outline/server/api/collections.js

// @flow
import Router from 'koa-router';

import auth from '../middlewares/authentication';
import pagination from './middlewares/pagination';
import { presentCollection } from '../presenters';
import { Collection, Team } from '../models';
import { ValidationError } from '../errors';
import { exportCollection, exportCollections } from '../logistics';
import policy from '../policies';

const { authorize } = policy;
const router = new Router();

router.post('collections.create', auth(), async ctx => {
  const { name, color, description, type } = ctx.body;
  ctx.assertPresent(name, 'name is required');
  if (color)
    ctx.assertHexColor(color, 'Invalid hex value (please use format #FFFFFF)');

  const user = ctx.state.user;
  authorize(user, 'create', Collection);

  const collection = await Collection.create({
    name,
    description,
    color,
    type: type || 'atlas',
    teamId: user.teamId,
    creatorId: user.id,
  });

  ctx.body = {
    data: await presentCollection(ctx, collection),
  };
});

router.post('collections.info', auth(), async ctx => {
  const { id } = ctx.body;
  ctx.assertPresent(id, 'id is required');

  const collection = await Collection.scope('withRecentDocuments').findById(id);
  authorize(ctx.state.user, 'read', collection);

  ctx.body = {
    data: await presentCollection(ctx, collection),
  };
});

router.post('collections.export', auth(), async ctx => {
  const { id } = ctx.body;
  ctx.assertPresent(id, 'id is required');

  const user = ctx.state.user;
  const collection = await Collection.findById(id);
  authorize(user, 'export', collection);

  // async operation to create zip archive and email user
  exportCollection(id, user.email);

  ctx.body = {
    success: true,
  };
});

router.post('collections.exportAll', auth(), async ctx => {
  const user = ctx.state.user;
  const team = await Team.findById(user.teamId);
  authorize(user, 'export', team);

  // async operation to create zip archive and email user
  exportCollections(user.teamId, user.email);

  ctx.body = {
    success: true,
  };
});

router.post('collections.update', auth(), async ctx => {
  const { id, name, color } = ctx.body;
  ctx.assertPresent(name, 'name is required');
  if (color)
    ctx.assertHexColor(color, 'Invalid hex value (please use format #FFFFFF)');

  const collection = await Collection.findById(id);
  authorize(ctx.state.user, 'update', collection);

  collection.name = name;
  collection.color = color;
  await collection.save();

  ctx.body = {
    data: await presentCollection(ctx, collection),
  };
});

router.post('collections.list', auth(), pagination(), async ctx => {
  const user = ctx.state.user;
  const collections = await Collection.findAll({
    where: {
      teamId: user.teamId,
    },
    order: [['updatedAt', 'DESC']],
    offset: ctx.state.pagination.offset,
    limit: ctx.state.pagination.limit,
  });

  const data = await Promise.all(
    collections.map(
      async collection => await presentCollection(ctx, collection)
    )
  );

  ctx.body = {
    pagination: ctx.state.pagination,
    data,
  };
});

router.post('collections.delete', auth(), async ctx => {
  const { id } = ctx.body;
  ctx.assertPresent(id, 'id is required');

  const collection = await Collection.findById(id);
  authorize(ctx.state.user, 'delete', collection);

  const total = await Collection.count();
  if (total === 1) throw new ValidationError('Cannot delete last collection');

  await collection.destroy();

  ctx.body = {
    success: true,
  };
});

export default router;
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`// @flow`
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00			`import Router from 'koa-router';`

WIP: Successful Google Auth, broke pretty much everything else in the process 2018-05-28 18:36:37 +00:00			`import auth from '../middlewares/authentication';`
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00			`import pagination from './middlewares/pagination';`
Renaming atlases to collections 2016-08-05 15:09:14 +00:00			`import { presentCollection } from '../presenters';`
Bulk export (#684) * First pass (working) collection export to zip * Add export confirmation screen * :shirt: * Refactor * Job for team export, move to tmp file, settings UI * Export all collections job * :shirt: * Add specs * Clarify UI 2018-06-21 04:33:21 +00:00			`import { Collection, Team } from '../models';`
More granular error responses 2018-02-20 07:31:18 +00:00			`import { ValidationError } from '../errors';`
Bulk export (#684) * First pass (working) collection export to zip * Add export confirmation screen * :shirt: * Refactor * Job for team export, move to tmp file, settings UI * Export all collections job * :shirt: * Add specs * Clarify UI 2018-06-21 04:33:21 +00:00			`import { exportCollection, exportCollections } from '../logistics';`
Update team and collection authorization 2018-02-18 09:14:51 +00:00			`import policy from '../policies';`
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00
Update team and collection authorization 2018-02-18 09:14:51 +00:00			`const { authorize } = policy;`
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00			`const router = new Router();`

[chore] added prettier 2017-04-27 04:47:03 +00:00			`router.post('collections.create', auth(), async ctx => {`
color editing 2017-10-30 06:22:46 +00:00			`const { name, color, description, type } = ctx.body;`
Added atlases.create API 2016-07-22 05:06:30 +00:00			`ctx.assertPresent(name, 'name is required');`
color editing 2017-10-30 06:22:46 +00:00			`if (color)`
			`ctx.assertHexColor(color, 'Invalid hex value (please use format #FFFFFF)');`
Added atlases.create API 2016-07-22 05:06:30 +00:00
			`const user = ctx.state.user;`
Add additional future-proofing auth checks for creation 2018-02-18 19:08:43 +00:00			`authorize(user, 'create', Collection);`
Added atlases.create API 2016-07-22 05:06:30 +00:00
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`const collection = await Collection.create({`
Added atlases.create API 2016-07-22 05:06:30 +00:00			`name,`
			`description,`
color editing 2017-10-30 06:22:46 +00:00			`color,`
Added atlases.create API 2016-07-22 05:06:30 +00:00			`type: type \|\| 'atlas',`
			`teamId: user.teamId,`
Legwork for initial documents for atlases 2016-07-26 07:05:10 +00:00			`creatorId: user.id,`
Added atlases.create API 2016-07-22 05:06:30 +00:00			`});`

