'use strict'; exports = module.exports = { get: get, getWithMembers: getWithMembers, getAll: getAll, getAllWithMembers: getAllWithMembers, add: add, update: update, del: del, count: count, getMembers: getMembers, addMember: addMember, removeMember: removeMember, setMembers: setMembers, isMember: isMember, getMembership: getMembership, setMembership: setMembership, getGroups: getGroups, _clear: clear }; var assert = require('assert'), BoxError = require('./boxerror.js'), database = require('./database.js'); var GROUPS_FIELDS = [ 'id', 'name' ].join(','); function get(groupId, callback) { assert.strictEqual(typeof groupId, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('SELECT ' + GROUPS_FIELDS + ' FROM userGroups WHERE id = ? ORDER BY name', [ groupId ], function (error, result) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); if (result.length === 0) return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); callback(null, result[0]); }); } function getWithMembers(groupId, callback) { assert.strictEqual(typeof groupId, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('SELECT ' + GROUPS_FIELDS + ',GROUP_CONCAT(groupMembers.userId) AS userIds ' + ' FROM userGroups LEFT OUTER JOIN groupMembers ON userGroups.id = groupMembers.groupId ' + ' WHERE userGroups.id = ? ' + ' GROUP BY userGroups.id', [ groupId ], function (error, results) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); if (results.length === 0) return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); var result = results[0]; result.userIds = result.userIds ? result.userIds.split(',') : [ ]; callback(null, result); }); } function getAll(callback) { assert.strictEqual(typeof callback, 'function'); database.query('SELECT ' + GROUPS_FIELDS + ' FROM userGroups', function (error, results) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); callback(null, results); }); } function getAllWithMembers(callback) { database.query('SELECT ' + GROUPS_FIELDS + ',GROUP_CONCAT(groupMembers.userId) AS userIds ' + ' FROM userGroups LEFT OUTER JOIN groupMembers ON userGroups.id = groupMembers.groupId ' + ' GROUP BY userGroups.id', function (error, results) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); if (results.length === 0) return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); results.forEach(function (result) { result.userIds = result.userIds ? result.userIds.split(',') : [ ]; }); callback(null, results); }); } function add(id, name, callback) { assert.strictEqual(typeof id, 'string'); assert.strictEqual(typeof name, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('INSERT INTO userGroups (id, name) VALUES (?, ?)', [ id, name ], function (error, result) { if (error && error.code === 'ER_DUP_ENTRY') return callback(new BoxError(BoxError.ALREADY_EXISTS, error)); if (error || result.affectedRows !== 1) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); callback(null); }); } function update(id, data, callback) { assert.strictEqual(typeof id, 'string'); assert(data && typeof data === 'object'); assert.strictEqual(typeof callback, 'function'); var args = [ ]; var fields = [ ]; for (var k in data) { if (k === 'name') { assert.strictEqual(typeof data.name, 'string'); fields.push(k + ' = ?'); args.push(data.name); } } args.push(id); database.query('UPDATE userGroups SET ' + fields.join(', ') + ' WHERE id = ?', args, function (error, result) { if (error && error.code === 'ER_DUP_ENTRY' && error.sqlMessage.indexOf('userGroups_name') !== -1) return callback(new BoxError(BoxError.ALREADY_EXISTS, 'name already exists')); if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); if (result.affectedRows !== 1) return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); return callback(null); }); } function del(id, callback) { assert.strictEqual(typeof id, 'string'); assert.strictEqual(typeof callback, 'function'); // also cleanup the groupMembers table var queries = []; queries.push({ query: 'DELETE FROM groupMembers WHERE groupId = ?', args: [ id ] }); queries.push({ query: 'DELETE FROM userGroups WHERE id = ?', args: [ id ] }); database.transaction(queries, function (error, result) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); if (result[1].affectedRows !