overleaf/services/web/app/coffee/Features/Project/ProjectDetailsHandler.coffee

ProjectGetter = require("./ProjectGetter")
UserGetter = require("../User/UserGetter")
Project = require('../../models/Project').Project
logger = require("logger-sharelatex")
tpdsUpdateSender = require '../ThirdPartyDataStore/TpdsUpdateSender'
_ = require("underscore")
PublicAccessLevels = require("../Authorization/PublicAccessLevels")
Errors = require("../Errors/Errors")
ProjectTokenGenerator = require('./ProjectTokenGenerator')

module.exports = ProjectDetailsHandler =
	getDetails: (project_id, callback)->
		ProjectGetter.getProject project_id, {name:true, description:true, compiler:true, features:true, owner_ref:true, overleaf:true}, (err, project)->
			if err?
				logger.err err:err, project_id:project_id, "error getting project"
				return callback(err)
			return callback(new Errors.NotFoundError("project not found")) if !project?
			UserGetter.getUser project.owner_ref, (err, user) ->
				return callback(err) if err?
				details =
					name : project.name
					description: project.description
					compiler: project.compiler
					features: user.features

				if project.overleaf?
					details.overleaf = project.overleaf

				logger.log project_id:project_id, details: details, "getting project details"
				callback(err, details)

	getProjectDescription: (project_id, callback)->
		ProjectGetter.getProject project_id, description: true, (err, project)->
			callback(err, project?.description)

	setProjectDescription: (project_id, description, callback)->
		conditions = _id:project_id
		update = description:description
		logger.log conditions:conditions, update:update, project_id:project_id, description:description, "setting project description"
		Project.update conditions, update, (err)->
			if err?
				logger.err err:err, "something went wrong setting project description"
			callback(err)

	renameProject: (project_id, newName, callback = ->)->
		ProjectDetailsHandler.validateProjectName newName, (error) ->
			return callback(error) if error?
			logger.log project_id: project_id, newName:newName, "renaming project"
			ProjectGetter.getProject project_id, {name:true}, (err, project)->
				if err? or !project?
					logger.err err:err,  project_id:project_id, "error getting project or could not find it todo project rename"
					return callback(err)
				oldProjectName = project.name
				Project.update _id:project_id, {name: newName}, (err, project)=>
					if err?
						return callback(err)
					tpdsUpdateSender.moveEntity {project_id:project_id, project_name:oldProjectName, newProjectName:newName}, callback

	MAX_PROJECT_NAME_LENGTH: 150
	validateProjectName: (name, callback = (error) ->) ->
		if !name? or name.length == 0
			return callback(new Errors.InvalidNameError("Project name cannot be blank"))
		else if name.length > @MAX_PROJECT_NAME_LENGTH
			return callback(new Errors.InvalidNameError("Project name is too long"))
		else if name.indexOf("/") > -1
			return callback(new Errors.InvalidNameError("Project name cannot not contain / characters"))
		else
			return callback()

	_addSuffixToProjectName: (name, suffix = '') ->
		# append the suffix and truncate the project title if needed
		truncatedLength = ProjectDetailsHandler.MAX_PROJECT_NAME_LENGTH - suffix.length
		return name.substr(0, truncatedLength) + suffix

	# FIXME: we should put a lock around this to make it completely safe, but we would need to do that at
	# the point of project creation, rather than just checking the name at the start of the import.
	# If we later move this check into ProjectCreationHandler we can ensure all new projects are created
	# with a unique name.  But that requires thinking through how we would handle incoming projects from
	# dropbox for example.
	ensureProjectNameIsUnique: (user_id, name, suffixes = [], callback = (error, name, changed)->) ->
		ProjectGetter.findAllUsersProjects user_id, {name: 1}, (error, allUsersProjects) ->
			return callback(error) if error?
			{owned, readAndWrite, readOnly, tokenReadAndWrite, tokenReadOnly} = allUsersProjects
			# create a set of all project names
			allProjectNames = new Set()
			for projectName in owned.concat(readAndWrite, readOnly, tokenReadAndWrite, tokenReadOnly)
				allProjectNames.add(projectName)
			isUnique = (x) -> !allProjectNames.has(x)
			# check if the supplied name is already unique
			if isUnique(name)
				return callback(null, name, false)
			# the name already exists, try adding the user-supplied suffixes to generate a unique name
			for suffix in suffixes
				candidateName = ProjectDetailsHandler._addSuffixToProjectName(name, suffix)
				if isUnique(candidateName)
					return callback(null, candidateName, true)
			# we couldn't make the name unique, something is wrong
			return callback new Errors.InvalidNameError("Project name could not be made unique")

