overleaf/services/web/app/coffee/Features/Editor/EditorHttpController.coffee

135 lines
5.8 KiB
CoffeeScript
Raw Normal View History

ProjectEntityUpdateHandler = require "../Project/ProjectEntityUpdateHandler"
ProjectDeleter = require "../Project/ProjectDeleter"
2014-06-05 15:18:25 +00:00
logger = require "logger-sharelatex"
EditorRealTimeController = require "./EditorRealTimeController"
2014-06-22 11:10:42 +00:00
EditorController = require "./EditorController"
2015-02-05 16:37:37 +00:00
ProjectGetter = require('../Project/ProjectGetter')
UserGetter = require('../User/UserGetter')
AuthorizationManager = require("../Authorization/AuthorizationManager")
2015-02-05 16:37:37 +00:00
ProjectEditorHandler = require('../Project/ProjectEditorHandler')
Metrics = require('metrics-sharelatex')
CollaboratorsHandler = require("../Collaborators/CollaboratorsHandler")
CollaboratorsInviteHandler = require("../Collaborators/CollaboratorsInviteHandler")
PrivilegeLevels = require "../Authorization/PrivilegeLevels"
TokenAccessHandler = require '../TokenAccess/TokenAccessHandler'
2017-11-01 18:21:05 +00:00
AuthenticationController = require "../Authentication/AuthenticationController"
2014-06-05 15:18:25 +00:00
module.exports = EditorHttpController =
joinProject: (req, res, next) ->
project_id = req.params.Project_id
user_id = req.query.user_id
if user_id == "anonymous-user"
user_id = null
logger.log {user_id, project_id}, "join project request"
Metrics.inc "editor.join-project"
2017-09-27 13:01:52 +00:00
EditorHttpController._buildJoinProjectView req, project_id, user_id, (error, project, privilegeLevel) ->
return next(error) if error?
# Hide access tokens if this is not the project owner
TokenAccessHandler.protectTokens(project, privilegeLevel)
res.json {
project: project
privilegeLevel: privilegeLevel
}
# Only show the 'renamed or deleted' message once
2014-12-12 10:27:14 +00:00
if project?.deletedByExternalDataSource
ProjectDeleter.unmarkAsDeletedByExternalSource project_id
2017-09-27 13:01:52 +00:00
_buildJoinProjectView: (req, project_id, user_id, callback = (error, project, privilegeLevel) ->) ->
logger.log {project_id, user_id}, "building the joinProject view"
2015-02-05 16:37:37 +00:00
ProjectGetter.getProjectWithoutDocLines project_id, (error, project) ->
return callback(error) if error?
return callback(new Error("not found")) if !project?
CollaboratorsHandler.getInvitedMembersWithPrivilegeLevels project_id, (error, members) ->
2015-02-05 16:37:37 +00:00
return callback(error) if error?
token = TokenAccessHandler.getRequestToken(req, project_id)
AuthorizationManager.getPrivilegeLevelForProject user_id, project_id, token, (error, privilegeLevel) ->
2015-02-05 16:37:37 +00:00
return callback(error) if error?
if !privilegeLevel? or privilegeLevel == PrivilegeLevels.NONE
logger.log {project_id, user_id, privilegeLevel}, "not an acceptable privilege level, returning null"
return callback null, null, false
CollaboratorsInviteHandler.getAllInvites project_id, (error, invites) ->
2015-02-05 16:37:37 +00:00
return callback(error) if error?
logger.log {project_id, user_id, memberCount: members.length, inviteCount: invites.length, privilegeLevel}, "returning project model view"
callback(null,
ProjectEditorHandler.buildProjectModelView(project, members, invites),
privilegeLevel
)
2015-02-05 16:37:37 +00:00
_nameIsAcceptableLength: (name)->
return name? and name.length < 150 and name.length != 0
2014-06-22 11:10:42 +00:00
addDoc: (req, res, next) ->
project_id = req.params.Project_id
name = req.body.name
parent_folder_id = req.body.parent_folder_id
user_id = AuthenticationController.getLoggedInUserId(req)
logger.log project_id:project_id, name:name, parent_folder_id:parent_folder_id, "getting request to add doc to project"
if !EditorHttpController._nameIsAcceptableLength(name)
2015-07-08 15:56:38 +00:00
return res.sendStatus 400
EditorController.addDoc project_id, parent_folder_id, name, [], "editor", user_id, (error, doc) ->
if error == "project_has_to_many_files"
res.status(400).json(req.i18n.translate("project_has_to_many_files"))
else if error?
next(error)
else
res.json doc
2014-06-22 13:39:38 +00:00
addFolder: (req, res, next) ->
project_id = req.params.Project_id
name = req.body.name
parent_folder_id = req.body.parent_folder_id
if !EditorHttpController._nameIsAcceptableLength(name)
2015-07-08 15:56:38 +00:00
return res.sendStatus 400
EditorController.addFolder project_id, parent_folder_id, name, "editor", (error, doc) ->
if error == "project_has_to_many_files"
res.status(400).json(req.i18n.translate("project_has_to_many_files"))
2017-03-31 09:46:13 +00:00
else if error?.message == 'invalid element name'
res.status(400).json(req.i18n.translate('invalid_file_name'))
else if error?
next(error)
else
res.json doc
2014-06-22 19:08:56 +00:00
renameEntity: (req, res, next) ->
project_id = req.params.Project_id
entity_id = req.params.entity_id
entity_type = req.params.entity_type
name = req.body.name
if !EditorHttpController._nameIsAcceptableLength(name)
2015-07-08 15:56:38 +00:00
return res.sendStatus 400
user_id = AuthenticationController.getLoggedInUserId(req)
2017-11-01 18:21:05 +00:00
EditorController.renameEntity project_id, entity_id, entity_type, name, user_id, (error) ->
2014-06-22 19:08:56 +00:00
return next(error) if error?
2015-07-08 15:56:38 +00:00
res.sendStatus 204
2014-06-22 19:08:56 +00:00
moveEntity: (req, res, next) ->
project_id = req.params.Project_id
entity_id = req.params.entity_id
entity_type = req.params.entity_type
folder_id = req.body.folder_id
2017-11-02 09:44:23 +00:00
user_id = AuthenticationController.getLoggedInUserId(req)
EditorController.moveEntity project_id, entity_id, folder_id, entity_type, user_id, (error) ->
return next(error) if error?
res.sendStatus 204
2014-06-22 19:08:56 +00:00
deleteDoc: (req, res, next)->
req.params.entity_type = "doc"
EditorHttpController.deleteEntity(req, res, next)
deleteFile: (req, res, next)->
req.params.entity_type = "file"
EditorHttpController.deleteEntity(req, res, next)
deleteFolder: (req, res, next)->
req.params.entity_type = "folder"
EditorHttpController.deleteEntity(req, res, next)
2014-06-22 19:08:56 +00:00
deleteEntity: (req, res, next) ->
project_id = req.params.Project_id
entity_id = req.params.entity_id
entity_type = req.params.entity_type
user_id = AuthenticationController.getLoggedInUserId(req)
EditorController.deleteEntity project_id, entity_id, entity_type, "editor", user_id, (error) ->
2014-06-22 19:08:56 +00:00
return next(error) if error?
2015-07-08 15:56:38 +00:00
res.sendStatus 204