Vulcan/common/post.js

STATUS_PENDING=1;
STATUS_APPROVED=2;
STATUS_REJECTED=3;

Meteor.methods({
  post: function(post){
    var headline = cleanUp(post.headline);
    var body = cleanUp(post.body);
    var user = Meteor.user();
    var userId = post.userId || user._id;
    var submitted = parseInt(post.submitted) || new Date().getTime();
    var defaultStatus = getSetting('requirePostsApproval') ? STATUS_PENDING : STATUS_APPROVED;
    var status = post.status || defaultStatus;
    var postWithSameLink = Posts.findOne({url: post.url});
    var timeSinceLastPost=timeSinceLast(user, Posts);
    var numberOfPostsInPast24Hours=numberOfItemsInPast24Hours(user, Posts);
    var postInterval = Math.abs(parseInt(getSetting('postInterval'))) || 30;
    var maxPostsPer24Hours = Math.abs(parseInt(getSetting('maxPostsPerDay'))) || 30;
    var postId = '';

    // check that user can post
    if (!user || !canPost(user))
      throw new Meteor.Error(601, 'You need to login or be invited to post new stories.');

    // check that user provided a headline
    if(!post.headline)
      throw new Meteor.Error(602, 'Please fill in a headline');

    // check that there are no previous posts with the same link
    if(post.url && postWithSameLink){
      Meteor.call('upvotePost', postWithSameLink._id);
      throw new Meteor.Error(603, 'This link has already been posted', postWithSameLink._id);
    }

    if(!isAdmin(Meteor.user())){
      // check that user waits more than X seconds between posts
      if(!this.isSimulation && timeSinceLastPost < postInterval)
        throw new Meteor.Error(604, 'Please wait '+(postInterval-timeSinceLastPost)+' seconds before posting again');

      // check that the user doesn't post more than Y posts per day
      if(!this.isSimulation && numberOfPostsInPast24Hours > maxPostsPer24Hours)
        throw new Meteor.Error(605, 'Sorry, you cannot submit more than '+maxPostsPer24Hours+' posts per day');
    }

    post = _.extend(post, {
      headline: headline,
      body: body,
      userId: userId,
      author: getDisplayNameById(userId),
      createdAt: new Date().getTime(),
      votes: 0,
      comments: 0,
      baseScore: 0,
      score: 0,
      inactive: false,
      status: status
    });
    
    if(status == STATUS_APPROVED){
      // if post is approved, set its submitted date (if post is pending, submitted date is left blank)
      post.submitted  = submitted;
    }

    Posts.insert(post, function(error, result){
      if(result){
        postId = result;
      }
    });

    var postAuthor =  Meteor.users.findOne(post.userId);
    Meteor.call('upvotePost', postId,postAuthor);

    if(getSetting('newPostsNotifications')){
      // notify admin of new posts
      var properties = {
        postAuthorName : getDisplayName(postAuthor),
        postAuthorId : post.userId,
        postHeadline : headline,
        postId : postId
      }
      var notification = getNotification('newPost', properties);
      // call a server method because we do not have access to admin users' info on the client
      Meteor.call('notifyAdmins', notification, Meteor.user(), function(error, result){
        //run asynchronously        
      });
    }

    // add the post's own ID to the post object and return it to the client
    post.postId = postId;
    return post;
  },
  post_edit: function(post){
    //TO-DO: make post_edit server-side?
  }
});
added pending posts 2012-10-24 11:04:42 +09:00			`STATUS_PENDING=1;`
			`STATUS_APPROVED=2;`
			`STATUS_REJECTED=3;`

Moved post creation logic to the server side. Also made it + commenting latency compensated. 2012-10-04 11:45:12 +10:00			`Meteor.methods({`
			`post: function(post){`
Strip HTML from comments and posts to prevent code injections 2012-12-13 10:58:17 +09:00			`var headline = cleanUp(post.headline);`
			`var body = cleanUp(post.body);`
Added approved field to users. 2012-10-04 11:53:15 +10:00			`var user = Meteor.user();`
admin now able to change user and date 2012-10-23 12:24:38 +09:00			`var userId = post.userId \|\| user._id;`
			`var submitted = parseInt(post.submitted) \|\| new Date().getTime();`
now checking for duplicate links and limiting to 30 posts per 24 hours 2012-10-30 12:01:11 +09:00			`var defaultStatus = getSetting('requirePostsApproval') ? STATUS_PENDING : STATUS_APPROVED;`
			`var status = post.status \|\| defaultStatus;`
			`var postWithSameLink = Posts.findOne({url: post.url});`
			`var timeSinceLastPost=timeSinceLast(user, Posts);`
			`var numberOfPostsInPast24Hours=numberOfItemsInPast24Hours(user, Posts);`
Make post and comment anti-flooding interval a setting 2012-12-20 21:17:07 +01:00			`var postInterval = Math.abs(parseInt(getSetting('postInterval'))) \|\| 30;`
Settings tweaks 2012-12-22 11:06:28 +01:00			`var maxPostsPer24Hours = Math.abs(parseInt(getSetting('maxPostsPerDay'))) \|\| 30;`
working on new createdAt timestamp 2013-01-13 08:52:35 +09:00			`var postId = '';`

