codecombat/server/clans/clan_handler.coffee

async = require 'async'
mongoose = require 'mongoose'
Handler = require '../commons/Handler'
Clan = require './Clan'
User = require '../users/User'
UserHandler = require '../users/user_handler'

ClanHandler = class ClanHandler extends Handler
  modelClass: Clan
  jsonSchema: require '../../app/schemas/models/Clan.schema'
  allowedMethods: ['GET', 'POST', 'PUT', 'PATCH', 'DELETE']

  hasAccess: (req) ->
    return true if req.method in ['GET']
    return true if req.user? and not req.user.isAnonymous()
    false

  hasAccessToDocument: (req, document, method=null) ->
    method = (method or req.method).toLowerCase()
    return true if req.user?.isAdmin()
    return true if method is 'get'
    return true if document.get('ownerID')?.equals req.user._id
    false

  makeNewInstance: (req) ->
    userName = req.user.get('name') ? 'Anoner'
    instance = super(req)
    instance.set 'ownerID', req.user._id
    instance.set 'members', [req.user._id]
    instance

  delete: (req, res, clanID) ->
    @getDocumentForIdOrSlug clanID, (err, clan) =>
      return @sendDatabaseError res, err if err
      return @sendNotFoundError res unless clan
      return @sendForbiddenError res unless @hasAccessToDocument(req, clan)
      memberIDs = clan.get('members')
      Clan.remove {_id: clan.get('_id')}, (err) =>
        return @sendDatabaseError res, err if err
        User.update {_id: {$in: memberIDs}}, {$pull: {clans: clan.get('_id')}}, {multi: true}, (err) =>
          return @sendDatabaseError(res, err) if err
          @sendNoContent(res)

  getByRelationship: (req, res, args...) ->
    return @joinClan(req, res, args[0]) if args[1] is 'join'
    return @leaveClan(req, res, args[0]) if args[1] is 'leave'
    return @getMembers(req, res, args[0]) if args[1] is 'members'
    return @removeMember(req, res, args[0], args[2]) if args.length is 3 and args[1] is 'remove'
    super(arguments...)

  joinClan: (req, res, clanID) ->
    return @sendForbiddenError(res) unless req.user? and not req.user.isAnonymous()
    try
      clanID = mongoose.Types.ObjectId(clanID)
    catch err
      return @sendNotFoundError(res, err)
    Clan.findById clanID, (err, clan) =>
      return @sendDatabaseError(res, err) if err
      Clan.update {_id: clanID}, {$addToSet: {members: req.user._id}}, (err) =>
        return @sendDatabaseError(res, err) if err
        User.update {_id: req.user._id}, {$addToSet: {clans: clanID}}, (err) =>
          return @sendDatabaseError(res, err) if err
          @sendSuccess(res)

  leaveClan: (req, res, clanID) ->
    return @sendForbiddenError(res) unless req.user? and not req.user.isAnonymous()
    try
      clanID = mongoose.Types.ObjectId(clanID)
    catch err
      return @sendNotFoundError(res, err)
    Clan.findById clanID, (err, clan) =>
      return @sendDatabaseError(res, err) if err
      return @sendForbiddenError(res) if clan.get('ownerID')?.equals req.user._id
      Clan.update {_id: clanID}, {$pull: {members: req.user._id}}, (err) =>
        return @sendDatabaseError(res, err) if err
        User.update {_id: req.user._id}, {$pull: {clans: clanID}}, (err) =>
          return @sendDatabaseError(res, err) if err
          @sendSuccess(res)

  getMembers: (req, res, clanID) ->
    return @sendForbiddenError(res) unless req.user
    clanIDs = req.user.get('clans') ? []
    Clan.findById clanID, (err, clans) =>
      return @sendDatabaseError(res, err) if err
      memberIDs = clans.get('members') ? []
      User.find {_id: {$in: memberIDs}}, (err, users) =>
        return @sendDatabaseError(res, err) if err
        cleandocs = (UserHandler.formatEntity(req, doc) for doc in users)
        @sendSuccess(res, cleandocs)

