jrtechs
/
jrtechs-NodeJSBlog
mirror of https://github.com/jrtechs/NodeJSBlog.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
Personal blog written from scratch using Node.js, Bootstrap, and MySQL. https://jrtechs.net
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
171 Commits
6 Branches
639 MiB
Tree: 2e9a8db2fe
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2e9a8db2fe'
${ noResults }
jrtechs-NodeJSBlog/utils/sql.js

521 lines
14 KiB
Raw Normal View History

Created a sql utility to make it easier for sql operations
6 years ago
So many Promises were added to deal with sync.
6 years ago
Implemented a login page for the admin
6 years ago
Added Promise implementation on post pages
6 years ago
Moved credentials to external file so "real keys" can be used to test on production.
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Implemented image request script and created 404 page
6 years ago
Fixed last minute bugs
6 years ago
Fixed image scaling
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Fixed last minute bugs
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Created system to preview blog posts your working on.
5 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Added Promise implementation on post pages
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added Promise implementation on post pages
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Minor tweaks to sql and added docs to generate sitemap.js
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Finalized changes for initial test deployment
6 years ago
Added Promise implementation on post pages
6 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Added Promise implementation on post pages
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added Promise implementation on post pages
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Added Promise implementation on post pages
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
So many Promises were added to deal with sync.
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Started working on back end server analytics.
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Implemented image request script and created 404 page
6 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Updated documentation
6 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
So many Promises were added to deal with sync.
6 years ago
Implemented image request script and created 404 page
6 years ago
Added Promise implementation on post pages
6 years ago
Implemented image request script and created 404 page
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Added Promise implementation on post pages
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Added Promise implementation on post pages
6 years ago
Implemented image request script and created 404 page
6 years ago
Added Promise implementation on post pages
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Added Promise implementation on post pages
6 years ago
Started working on the sidebar
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Started working on the sidebar
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Started working on the sidebar
6 years ago
Got categories page working
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Created recent posts sidebar
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Created recent posts sidebar
6 years ago
Got categories page working
6 years ago
Updated look and feel
6 years ago
Got categories page working
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Got categories page working
6 years ago
Sync fixes with categories page
6 years ago
Got categories page working
6 years ago
Created recent posts sidebar
6 years ago
Generated previews of the blog posts for display on home page and categories page
6 years ago
Updated documentation
6 years ago
Generated previews of the blog posts for display on home page and categories page
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Created recent posts sidebar
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Created recent posts sidebar
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Created recent posts sidebar
6 years ago
Fixed recent posts with async promises
6 years ago
Created recent posts sidebar
6 years ago
Fixed recent posts with async promises
6 years ago
Created recent posts sidebar
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Fixed recent posts with async promises
6 years ago
Created recent posts sidebar
6 years ago
Fixed recent posts with async promises
6 years ago
Generated previews of the blog posts for display on home page and categories page
6 years ago
Updated documentation
6 years ago
Fixed recent posts with async promises
6 years ago
Created recent posts sidebar
6 years ago
Moved server to use express, added stuff to admin page, and updated header
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Implemented a login page for the admin
6 years ago
Moved server to use express, added stuff to admin page, and updated header
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Moved server to use express, added stuff to admin page, and updated header
6 years ago
Implemented a login page for the admin
6 years ago
Added a very basic latex support for blog posts using pandoc.
5 years ago
Moved server to use express, added stuff to admin page, and updated header
6 years ago
Added a very basic latex support for blog posts using pandoc.
5 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Implemented a login page for the admin
6 years ago
Added a very basic latex support for blog posts using pandoc.
5 years ago
Implemented a login page for the admin
6 years ago
Finalized changes for initial test deployment
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Finalized changes for initial test deployment
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Started working on a downloads page
6 years ago
Updated documentation
6 years ago
Added downloads widgets to the admin page.
6 years ago
Updated documentation
6 years ago
Started working on a downloads page
6 years ago
Updated downloads to update downloads count in database
6 years ago
Started working on site map generator
6 years ago
Added downloads widgets to the admin page.
6 years ago
Updated downloads to update downloads count in database
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Updated downloads to update downloads count in database
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Updated documentation
6 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Refactored file structure of the website to create more uniformity.
5 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Started working on site map generator
6 years ago
Refactored file structure of the website to create more uniformity.
5 years ago
Added a sitemap generator
6 years ago
Started working on site map generator
6 years ago
Started working on back end server analytics.
6 years ago
Refactored file structure of the website to create more uniformity.
5 years ago
Started working on back end server analytics.
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
 
