449 lines
15 KiB
JavaScript
449 lines
15 KiB
JavaScript
import {
|
|
Meteor
|
|
} from 'meteor/meteor';
|
|
import {
|
|
Mongo
|
|
} from 'meteor/mongo';
|
|
|
|
_uuid4 = function(cc) {
|
|
var rr = Math.random() * 16 | 0;
|
|
return (cc === 'x' ? rr : (rr & 0x3 | 0x8)).toString(16);
|
|
};
|
|
|
|
superadmins = [
|
|
"ybq987@gmail.com",
|
|
"ksjdragon@gmail.com"
|
|
];
|
|
|
|
worktype = ["test", "quiz", "project", "normal"];
|
|
var possiblelist = ["moderators","blockEdit"];
|
|
|
|
for (var i = 0; i < superadmins.length; i++) {
|
|
var superadmin = superadmins[i];
|
|
if (Meteor.users.findOne({
|
|
"services.google.email": superadmin
|
|
})) {
|
|
var userId = Meteor.users.findOne({
|
|
"services.google.email": superadmin
|
|
})._id;
|
|
Roles.addUsersToRoles(userId, ['superadmin']);
|
|
}
|
|
}
|
|
|
|
Meteor.publish('schools', function() {
|
|
return schools.find();
|
|
});
|
|
|
|
Meteor.publish('classes', function() {
|
|
if (Roles.userIsInRole(this.userId, ['superadmin', 'admin'])) {
|
|
return classes.find();
|
|
} else {
|
|
return classes.find({
|
|
$or: [{
|
|
privacy: false
|
|
}, {
|
|
_id: {
|
|
$in: Meteor.users.findOne(this.userId).profile.classes
|
|
}
|
|
}]
|
|
}, {
|
|
fields: {
|
|
school: 1,
|
|
name: 1,
|
|
hour: 1,
|
|
teacher: 1,
|
|
admin: 1,
|
|
status: 1,
|
|
privacy: 1,
|
|
category: 1,
|
|
moderators: 1,
|
|
blockEdit: 1,
|
|
subscribers: 1
|
|
}
|
|
});
|
|
}
|
|
});
|
|
|
|
Meteor.publish('work', function() {
|
|
if (Roles.userIsInRole(this.userId, ['superadmin', 'admin'])) {
|
|
return work.find();
|
|
} else {
|
|
return work.find({
|
|
class: {
|
|
$in: Meteor.users.findOne(this.userId).profile.classes
|
|
}
|
|
});
|
|
}
|
|
|
|
});
|
|
|
|
Meteor.publish('users', function() {
|
|
if (Roles.userIsInRole(this.userId, ['superadmin', 'admin'])) {
|
|
return Meteor.users.find();
|
|
} else {
|
|
return Meteor.users.find({}, {fields: {'services.google.email': 1}});
|
|
}
|
|
});
|
|
|
|
Security.permit(['insert', 'update', 'remove']).collections([schools, classes, work]).ifHasRole('superadmin');
|
|
|
|
Meteor.methods({
|
|
'genCode': function() {
|
|
return 'xxxxxx'.replace(/[x]/g, _uuid4);
|
|
},
|
|
'createSchool': function(schoolname) {
|
|
if (Meteor.user() !== null &&
|
|
schools.findOne({
|
|
name: input.school
|
|
}) !== null &&
|
|
schools.findOne({
|
|
status: false,
|
|
creator: Meteor.userId()
|
|
}) !== null) {
|
|
|
|
if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin'])) {
|
|
var stat = true;
|
|
} else {
|
|
var stat = false;
|
|
}
|
|
schools.insert({
|
|
name: schoolname,
|
|
status: stat,
|
|
creator: Meteor.userId()
|
|
});
|
|
}
|
|
},
|
|
'deleteSchool': function(schoolId) {
|
|
if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin'])) {
|
|
schools.remove({
|
|
_id: schoolId
|
|
});
|
|
}
|
|
},
|
|
'createClass': function(input) {
|
|
classes.schema.validate(input);
|
|
if (Meteor.user() !== null &&
|
|
classes.find({
|
|
status: false,
|
|
admin: Meteor.userId()
|
|
}).fetch().length < 5 &&
|
|
schools.findOne({
|
|
name: input.school
|
|
}) !== null) {
