TritonSE · adhi0331 · Apr 12, 2024 · Jan 29, 2024 · Feb 5, 2024 · Feb 14, 2024
@@ -19,6 +19,8 @@
     "node": "18"
   },
   "dependencies": {
+    "@types/busboy": "^1.5.3",
+    "busboy": "^1.6.0",
     "cors": "^2.8.5",
     "dotenv": "^16.3.1",
     "express": "^4.18.2",

@@ -1,10 +1,16 @@
+import busboy from "busboy";
 import { NextFunction, Request, Response } from "express";
 import { validationResult } from "express-validator";
 import admin from "firebase-admin";
+import mongoose from "mongoose";
 
+import { InternalError } from "../errors";
+import { ServiceError } from "../errors/service";
 import { ValidationError } from "../errors/validation";
+import { Image } from "../models/image";
 import UserModel from "../models/user";
 import { firebaseAdminAuth } from "../util/firebase";
+import { saveImage } from "../util/image";
 import validationErrorParser from "../util/validationErrorParser";
 
 // Define the type for req.body
@@ -19,6 +25,22 @@ type LoginUserRequestBody = {
   uid: string;
 };
 
+type UserId = {
+  userId: string;
+};
+
+type EditNameRequestBody = UserId & {
+  newName: string;
+};
+
+type EditEmailRequestBody = UserId & {
+  newEmail: string;
+};
+
+type EditLastChangedPasswordRequestBody = UserId & {
+  currentDate: string;
+};
+
 export const createUser = async (
   req: Request<Record<string, never>, Record<string, never>, CreateUserRequestBody>,
   res: Response,
@@ -45,6 +67,9 @@ export const createUser = async (
       _id: userRecord.uid, // Set document id to firebaseUID (Linkage between Firebase and MongoDB)
       name,
       accountType,
+      email,
+      // profilePicture default "default" in User constructor
+      // lastChangedPassword default Date.now() in User constructor
       // approvalStatus default false in User constructor
     });
 
@@ -68,9 +93,15 @@ export const loginUser = async (
     if (!user) {
       throw ValidationError.USER_NOT_FOUND;
     }
-    res
-      .status(200)
-      .json({ uid: user._id, role: user.accountType, approvalStatus: user.approvalStatus });
+    res.status(200).json({
+      uid: user._id,
+      role: user.accountType,
+      approvalStatus: user.approvalStatus,
+      profilePicture: user.profilePicture,
+      name: user.name,
+      email: user.email,
+      lastChangedPassword: user.lastChangedPassword,
+    });
     return;
   } catch (e) {
     nxt();
@@ -80,3 +111,198 @@ export const loginUser = async (
     });
   }
 };
+
+export type SaveImageRequest = {
+  body: {
+    previousImageId: string;
+    userId: string;
+  };
+  file: {
+    buffer: Buffer;
+    originalname: string;
+    mimetype: string;
+    size: number;
+  };
+};
+
+type CustomRequest = Request & {
+  userId: string;
+  rawBody?: Buffer;
+};
+
+export const editPhoto = (req: Request, res: Response, nxt: NextFunction) => {
+  try {
+    const customReq = req as CustomRequest;
+    let previousImageId = "";
+    //req.userId is assigned in verifyAuthToken middleware
+    const userId: string = customReq.userId;
+
+    const bb = busboy({ headers: req.headers });
+
+    let fileBuffer = Buffer.alloc(0);
+    bb.on("field", (fieldname, val) => {
+      if (fieldname === "previousImageId") {
+        previousImageId = val;
+      }
+    });
+    bb.on("file", (name, file, info) => {
+      const { filename, mimeType } = info;
+
+      file
+        .on("data", (data) => {
+          fileBuffer = Buffer.concat([fileBuffer, data]);
+        })
+        .on("close", () => {
+          const saveImageRequest: SaveImageRequest = {
+            body: {
+              previousImageId,
+              userId,
+            },
+            file: {
+              buffer: fileBuffer,
+              originalname: filename,
+              mimetype: mimeType,
+              size: fileBuffer.length,
+            },
+          };
+
+          // Validate file in form data
+          try {
+            const acceptableTypes = ["image/jpeg", "image/png", "image/webp"];
+            if (!acceptableTypes.includes(mimeType)) {
+              throw ValidationError.IMAGE_UNSUPPORTED_TYPE;
+            }
+
+            // Check file size (2MB limit)
+            const maxSize = 2 * 1024 * 1024;
+            if (fileBuffer.length > maxSize) {
+              throw ValidationError.IMAGE_EXCEED_SIZE;
+            }
+
+            saveImage(saveImageRequest)
+              .then((savedImageId) => {
+                res.status(200).json(savedImageId);
+              })
+              .catch((error) => {
+                console.error("Error saving image:", error);
+                nxt(error); // Properly forward the error
+              });
+          } catch (error) {
+            console.error("Error parsing form with Busboy:", error);
+            nxt(error); // Properly forward the error
+          }
+        });
+    });
+
+    if (customReq.rawBody) {
+      bb.end(customReq.rawBody);
+    } else {
+      customReq.pipe(bb);
+    }
+  } catch (e) {
+    console.log(e);
+    nxt(e);
+  }
+};
+
+export const getPhoto = async (req: Request, res: Response, nxt: NextFunction) => {
+  try {
+    const imageId = req.params.id;
+    if (!mongoose.Types.ObjectId.isValid(imageId)) {
+      return res
+        .status(ServiceError.INVALID_MONGO_ID.status)
+        .send({ error: ServiceError.INVALID_MONGO_ID.message });
+    }
+
+    const image = await Image.findById(imageId);
+    if (!image) {
+      throw ServiceError.IMAGE_NOT_FOUND;
+    }
+
+    return res.status(200).set("Content-type", image.mimetype).send(image.buffer);
+  } catch (e) {
+    console.log(e);
+    if (e instanceof ServiceError) {
+      nxt(e);
+    }
+    return res
+      .status(InternalError.ERROR_GETTING_IMAGE.status)
+      .send(InternalError.ERROR_GETTING_IMAGE.displayMessage(true));
+  }
+};
+
+export const editName = async (req: Request, res: Response, nxt: NextFunction) => {
+  try {
+    const errors = validationResult(req);
+
+    validationErrorParser(errors);
+
+    console.log("test firebase log");
+
+    const { newName, userId } = req.body as EditNameRequestBody;
+
+    const user = await UserModel.findById(userId);
+
+    if (!user) {
+      throw ValidationError.USER_NOT_FOUND;
+    }
+
+    await UserModel.findByIdAndUpdate(userId, { name: newName });
+
+    res.status(200).json(newName);
+  } catch (error) {
+    nxt(error);
+    return res.status(400).json({
+      error,
+    });
+  }
+};
+
+export const editEmail = async (req: Request, res: Response, nxt: NextFunction) => {
+  try {
+    const errors = validationResult(req);
+
+    validationErrorParser(errors);
+
+    const { newEmail, userId } = req.body as EditEmailRequestBody;
+
+    await firebaseAdminAuth.updateUser(userId, { email: newEmail });
+
+    const user = await UserModel.findById(userId);
+
+    if (!user) {
+      throw ValidationError.USER_NOT_FOUND;
+    }
+
+    await UserModel.findByIdAndUpdate(userId, { email: newEmail });
+
+    return res.status(200).json(newEmail);
+  } catch (error) {
+    nxt(error);
+  }
+};
+
+export const editLastChangedPassword = async (req: Request, res: Response, nxt: NextFunction) => {
+  try {
+    const errors = validationResult(req);
+
+    validationErrorParser(errors);
+
+    const { currentDate, userId } = req.body as EditLastChangedPasswordRequestBody;
+
+    const user = await UserModel.findById(userId);
+
+    if (!user) {
+      throw ValidationError.USER_NOT_FOUND;
+    }
+
+    await UserModel.findByIdAndUpdate(userId, { lastChangedPassword: currentDate });
+
+    res.status(200).json(currentDate);
+  } catch (error) {
+    nxt(error);
+    return res.status(400).json({
+      error,
+    });
+  }
+};
@@ -4,6 +4,8 @@
 