  1. const mysql = require('mysql');
  2. 

  3. const sanitizer = require('sanitizer');
  4. 

  5. const Promise = require('promise');
  6. 

  7. const crypto = require('crypto');
  8. 

  9. const qs = require('querystring');
  10. 

  11. const utils = require('../utils/utils.js');
  12. 

  13. const con = mysql.createConnection({
  14.     host: "localhost",
  15.     user: "blog_user",
  16.     password: utils.getFileLine('../sql_secret'),
  17.     database: "jrtechs_blog"
  18. });
  19. 

  20. 

  21. con.connect(function(err) {
  22.     if (err)
  23.         console.log(err);
  24. });
  25. 

  26. 

  27. /**
  28.  * Function used to query the database for records
  29.  *
  30.  * @param sqlStatement
  31.  * @returns {Array}
  32.  */
  33. const fetch = function(sqlStatement)
  34. {
  35.     return new Promise(function(resolve, reject)
  36.     {
  37.         con.query(sanitizer.sanitize(sqlStatement), function (err, result)
  38.         {
  39.             if(err)
  40.             {
  41.                 console.log(err);
  42.                 reject(err);
  43.             }
  44.             resolve(result);
  45.         });
  46.     });
  47. };
  48. 

  49. 

  50. module.exports=
  51. {
  52.     /**
  53.      * Function used to use insert statements into the database
  54.      *
  55.      * Don't worry, the input gets sanitized
  56.      *
  57.      * @param sqlStatement
  58.      * @return the id of the new record - if there is one
  59.      */
  60.     insert : function(sqlStatement)
  61.     {
  62.         return new Promise(function(resolve, reject)
  63.         {
  64.             con.query(sanitizer.sanitize(sqlStatement), function (err, result)
  65.             {
  66.                 if (err)
  67.                 {
  68.                     console.log(err);
  69.                     reject();
  70.                 }
  71.                 resolve(result.insertId);
  72.             });
  73.         })
  74.     },
  75. 

  76.     /**
  77.      * function which fetches the sql info on a post based on it's sql id
  78.      * @param id
  79.      * @returns {Array}
  80.      */
  81.     getPostById: function(id)
  82.     {
  83.         console.log("select * from posts where post_id='" + id + "' limit 1");
  84. 

  85.         return new Promise(function(resolve, reject)
  86.         {
  87.             fetch("select * from posts where post_id='" + id + "' limit 1")
  88.                 .then(function(post)
  89.             {
  90.                 resolve(post[0]);
  91.             }).catch(function(error)
  92.             {
  93.                 reject(error);
  94.             });
  95.         });
  96.     },
  97. 

  98. 

  99.     /**
  100.      * Not to be mistaken for getPostData() in @file utils/utils.js,
  101.      * this function extracts a post entry from the sql server
  102.      *
  103.      * @param requestURL url user used to request blog post
  104.      * @return {*} the entry found in the data base -- if any
  105.      */
  106.     getPost : function(requestURL)
  107.     {
  108.         return new Promise(function(resolve, reject)
  109.         {
  110.             var splitURL = requestURL.split("/")
  111.             var q = "select * from categories where url='" + splitURL[1] + "'";
  112. 

  113.             fetch(q).then(function (result_category)
  114.             {
  115.                 if(result_category.length != 0)
  116.                 {
  117. 