	setPublicAccessLevel : (project_id, newAccessLevel, callback = ->)->
		logger.log project_id: project_id, level: newAccessLevel, "set public access level"
		# DEPRECATED: `READ_ONLY` and `READ_AND_WRITE` are still valid in, but should no longer
		# be passed here. Remove after token-based access has been live for a while
		if project_id? && newAccessLevel? and _.include [
			PublicAccessLevels.READ_ONLY,
			PublicAccessLevels.READ_AND_WRITE,
			PublicAccessLevels.PRIVATE,
			PublicAccessLevels.TOKEN_BASED
		], newAccessLevel
			Project.update {_id:project_id},{publicAccesLevel:newAccessLevel}, (err)->
				callback(err)

	ensureTokensArePresent: (project_id, callback=(err, tokens)->) ->
		ProjectGetter.getProject project_id, {tokens: 1}, (err, project) ->
			return callback(err) if err?
			if project.tokens? and project.tokens.readOnly? and project.tokens.readAndWrite?
				logger.log {project_id}, "project already has tokens"
				return callback(null, project.tokens)
			else
				logger.log {
					project_id,
					has_tokens: project.tokens?,
					has_readOnly: project?.tokens?.readOnly?,
					has_readAndWrite: project?.tokens?.readAndWrite?
				}, "generating tokens for project"
				tokens = project.tokens || {}
				if !tokens.readOnly?
					tokens.readOnly = ProjectTokenGenerator.readOnlyToken()
				if !tokens.readAndWrite?
					tokens.readAndWrite = ProjectTokenGenerator.readAndWriteToken()
				Project.update {_id: project_id}, {$set: {tokens: tokens}}, (err) ->
					return callback(err) if err?
					callback(null, tokens)
Intial open source comment 2014-02-12 05:23:40 -05:00			`ProjectGetter = require("./ProjectGetter")`
Return features along with project details 2014-03-28 08:47:15 -04:00			`UserGetter = require("../User/UserGetter")`
Intial open source comment 2014-02-12 05:23:40 -05:00			`Project = require('../../models/Project').Project`
			`logger = require("logger-sharelatex")`
moved rename project to project details handler 2014-04-07 10:37:40 -04:00			`tpdsUpdateSender = require '../ThirdPartyDataStore/TpdsUpdateSender'`
moved setPublicAccessLevel to project details handler 2014-04-07 11:07:44 -04:00			`_ = require("underscore")`
Convert privilege levels to an enum 2016-03-15 10:35:01 -04:00			`PublicAccessLevels = require("../Authorization/PublicAccessLevels")`
return NotFound error in ProjectDetailsHandler 2017-03-28 05:12:52 -04:00			`Errors = require("../Errors/Errors")`
Generate tokens on old projects if they're not present 2017-10-04 11:31:24 -04:00			`ProjectTokenGenerator = require('./ProjectTokenGenerator')`
Intial open source comment 2014-02-12 05:23:40 -05:00
Refactor project name validation into one place and restrict /s 2017-05-19 11:21:02 -04:00			`module.exports = ProjectDetailsHandler =`
Intial open source comment 2014-02-12 05:23:40 -05:00			`getDetails: (project_id, callback)->`
return overleaf details from ProejctsDetailsHandler.getdetails 2017-09-26 05:19:30 -04:00			`ProjectGetter.getProject project_id, {name:true, description:true, compiler:true, features:true, owner_ref:true, overleaf:true}, (err, project)->`
return NotFound error in ProjectDetailsHandler 2017-03-28 05:12:52 -04:00			`if err?`
Intial open source comment 2014-02-12 05:23:40 -05:00			`logger.err err:err, project_id:project_id, "error getting project"`
			`return callback(err)`
return NotFound error in ProjectDetailsHandler 2017-03-28 05:12:52 -04:00			`return callback(new Errors.NotFoundError("project not found")) if !project?`
Return features along with project details 2014-03-28 08:47:15 -04:00			`UserGetter.getUser project.owner_ref, (err, user) ->`
			`return callback(err) if err?`
			`details =`
			`name : project.name`
			`description: project.description`
			`compiler: project.compiler`
			`features: user.features`
return overleaf details from ProejctsDetailsHandler.getdetails 2017-09-26 05:19:30 -04:00
			`if project.overleaf?`
			`details.overleaf = project.overleaf`