== 1) return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); callback(error); }); } function count(callback) { assert.strictEqual(typeof callback, 'function'); database.query('SELECT COUNT(*) AS total FROM userGroups', function (error, result) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); return callback(null, result[0].total); }); } function clear(callback) { database.query('DELETE FROM groupMembers', function (error) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); database.query('DELETE FROM userGroups', function (error) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); callback(error); }); }); } function getMembers(groupId, callback) { assert.strictEqual(typeof groupId, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('SELECT userId FROM groupMembers WHERE groupId=?', [ groupId ], function (error, result) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); // if (result.length === 0) return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); // need to differentiate group with no members and invalid groupId callback(error, result.map(function (r) { return r.userId; })); }); } function setMembers(groupId, userIds, callback) { assert.strictEqual(typeof groupId, 'string'); assert(Array.isArray(userIds)); assert.strictEqual(typeof callback, 'function'); var queries = []; queries.push({ query: 'DELETE FROM groupMembers WHERE groupId = ?', args: [ groupId ] }); for (var i = 0; i < userIds.length; i++) { queries.push({ query: 'INSERT INTO groupMembers (groupId, userId) VALUES (?, ?)', args: [ groupId, userIds[i] ] }); } database.transaction(queries, function (error) { if (error && error.code === 'ER_NO_REFERENCED_ROW_2') return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); callback(error); }); } function getMembership(userId, callback) { assert.strictEqual(typeof userId, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('SELECT groupId FROM groupMembers WHERE userId=? ORDER BY groupId', [ userId ], function (error, result) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); // if (result.length === 0) return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); // need to differentiate group with no members and invalid groupId callback(error, result.map(function (r) { return r.groupId; })); }); } function setMembership(userId, groupIds, callback) { assert.strictEqual(typeof userId, 'string'); assert(Array.isArray(groupIds)); assert.strictEqual(typeof callback, 'function'); var queries = [ ]; queries.push({ query: 'DELETE from groupMembers WHERE userId = ?', args: [ userId ] }); groupIds.forEach(function (gid) { queries.push({ query: 'INSERT INTO groupMembers (groupId, userId) VALUES (? , ?)', args: [ gid, userId ] }); }); database.transaction(queries, function (error) { if (error && error.code === 'ER_NO_REFERENCED_ROW_2') return callback(new BoxError(BoxError.NOT_FOUND, error.message)); if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); callback(null); }); } function addMember(groupId, userId, callback) { assert.strictEqual(typeof groupId, 'string'); assert.strictEqual(typeof userId, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('INSERT INTO groupMembers (groupId, userId) VALUES (?, ?)', [ groupId, userId ], function (error, result) { if (error && error.code === 'ER_DUP_ENTRY') return callback(new BoxError(BoxError.ALREADY_EXISTS, error)); if (error && error.code === 'ER_NO_REFERENCED_ROW_2') return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); if (error || result.affectedRows !== 1) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); callback(null); }); } function removeMember(groupId, userId, callback) { assert.strictEqual(typeof groupId, 'string'); assert.strictEqual(typeof userId, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('DELETE FROM groupMembers WHERE groupId = ? AND userId = ?', [ groupId, userId ], function (error, result) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); if (result.affectedRows !== 1) return callback(new BoxError(BoxError.NOT_FOUND, 'Group not found')); callback(null); }); } function isMember(groupId, userId, callback) { assert.strictEqual(typeof groupId, 'string'); assert.strictEqual(typeof userId, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('SELECT 1 FROM groupMembers WHERE groupId=? AND userId=?', [ groupId, userId ], function (error, result) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); callback(null, result.length !== 0); }); } function getGroups(userId, callback) { assert.strictEqual(typeof userId, 'string'); assert.strictEqual(typeof callback, 'function'); database.query('SELECT ' + GROUPS_FIELDS + ' ' + ' FROM userGroups INNER JOIN groupMembers ON userGroups.id = groupMembers.groupId AND groupMembers.userId = ?', [ userId ], function (error, results) { if (error) return callback(new BoxError(BoxError.DATABASE_ERROR, error)); callback(null, results); }); }