  removeMember: (req, res, clanID, memberID) ->
    return @sendForbiddenError(res) unless req.user? and not req.user.isAnonymous()
    try
      clanID = mongoose.Types.ObjectId(clanID)
      memberID = mongoose.Types.ObjectId(memberID)
    catch err
      return @sendNotFoundError(res, err)
    Clan.findById clanID, (err, clan) =>
      return @sendDatabaseError(res, err) if err
      return @sendForbiddenError res unless @hasAccessToDocument(req, clan)
      return @sendForbiddenError(res) if clan.get('ownerID').equals memberID
      Clan.update {_id: clanID}, {$pull: {members: memberID}}, (err) =>
        return @sendDatabaseError(res, err) if err
        User.update {_id: memberID}, {$pull: {clans: clanID}}, (err) =>
          return @sendDatabaseError(res, err) if err
          @sendSuccess(res)

module.exports = new ClanHandler()
Create and list clans Replace mock data with some real functionality. 2015-04-01 14:56:48 -04:00			`async = require 'async'`
			`mongoose = require 'mongoose'`
			`Handler = require '../commons/Handler'`
			`Clan = require './Clan'`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`User = require '../users/User'`
			`UserHandler = require '../users/user_handler'`
Create and list clans Replace mock data with some real functionality. 2015-04-01 14:56:48 -04:00
			`ClanHandler = class ClanHandler extends Handler`
			`modelClass: Clan`
			`jsonSchema: require '../../app/schemas/models/Clan.schema'`
			`allowedMethods: ['GET', 'POST', 'PUT', 'PATCH', 'DELETE']`

			`hasAccess: (req) ->`
			`return true if req.method in ['GET']`
			`return true if req.user? and not req.user.isAnonymous()`
			`false`

			`hasAccessToDocument: (req, document, method=null) ->`
			`method = (method or req.method).toLowerCase()`
			`return true if req.user?.isAdmin()`
			`return true if method is 'get'`
Delete clan 2015-04-02 14:44:18 -04:00			`return true if document.get('ownerID')?.equals req.user._id`
Create and list clans Replace mock data with some real functionality. 2015-04-01 14:56:48 -04:00			`false`

			`makeNewInstance: (req) ->`
Join clan 2015-04-01 18:24:45 -04:00			`userName = req.user.get('name') ? 'Anoner'`
Create and list clans Replace mock data with some real functionality. 2015-04-01 14:56:48 -04:00			`instance = super(req)`
			`instance.set 'ownerID', req.user._id`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`instance.set 'members', [req.user._id]`
Create and list clans Replace mock data with some real functionality. 2015-04-01 14:56:48 -04:00			`instance`

Delete clan 2015-04-02 14:44:18 -04:00			`delete: (req, res, clanID) ->`
			`@getDocumentForIdOrSlug clanID, (err, clan) =>`
			`return @sendDatabaseError res, err if err`
			`return @sendNotFoundError res unless clan`
			`return @sendForbiddenError res unless @hasAccessToDocument(req, clan)`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`memberIDs = clan.get('members')`
Delete clan 2015-04-02 14:44:18 -04:00			`Clan.remove {_id: clan.get('_id')}, (err) =>`
			`return @sendDatabaseError res, err if err`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`User.update {_id: {$in: memberIDs}}, {$pull: {clans: clan.get('_id')}}, {multi: true}, (err) =>`
			`return @sendDatabaseError(res, err) if err`
			`@sendNoContent(res)`
Delete clan 2015-04-02 14:44:18 -04:00
Join clan 2015-04-01 18:24:45 -04:00			`getByRelationship: (req, res, args...) ->`
			`return @joinClan(req, res, args[0]) if args[1] is 'join'`
Leave clan And add join clan plumbing to clan details page. 2015-04-01 19:00:39 -04:00			`return @leaveClan(req, res, args[0]) if args[1] is 'leave'`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`return @getMembers(req, res, args[0]) if args[1] is 'members'`
Clans remove member 2015-04-02 14:01:37 -04:00			`return @removeMember(req, res, args[0], args[2]) if args.length is 3 and args[1] is 'remove'`
Join clan 2015-04-01 18:24:45 -04:00			`super(arguments...)`