|
|
if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin'])) {
|
|
input.status = true;
|
|
} else {
|
|
input.status = false;
|
|
}
|
|
input.subscribers = [Meteor.userId()];
|
|
input.admin = Meteor.userId();
|
|
if (input.privacy) {
|
|
Meteor.call('genCode', function(error, result) {
|
|
input.code = result;
|
|
});
|
|
} else {
|
|
input.code = "";
|
|
}
|
|
if (input.category != "class" && input.category != "club") {
|
|
input.category = "other";
|
|
}
|
|
input.moderators = [];
|
|
input.blockEdit = [];
|
|
classes.insert(input);
|
|
Meteor.call('joinClass', classes.findOne(input)._id, input.code, function(error, result) {});
|
|
return 1;
|
|
} else {
|
|
throw "Unauthorized";
|
|
}
|
|
},
|
|
'changeAdmin': function(input) {
|
|
var found = Meteor.users.find({_id: input[0]});
|
|
var foundclass = classes.find({_id: input[1]});
|
|
if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin'])) {
|
|
classes.update({_id: input[1]}, {$set: {admin: input[0]}});
|
|
} else if (found && foundclass && foundclass.admin == Meteor.userId() &&
|
|
foundclass.blockEdit.indexOf(input[0]) != -1) {
|
|
classes.update({_id: input[1]}, {$set: {admin: input[0]}});
|
|
} else {
|
|
throw "Unauthorized";
|
|
}
|
|
},
|
|
'trackUserInClass': function(input) {
|
|
var foundclass = Meteor.findOne({_id: input[1]});
|
|
var userlist = input[2];
|
|
var index = possiblelist.indexOf(input[2]);
|
|
var set = {userlist: foundclass[userlist].push(input[0])};
|
|
if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin'])) {
|
|
classes.update({_id: input[1]}, {$set: set});
|
|
} else if (foundclass && foundclass.admin == Meteor.userId() && index !== -1 &&
|
|
(index === 1 || foundclass.moderators.indexOf(Meteor.userId()) !== -1) &&
|
|
foundclass[userlist].indexOf(input[0]) === -1) {
|
|
classes.update({_id: input[1]}, {$set: set});
|
|
}
|
|
},
|
|
'untrackUserInClass': function(input) {
|
|
var foundclass = Meteor.findOne({_id: input[1]});
|
|
var userlist = input[2];
|
|
var index = possiblelist.indexOf(input[2]);
|
|
var set = {};
|
|
set[userlist] = foundclass[userlist].splice(foundclass[userlist].indexOf(input[0]));
|
|
if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin'])) {
|
|
classes.update({_id: input[1]}, {$set: set});
|
|
} else if (foundclass && foundclass.admin == Meteor.userId() && index !== -1 &&
|
|
(index === 1 || foundclass.moderators.indexOf(Meteor.userId()) !== -1) &&
|
|
foundclass[userlist].indexOf(input[0]) !== -1) {
|
|
classes.update({_id: input[1]}, {$set: set});
|
|
}
|
|
},
|
|
'deleteClass': function(classid) {
|
|
var found = classes.findOne({
|
|
_id: classid
|
|
});
|
|
if (Meteor.user() !== null && found !== null && (found.admin === Meteor.user()._id || Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin']))) {
|
|
for (var i = 0; i < found.subscribers.length; i++) {
|
|
profile.classes.splice(index, 1);
|
|
Meteor.users.update({
|
|
_id: found.subscribers[i]
|
|
}, {
|
|
$set: {
|
|
profile: current
|
|
}
|
|
});
|
|
}
|
|
classes.remove({
|
|
_id: classid
|
|
});
|
|
}
|
|
},
|
|
