match(/(^|\s)((https?:\/\/)?[\w-]+(\.[\w-]+)+\.?(:\d+)?(\/\S*)?)/gi)) {
	debug('endpoint not a valid url');
	return res.status(400).send('endpoint not a valid url');
}
39
// must be a logged in user
var currentUser = req.antisocialUser;
if (!currentUser) {
	debug('not logged in');
	return res.sendStatus(401);
}
46
// by convention expects user to match username
if (currentUser.username !== username) {
	debug('username mismatch');
	return res.status(400).send('username mismatch');
}
52
var newStatus = req.body.status;
var newAudiences = req.body.audiences;
55
async.waterfall([
	function findFriend(cb) {
		debug('/friend-update findFriend');
		db.getInstances('friends', [{
			'property': 'userId',
			'value': currentUser.id
		}, {
			'property': 'remoteEndPoint',
			'value': req.body.endpoint
		}], function (err, friendInstances) {
			if (err) {
				return cb(new VError(err, 'error reading friends'));
			}
69
			if (friendInstances.length !== 1) {
				return cb(new VError(err, 'friend request not found'));
			}
73
			cb(null, friendInstances[0]);
		});
	},
	function callWebHook(friend, cb) {
		debug('/friend-update callWebhook');
79
		var payload = {
			'accessToken': friend.remoteAccessToken,
			'action': 'friend-update'
		};
84
		if (newStatus === 'delete' || newStatus === 'block') {
			payload.action = 'friend-delete';
		}
88
		var options = {
			'url': fixIfBehindProxy(friend.remoteEndPoint + '/friend-webhook'),
			'form': payload,
			'json': true
		};
94
		request.post(options, function (err, response, body) {
			if (err) {
				return cb(new VError(err, '/friend-update callWebhook failed'));
			}
			if (response.statusCode !== 200) {
				return cb(new VError('/friend-update callWebhook http error ' + response.statusCode));
			}
			if (_.get(body, 'status') !== 'ok') {
				return cb(new VError('/friend-update callWebhook unexpected result %j' + body));
			}
105
			cb(null, friend);
		});
	},
	function createBlock(friend, cb) {
		if (newStatus !== 'block') {
			return async.setImmediate(function () {
				cb(null, friend);
			});
		}
115
		// create a block entry
		db.newInstance('blocks', {
			'remoteEndPoint': friend.remoteEndPoint,
			'userId': currentUser.id
		}, function (err, block) {
			cb(null, friend);
		});
	},
	function updateFriend(friend, cb) {
125
		if (newStatus === 'delete' || newStatus === 'block') {
127
			antisocialApp.emit('friend-deleted', currentUser, JSON.parse(JSON.stringify(friend)));
129
			db.deleteInstance('friends', friend.id, function (err) {
				if (err) {
					var e = new VError(err, '/friend-update updateFriend error');
					return cb(e);
				}
135
				cb(null);
			});
		}
		else {
			friend.audiences.push('friends');
141
			var update = {
				'audiences': newAudiences
			};
145
			db.updateInstance('friends', friend.id, update, function (err, friend) {
				if (err) {
					var e = new VError(err, '/friend-update updateFriend error');
					return cb(e);
				}
151
				antisocialApp.emit('friend-updated', currentUser, friend);
153
				cb(null);
			});
		}
	}
], function (err) {
	if (err) {
		var e = new WError(err, '/friend-update failed');
		return res.send({
			'status': 'error',
			'reason': e.message,
			'details': e.cause().message
		});
	}
167
	res.send({
		'status': 'ok'
	});
});
172
});
174};

1	`// Copyright Michael Rhodes. 2017,2018. All Rights Reserved.`
2	`// This file is licensed under the MIT License.`
3	`// License text available at https://opensource.org/licenses/MIT`
4
5	`var fixIfBehindProxy = require('../lib/utilities').fixIfBehindProxy;`
6	`var debug = require('debug')('antisocial-friends');`
7	`var VError = require('verror').VError;`
8	`var WError = require('verror').WError;`
9	`var async = require('async');`
10	`var request = require('request');`
11	`var _ = require('lodash');`
12
13	`module.exports = function mountFriendUpdate(antisocialApp) {`
14
15	`var router = antisocialApp.router;`
16	`var config = antisocialApp.config;`
17	`var db = antisocialApp.db;`
18	`var authUserMiddleware = antisocialApp.authUserMiddleware;`
19
20	`var updateRegex = /^\/([a-zA-Z0-9\-.]+)\/friend-update$/;`
