const express = require('express'); const router = express.Router(); const sql = require('../../sql'); const utils = require('../../utils'); const audit_category = require('../../audit_category'); const auth = require('../../auth'); router.get('/:noteId', auth.checkApiAuth, async (req, res, next) => { let noteId = req.params.noteId; await sql.execute("update options set opt_value = ? where opt_name = 'start_node'", [noteId]); let detail = await sql.getSingleResult("select * from notes where note_id = ?", [noteId]); if (detail['note_clone_id']) { noteId = detail['note_clone_id']; detail = sql.getSingleResult("select * from notes where note_id = ?", [noteId]); } res.send({ 'detail': detail, 'formatting': await sql.getResults("select * from formatting where note_id = ? order by note_offset", [noteId]), 'links': await sql.getResults("select * from links where note_id = ? order by note_offset", [noteId]), 'images': await sql.getResults("select * from images where note_id = ? order by note_offset", [noteId]) }); }); router.put('/:noteId', async (req, res, next) => { let noteId = req.params.noteId; const detail = await sql.getSingleResult("select * from notes where note_id = ?", [noteId]); if (detail['note_clone_id']) { noteId = detail['note_clone_id']; } const note = req.body; const now = utils.nowTimestamp(); const historySnapshotTimeInterval = parseInt(await sql.getOption('history_snapshot_time_interval')); const historyCutoff = now - historySnapshotTimeInterval; const history = await sql.getSingleResult("select id from notes_history where note_id = ? and date_modified >= ?", [noteId, historyCutoff]); await sql.beginTransaction(); if (history) { await sql.execute("update notes_history set note_title = ?, note_text = ?, encryption = ? where id = ?", [ note['detail']['note_title'], note['detail']['note_text'], note['detail']['encryption'], history['id'] ]); } else { await sql.execute("insert into notes_history (note_id, note_title, note_text, encryption, date_modified) values (?, ?, ?, ?, ?)", [ noteId, note['detail']['note_title'], note['detail']['note_text'], note['detail']['encryption'], now ]); } if (note['detail']['note_title'] !== detail['note_title']) { await sql.deleteRecentAudits(audit_category.UPDATE_TITLE, req, noteId); await sql.addAudit(audit_category.UPDATE_TITLE, req, noteId); } if (note['detail']['note_text'] !== detail['note_text']) { await sql.deleteRecentAudits(audit_category.UPDATE_CONTENT, req, noteId); await sql.addAudit(audit_category.UPDATE_CONTENT, req, noteId); } if (note['detail']['encryption'] !== detail['encryption']) { await sql.addAudit(audit_category.ENCRYPTION, req, noteId, detail['encryption'], note['detail']['encryption']); } await sql.execute("update notes set note_title = ?, note_text = ?, encryption = ?, date_modified = ? where note_id = ?", [ note['detail']['note_title'], note['detail']['note_text'], note['detail']['encryption'], now, noteId]); await sql.remove("images", noteId); for (const img of note['images']) { img['image_data'] = atob(img['image_data']); await sql.insert("images", img); } await sql.remove("links", noteId); for (const link in note['links']) await sql.insert("links", link); await sql.commit(); res.send({}); }); router.delete('/:noteId', async (req, res, next) => { await deleteNote(req.params.noteId); await sql.commit(); res.send({}); }); async function deleteNote(noteId) { const children = await sql.getResults("select note_id from notes_tree where note_pid = ?", [noteId]); for (const child of children) { await deleteNote(child['note_id']); } await sql.delete("notes_tree", noteId); await sql.delete("notes", noteId); await sql.addAudit(audit_category.DELETE_NOTE, req, noteId); } router.post('/:parentNoteId/children', async (req, res, next) => { let parentNoteId = req.params.parentNoteId; const note = req.body; const noteId = utils.newNoteId(); if (parentNoteId === "root") { parentNoteId = ""; } let newNotePos = 0; if (note['target'] === 'into') { const res = await sql.getSingleResult('select max(note_pos) as max_note_pos from notes_tree where note_pid = ?', [parentNoteId]); const maxNotePos = res['max_note_pos']; if (maxNotePos === null) // no children yet newNotePos = 0; else newNotePos = maxNotePos + 1 } else if (note['target'] === 'after') { const afterNote = await sql.getSingleResult('select note_pos from notes_tree where note_id = ?', [note['target_note_id']]); newNotePos = afterNote['note_pos'] + 1; await sql.execute('update notes_tree set note_pos = note_pos + 1 where note_pid = ? and note_pos > ?', [parentNoteId, afterNote['note_pos']]); } else { throw new ('Unknown target: ' + note['target']); } await sql.addAudit(audit_category.CREATE_NOTE, req, noteId); const now = utils.nowTimestamp(); await sql.insert("notes", { 'note_id': noteId, 'note_title': note['note_title'], 'note_text': '', 'note_clone_id': '', 'date_created': now, 'date_modified': now, 'icon_info': 'pencil', 'is_finished': 0, 'encryption': note['encryption'] }); await sql.insert("notes_tree", { 'note_id': noteId, 'note_pid': parentNoteId, 'note_pos': newNotePos, 'is_expanded': 0 }); await sql.commit(); res.send({ 'note_id': noteId }); }); router.get('/', async (req, res, next) => { const search = '%' + req.query.search + '%'; const result = await sql.getResults("select note_id from notes where note_title like ? or note_text like ?", [search, search]); const noteIdList = []; for (const res of result) { noteIdList.push(res['note_id']); } res.send(noteIdList); }); module.exports = router;