 import { CustomError } from "./errors";
 
+const LOGIN_ERROR = "Login Failed. Please check the username and password.";
+
 const DECODE_ERROR = "Error decoding the auth token. Make sure the auth token is valid";
 const TOKEN_NOT_IN_HEADER =
   "Token was not found in the header. Be sure to use Bearer <Token> syntax";
@@ -15,4 +17,6 @@ export class AuthError extends CustomError {
   static TOKEN_NOT_IN_HEADER = new AuthError(1, 401, TOKEN_NOT_IN_HEADER);
 
   static INVALID_AUTH_TOKEN = new AuthError(2, 401, INVALID_AUTH_TOKEN);
+
+  static LOGIN_ERROR = new AuthError(3, 401, LOGIN_ERROR);
 }
@@ -10,7 +10,7 @@ export const errorHandler = (err: Error, _req: Request, res: Response, _nxt: Nex
   if (!err) return;
   if (err instanceof CustomError && !(err instanceof InternalError)) {
     console.log(err.displayMessage(true));
-    res.status(err.status).send(err.displayMessage(true));
+    res.status(err.status).send({ error: err.message });
     return;
   }
 

@@ -4,6 +4,7 @@ const NO_APP_PORT = "Could not find app port env variable";
 const NO_MONGO_URI = "Could not find mongo uri env variable";
 const NO_SERVICE_ACCOUNT_KEY = "Could not find service account key env variable";
 const NO_FIREBASE_CONFIG = "Could not firebase config env variable";
+const ERROR_GETTING_IMAGE = "There was some error getting the image";
 
 export class InternalError extends CustomError {
   static NO_APP_PORT = new InternalError(0, 500, NO_APP_PORT);
@@ -13,4 +14,6 @@ export class InternalError extends CustomError {
   static NO_SERVICE_ACCOUNT_KEY = new InternalError(5, 500, NO_SERVICE_ACCOUNT_KEY);
 
   static NO_FIREBASE_CONFIG = new InternalError(5, 500, NO_FIREBASE_CONFIG);
+
+  static ERROR_GETTING_IMAGE = new InternalError(6, 500, ERROR_GETTING_IMAGE);
 }
@@ -0,0 +1,15 @@
+import { CustomError } from "./errors";
+
+const IMAGE_NOT_SAVED =
+  "Image was not able to be saved. Be sure to specify that image key is image";
+const IMAGE_NOT_FOUND = "Image was not found. Please make sure id passed in route is valid";
+const INVALID_MONGO_ID = "Mongo ID was invalid. Please ensure that the id is correct";
+const IMAGE_USER_MISMATCH = "Image does not belong to the user";
+
+export class ServiceError extends CustomError {
+  static IMAGE_NOT_SAVED = new ServiceError(0, 404, IMAGE_NOT_SAVED);
+
+  static IMAGE_NOT_FOUND = new ServiceError(1, 404, IMAGE_NOT_FOUND);
+  static INVALID_MONGO_ID = new ServiceError(2, 404, INVALID_MONGO_ID);
+  static IMAGE_USER_MISMATCH = new ServiceError(3, 404, IMAGE_USER_MISMATCH);
+}