now checking for duplicate links and limiting to 30 posts per 24 hours 2012-10-30 12:01:11 +09:00			`// check that user can post`
reworking invite system 2012-10-05 13:59:40 +09:00			`if (!user \|\| !canPost(user))`
now checking for duplicate links and limiting to 30 posts per 24 hours 2012-10-30 12:01:11 +09:00			`throw new Meteor.Error(601, 'You need to login or be invited to post new stories.');`
finished adding categories 2012-10-10 08:32:49 +09:00
now checking for duplicate links and limiting to 30 posts per 24 hours 2012-10-30 12:01:11 +09:00			`// check that user provided a headline`
only make headline mandatory, not url 2012-10-11 13:21:10 +09:00			`if(!post.headline)`
now checking for duplicate links and limiting to 30 posts per 24 hours 2012-10-30 12:01:11 +09:00			`throw new Meteor.Error(602, 'Please fill in a headline');`
reworking invite system 2012-10-05 13:59:40 +09:00
now checking for duplicate links and limiting to 30 posts per 24 hours 2012-10-30 12:01:11 +09:00			`// check that there are no previous posts with the same link`
			`if(post.url && postWithSameLink){`
			`Meteor.call('upvotePost', postWithSameLink._id);`
			`throw new Meteor.Error(603, 'This link has already been posted', postWithSameLink._id);`
			`}`
added rate limiting to posts and comments posting 2012-10-06 13:15:55 +09:00
do not do rate limit checks for admin, and use createdAt instead of submitted 2013-01-13 19:18:01 +09:00			`if(!isAdmin(Meteor.user())){`
			`// check that user waits more than X seconds between posts`
			`if(!this.isSimulation && timeSinceLastPost < postInterval)`
			`throw new Meteor.Error(604, 'Please wait '+(postInterval-timeSinceLastPost)+' seconds before posting again');`
added pending posts 2012-10-24 11:04:42 +09:00
do not do rate limit checks for admin, and use createdAt instead of submitted 2013-01-13 19:18:01 +09:00			`// check that the user doesn't post more than Y posts per day`
			`if(!this.isSimulation && numberOfPostsInPast24Hours > maxPostsPer24Hours)`
			`throw new Meteor.Error(605, 'Sorry, you cannot submit more than '+maxPostsPer24Hours+' posts per day');`
			`}`
admin now able to change user and date 2012-10-23 12:24:38 +09:00
Moved post creation logic to the server side. Also made it + commenting latency compensated. 2012-10-04 11:45:12 +10:00			`post = _.extend(post, {`
Strip HTML from comments and posts to prevent code injections 2012-12-13 10:58:17 +09:00			`headline: headline,`
			`body: body,`
admin now able to change user and date 2012-10-23 12:24:38 +09:00			`userId: userId,`
			`author: getDisplayNameById(userId),`
working on new createdAt timestamp 2013-01-13 08:52:35 +09:00			`createdAt: new Date().getTime(),`
Moved post creation logic to the server side. Also made it + commenting latency compensated. 2012-10-04 11:45:12 +10:00			`votes: 0,`
			`comments: 0,`
			`baseScore: 0,`
added pending posts 2012-10-24 11:04:42 +09:00			`score: 0,`
working on scoring algorithm optimizations 2012-12-24 10:59:13 +01:00			`inactive: false,`
added pending posts 2012-10-24 11:04:42 +09:00			`status: status`
Moved post creation logic to the server side. Also made it + commenting latency compensated. 2012-10-04 11:45:12 +10:00			`});`

working on new createdAt timestamp 2013-01-13 08:52:35 +09:00			`if(status == STATUS_APPROVED){`
			`// if post is approved, set its submitted date (if post is pending, submitted date is left blank)`
			`post.submitted = submitted;`
			`}`
moved notifications server side 2012-10-04 15:26:59 +09:00
working on new createdAt timestamp 2013-01-13 08:52:35 +09:00			`Posts.insert(post, function(error, result){`
			`if(result){`
			`postId = result;`
			`}`
			`});`
fixed upvoting user bug 2013-01-15 08:46:00 +09:00
added notifications of new posts for admins 2013-01-19 22:42:59 +09:00			`var postAuthor = Meteor.users.findOne(post.userId);`
			`Meteor.call('upvotePost', postId,postAuthor);`

			`if(getSetting('newPostsNotifications')){`
commenting the code 2013-01-19 22:47:35 +09:00			`// notify admin of new posts`
added notifications of new posts for admins 2013-01-19 22:42:59 +09:00			`var properties = {`
			`postAuthorName : getDisplayName(postAuthor),`
			`postAuthorId : post.userId,`
			`postHeadline : headline,`
			`postId : postId`
			`}`
			`var notification = getNotification('newPost', properties);`
commenting the code 2013-01-19 22:47:35 +09:00			`// call a server method because we do not have access to admin users' info on the client`
don't notify admins of their own posts 2013-01-19 23:01:43 +09:00			`Meteor.call('notifyAdmins', notification, Meteor.user(), function(error, result){`
commenting the code 2013-01-19 22:47:35 +09:00			`//run asynchronously`
added notifications of new posts for admins 2013-01-19 22:42:59 +09:00			`});`
			`}`

working on new createdAt timestamp 2013-01-13 08:52:35 +09:00			`// add the post's own ID to the post object and return it to the client`
			`post.postId = postId;`
added pending posts 2012-10-24 11:04:42 +09:00			`return post;`
working on new createdAt timestamp 2013-01-13 08:52:35 +09:00			`},`
added post_approve meteor method 2013-01-13 10:21:09 +09:00			`post_edit: function(post){`
			`//TO-DO: make post_edit server-side?`
Moved post creation logic to the server side. Also made it + commenting latency compensated. 2012-10-04 11:45:12 +10:00			`}`
			`});`