Lateinicus/backend/src/api/user.ts

import * as express from "express";
import * as bodyparser from "body-parser";

import { authRoute } from "../security/token";

import { userFromSession } from "../utils/user";

import { IUser, IUserDBModel } from "../models/user";
import { LRequest } from "../types/express";
import { Db } from "mongodb";

const userRouter = express.Router();
userRouter.use(authRoute);
userRouter.use(bodyparser.json());

// Return the user object if the user is still authenticated
userRouter.get("/me", async (req: LRequest, res) => {
    const { db, token } = req;

    const session = await db.collection("sessions").findOne({ token, });
    if (session !== null) {
        const user = await db.collection("users").findOne({ username: session.username });

        // Copy and strip unneeded attributes
        let copy = Object.assign({}, user, {
            sessionToken: token,
        });
        delete copy._id;
        delete copy.hash;
        delete copy.salt;

        res.send({
            error: "0",
            data: copy,
        });
    } else {
        res.send({
            error: "404",
            data: {},
        });
    }
});

// Removes the user's session
userRouter.get("/logout", async (req: LRequest, res) => {
    // Try to remove the session
    const { db, token } = req;
    await db.collection("sessions").findOneAndDelete({ token, });

    res.send({
        error: "0",
        data: {},
    });
});

// TODO: This should be shared with the frontend, to remove code duplication
export enum VocabType {
    NOMEN = 0,
    VERB = 1,
    ADJEKTIV = 2,
    ADVERB = 3,
};

// Gets the user's review queue
userRouter.get("/queue", async (req: LRequest, res) => {
    // TODO: if (user)
    const { token, db } = req;
    const user = await userFromSession(token, db);

    // Fetch all vocab ids from the vocabulary collection
    const vocabRaw = await db.collection("vocabulary").find({
        id: { $in: user.queue },
    }, {
            // TODO: Make this configurable?
            limit: 20,
        }).toArray();

    // Remove unneeded data
    const vocab = vocabRaw.map(el => {
        let tmp = Object.assign({}, el);
        delete tmp._id;

        return tmp;
    });

    res.send({
        error: "0",
        data: {
            queue: vocab,
        },
    });
});

// Get ot set the last review results
userRouter.get("/lastReview", async (req: LRequest, res) => {
    // TODO: if(user)
    const { token, db } = req;
    const user = await userFromSession(token, db);

    res.send({
        error: "0",
        data: user.lastReview,
    });
});
userRouter.post("/lastReview", async (req: LRequest, res) => {
    // TODO: Check if we get the correct data
    // TODO: if(user)
    const { token, db } = req;
    const user = await userFromSession(token, db);

    // TODO: Error handling
    await db.collection("users").updateOne({
        username: user.username,
    }, {
            $set: {
                lastReview: req.body.meta,
            },
        });

    res.send({
        error: "0",
        data: {},
    });
});

// Returns the next level (level + 1) or the current level, if no higher level
// can be found
async function getNextLevel(token: string, db: Db): Promise<any> {
    // TODO: if(user)
    const user = await userFromSession(token, db);
    const { lastLevel } = user;

    // Try to find a level, which level is lastLevel + 1
    const level = await db.collection("levels").findOne({
        level: lastLevel + 1,
    });

    if (level) {
        return level;
    } else {
        // TODO: Send different data, so that the Client can say "Hey, no more levels"
        return await db.collection("levels").findOne({
            level: lastLevel
        });
    }
}

// Get the next level
userRouter.get("/nextLevel", async (req: LRequest, res) => {
    const level = await getNextLevel(req.token, req.db);
    res.send({
        error: "0",
        data: level,
    });
});

// Mark a level as done
userRouter.post("/level/:id", async (req: LRequest, res) => {
    // Is everything specified?
    if (!req.params || !req.params.id) {
        res.send({
            error: "400",
            data: {
                msg: "No level ID specified",
            },
        });
        return;
    }

    const id = parseInt(req.params.id);
    if (id === NaN) {
        res.send({
            error: "400",
            data: {
                msg: "Invalid level ID",
            },
        });
        return;
    }