			`logger.log project_id:project_id, details: details, "getting project details"`
Return features along with project details 2014-03-28 08:47:15 -04:00			`callback(err, details)`
Intial open source comment 2014-02-12 05:23:40 -05:00
get template details now includes the markdown description of the project 2014-07-16 06:27:47 -04:00			`getProjectDescription: (project_id, callback)->`
use ProjectGetter rather than Project directly 2018-02-15 07:18:43 -05:00			`ProjectGetter.getProject project_id, description: true, (err, project)->`
changed get template details to findOne 2014-07-16 06:56:22 -04:00			`callback(err, project?.description)`
get template details now includes the markdown description of the project 2014-07-16 06:27:47 -04:00
Intial open source comment 2014-02-12 05:23:40 -05:00			`setProjectDescription: (project_id, description, callback)->`
			`conditions = _id:project_id`
			`update = description:description`
			`logger.log conditions:conditions, update:update, project_id:project_id, description:description, "setting project description"`
			`Project.update conditions, update, (err)->`
			`if err?`
			`logger.err err:err, "something went wrong setting project description"`
			`callback(err)`
moved rename project to project details handler 2014-04-07 10:37:40 -04:00
			`renameProject: (project_id, newName, callback = ->)->`
Refactor project name validation into one place and restrict /s 2017-05-19 11:21:02 -04:00			`ProjectDetailsHandler.validateProjectName newName, (error) ->`
			`return callback(error) if error?`
			`logger.log project_id: project_id, newName:newName, "renaming project"`
			`ProjectGetter.getProject project_id, {name:true}, (err, project)->`
			`if err? or !project?`
			`logger.err err:err, project_id:project_id, "error getting project or could not find it todo project rename"`
moved rename project to project details handler 2014-04-07 10:37:40 -04:00			`return callback(err)`
Refactor project name validation into one place and restrict /s 2017-05-19 11:21:02 -04:00			`oldProjectName = project.name`
			`Project.update _id:project_id, {name: newName}, (err, project)=>`
			`if err?`
			`return callback(err)`
			`tpdsUpdateSender.moveEntity {project_id:project_id, project_name:oldProjectName, newProjectName:newName}, callback`

			`MAX_PROJECT_NAME_LENGTH: 150`
			`validateProjectName: (name, callback = (error) ->) ->`
avoid exception in validateProjectName 2017-10-12 11:03:12 -04:00			`if !name? or name.length == 0`
Refactor project name validation into one place and restrict /s 2017-05-19 11:21:02 -04:00			`return callback(new Errors.InvalidNameError("Project name cannot be blank"))`
			`else if name.length > @MAX_PROJECT_NAME_LENGTH`
			`return callback(new Errors.InvalidNameError("Project name is too long"))`
			`else if name.indexOf("/") > -1`
			`return callback(new Errors.InvalidNameError("Project name cannot not contain / characters"))`
			`else`
			`return callback()`
moved setPublicAccessLevel to project details handler 2014-04-07 11:07:44 -04:00
add support for creating unique project names 2018-09-14 06:08:03 -04:00			`_addSuffixToProjectName: (name, suffix = '') ->`
			`# append the suffix and truncate the project title if needed`
			`truncatedLength = ProjectDetailsHandler.MAX_PROJECT_NAME_LENGTH - suffix.length`
			`return name.substr(0, truncatedLength) + suffix`