			`ctx.body = {`
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`data: await presentCollection(ctx, collection),`
			`};`
			`});`

Update team and collection authorization 2018-02-18 09:14:51 +00:00			`router.post('collections.info', auth(), async ctx => {`
			`const { id } = ctx.body;`
			`ctx.assertPresent(id, 'id is required');`

			`const collection = await Collection.scope('withRecentDocuments').findById(id);`
			`authorize(ctx.state.user, 'read', collection);`

			`ctx.body = {`
			`data: await presentCollection(ctx, collection),`
			`};`
			`});`

Bulk export (#684) * First pass (working) collection export to zip * Add export confirmation screen * :shirt: * Refactor * Job for team export, move to tmp file, settings UI * Export all collections job * :shirt: * Add specs * Clarify UI 2018-06-21 04:33:21 +00:00			`router.post('collections.export', auth(), async ctx => {`
			`const { id } = ctx.body;`
			`ctx.assertPresent(id, 'id is required');`

			`const user = ctx.state.user;`
			`const collection = await Collection.findById(id);`
			`authorize(user, 'export', collection);`

			`// async operation to create zip archive and email user`
			`exportCollection(id, user.email);`

			`ctx.body = {`
			`success: true,`
			`};`
			`});`

			`router.post('collections.exportAll', auth(), async ctx => {`
			`const user = ctx.state.user;`
			`const team = await Team.findById(user.teamId);`
			`authorize(user, 'export', team);`

			`// async operation to create zip archive and email user`
			`exportCollections(user.teamId, user.email);`

			`ctx.body = {`
			`success: true,`
			`};`
			`});`

Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`router.post('collections.update', auth(), async ctx => {`
color editing 2017-10-30 06:22:46 +00:00			`const { id, name, color } = ctx.body;`
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`ctx.assertPresent(name, 'name is required');`
color editing 2017-10-30 06:22:46 +00:00			`if (color)`
			`ctx.assertHexColor(color, 'Invalid hex value (please use format #FFFFFF)');`
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00
			`const collection = await Collection.findById(id);`
Update team and collection authorization 2018-02-18 09:14:51 +00:00			`authorize(ctx.state.user, 'update', collection);`

Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`collection.name = name;`
color editing 2017-10-30 06:22:46 +00:00			`collection.color = color;`
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`await collection.save();`

			`ctx.body = {`
			`data: await presentCollection(ctx, collection),`
Added atlases.create API 2016-07-22 05:06:30 +00:00			`};`
			`});`

[chore] added prettier 2017-04-27 04:47:03 +00:00			`router.post('collections.list', auth(), pagination(), async ctx => {`
New database with migrations 2016-06-20 07:18:03 +00:00			`const user = ctx.state.user;`
Remove recentDocuments from default collections list response 2017-07-07 05:20:24 +00:00			`const collections = await Collection.findAll({`
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00			`where: {`
New database with migrations 2016-06-20 07:18:03 +00:00			`teamId: user.teamId,`
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00			`},`
[chore] added prettier 2017-04-27 04:47:03 +00:00			`order: [['updatedAt', 'DESC']],`
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00			`offset: ctx.state.pagination.offset,`
			`limit: ctx.state.pagination.limit,`
			`});`

Tidy, move recent documents to query scope 2017-07-07 05:02:55 +00:00			`const data = await Promise.all(`
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`collections.map(`
			`async collection => await presentCollection(ctx, collection)`
			`)`
[chore] added prettier 2017-04-27 04:47:03 +00:00			`);`
Fixes to data fetching 2016-05-20 07:33:52 +00:00
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00			`ctx.body = {`
			`pagination: ctx.state.pagination,`
Lint 2016-07-26 06:01:14 +00:00			`data,`
Added more views and atlas APIs 2016-05-07 18:52:08 +00:00			`};`
			`});`

Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00			`router.post('collections.delete', auth(), async ctx => {`
			`const { id } = ctx.body;`
			`ctx.assertPresent(id, 'id is required');`

			`const collection = await Collection.findById(id);`
Update team and collection authorization 2018-02-18 09:14:51 +00:00			`authorize(ctx.state.user, 'delete', collection);`
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00
Update team and collection authorization 2018-02-18 09:14:51 +00:00			`const total = await Collection.count();`
More granular error responses 2018-02-20 07:31:18 +00:00			`if (total === 1) throw new ValidationError('Cannot delete last collection');`
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00
More granular error responses 2018-02-20 07:31:18 +00:00			`await collection.destroy();`
Edit collection (#173) * Collection edit modal * Add icon * :green_heart: * Oh look, some specs * Delete collection * Remove from collection * Handle error responses Protect against deleting last collection * Fix key * :green_heart: * Keyboard navigate documents list * Add missing database constraints 2017-08-29 15:37:17 +00:00
			`ctx.body = {`
			`success: true,`
			`};`
			`});`

Structures for atlases 2016-06-22 07:01:57 +00:00			`export default router;`