Clark/api/main_endpoints/routes/Advertisement.js at d655adbcdccca075b9f149b090931421bd4a14df · luSteven01/Clark · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
const express = require('express');
const router = express.Router();
const { OK, BAD_REQUEST, FORBIDDEN, UNAUTHORIZED, NOT_FOUND } = require('../../util/constants').STATUS_CODES;
const {
  decodeToken,
  checkIfTokenSent,
} = require('../util/token-functions.js');
const logger = require('../../util/logger');
const Advertisement = require('../models/Advertisement');
const AuditLog = require('../models/AuditLog.js');
const AuditLogActions = require('../util/auditLogActions.js');

router.get('/', async (req, res) => {
  const count = await Advertisement.countDocuments();
  const random = Math.floor(Math.random() * count);

  Advertisement.findOne().skip(random)
    .then(items => {
      res.status(OK).send(items || {});
    })
    .catch(error => {
      res.sendStatus(BAD_REQUEST);
    });
});

router.get('/getAllAdvertisements', async (req, res) => {
  if (!checkIfTokenSent(req)) {
    return res.sendStatus(FORBIDDEN);
  } else if (!await decodeToken(req)) {
    return res.sendStatus(UNAUTHORIZED);
  }
  Advertisement.find()
    .then(items => res.status(OK).send(items))
    .catch(error => {
      res.sendStatus(BAD_REQUEST);
    });
});

router.post('/createAdvertisement', async (req, res) => {
  if (!checkIfTokenSent(req)) {
    return res.sendStatus(FORBIDDEN);
  }

  const user = await decodeToken(req);
  if (!user) {
    return res.sendStatus(UNAUTHORIZED);
  }

  const newAd = new Advertisement({
    message: req.body.message,
    expireDate: req.body.expireDate
  });

  try {
    const createdAd = await Advertisement.create(newAd);
    AuditLog.create({
      userId: user._id,
      action: AuditLogActions.CREATE_AD,
      details: {
        message: createdAd.message,
        expireDate: createdAd.expireDate,
        advertisementId: createdAd._id
      }
    }).catch(logger.error);

    res.status(OK).send(createdAd);
  } catch (error) {
    logger.error('Error creating ad:', error);
    res.sendStatus(BAD_REQUEST);
  }
});

router.post('/deleteAdvertisement', async (req, res) => {
  if (!checkIfTokenSent(req)) {
    return res.sendStatus(FORBIDDEN);
  } else if (!await decodeToken(req)) {
    return res.sendStatus(UNAUTHORIZED);
  }

  const user = await decodeToken(req);
  if (!user) {
    return res.sendStatus(UNAUTHORIZED);
  }

  try {
    const adToDelete = await Advertisement.findById(req.body._id);

    if (!adToDelete) {
      return res.sendStatus(NOT_FOUND);
    }

    const deleteResult = await Advertisement.deleteOne({_id: req.body._id});

    if(deleteResult.deletedCount < 1) {
      return res.sendStatus(NOT_FOUND);
    }

    AuditLog.create({
      userId: user._id,
      action: AuditLogActions.DELETE_AD,
      details: {
        deletedAd: {
          id: adToDelete._id,
          message: adToDelete.message,
        }
      }
    }).catch(logger.error);

    res.sendStatus(OK);
  } catch (error) {
    logger.error('Error deleting ad:', error);
    res.sendStatus(BAD_REQUEST);
  }
});

module.exports = router;