overleaf/services/web/app/coffee/Features/User/UserInfoController.coffee

UserGetter = require "./UserGetter"
logger = require("logger-sharelatex")
UserDeleter = require("./UserDeleter")
UserUpdater = require("./UserUpdater")
sanitize = require('sanitizer')

module.exports = UserController =
	getLoggedInUsersPersonalInfo: (req, res, next = (error) ->) ->
		# this is funcky as hell, we don't use the current session to get the user
		# we use the auth token, actually destroying session from the chat api request
		req.session.destroy() 
		logger.log user: req.user, "reciving request for getting logged in users personal info"
		return next(new Error("User is not logged in")) if !req.user?
		UserController.sendFormattedPersonalInfo(req.user, res, next)

	getPersonalInfo: (req, res, next = (error) ->) ->
		UserGetter.getUser req.params.user_id, { _id: true, first_name: true, last_name: true, email: true }, (error, user) ->
			logger.log user: req.params.user_id, "reciving request for getting users personal info"
			return next(error) if error?
			return res.send(404) if !user?
			UserController.sendFormattedPersonalInfo(user, res, next)
			req.session.destroy()

	updatePersonalInfo: (req, res, next = (error)->) ->
		{first_name, last_name, role, institution} = req.body
		user_id = req.session.user._id
		logger.log data:req.body, user_id:user_id, "getting update for user personal info"
		update = 
			first_name:sanitize.escape(first_name)
			last_name:sanitize.escape(last_name)
			role:sanitize.escape(role)
			institution:sanitize.escape(institution)
		UserUpdater.updatePersonalInfo user_id, update, (err)->
			if err?
				res.send 500
			else
				res.send 204

	sendFormattedPersonalInfo: (user, res, next = (error) ->) ->
		UserController._formatPersonalInfo user, (error, info) ->
			return next(error) if error?
			res.send JSON.stringify(info)

	_formatPersonalInfo: (user, callback = (error, info) ->) ->
		callback null, {
			id: user._id.toString()
			first_name: user.first_name
			last_name: user.last_name
			email: user.email
			signUpDate: user.signUpDate
		}
Intial open source comment 2014-02-12 05:23:40 -05:00			`UserGetter = require "./UserGetter"`
			`logger = require("logger-sharelatex")`
moved delete user to the user controller 2014-04-09 09:43:08 -04:00			`UserDeleter = require("./UserDeleter")`
added controller endpoint for updating user personal info 2014-06-10 17:26:43 -04:00			`UserUpdater = require("./UserUpdater")`
			`sanitize = require('sanitizer')`
Intial open source comment 2014-02-12 05:23:40 -05:00
			`module.exports = UserController =`
			`getLoggedInUsersPersonalInfo: (req, res, next = (error) ->) ->`
			`# this is funcky as hell, we don't use the current session to get the user`
			`# we use the auth token, actually destroying session from the chat api request`
			`req.session.destroy()`
			`logger.log user: req.user, "reciving request for getting logged in users personal info"`
			`return next(new Error("User is not logged in")) if !req.user?`
			`UserController.sendFormattedPersonalInfo(req.user, res, next)`

			`getPersonalInfo: (req, res, next = (error) ->) ->`
			`UserGetter.getUser req.params.user_id, { _id: true, first_name: true, last_name: true, email: true }, (error, user) ->`
			`logger.log user: req.params.user_id, "reciving request for getting users personal info"`
			`return next(error) if error?`
			`return res.send(404) if !user?`
			`UserController.sendFormattedPersonalInfo(user, res, next)`
			`req.session.destroy()`

added controller endpoint for updating user personal info 2014-06-10 17:26:43 -04:00			`updatePersonalInfo: (req, res, next = (error)->) ->`
endpoint for user details is written 2014-06-11 07:46:28 -04:00			`{first_name, last_name, role, institution} = req.body`
added default of empty string to user details, fixed route as well 2014-06-11 10:14:03 -04:00			`user_id = req.session.user._id`
			`logger.log data:req.body, user_id:user_id, "getting update for user personal info"`
added controller endpoint for updating user personal info 2014-06-10 17:26:43 -04:00			`update =`
			`first_name:sanitize.escape(first_name)`
			`last_name:sanitize.escape(last_name)`
			`role:sanitize.escape(role)`
endpoint for user details is written 2014-06-11 07:46:28 -04:00			`institution:sanitize.escape(institution)`
added default of empty string to user details, fixed route as well 2014-06-11 10:14:03 -04:00			`UserUpdater.updatePersonalInfo user_id, update, (err)->`
added controller endpoint for updating user personal info 2014-06-10 17:26:43 -04:00			`if err?`
			`res.send 500`
			`else`
			`res.send 204`
Intial open source comment 2014-02-12 05:23:40 -05:00
			`sendFormattedPersonalInfo: (user, res, next = (error) ->) ->`
			`UserController._formatPersonalInfo user, (error, info) ->`
			`return next(error) if error?`
			`res.send JSON.stringify(info)`

			`_formatPersonalInfo: (user, callback = (error, info) ->) ->`
			`callback null, {`
			`id: user._id.toString()`
			`first_name: user.first_name`
			`last_name: user.last_name`
			`email: user.email`
			`signUpDate: user.signUpDate`
			`}`

moved delete user to the user controller 2014-04-09 09:43:08 -04:00