21
22	`debug('mounting GET /username/friend-update', updateRegex);`
23
24	`router.post(updateRegex, authUserMiddleware, function handleFriendUpdate(req, res) {`
25	`var matches = req.path.match(updateRegex);`
26	`var username = matches[1];`
27
28	`var endpoint = req.body.endpoint;`
29
30	`if (!endpoint) {`
31	`debug('endpoint not supplied');`
32	`return res.status(400).send('endpoint not supplied');`
33	`}`
34
35	`if (!endpoint.match(/(^\|\s)((https?:\/\/)?[\w-]+(\.[\w-]+)+\.?(:\d+)?(\/\S*)?)/gi)) {`
36	`debug('endpoint not a valid url');`
37	`return res.status(400).send('endpoint not a valid url');`
38	`}`
39
40	`// must be a logged in user`
41	`var currentUser = req.antisocialUser;`
42	`if (!currentUser) {`
43	`debug('not logged in');`
44	`return res.sendStatus(401);`
45	`}`
46
47	`// by convention expects user to match username`
48	`if (currentUser.username !== username) {`
49	`debug('username mismatch');`
50	`return res.status(400).send('username mismatch');`
51	`}`
52
53	`var newStatus = req.body.status;`
54	`var newAudiences = req.body.audiences;`
55
56	`async.waterfall([`
57	`function findFriend(cb) {`
58	`debug('/friend-update findFriend');`
59	`db.getInstances('friends', [{`
60	`'property': 'userId',`
61	`'value': currentUser.id`
62	`}, {`
63	`'property': 'remoteEndPoint',`
64	`'value': req.body.endpoint`
65	`}], function (err, friendInstances) {`
66	`if (err) {`
67	`return cb(new VError(err, 'error reading friends'));`
68	`}`
69
70	`if (friendInstances.length !== 1) {`
71	`return cb(new VError(err, 'friend request not found'));`
72	`}`
73
74	`cb(null, friendInstances[0]);`
75	`});`
76	`},`
77	`function callWebHook(friend, cb) {`
78	`debug('/friend-update callWebhook');`
79
80	`var payload = {`
81	`'accessToken': friend.remoteAccessToken,`
82	`'action': 'friend-update'`
83	`};`
84
85	`if (newStatus === 'delete' \|\| newStatus === 'block') {`
86	`payload.action = 'friend-delete';`
87	`}`
88
89	`var options = {`
90	`'url': fixIfBehindProxy(friend.remoteEndPoint + '/friend-webhook'),`
91	`'form': payload,`
92	`'json': true`
93	`};`
94
95	`request.post(options, function (err, response, body) {`
96	`if (err) {`
97	`return cb(new VError(err, '/friend-update callWebhook failed'));`
98	`}`
99	`if (response.statusCode !== 200) {`
100	`return cb(new VError('/friend-update callWebhook http error ' + response.statusCode));`
101	`}`
102	`if (_.get(body, 'status') !== 'ok') {`
103	`return cb(new VError('/friend-update callWebhook unexpected result %j' + body));`
104	`}`
105
106	`cb(null, friend);`
107	`});`
108	`},`
109	`function createBlock(friend, cb) {`
110	`if (newStatus !== 'block') {`
111	`return async.setImmediate(function () {`
112	`cb(null, friend);`
113	`});`
114	`}`
115
116	`// create a block entry`
117	`db.newInstance('blocks', {`
118	`'remoteEndPoint': friend.remoteEndPoint,`
119	`'userId': currentUser.id`
120	`}, function (err, block) {`
121	`cb(null, friend);`
122	`});`
123	`},`
124	`function updateFriend(friend, cb) {`
125
126	`if (newStatus === 'delete' \|\| newStatus === 'block') {`
127
128	`antisocialApp.emit('friend-deleted', currentUser, JSON.parse(JSON.stringify(friend)));`
129
130	`db.deleteInstance('friends', friend.id, function (err) {`
131	`if (err) {`
132	`var e = new VError(err, '/friend-update updateFriend error');`
133	`return cb(e);`
134	`}`
135
136	`cb(null);`
137	`});`
138	`}`
139	`else {`
140	`friend.audiences.push('friends');`
141
142	`var update = {`
143	`'audiences': newAudiences`
144	`};`
145
146	`db.updateInstance('friends', friend.id, update, function (err, friend) {`
147	`if (err) {`
148	`var e = new VError(err, '/friend-update updateFriend error');`
149	`return cb(e);`
150	`}`
151
152	`antisocialApp.emit('friend-updated', currentUser, friend);`
153
154	`cb(null);`
155	`});`
156	`}`
157	`}`
158	`], function (err) {`
159	`if (err) {`
160	`var e = new WError(err, '/friend-update failed');`
161	`return res.send({`
162	`'status': 'error',`
163	`'reason': e.message,`
164	`'details': e.cause().message`
165	`});`
166	`}`
167
168	`res.send({`
169	`'status': 'ok'`
170	`});`
171	`});`
172
173	`});`
174	`};`