    // TODO: if (user)
    const { token, db } = req;
    const user = await userFromSession(token, db);

    if (id in user.levels) {
        // Nothing
    } else {
        // The level is new to the user
        // Is the new level higher than the "highest" already completed level?
        let update = {
            levels: user.levels.concat(id),
        };
        if (id > Math.max(...user.levels)) {
            // Also update the lastLevel attribute
            Object.assign(update, { lastLevel: id });
        }
        await db.collection("users").updateOne({
            username: user.username,
        }, {
                $set: update,
            });
    }

    res.send({
        error: "200",
        data: {},
    });
});

// Get the data needed for the dashboard 
userRouter.get("/dashboard", async (req: LRequest, res) => {
    const { db, token } = req;

    // Get the user
    // TODO: if (user)
    const user = await userFromSession(token, db);
    const { classId } = user;

    // Fetch the top ten of the class
    const rawTopTen = await db.collection("users").find({
        classId,
    }, {
            sort: {
                score: -1,
            },
            limit: 10,
        }).toArray();

    let nr = 1;
    const topTen = rawTopTen.map((user: IUser) => {
        return {
            username: user.username,
            score: user.score,
            // TODO: Calculate on the client?
            level: 1,
            nr: nr++,
        };
    });

    const nextLevel = await getNextLevel(token, db);
    res.send({
        error: "200",
        data: {
            nextLevel,
            topTen,
            lastReview: user.lastReview,
        },
    });
});

userRouter.post("/showWelcome", async (req: LRequest, res) => {
    const { db, token } = req;

    // Are all arguments specified?
    if (!req.body || !("state" in req.body)) {
        res.send({
            error: "400",
            data: {
                msg: "State not specified",
            },
        });
        return;
    }

    // Find the user
    // TODO: if (user)
    const user = await userFromSession(token, db);

    await db.collection("users").updateOne({
        username: user.username,
    }, {
            $set: {
                showWelcome: req.body.state,
            },
        });
    res.send({
        error: "200",
        data: {},
    });
});

export default userRouter;
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`import * as express from "express";`
			`import * as bodyparser from "body-parser";`

			`import { authRoute } from "../security/token";`

feat: Remove shared/ 2018-09-29 13:06:14 +00:00			`import { userFromSession } from "../utils/user";`

feat: Implement (most) API endpoints 2018-09-29 17:34:22 +00:00			`import { IUser, IUserDBModel } from "../models/user";`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`import { LRequest } from "../types/express";`
			`import { Db } from "mongodb";`
feat: Remove shared/ 2018-09-29 13:06:14 +00:00
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`const userRouter = express.Router();`
			`userRouter.use(authRoute);`
feat: Implement the /user/me endpoint 2018-09-29 12:23:09 +00:00			`userRouter.use(bodyparser.json());`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00
			`// Return the user object if the user is still authenticated`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`userRouter.get("/me", async (req: LRequest, res) => {`
feat: Implement the /user/me endpoint 2018-09-29 12:23:09 +00:00			`const { db, token } = req;`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00
feat: Implement the /user/me endpoint 2018-09-29 12:23:09 +00:00			`const session = await db.collection("sessions").findOne({ token, });`
			`if (session !== null) {`
			`const user = await db.collection("users").findOne({ username: session.username });`

feat: Remove shared/ 2018-09-29 13:06:14 +00:00			`// Copy and strip unneeded attributes`
			`let copy = Object.assign({}, user, {`
			`sessionToken: token,`
			`});`
			`delete copy._id;`
			`delete copy.hash;`
			`delete copy.salt;`

feat: Implement the /user/me endpoint 2018-09-29 12:23:09 +00:00			`res.send({`
			`error: "0",`
feat: Remove shared/ 2018-09-29 13:06:14 +00:00			`data: copy,`
feat: Implement the /user/me endpoint 2018-09-29 12:23:09 +00:00			`});`
			`} else {`
			`res.send({`
			`error: "404",`
			`data: {},`
			`});`
			`}`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`});`

