hiro/Vulcan
1
0
Fork 0
mirror of https://github.com/vale981/Vulcan synced 2025-03-06 18:11:40 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
Vulcan/packages/nova-posts/lib/methods.js

236 lines
6.4 KiB
JavaScript
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

/**
*
* Post Methods
*
*/
Posts.methods = {};
/**
* Insert a post in the database (note: optional post properties not listed here)
* @param {Object} post - the post being inserted
* @param {string} post.userId - the id of the user the post belongs to
* @param {string} post.title - the post's title
*/
Posts.methods.new = function (post) {
const currentUser = Meteor.users.findOne(post.userId);
post = Telescope.callbacks.run("posts.new.sync", post, currentUser);
post._id = Posts.insert(post);
// note: query for post to get fresh document with collection-hooks effects applied
Telescope.callbacks.runAsync("posts.new.async", Posts.findOne(post._id));
return post;
};
/**
* Edit a post in the database
* @param {string} postId the ID of the post being edited
* @param {Object} modifier the modifier object
* @param {Object} post - the current post object
*/
Posts.methods.edit = function (postId, modifier, post) {
if (typeof post === "undefined") {
post = Posts.findOne(postId);
}
modifier = Telescope.callbacks.run("posts.edit.sync", modifier, post);
Posts.update(postId, modifier);
Telescope.callbacks.runAsync("posts.edit.async", Posts.findOne(postId), post);
return Posts.findOne(postId);
};
// ------------------------------------------------------------------------------------------- //
// ----------------------------------------- Methods ----------------------------------------- //
// ------------------------------------------------------------------------------------------- //
var postViews = [];
Meteor.methods({
/**
* Meteor method for submitting a post from the client
* @memberof Posts
* @param {Object} post - the post being inserted
*/
'posts.new': function(post){
check(post, Posts.simpleSchema());
// required properties:
// title
// optional properties
// URL
// body
// categories
// thumbnailUrl
// NOTE: the current user and the post author user might be two different users!
// TODO: find a way to bind `this` to do the following in a callback?
post = Telescope.callbacks.run("posts.new.method", post, Meteor.user());
if (Meteor.isServer) {
post.userIP = this.connection.clientAddress;
post.userAgent = this.connection.httpHeaders["user-agent"];
}
return Posts.methods.new(post);
},
/**
* Meteor method for editing a post from the client
* @memberof Posts
* @param {Object} modifier - the update modifier
* @param {Object} postId - the id of the post being updated
*/
'posts.edit': function (postId, modifier) {
// checking might be redundant because SimpleSchema already enforces the schema, but you never know
check(modifier, Match.OneOf({$set: Posts.simpleSchema()}, {$unset: Object}, {$set: Posts.simpleSchema(), $unset: Object}));
check(postId, String);
var user = Meteor.user(),
post = Posts.findOne(postId),
schema = Posts.simpleSchema()._schema;
// ------------------------------ Checks ------------------------------ //
// check that user can edit document
if (!user || !Users.can.edit(user, post)) {
throw new Meteor.Error(601, __('sorry_you_cannot_edit_this_post'));
}
// go over each field and throw an error if it's not editable
// loop over each operation ($set, $unset, etc.)
_.each(modifier, function (operation) {
// loop over each property being operated on
_.keys(operation).forEach(function (fieldName) {
var field = schema[fieldName];
if (!Users.can.editField(user, field, post)) {
throw new Meteor.Error("disallowed_property", __('disallowed_property_detected') + ": " + fieldName);
}
});
});
return Posts.methods.edit(postId, modifier, post);
},
'posts.approve': function(postId){
check(postId, String);
var post = Posts.findOne(postId);
var now = new Date();
if(Users.is.admin(Meteor.user())){
var set = {status: Posts.config.STATUS_APPROVED};
if (!post.postedAt) {
set.postedAt = now;
}
Posts.update(post._id, {$set: set});
Telescope.callbacks.runAsync("postApproveAsync", post);
}else{
Messages.flash('You need to be an admin to do that.', "error");
}
},
'posts.reject': function(postId){
check(postId, String);
var post = Posts.findOne(postId);
if(Users.is.admin(Meteor.user())){
Posts.update(post._id, {$set: {status: Posts.config.STATUS_REJECTED}});
Telescope.callbacks.runAsync("postRejectAsync", post);
}else{
Messages.flash('You need to be an admin to do that.', "error");
}
},
'posts.increaseViews': function(postId, sessionId){
check(postId, String);
check(sessionId, Match.Any);
// only let users increment a post's view counter once per session
var view = {_id: postId, userId: this.userId, sessionId: sessionId};
if(_.where(postViews, view).length === 0){
postViews.push(view);
Posts.update(postId, { $inc: { viewCount: 1 }});
}
},
'posts.deleteById': function(postId) {
check(postId, String);
// remove post comments
// if(!this.isSimulation) {
// Comments.remove({post: postId});
// }
// NOTE: actually, keep comments after all
var post = Posts.findOne({_id: postId});
if(!Meteor.userId() || !Users.can.editById(Meteor.userId(), post)) throw new Meteor.Error(606, 'You need permission to edit or delete a post');
// decrement post count
Users.update({_id: post.userId}, {$inc: {"telescope.postCount": -1}});
// delete post
Posts.remove(postId);
Telescope.callbacks.runAsync("postDeleteAsync", post);
},
'posts.checkForDuplicates': function (url) {
Posts.checkForSameUrl(url);
},
'posts.upvote': function (postId) {
check(postId, String);
console.log("upvote")
return Telescope.operateOnItem.call(this, Posts, postId, Meteor.user(), "upvote");
},
'posts.downvote': function (postId) {
check(postId, String);
return Telescope.operateOnItem.call(this, Posts, postId, Meteor.user(), "downvote");
},
'posts.cancelUpvote': function (postId) {
check(postId, String);
console.log("cancelUpvote")
return Telescope.operateOnItem.call(this, Posts, postId, Meteor.user(), "cancelUpvote");
},
'posts.cancelDownvote': function (postId) {
check(postId, String);
return Telescope.operateOnItem.call(this, Posts, postId, Meteor.user(), "cancelDownvote");
}
});
Reference in a new issue View git blame Copy permalink