elections/functions.js at master · wtg/elections · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
var db = require('./config.js').db,
    mysql = require('mysql'),
    cms = require('./cms.js'),
    db_name = mysql.escapeId(require('./config.js').db_name),
    email = require('./config.js').email,
    nodemailer = require('nodemailer'),
    databasedebug = require('debug')('elections:database'),
    isCurrentCandidate = require('./is_candidate.js').isCurrentCandidate;

module.exports = {
    dbConnect: function (res) {
        var connection = mysql.createConnection(db);
        connection.on('error', err => {
            databasedebug(err)
        });
        connection.connect();
        connection.query("USE " + db_name, function (err) {
            if (err) {
                console.error(err);
                if (res) {
                    res.status(500);
                }
            }
        });
        return connection;
    },
    dbName: function () {
        return db_name;
    },
    defaultJSONCallback: function (res) {
        return function (err, result) {
            if (err) {
                console.log(err);
                res.sendStatus(500);
                return;
            }

            res.json(result);
        };
    },
    constructSQLArray: function (values) {
        var array = '(';

        values.forEach(function (elem, index) {
            array += mysql.escape(elem) + (index < values.length - 1 ? ', ' : ')');
        });

        return array;
    },
    verifyPermissions: function (req) {
        if (!req.session || !req.session.cas_user || !req.session.is_authenticated) {
            return {
                'authenticated': false,
                'username': null,
                'admin': false
            };
        }

        return {
            authenticated: req.session.is_authenticated,
            username: req.session.cas_user.toLowerCase(),
            admin: (req.session.ec_member || req.session.wtg_member) && !isCurrentCandidate(req.session.cas_user.toLowerCase())
        };
    },
    log: function (connection, rcsid, type, description) {

        /*Not sure if connection is needed now*/
        /*Can rcsid be replaced with a session variable?*/
        var providedConnection = true;

        if (!connection) {
            providedConnection = false;
            connection = functions.dbConnect();
        }

        connection.query("INSERT INTO log (rcs_id, type, description, time) VALUES ('" + rcsid + "', '" + type + "', '" + description + "', NOW())");

        if (!providedConnection) {
            connection.end();
        }
    },
    determineCMSPromise: function (rcs_id) {
        console.log(rcs_id);
        return isNaN(parseInt(rcs_id)) ? cms.getRCS(rcs_id) : cms.getRIN(rcs_id);
    },
    mailer: nodemailer.createTransport({
        host: email.host,
        port: email.port,
        secure: email.secure,
        auth: {
            user: email.username,
            pass: email.password
        }
    }),
};