  118.                     var q2 = "select * from posts where category_id='" +
  119.                         result_category[0].category_id +
  120.                         "'  and url='" + splitURL[2] + "'";
  121. 

  122.                     fetch(q2).then(function (result_posts)
  123.                     {
  124.                         if(result_posts != 0)
  125.                         {
  126.                             resolve(result_posts[0]);
  127.                         }
  128.                         else
  129.                         {
  130.                             resolve(0);
  131.                         }
  132.                     });
  133.                 }
  134.                 else
  135.                 {
  136.                     resolve(0);
  137.                 }
  138.             });
  139. 

  140.         });
  141.     },
  142. 

  143. 

  144.     /**
  145.      * Function used to retrieve all categories when making the sidebar
  146.      *
  147.      * @return {Promise<Response> | * | Array}
  148.      */
  149.     getCategories : function()
  150.     {
  151.         var q = "select * from categories";
  152.         return fetch(q);
  153.     },
  154. 

  155. 

  156.     /**
  157.      * Function which currently returns all posts of a particular
  158.      * category from the database
  159.      * @param requestURL
  160.      * @return {*|Promise}
  161.      */
  162.     getPostsFromCategory: function(requestURL)
  163.     {
  164.         return new Promise(function(resolve, reject)
  165.         {
  166.             var q = "select * from categories where url ='" + requestURL + "'";
  167.             fetch(q).then(function(categories)
  168.             {
  169.                 if(categories.length != 0)
  170.                 {
  171.                     var qPosts = "select * from posts where category_id='" +
  172.                         categories[0].category_id + "' order by published desc";
  173.                     resolve(fetch(qPosts));
  174.                 }
  175.                 else
  176.                 {
  177.                     resolve([]);
  178.                 }
  179.             });
  180.         });
  181.     },
  182. 

  183. 

  184.     /**
  185.      * Fetches the recent posts from the database.
  186.      * @returns {Array}
  187.      */
  188.     getRecentPostSQL: function()
  189.     {
  190.         return fetch("select * from posts order by post_id desc limit 10");
  191.     },
  192. 

  193. 

  194.     /**
  195.      * Helper method which returns a list of objects which contains the url
  196.      * and name of thee ten most recent posts
  197.      *
  198.      * {[name: , url: ],[name: , url: ],[name: , url: ],...}
  199.      *
  200.      * @return {*|Promise}
  201.      */
  202.     getRecentPosts: function()
  203.     {
  204.         return new Promise(function(resolve, reject)
  205.         {
  206.             var q = "select name,url, category_id from posts order " +
  207.                 "by post_id desc limit 10";
  208.             fetch(q).then(function(sqlPosts)
  209.             {
  210.                 var promises = [];
  211.                 sqlPosts.forEach(function(post)
  212.                 {
  213.                     promises.push(new Promise(function(res, rej)
  214.                     {
  215.                         var getCategory = "select url from categories where " +
  216.                             "category_id='" + post.category_id + "'";
  217.                         fetch(getCategory).then(function(urls)
  218.                         {
  219.                             var obj = new Object();
  220.                             obj.name = post.name;
  221.                             obj.url = post.url;
  222.                             obj.category = urls[0].url;
  223.                             res(obj);
  224.                         });
  225.                     }));
  226.                 });
  227.                 Promise.all(promises).then(function(goodies)
  228.                 {
  229.                     resolve(goodies);
  230.                 });
  231.             });
  232.         });
  233.     },
  234. 

  235. 

  236.     /**
  237.      * TODO
  238.      * @returns {*|Promise}
  239.      */
  240.     getPopularPosts: function()
  241.     {
  242.         return new Promise(function(resolve, reject)
  243.         {
  244.             var q = "select * from popular_posts";
  245.             fetch(q).then(function(sqlPosts)
  246.             {
  247. 

  248.             });
  249.         });
  250.     },
  251. 

  252. 