			`// Removes the user's session`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`userRouter.get("/logout", async (req: LRequest, res) => {`
feat: Implement the /user/me endpoint 2018-09-29 12:23:09 +00:00			`// Try to remove the session`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`const { db, token } = req;`
			`await db.collection("sessions").findOneAndDelete({ token, });`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00
			`res.send({`
			`error: "0",`
			`data: {},`
			`});`
			`});`

feat: Implement all Frontend stubs 2018-09-24 11:53:20 +00:00			`// TODO: This should be shared with the frontend, to remove code duplication`
			`export enum VocabType {`
			`NOMEN = 0,`
			`VERB = 1,`
			`ADJEKTIV = 2,`
			`ADVERB = 3,`
			`};`

refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`// Gets the user's review queue`
feat: Implement (most) API endpoints 2018-09-29 17:34:22 +00:00			`userRouter.get("/queue", async (req: LRequest, res) => {`
			`// TODO: if (user)`
			`const { token, db } = req;`
			`const user = await userFromSession(token, db);`

			`// Fetch all vocab ids from the vocabulary collection`
			`const vocabRaw = await db.collection("vocabulary").find({`
			`id: { $in: user.queue },`
			`}, {`
			`// TODO: Make this configurable?`
			`limit: 20,`
			`}).toArray();`

			`// Remove unneeded data`
			`const vocab = vocabRaw.map(el => {`
			`let tmp = Object.assign({}, el);`
			`delete tmp._id;`

			`return tmp;`
			`});`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00
			`res.send({`
			`error: "0",`
feat: Implement all Frontend stubs 2018-09-24 11:53:20 +00:00			`data: {`
feat: Implement (most) API endpoints 2018-09-29 17:34:22 +00:00			`queue: vocab,`
feat: Implement all Frontend stubs 2018-09-24 11:53:20 +00:00			`},`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`});`
			`});`

			`// Get ot set the last review results`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`userRouter.get("/lastReview", async (req: LRequest, res) => {`
			`// TODO: if(user)`
			`const { token, db } = req;`
			`const user = await userFromSession(token, db);`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00
			`res.send({`
			`error: "0",`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`data: user.lastReview,`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`});`
			`});`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`userRouter.post("/lastReview", async (req: LRequest, res) => {`
			`// TODO: Check if we get the correct data`
			`// TODO: if(user)`
			`const { token, db } = req;`
			`const user = await userFromSession(token, db);`

			`// TODO: Error handling`
			`await db.collection("users").updateOne({`
			`username: user.username,`
			`}, {`
			`$set: {`
			`lastReview: req.body.meta,`
			`},`
			`});`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00
			`res.send({`
			`error: "0",`
			`data: {},`
			`});`
			`});`

feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`// Returns the next level (level + 1) or the current level, if no higher level`
			`// can be found`
			`async function getNextLevel(token: string, db: Db): Promise<any> {`
			`// TODO: if(user)`
			`const user = await userFromSession(token, db);`
			`const { lastLevel } = user;`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`// Try to find a level, which level is lastLevel + 1`
			`const level = await db.collection("levels").findOne({`
			`level: lastLevel + 1,`
			`});`

			`if (level) {`
			`return level;`
			`} else {`
			`// TODO: Send different data, so that the Client can say "Hey, no more levels"`
			`return await db.collection("levels").findOne({`
			`level: lastLevel`
			`});`
			`}`
			`}`

			`// Get the next level`
			`userRouter.get("/nextLevel", async (req: LRequest, res) => {`
			`const level = await getNextLevel(req.token, req.db);`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`res.send({`
			`error: "0",`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`data: level,`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`});`
			`});`

