summaryrefslogtreecommitdiff
path: root/server/lib/api/media.js
blob: 4e2fad5bb11b3cd204410835e645f28f8ab55fef (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87

/* jshint node: true */

var _ = require('lodash'),
	crypto = require('crypto'),
	util = require('../util'),
	upload = require('../upload'),
	config = require('../../../config.json'),
	Media = require('../schemas/Media');

var media = {

	user: function(req, res){
	  var offset = Number(req.query.offset) || 0
	  var limit = Math.min( Number(req.query.limit), 50 ) || 20
	  var query = { user_id: req.user._id }
	  if (req.query.tag) {
	    query.tag = req.query.tag
	  }
		Media.find(query)
			.sort({'created_at': -1})
			.skip(offset)
			.limit(limit)
		  .exec(function(err, media){
				res.json(media || [])
			})
	},
	
	create: function(req, res){
		var data = util.cleanQuery(req.body)
		data.user_id = req.user._id
		data.created_at = new Date ()
		
		if (data.tag) {
		  data.tag = util.sanitize(data.tag)
		}

		new Media(data).save(function(err, rec){
			if (err || ! rec) { return res.json({ error: err }) }
			return res.json(rec)
		})
	},
	
	upload: function(req, res){
		var data = util.cleanQuery(req.body)
		data.user_id = req.user._id
		data.created_at = new Date ()
		data.type = "image"
		
		upload.put("media", req.files.image, {
			username: req.user.username,
			unacceptable: function(err){
				res.json({ error: { errors: { avatar: { message: "Problem saving image: " + err } } } })
			},
			success: function(url){
				data.url = url
				done()
			}
		})
		
		function done () {
			new Media(data).save(function(err, rec) {
				if (err || ! rec) { return res.json({ error: err }) }
				res.json(rec)
			})
		}
	},
	
	destroy: function(req, res){
		var _id = util.sanitize(req.body._id)
		if (! _id || ! _id.length) {
			res.json({ error: 404 })
			return
		}
		Media.findOne({ _id: _id }, function(err, doc){
			if (! doc) { return res.json({ error: 404 }) }
			if (String(doc.user_id) !== String(req.user._id)) {
				 return res.json({ error: "access denied" })
			}
			Media.remove({ _id: _id }, function(err){
				res.json({ status: "OK" })
			})
		})
	}

}

module.exports = media
generated by cgit v1.2.3-70-g09d2 (git 2.51.0) at 2025-12-10 18:32:28 +0000