  253.     /**
  254.      * Function which checks to see if a user successfully logged in based on
  255.      * the post data which they sent
  256.      *
  257.      * @param postData the post data
  258.      * @return {*|Promise} a json object with {pass: , user: }
  259.      * the pass is whether or not they logged in successfully and the user is
  260.      * the username they successfully logged in with
  261.      */
  262.     checkLogin: function(postData)
  263.     {
  264.         const post = qs.parse(postData);
  265.         return new Promise(function(resolve, reject)
  266.         {
  267.             var result = Object();
  268.             result.pass = false;
  269. 

  270.             if(post.username && post.password)
  271.             {
  272.                 const cleanName = sanitizer.sanitize(post.username);
  273.                 const cleanPassword = sanitizer.sanitize(post.password);
  274. 

  275.                 const getSalt = "select * from users where user_name='" +
  276.                     cleanName + "'";
  277.                 fetch(getSalt).then(function(saltResult)
  278.                 {
  279.                     if(saltResult.length == 1)
  280.                     {
  281.                         const hashedPassword = crypto.createHash('sha256')
  282.                             .update(cleanPassword + saltResult[0].salt)
  283.                             .digest('hex');
  284.                         if(saltResult[0].password === hashedPassword)
  285.                         {
  286.                             result.pass = true;
  287.                             result.user = cleanName;
  288.                             resolve(result);
  289.                         }
  290.                         else
  291.                         {
  292.                             resolve(result)
  293.                         }
  294.                     }
  295.                     else
  296.                     {
  297.                         //incorrect username

  298.                         resolve(result);
  299.                     }
  300.                 })
  301.             }
  302.             else
  303.             {
  304.                 //no login attempts were made

  305.                 resolve(result);
  306.             }
  307.         });
  308.     },
  309. 

  310. 

  311.     /**
  312.      * Fetches a promise containing every post in the database
  313.      * @returns {Array}
  314.      */
  315.     getAllPosts: function()
  316.     {
  317.         return fetch("select * from posts order by published desc");
  318.     },
  319. 

  320. 

  321.     /**
  322.      * Fetches the sql category information based on it's id
  323.      * @param categoryId
  324.      * @returns {Array}
  325.      */
  326.     getCategory: function(categoryId)
  327.     {
  328.         return fetch("select * from categories where category_id='"
  329.             + categoryId + "'");
  330.     },
  331. 

  332. 

  333.     /**Returns download information associated with a download name
  334.      *
  335.      * @param downloadURL
  336.      * @returns {Array}
  337.      */
  338.     getDownload: function(downloadURL)
  339.     {
  340.         var cleanD = sanitizer.sanitize(downloadURL);
  341.         var q = "select * from downloads where name='" + cleanD + "' limit 1";
  342. 

  343.         return new Promise(function(resolve, reject)
  344.         {
  345.            fetch(q).then(function(sqlData)
  346.            {
  347.                return module.exports.incrementDownloadCount(sqlData);
  348.            }).then(function(sqlData)
  349.            {
  350.                resolve(sqlData)
  351.            }).catch(function(error)
  352.            {
  353.                reject(error);
  354.            })
  355.         });
  356.     },
  357. 

  358. 

  359.     /** Increments the download count in the database
  360.      *
  361.      * @param sqlRow
  362.      * @returns {*|Promise}
  363.      */
  364.     incrementDownloadCount: function(sqlRow)
  365.     {
  366.         return new Promise(function(resolve, reject)
  367.         {
  368.             if(sqlRow.length == 1)
  369.             {
  370.                 var q = "update downloads set download_count='" +
  371.                     (sqlRow[0].download_count + 1) + "' where download_id='" +
  372.                     sqlRow[0].download_id + "'";
  373.                 console.log(q);
  374.                 module.exports.insert(q).then(function(r)
  375.                 {
  376.                     resolve(sqlRow);
  377.                 }).catch(function(err)
  378.                 {
  379.                     reject(err);
  380.                 })
  381.             }
  382.             else
  383.             {
  384.                 resolve(sqlRow);
  385.             }
  386.         });
  387.     },
  388. 

