-
Notifications
You must be signed in to change notification settings - Fork 0
/
app.js
177 lines (165 loc) · 7.28 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
var express = require('express')
var path = require('path')
var favicon = require('serve-favicon')
var logger = require('morgan')
var cookieParser = require('cookie-parser')
var bodyParser = require('body-parser')
// Set mongodb
var mongo = require('mongoskin')
var db = mongo.db('mongodb://localhost:27017/Spindle?auto_reconnection=true&poolsize=3', {native_parse:true})
var routes = require('./routes/index')
var curators = require('./routes/curators')
var genes = require('./routes/genes')
var diseases = require('./routes/diseases')
var variants = require('./routes/variants')
var curations = require('./routes/curations')
var observations = require('./routes/observations')
var casegroupstudy = require('./routes/casegroupstudy')
var functionaldataanalysis = require('./routes/functionaldataanalysis')
var key_data = require('./private/js/key_data.js')
var settoken = require('./private/js/settoken.js')
var app = express()
// view engine setup
app.set('views', path.join(__dirname, 'views'))
app.set('view engine', 'jade')
// uncomment after placing your favicon in /public
//app.use(favicon(__dirname + '/public/favicon.ico'))
app.use(logger('dev'))
app.use(bodyParser.json())
app.use(bodyParser.urlencoded({ extended: false }))
app.use(cookieParser('Spindle'))
app.use(express.static(path.join(__dirname, 'public')))
//app.use(express.static(path.join(__dirname, ‘/add’)))
// Access the mongodb
app.use(function(req, res, next) {
req.db = db
next()
})
// Authentication: check Spindle cookie and expiration
app.all('/*', function(req, res, next) {
if (req.cookies.Spindle) { // there is a Spindle cookie in browser
var cookie_data = req.cookies.Spindle.split('-')
db.collection('Curator').find({"Token":req.cookies.Spindle}).toArray(function(err, user) { // check if cookie and token identical
if (err) {
throw err
return
}
if (user && user.length==1) { // identical cookie
var today = new Date()
var thisMS = today.getTime()
var last_index = user[0].LoginRecord.length-1
//console.log(user[0].LoginRecord.length, last_index);
var current_record = user[0].LoginRecord[last_index]
var login_life = thisMS - parseInt(current_record.Logout)
var session_life = thisMS - parseInt(cookie_data[1])
if (login_life <= key_data.Login_Life && session_life <= key_data.Session_Life) { // the current login is not expired
//console.log("here");
// logout before cookie expired
if (req.url.indexOf('ogout') > -1) {
db.collection('Curator').find({"Token":req.cookies.Spindle}).toArray(function(err, user_logout) {
if (err) {
throw err
return
}
var newrecord = user_logout[0].LoginRecord.pop()
//var lastaction = newrecord.Action[newrecord.Action.length-1]
newrecord.Logout = Date().toString()
//newrecord.Action.push('Logout')
db.collection('Curator').update({"LogName":user_logout[0].LogName}, {$set:{"Token":""}}, function(err) {
if (err) {
throw err
return
}
db.collection("Curator").update({"LogName":user_logout[0].LogName},{$pop:{"LoginRecord":1}}, function(err) {
if (err) {
throw err
return
}
db.collection('Curator').update({"LogName":user_logout[0].LogName},{$push:{"LoginRecord":newrecord}}, function(err) {
if (err) {
throw err
return
}
res.clearCookie('Spindle',null, {maxAge:0, httpOnly:true, path:'/'}) // Delete cookie in browser
res.clearCookie('genesymbol',null, {path:'/'})
res.clearCookie('diseaseterm',null, {path:'/'})
res.render('logout', {token:'logout'})
})
})
})
})
}
//else if (req.url == '/') res.render('spindle', {login:true, user:user[0]})
else { // other actions
// reset token and cookie for each action
var savetoken = settoken(req, user[0])
db.collection('Curator').update({"LogName":user[0].LogName}, {$set:{"Token":savetoken}}, function(err) {
if (err) {
throw err
return
}
res.cookie('Spindle', savetoken, { httpOnly:true, path:'/' })
//req.admin_data = {""}
if (req.url == '/') res.render('spindle', {login:true, user:user[0]})
else next()
})
}
}
else { // login life pass away, faced to logout
res.clearCookie('Spindle',null, {maxAge:0, httpOnly:true, path:'/'})
res.render('logout', {token:'expired'})
}
}
else {
res.clearCookie('Spindle',null, {maxAge:0, httpOnly:true, path:'/'})
res.render('logout', {token:'Unknown err'})
}
})
}
else if (req.url == '/') res.sendFile(process.cwd() + '/views/index.html')
else if (req.url == '/login') next()
//else if (req.url == '/login' || req.url == '/') next()
else res.render('logout')
})
// set routes
app.use('/', routes)
app.use('/login', routes)
app.use('/logout', routes)
app.use('/changepassword', routes)
app.use('/Lastcuration', routes)
app.use('/genes', genes)
app.use('/curators', curators)
app.use('/diseases', diseases)
app.use('/variants', variants)
app.use('/curations', curations)
app.use('/observations', observations)
app.use('/casegroupstudy', casegroupstudy)
app.use('/functionaldataanalysis', functionaldataanalysis)
// catch 404 and forward to error handler
app.use(function(req, res, next) {
var err = new Error('Not Found')
err.status = 404
next(err)
})
// error handlers
// development error handler
// will print stacktrace
if (app.get('env') === 'development') {
app.use(function(err, req, res, next) {
res.status(err.status || 500)
res.render('error', {
message: err.message,
error: err
})
})
}
// production error handler
// no stacktraces leaked to user
app.use(function(err, req, res, next) {
res.status(err.status || 500)
res.render('error', {
message: err.message,
error: {}
})
})
module.exports = app