akf-forum/routes/users.js

const { Router } = require("express");
const app = Router();

const { UserModel, MessageModel, ThreadModel } = require("../models");

app.get("/", async ({ user }, res) => {
    const users = await UserModel.find(user?.admin ? {} : { deleted: false });
    return res.reply("users", { users })

});

app.get("/:id/edit", async (req, res) => {
    if(!req.user || (!req.user.admin&&req.params.id !== req.user.id)) return res.error(403, "You have not got permission for this.");
    const member = await UserModel.get(req.params.id);

    if (member && (req.user?.admin || !member.deleted))
        res.reply("edit_user", { member })
    else
        res.error(404, `We don't have any user with id ${req.params.id}.`);

});

app.get("/:id", async (req, res) => {
    const user = req.user
    const { id } = req.params;
    const member = await UserModel.get(id);

    if (member && (user?.admin || !member.deleted)) {

        const message = await MessageModel.count({ authorID: id });
        const thread = await ThreadModel.count({ authorID: id });
        member.about = member.about.replaceAll("&", "&amp;")
            .replaceAll("<", "&lt;").replaceAll(">", "&gt;")
            .replaceAll("\"", "&quot;").replaceAll("'", "&#39;")
            .replaceAll("\n", "<br>");
        res.reply("user", { member, counts: { message, thread } })
    }
    else res.error(404, `We don't have any user with id ${id}.`);

});

module.exports = app;
Database changed to MongoDB 2022-04-06 21:14:46 +03:00			`const { Router } = require("express");`
			`const app = Router();`
Routes are fixed 2022-03-21 23:53:22 +03:00
Database changed to MongoDB 2022-04-06 21:14:46 +03:00			`const { UserModel, MessageModel, ThreadModel } = require("../models");`
Routes are fixed 2022-03-21 23:53:22 +03:00
2 todo did. 2022-08-09 19:48:10 +03:00			`app.get("/", async ({ user }, res) => {`
Added thread deleting 2022-08-10 00:44:13 +03:00			`const users = await UserModel.find(user?.admin ? {} : { deleted: false });`
profile photo fix 2022-08-27 10:31:16 +03:00			`return res.reply("users", { users })`
Routes are fixed 2022-03-21 23:53:22 +03:00
			`});`
Not login support 2022-04-03 21:01:55 +03:00
Better edits, already deleted, global ratelimit 2022-09-01 14:02:47 +03:00			`app.get("/:id/edit", async (req, res) => {`
			`if(!req.user \|\| (!req.user.admin&&req.params.id !== req.user.id)) return res.error(403, "You have not got permission for this.");`
			`const member = await UserModel.get(req.params.id);`

			`if (member && (req.user?.admin \|\| !member.deleted))`
			`res.reply("edit_user", { member })`
			`else`
			res.error(404, `We don't have any user with id ${req.params.id}.`);

			`});`

Database changed to MongoDB 2022-04-06 21:14:46 +03:00			`app.get("/:id", async (req, res) => {`
			`const user = req.user`
new theme is fixed in everypage 2022-08-29 16:16:44 +03:00			`const { id } = req.params;`
Mongoose is fixed & optimized The dublicate key error fixed, ids as string. classes removed. using mongoose's magic 2022-08-09 19:16:34 +03:00			`const member = await UserModel.get(id);`
Routes are fixed 2022-03-21 23:53:22 +03:00
Not login support 2022-04-03 21:01:55 +03:00			`if (member && (user?.admin \|\| !member.deleted)) {`
Routes are fixed 2022-03-21 23:53:22 +03:00
Delete thread button for threads page 2022-08-31 16:25:35 +03:00			`const message = await MessageModel.count({ authorID: id });`
			`const thread = await ThreadModel.count({ authorID: id });`
Page is OK! Edits, About me, ip ban 2022-08-29 19:31:59 +03:00			`member.about = member.about.replaceAll("&", "&")`
			`.replaceAll("<", "<").replaceAll(">", ">")`
			`.replaceAll("\"", """).replaceAll("'", "'")`
			`.replaceAll("\n", "<br>");`
profile photo fix 2022-08-27 10:31:16 +03:00			`res.reply("user", { member, counts: { message, thread } })`
Routes are fixed 2022-03-21 23:53:22 +03:00			`}`
Page is OK! Edits, About me, ip ban 2022-08-29 19:31:59 +03:00			else res.error(404, `We don't have any user with id ${id}.`);
Routes are fixed 2022-03-21 23:53:22 +03:00
			`});`
Not login support 2022-04-03 21:01:55 +03:00
Routes are fixed 2022-03-21 23:53:22 +03:00			`module.exports = app;`