			`# FIXME: we should put a lock around this to make it completely safe, but we would need to do that at`
			`# the point of project creation, rather than just checking the name at the start of the import.`
			`# If we later move this check into ProjectCreationHandler we can ensure all new projects are created`
			`# with a unique name. But that requires thinking through how we would handle incoming projects from`
			`# dropbox for example.`
			`ensureProjectNameIsUnique: (user_id, name, suffixes = [], callback = (error, name, changed)->) ->`
			`ProjectGetter.findAllUsersProjects user_id, {name: 1}, (error, allUsersProjects) ->`
			`return callback(error) if error?`
			`{owned, readAndWrite, readOnly, tokenReadAndWrite, tokenReadOnly} = allUsersProjects`
			`# create a set of all project names`
			`allProjectNames = new Set()`
			`for projectName in owned.concat(readAndWrite, readOnly, tokenReadAndWrite, tokenReadOnly)`
			`allProjectNames.add(projectName)`
			`isUnique = (x) -> !allProjectNames.has(x)`
			`# check if the supplied name is already unique`
			`if isUnique(name)`
			`return callback(null, name, false)`
			`# the name already exists, try adding the user-supplied suffixes to generate a unique name`
			`for suffix in suffixes`
			`candidateName = ProjectDetailsHandler._addSuffixToProjectName(name, suffix)`
			`if isUnique(candidateName)`
			`return callback(null, candidateName, true)`
			`# we couldn't make the name unique, something is wrong`
			`return callback new Errors.InvalidNameError("Project name could not be made unique")`

moved setPublicAccessLevel to project details handler 2014-04-07 11:07:44 -04:00			`setPublicAccessLevel : (project_id, newAccessLevel, callback = ->)->`
			`logger.log project_id: project_id, level: newAccessLevel, "set public access level"`
Add deprecation comment regarding legacy access-levels 2017-10-12 06:00:39 -04:00			# DEPRECATED: `READ_ONLY` and `READ_AND_WRITE` are still valid in, but should no longer
			`# be passed here. Remove after token-based access has been live for a while`
Generate tokens on old projects if they're not present 2017-10-04 11:31:24 -04:00			`if project_id? && newAccessLevel? and _.include [`
			`PublicAccessLevels.READ_ONLY,`
			`PublicAccessLevels.READ_AND_WRITE,`
			`PublicAccessLevels.PRIVATE,`
			`PublicAccessLevels.TOKEN_BASED`
			`], newAccessLevel`
moved setPublicAccessLevel to project details handler 2014-04-07 11:07:44 -04:00			`Project.update {_id:project_id},{publicAccesLevel:newAccessLevel}, (err)->`
Fix error-handling in `setPublicAccessLevel` 2017-10-26 11:39:24 -04:00			`callback(err)`
Generate tokens on old projects if they're not present 2017-10-04 11:31:24 -04:00
			`ensureTokensArePresent: (project_id, callback=(err, tokens)->) ->`
			`ProjectGetter.getProject project_id, {tokens: 1}, (err, project) ->`
			`return callback(err) if err?`
			`if project.tokens? and project.tokens.readOnly? and project.tokens.readAndWrite?`
Add logging for token generation 2017-10-12 06:25:16 -04:00			`logger.log {project_id}, "project already has tokens"`
Generate tokens on old projects if they're not present 2017-10-04 11:31:24 -04:00			`return callback(null, project.tokens)`
			`else`
Add logging for token generation 2017-10-12 06:25:16 -04:00			`logger.log {`
			`project_id,`
			`has_tokens: project.tokens?,`
			`has_readOnly: project?.tokens?.readOnly?,`
			`has_readAndWrite: project?.tokens?.readAndWrite?`
			`}, "generating tokens for project"`
Generate all missing tokens 2017-10-12 06:19:26 -04:00			`tokens = project.tokens \|\| {}`
			`if !tokens.readOnly?`
			`tokens.readOnly = ProjectTokenGenerator.readOnlyToken()`
			`if !tokens.readAndWrite?`
			`tokens.readAndWrite = ProjectTokenGenerator.readAndWriteToken()`
Generate tokens on old projects if they're not present 2017-10-04 11:31:24 -04:00			`Project.update {_id: project_id}, {$set: {tokens: tokens}}, (err) ->`
			`return callback(err) if err?`
			`callback(null, tokens)`