1 files changed, 60 insertions, 0 deletions

diff --git a/server/lib/api/profile.js b/server/lib/api/profile.js
new file mode 100644
index 0000000..fdd1bde
--- /dev/null
+++ b/server/lib/api/profile.js
@@ -0,0 +1,60 @@
+/* jshint node: true */
+
+var _ = require('lodash'),
+	crypto = require('crypto'),
+	util = require('../util'),
+	upload = require('../upload'),
+	config = require('../../../config.json'),
+	User = require('../schemas/User');
+
+var profile = {
+	show: function(req, res){
+		User.findOne({ _id: req.user._id }, function(err, user){
+			res.json(err || user)
+		})
+	},
+	
+	update: function(req, res){
+		var data = util.cleanQuery(req.body)
+		if (data.new_password && data.new_password.length) {
+			if (! data.old_password || ! req.user.checkPassword(data.old_password)) {
+				res.json({ error: { errors: { password: { message: "Old password is incorrect" } } } })
+			}
+			
+			var shasum = crypto.createHash('sha1')
+			shasum.update(data.new_password)
+			password = shasum.digest('hex');
+			
+			req.user.password = password
+		}
+		delete data.old_password
+		delete data.new_password
+		delete data.isStaff
+		data.updated_at = new Date ()
+		
+		if (req.files.avatar) {
+			upload.put("avatars", req.files.avatar, {
+				unacceptable: function(err){
+					res.json({ error: { errors: { avatar: { message: "Problem saving avatar: " + err } } } })
+				},
+				success: function(url){
+					data.photo = url
+					done()
+				}
+			})
+		}
+		else {
+			done()
+		}
+		
+		function done () {
+			_.extend( req.user, data )
+			req.user.save(function(err, msg) {
+				err ? res.json({ status: "FAIL", error: err })
+					: res.json({ status: "OK", payload: req.user })
+			})
+		}
+	}
+}
+
+module.exports = profile