  389. 

  390.     /**
  391.      * Fetches all the downloads from the database
  392.      *
  393.      * @returns {Array}
  394.      */
  395.     getAllDownloads: function()
  396.     {
  397.         return fetch("select * from downloads");
  398.     },
  399. 

  400. 

  401.     /**
  402.      * Inserts a download row into the database
  403.      *
  404.      * @param name of the download
  405.      * @param file name of file
  406.      * @returns {*|the}
  407.      */
  408.     addDownload: function(name, file)
  409.     {
  410.         const q = "insert into downloads (name, file, download_count) " +
  411.             "values('" + name + "', '" + file + "', '0')";
  412. 

  413.         return module.exports.insert(q);
  414.     },
  415. 

  416. 

  417.     /**
  418.      *
  419.      * @param id
  420.      */
  421.     removeDownload: function(id)
  422.     {
  423.         const q = "delete from downloads where download_id='" + id + "'";
  424. 

  425.         return module.exports.insert(q);
  426.     },
  427. 

  428. 

  429.     /**
  430.      * Based on the post data submitted by the user this function updates
  431.      * the information on the post in the database
  432.      * @param postData
  433.      * @returns {*|the}
  434.      */
  435.     editPost: function(postData)
  436.     {
  437.         const url = postData.edit_name_new.split(" ").join("-").toLowerCase();
  438. 

  439.         const q = "update posts " +
  440.                     "set category_id='" + postData.edit_cat_num + "' " +
  441.                     ",name='" + postData.edit_name_new + "' " +
  442.                     ",url='" + url + "' " +
  443.                     ",picture_url='" + postData.edit_pic + "' " +
  444.                     ",published='" + postData.edit_date + "' " +
  445.                     " where post_id='" + postData.edit_post_2 + "'";
  446. 

  447.         return module.exports.insert(q);
  448.     },
  449. 

  450. 

  451.     /**
  452.      * Function which returns a promise which contains the string of the
  453.      * entire sitemap for the blog.
  454.      * @returns {Promise|*}
  455.      */
  456.     getSiteMap: function()
  457.     {
  458.         return new Promise(function(resolve, reject)
  459.         {
  460.             const base = "http://jrtechs.net/";
  461. 

  462.             var sm = base + "\n";
  463.             var promises = [];
  464.             module.exports.getCategories().then(function(categories)
  465.             {
  466.                 categories.forEach(function(cat)
  467.                 {
  468.                     promises.push(new Promise(function(res, rej)
  469.                     {
  470.                         sm += base + "category/" + cat.url + "\n";
  471. 

  472.                         module.exports.getPostsFromCategory(cat.url).then(function(posts)
  473.                         {
  474.                             posts.forEach(function(post)
  475.                             {
  476.                                 sm += base + cat.url + "/" + post.url + "\n";
  477.                             });
  478.                             res()
  479.                         })
  480.                     }));
  481.                 });
  482. 

  483.                 Promise.all(promises).then(function()
  484.                 {
  485.                     resolve(sm);
  486.                 }).catch(function(error)
  487.                 {
  488.                     throw error;
  489.                 });
  490. 

  491.             });
  492. 

  493.         });
  494.     },
  495. 

  496. 

  497.     /**
  498.      * Logs visited page for backend server analytics.
  499.      *
  500.      * @param ip
  501.      * @param page
  502.      */
  503.     logTraffic: function(ip, page)
  504.     {
  505.         if(page.length > 40)
  506.         {
  507.             console.log("Error, request too long to log ip:"
  508.                 + ip + " page: " + page);
  509.             return;
  510.         }
  511. 

  512.         if(ip.length > 20)
  513.         {
  514.             ip = "";
  515.         }
  516. 

  517.         const q = "insert into traffic_log (url, ip, date) values " +
  518.             "('" + page + "', '" + ip + "', now())";
  519. 

  520.         module.exports.insert(q);
  521.     }
  522. };