mifi/Eventment-API
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

- Updating routes with security

Browse Source
This commit is contained in:
Mike Fitzpatrick
2019-07-04 16:45:49 -04:00
parent dd3552dee4
commit 6d5d238d34
5 changed files with 34 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
routes/events.js
View File

@@ -2,8 +2,8 @@ const errors = require('restify-errors');
const Event = require('../models/event');
module.exports = function(server) {
server.post('/events', (req, res, next) => {
module.exports = function (server, auth) {
server.post('/events', auth.manager, (req, res, next) => {
let data = req.body || {};
@@ -20,7 +20,7 @@ module.exports = function(server) {
});
});
server.get('/events', (req, res, next) => {
server.get('/events', auth.basic, (req, res, next) => {
Event.apiQuery(req.params, function(err, docs) {
if (err) {
console.error(err);
@@ -34,7 +34,7 @@ module.exports = function(server) {
});
});
server.get('/events/:event_id', (req, res, next) => {
server.get('/events/:event_id', auth.basic, (req, res, next) => {
Event.findOne({ _id: req.params.event_id }, function(err, doc) {
if (err) {
console.error(err);
@@ -48,7 +48,7 @@ module.exports = function(server) {
});
});
server.put('/events/:event_id', (req, res, next) => {
server.put('/events/:event_id', auth.manager, (req, res, next) => {
let data = req.body || {};
@@ -70,7 +70,7 @@ module.exports = function(server) {
);
}
Event.update({ _id: data._id }, data, function(err) {
Event.updateOne({ _id: data._id }, data, function(err) {
if (err) {
console.error(err);
return next(
@@ -84,7 +84,7 @@ module.exports = function(server) {
});
});
server.del('/events/:event_id', (req, res, next) => {
server.del('/events/:event_id', auth.manager, (req, res, next) => {
Event.deleteOne({ _id: req.params.event_id }, function(err) {
if (err) {
console.error(err);