			`joinClan: (req, res, clanID) ->`
			`return @sendForbiddenError(res) unless req.user? and not req.user.isAnonymous()`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`try`
			`clanID = mongoose.Types.ObjectId(clanID)`
			`catch err`
			`return @sendNotFoundError(res, err)`
Join clan 2015-04-01 18:24:45 -04:00			`Clan.findById clanID, (err, clan) =>`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`return @sendDatabaseError(res, err) if err`
			`Clan.update {_id: clanID}, {$addToSet: {members: req.user._id}}, (err) =>`
Join clan 2015-04-01 18:24:45 -04:00			`return @sendDatabaseError(res, err) if err`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`User.update {_id: req.user._id}, {$addToSet: {clans: clanID}}, (err) =>`
			`return @sendDatabaseError(res, err) if err`
			`@sendSuccess(res)`
Join clan 2015-04-01 18:24:45 -04:00
Leave clan And add join clan plumbing to clan details page. 2015-04-01 19:00:39 -04:00			`leaveClan: (req, res, clanID) ->`
			`return @sendForbiddenError(res) unless req.user? and not req.user.isAnonymous()`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`try`
			`clanID = mongoose.Types.ObjectId(clanID)`
			`catch err`
			`return @sendNotFoundError(res, err)`
Leave clan And add join clan plumbing to clan details page. 2015-04-01 19:00:39 -04:00			`Clan.findById clanID, (err, clan) =>`
			`return @sendDatabaseError(res, err) if err`
			`return @sendForbiddenError(res) if clan.get('ownerID')?.equals req.user._id`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`Clan.update {_id: clanID}, {$pull: {members: req.user._id}}, (err) =>`
			`return @sendDatabaseError(res, err) if err`
			`User.update {_id: req.user._id}, {$pull: {clans: clanID}}, (err) =>`
			`return @sendDatabaseError(res, err) if err`
			`@sendSuccess(res)`

			`getMembers: (req, res, clanID) ->`
			`return @sendForbiddenError(res) unless req.user`
			`clanIDs = req.user.get('clans') ? []`
			`Clan.findById clanID, (err, clans) =>`
			`return @sendDatabaseError(res, err) if err`
			`memberIDs = clans.get('members') ? []`
			`User.find {_id: {$in: memberIDs}}, (err, users) =>`
Leave clan And add join clan plumbing to clan details page. 2015-04-01 19:00:39 -04:00			`return @sendDatabaseError(res, err) if err`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`cleandocs = (UserHandler.formatEntity(req, doc) for doc in users)`
			`@sendSuccess(res, cleandocs)`
Leave clan And add join clan plumbing to clan details page. 2015-04-01 19:00:39 -04:00
Clans remove member 2015-04-02 14:01:37 -04:00			`removeMember: (req, res, clanID, memberID) ->`
			`return @sendForbiddenError(res) unless req.user? and not req.user.isAnonymous()`
			`try`
			`clanID = mongoose.Types.ObjectId(clanID)`
			`memberID = mongoose.Types.ObjectId(memberID)`
			`catch err`
Delete clan 2015-04-02 14:44:18 -04:00			`return @sendNotFoundError(res, err)`
Clans remove member 2015-04-02 14:01:37 -04:00			`Clan.findById clanID, (err, clan) =>`
			`return @sendDatabaseError(res, err) if err`
Delete clan 2015-04-02 14:44:18 -04:00			`return @sendForbiddenError res unless @hasAccessToDocument(req, clan)`
Clans remove member 2015-04-02 14:01:37 -04:00			`return @sendForbiddenError(res) if clan.get('ownerID').equals memberID`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`Clan.update {_id: clanID}, {$pull: {members: memberID}}, (err) =>`
Clans remove member 2015-04-02 14:01:37 -04:00			`return @sendDatabaseError(res, err) if err`
Normalize clan members data 2015-04-02 20:00:28 -04:00			`User.update {_id: memberID}, {$pull: {clans: clanID}}, (err) =>`
			`return @sendDatabaseError(res, err) if err`
			`@sendSuccess(res)`
Clans remove member 2015-04-02 14:01:37 -04:00
Create and list clans Replace mock data with some real functionality. 2015-04-01 14:56:48 -04:00			`module.exports = new ClanHandler()`