			`// Mark a level as done`
feat: Implement updating the done levels 2018-09-29 20:00:15 +00:00			`userRouter.post("/level/:id", async (req: LRequest, res) => {`
			`// Is everything specified?`
			`if (!req.params \|\| !req.params.id) {`
			`res.send({`
			`error: "400",`
			`data: {`
			`msg: "No level ID specified",`
			`},`
			`});`
			`return;`
			`}`

			`const id = parseInt(req.params.id);`
			`if (id === NaN) {`
			`res.send({`
			`error: "400",`
			`data: {`
			`msg: "Invalid level ID",`
			`},`
			`});`
			`return;`
			`}`

			`// TODO: if (user)`
			`const { token, db } = req;`
			`const user = await userFromSession(token, db);`

			`if (id in user.levels) {`
			`// Nothing`
			`} else {`
			`// The level is new to the user`
			`// Is the new level higher than the "highest" already completed level?`
			`let update = {`
			`levels: user.levels.concat(id),`
			`};`
			`if (id > Math.max(...user.levels)) {`
			`// Also update the lastLevel attribute`
			`Object.assign(update, { lastLevel: id });`
			`}`
			`await db.collection("users").updateOne({`
			`username: user.username,`
			`}, {`
			`$set: update,`
			`});`
			`}`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00
			`res.send({`
feat: Implement updating the done levels 2018-09-29 20:00:15 +00:00			`error: "200",`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`data: {},`
			`});`
			`});`

			`// Get the data needed for the dashboard`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`userRouter.get("/dashboard", async (req: LRequest, res) => {`
feat: Remove shared/ 2018-09-29 13:06:14 +00:00			`const { db, token } = req;`

			`// Get the user`
			`// TODO: if (user)`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`const user = await userFromSession(token, db);`
feat: Remove shared/ 2018-09-29 13:06:14 +00:00			`const { classId } = user;`

			`// Fetch the top ten of the class`
			`const rawTopTen = await db.collection("users").find({`
			`classId,`
			`}, {`
			`sort: {`
			`score: -1,`
			`},`
			`limit: 10,`
			`}).toArray();`

			`let nr = 1;`
			`const topTen = rawTopTen.map((user: IUser) => {`
			`return {`
			`username: user.username,`
			`score: user.score,`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`// TODO: Calculate on the client?`
feat: Remove shared/ 2018-09-29 13:06:14 +00:00			`level: 1,`
			`nr: nr++,`
			`};`
			`});`
feat: Implement the new /dashboard API 2018-09-24 16:29:29 +00:00
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`const nextLevel = await getNextLevel(token, db);`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`res.send({`
feat: Implement the new /dashboard API 2018-09-24 16:29:29 +00:00			`error: "200",`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`data: {`
feat: Implement even more endpoints 2018-09-29 17:10:27 +00:00			`nextLevel,`
feat: Remove shared/ 2018-09-29 13:06:14 +00:00			`topTen,`
			`lastReview: user.lastReview,`
refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`},`
			`});`
			`});`

feat: Implement updating the done levels 2018-09-29 20:00:15 +00:00			`userRouter.post("/showWelcome", async (req: LRequest, res) => {`
			`const { db, token } = req;`

			`// Are all arguments specified?`
			`if (!req.body \|\| !("state" in req.body)) {`
			`res.send({`
			`error: "400",`
			`data: {`
			`msg: "State not specified",`
			`},`
			`});`
			`return;`
			`}`

			`// Find the user`
			`// TODO: if (user)`
			`const user = await userFromSession(token, db);`

			`await db.collection("users").updateOne({`
			`username: user.username,`
			`}, {`
			`$set: {`
			`showWelcome: req.body.state,`
			`},`
			`});`
			`res.send({`
			`error: "200",`
			`data: {},`
			`});`
			`});`

refactor: Create a better API scheme 2018-09-23 20:17:35 +00:00			`export default userRouter;`