-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathmiddleware.js
More file actions
73 lines (67 loc) · 2.72 KB
/
middleware.js
File metadata and controls
73 lines (67 loc) · 2.72 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
const ExpressError = require("./utils/ExpressError.js"); // custom error class for Express
const { userSchemaSignup, userSchemaLogin, commentSchema } = require("./schema.js"); // importing the Joi schema for validation
const Meter = require("./models/meter.js");
/* --------------------------------------------- Middleware to validate user signup data using Joi schema --------------------------------------------- */
module.exports.validateUserSignup = (req, res, next) => {
let { error } = userSchemaSignup.validate(req.body);
if (error) {
// If validation fails, throw an error
throw new ExpressError(400, error);
} else {
next();
}
};
/* --------------------------------------------- Middleware to validate user login data using Joi schema --------------------------------------------- */
module.exports.validateUserLogin = (req, res, next) => {
let { error } = userSchemaLogin.validate(req.body);
if (error) {
// If validation fails, throw an error
throw new ExpressError(400, error);
} else {
next();
}
};
/* --------------------------------------------- Middleware to validate comment using Joi schema --------------------------------------------- */
module.exports.validateComment = (req, res, next) => {
let { error } = commentSchema.validate(req.body);
if (error) {
// If validation fails, throw an error
throw new ExpressError(400, error);
} else {
next();
}
};
/* --------------------------------------------- Middleware to check if user is logged in --------------------------------------------- */
module.exports.isLoggedIn = (req, res, next) => {
// console.log(req.originalUrl);
if (!req.isAuthenticated()) {
//
if (req.method !== "GET" && req.params.id) {
req.session.redirectUrl = `/meters/${req.params.id}`;
} else if (req.method === "GET") {
req.session.redirectUrl = req.originalUrl;
}
req.flash("error", "You must be logged in to perform this action!");
return res.redirect("/login");
}
next();
};
/* --------------------------------------------- Middleware to save redirect URL --------------------------------------------- */
module.exports.saveRedirectUrl = (req, res, next) => {
if (req.session.redirectUrl) {
res.locals.redirectUrl = req.session.redirectUrl;
}
next();
};
/* ------------------------------ Middleware to check if the user is the owner of the meter ----------------------------- */
module.exports.isOwner = async (req, res, next) => {
let { id } = req.params;
// console.log(req.body.listing);
let meter = await Meter.findById(id);
// only the owner of the listing can edit it
if (!res.locals.currentUser._id.equals(meter.owner._id)) {
req.flash("error", "You do not have permission to make changes to this meter!");
return res.redirect(`/meters/${id}`);
}
next();
};