1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
|
var express = require('express'),
bodyParser = require('body-parser'),
methodOverride = require('method-override'),
mongoose = require('mongoose'),
morgan = require('morgan'),
restful = require('../');
// Make a new Express app
var app = module.exports = express();
// Connect to mongodb
mongoose.connect("mongodb://localhost/restful");
// Use middleware to parse POST data and use custom HTTP methods
app.use(morgan('dev'));
app.use(bodyParser.urlencoded({'extended':'true'}));
app.use(bodyParser.json());
app.use(bodyParser.json({type:'application/vnd.api+json'}));
app.use(methodOverride());
var hashPassword = function(req, res, next) {
if (!req.body.password)
return next({ status: 400, err: "No password!" }); // We can also throw an error from a before route
req.body.password = bcrypt.hashSync(req.body.password, 10); // Using bcrypt
return next(); // Call the handler
}
var sendEmail = function(req, res, next) {
// We can get the user from res.bundle and status code from res.status and
// trigger an error by calling next(err) or populate information that would otherwise be miggins
next(); // I'll just pass though
}
var User = restful.model( "users", mongoose.Schema({
username: 'string',
password_hash: 'string',
}))
.methods(['get', 'put', 'delete', {
method: 'post',
before: hashPassword, // Before we make run the default POST to create a user, we want to hash the password (implementation omitted)
after: sendEmail, // After we register them, we will send them a confirmation email
}]);
User.register(app, '/user'); // Register the user model at the localhost:3000/user
var validateUser = function(req, res, next) {
if (!req.body.creator) {
return next({ status: 400, err: "Notes need a creator" });
}
User.Model.findById(req.body.creator, function(err, model) {
if (!model) return next(restful.objectNotFound());
return next();
});
}
var Note = restful.model("note", mongoose.Schema({
title: { type: 'string', required: true},
body: { type: 'string', required: true},
creator: { type: 'ObjectId', ref: 'user', require: true},
}))
.methods(['get', 'delete', { method: 'post', before: validateUser }, { method: 'put', before: validateUser }]);
Note.register(app, '/note');
User.route("notes", {
handler: function(req, res, next, err, model) { // we get err and model parameters on detail routes (model being the one model that was found)
Note.Model.find({ creator: model._id }, function(err, list) {
if (err) return next({ status: 500, err: "Something went wrong" });
//res.status is the status code
res.status = 200;
// res.bundle is what is returned, serialized to JSON
res.bundle = list;
return next();
});
},
detail: true, // detail routes operate on a single instance, i.e. /user/:id
methods: ['get'], // only respond to GET requests
});
app.listen(3000);
|