'createWork': function(input) {
|
|
var ref = new Date().getTime();
|
|
input.creator = Meteor.userId();
|
|
work.schema.validate(input);
|
|
var found = classes.findOne({
|
|
_id: input.class
|
|
});
|
|
|
|
if (Meteor.user() !== null &&
|
|
found !== null &&
|
|
Meteor.user().profile.classes.indexOf(input.class) !== -1 &&
|
|
found.blockEdit.indexOf(Meteor.userId()) === -1 &&
|
|
input.dueDate instanceof Date && input.dueDate.getTime() >= ref &&
|
|
worktype.indexOf(input.type) != -1 &&
|
|
input.name.length <= 50 && input.description.length <= 150) {
|
|
|
|
input.confirmations = [Meteor.userId()];
|
|
input.reports = [];
|
|
input.done = [];
|
|
input.numberdone = 0;
|
|
input.comments = [];
|
|
console.log(input);
|
|
work.insert(input);
|
|
}
|
|
|
|
},
|
|
'editWork': function(change) {
|
|
var ref = new Date().getTime();
|
|
|
|
var currentclass = classes.findOne({
|
|
_id: work.findOne({
|
|
_id: change._id
|
|
}).class
|
|
});
|
|
var authorized = currentclass.moderators.push(currentclass.admin);
|
|
if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin'])) {
|
|
work.update({
|
|
_id: change._id
|
|
}, {
|
|
$set: change
|
|
});
|
|
} else if (authorized.indexOf(Meteor.userId()) != -1) {
|
|
if (change.name.length <= 50 && change.description.length <= 150 && worktype.indexOf(change.type) != -1) {
|
|
Meteor.update({
|
|
_id: change._id
|
|
}, {
|
|
$set: {
|
|
name: change.name,
|
|
dueDate: change.dueDate,
|
|
description: change.description,
|
|
comments: change.comments,
|
|
attachments: change.attachments,
|
|
type: change.type
|
|
}
|
|
});
|
|
}
|
|
} else if (Meteor.userId() === work.findOne({
|
|
_id: change._id
|
|
}).creator) {
|
|
if (change.name.length <= 50 && worktype.indexOf(change.type) != -1 &&
|
|
input.dueDate instanceof Date && input.dueDate.getTime() >= ref) {
|
|
Meteor.update({
|
|
_id: change._id
|
|
}, {
|
|
$set: {
|
|
name: change.name,
|
|
dueDate: change.dueDate,
|
|
description: change.description,
|
|
attachments: change.attachments,
|
|
type: change.type
|
|
}
|
|
});
|
|
}
|
|
} else {
|
|
throw "Unauthorized.";
|
|
}
|
|
},
|
|
'addComment': function(input) {
|
|
var workobject = work.findOne({
|
|
_id: input[1]
|
|
});
|
|
var currentclass = classes.findOne({
|
|
_id: workobject.class
|
|
});
|
|
var user = Meteor.userId();
|
|
if (typeof comment === "string" && comment.length <= 200 &&
|
|
currentclass.subscribers.indexOf(Meteor.userId()) != -1 &&
|
|
currentclass.blockEdit.indexOf(Meteor.userId()) === -1) {
|
|
var comments = workobject.comments.push(comment);
|
|
work.update({
|
|
_id: input[1]
|
|
}, {
|
|
$set: {
|
|
comments: comments,
|
|
user:user,
|
|
time: new Date()
|
|
}
|
|
});
|
|
}
|
|
},
|
|
'toggleWork': function(input) {
|
|
var workobject = work.findOne({
|
|
_id: input[0]
|
|
});
|
|
var currentclass = classes.findOne({
|
|
_id: workobject.class
|
|
});
|
|
if (currentclass.subscribers.indexOf(Meteor.userId()) != -1 && ["confirmations", "reports", "done"].indexOf(input[1]) != -1) {
|
|
userindex = workobject[input[1]].indexOf(Meteor.userId());
|
|
if (userindex === -1) {
|
|
workobject[input[1]] = workobject[input[1]].push(Meteor.userId());
|
|
} else {
|
|
workobject[input[1]] = workobject[input[1]].splice(userindex, 1);
|
|
}
|
|
work.update({
|
|
_id: input[1]
|
|
}, {
|
|
$set: workobject
|
|
});
|
|
}
|
|
},
|
|
'deleteWork': function(workId) {
|
|
var currentclass = classes.findOne({
|
|
_id: work.findOne({
|
|
_id: workId
|
|
}).class
|
|
});
|
|
var authorized = currentclass.moderators.push(currentclass.admin);
|
|
if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin']) ||
|
|
authorized.indexOf(Meteor.userId()) != -1) {
|
|
|
|
work.remove({
|
|
_id: workId
|
|
});
|
|
}
|
|
},
|
|
'editProfile': function(change) {
|
|
var current = Meteor.user().profile;
|
|
current.school = change.school;
|
|
current.grade = change.grade;
|
|
current.classes = change.classes;
|
|
if (!current.classes) {
|
|
current.classes = [];
|
|
}
|
|
current.description = change.description;
|
|
current.avatar = change.avatar;
|
|
current.banner = change.banner;
|
|
current.preferences = change.preferences;
|
|
if (schools.findOne({
|
|
name: current.school
|
|
}) !== null &&
|
|
Number.isInteger(current.grade) &&
|
|
current.grade >= 9 && current.grade <= 12) {
|
|
|
|
if (current.description && current.description.length > 50) {
|
|
current.description = current.description.slice(0, 50);
|
|
}
|
|
Meteor.users.update({
|
|
_id: Meteor.userId()
|
|
}, {
|
|
$set: {
|
|
profile: current
|
|
}
|
|
});
|
|
return 1;
|
|
} else {
|
|
return 0;
|
|
}
|
|
},
|
|
'joinClass': function(input) {
|
|
var change = input[0];
|
|
var pass = input[1];
|
|
var prof = Meteor.user().profile;
|
|
var found = classes.findOne({
|
|
_id: change,
|
|
status: true
|
|
});
|
|
if (Meteor.user() !== null &&
|
|
found !== null &&
|
|
pass === found.code &&
|
|
prof.classes.indexOf(change) === -1) {
|
|
classes.update({_id: found._id}, {$set: {subscribers: found.subscribers + 1}});
|
|
var current = Meteor.user().profile;
|
|
current.classes.push(change);
|
|
Meteor.users.update({
|
|
_id: Meteor.userId()
|
|
}, {
|
|
$set: {
|
|
profile: current
|
|
}
|
|
});
|
|
return 1;
|
|
} else {
|
|
return 0;
|
|
}
|
|
},
|
|
'leaveClass': function(change) {
|
|
if (Meteor.user() !== null) {
|
|
var profile = Meteor.user().profile;
|
|
var index = profile.classes.indexOf(change);
|
|
if (index >= 0) {
|
|
if (classes.findOne({
|
|
_id: change
|
|
}).admin != Meteor.userId()) {
|
|
current = profile.classes.splice(index, 1);
|
|
Meteor.users.update({
|
|
_id: Meteor.userId()
|
|
}, {
|
|
$set: {
|
|
profile: current
|
|
}
|
|
});
|
|
return 1;
|
|
} else {
|
|
throw "You are currently the admin of this class. Transfer ownership in order to leave this class.";
|
|
}
|
|
}
|
|
|
|
}
|
|
},
|
|
'createAdmin': function(userId) {
|
|
if (Roles.userIsInRole(Meteor.user()._id, ['superadmin'])) {
|
|
Roles.addUsersToRoles(userId, ['admin']);
|
|
}
|
|
},
|
|
'deleteAdmin': function(userId) {
|
|
if (Roles.userIsInRole(Meteor.user()._id, ['superadmin'])) {
|
|
Roles.removeUsersToRoles(userId, ['admin']);
|
|
}
|
|
}
|
|
});
|