jrtechs
/
jrtechs-NodeJSBlog
mirror of https://github.com/jrtechs/NodeJSBlog.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
Personal blog written from scratch using Node.js, Bootstrap, and MySQL. https://jrtechs.net
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
182 Commits
6 Branches
639 MiB
Tree: 41b989b0b9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '41b989b0b9'
${ noResults }
jrtechs-NodeJSBlog/utils/sql.js

530 lines
14 KiB
Raw Normal View History

Updated system to read configuration settings from a centralized config file rather than random files or hard coded parameters.
5 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Updated system to read configuration settings from a centralized config file rather than random files or hard coded parameters.
5 years ago
So many Promises were added to deal with sync.
6 years ago
Updated system to read configuration settings from a centralized config file rather than random files or hard coded parameters.
5 years ago
Implemented a login page for the admin
6 years ago
Updated system to read configuration settings from a centralized config file rather than random files or hard coded parameters.
5 years ago
Implemented a login page for the admin
6 years ago
Added Promise implementation on post pages
6 years ago
Updated system to read configuration settings from a centralized config file rather than random files or hard coded parameters.
5 years ago
Moved credentials to external file so "real keys" can be used to test on production.
6 years ago
Updated system to read configuration settings from a centralized config file rather than random files or hard coded parameters.
5 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Updated system to read configuration settings from a centralized config file rather than random files or hard coded parameters.
5 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Created system to preview blog posts your working on.
5 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Added Promise implementation on post pages
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added Promise implementation on post pages
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Minor tweaks to sql and added docs to generate sitemap.js
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Finalized changes for initial test deployment
6 years ago
Added Promise implementation on post pages
6 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Added Promise implementation on post pages
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added Promise implementation on post pages
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Added Promise implementation on post pages
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
So many Promises were added to deal with sync.
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Started working on back end server analytics.
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Implemented image request script and created 404 page
6 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Updated documentation
6 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
So many Promises were added to deal with sync.
6 years ago
Implemented image request script and created 404 page
6 years ago
Added Promise implementation on post pages
6 years ago
Implemented image request script and created 404 page
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Added Promise implementation on post pages
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Added Promise implementation on post pages
6 years ago
Implemented image request script and created 404 page
6 years ago
Added Promise implementation on post pages
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Added Promise implementation on post pages
6 years ago
Started working on the sidebar
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Started working on the sidebar
6 years ago
Added markdown viewer for posts and implemented sql entry for posts
6 years ago
Started working on the sidebar
6 years ago
Got categories page working
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Created recent posts sidebar
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Created recent posts sidebar
6 years ago
Got categories page working
6 years ago
Updated look and feel
6 years ago
Got categories page working
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Got categories page working
6 years ago
Sync fixes with categories page
6 years ago
Got categories page working
6 years ago
Created recent posts sidebar
6 years ago
Generated previews of the blog posts for display on home page and categories page
6 years ago
Updated documentation
6 years ago
Generated previews of the blog posts for display on home page and categories page
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Created recent posts sidebar
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Created recent posts sidebar
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Created recent posts sidebar
6 years ago
Fixed recent posts with async promises
6 years ago
Created recent posts sidebar
6 years ago
Fixed recent posts with async promises
6 years ago
Created recent posts sidebar
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Fixed recent posts with async promises
6 years ago
Created recent posts sidebar
6 years ago
Fixed recent posts with async promises
6 years ago
Generated previews of the blog posts for display on home page and categories page
6 years ago
Updated documentation
6 years ago
Fixed recent posts with async promises
6 years ago
Created recent posts sidebar
6 years ago
Moved server to use express, added stuff to admin page, and updated header
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Implemented a login page for the admin
6 years ago
Moved server to use express, added stuff to admin page, and updated header
6 years ago
Updated server to serve the admin pages using better async methods.
6 years ago
Moved server to use express, added stuff to admin page, and updated header
6 years ago
Implemented a login page for the admin
6 years ago
Added a very basic latex support for blog posts using pandoc.
5 years ago
Moved server to use express, added stuff to admin page, and updated header
6 years ago
Added a very basic latex support for blog posts using pandoc.
5 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Implemented a login page for the admin
6 years ago
Added a very basic latex support for blog posts using pandoc.
5 years ago
Implemented a login page for the admin
6 years ago
Finalized changes for initial test deployment
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Finalized changes for initial test deployment
6 years ago
Updated the way which posts are displayed in the category pages
6 years ago
Started working on a downloads page
6 years ago
Updated documentation
6 years ago
Added downloads widgets to the admin page.
6 years ago
Updated documentation
6 years ago
Started working on a downloads page
6 years ago
Updated downloads to update downloads count in database
6 years ago
Started working on site map generator
6 years ago
Added downloads widgets to the admin page.
6 years ago
Updated downloads to update downloads count in database
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Updated downloads to update downloads count in database
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Updated documentation
6 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Refactored file structure of the website to create more uniformity.
5 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Updated the admin page to be able to delete old downloads.
5 years ago
Updated admin CMS to be able to edit posts after they were entered
6 years ago
Started working on site map generator
6 years ago
Refactored file structure of the website to create more uniformity.
5 years ago
Added a sitemap generator
6 years ago
Started working on site map generator
6 years ago
Started working on back end server analytics.
6 years ago
Refactored file structure of the website to create more uniformity.
5 years ago
Started working on back end server analytics.
6 years ago
Created a sql utility to make it easier for sql operations
6 years ago
 
  1. /**
  2.  * Boated file which handles all the SQL
  3.  * queries ran by the server
  4.  *
  5.  * @author Jeffery Russell
  6.  */
  7. 

  8. const mysql = require('mysql');
  9. 

  10. /** Sanitizer to clean user inputs and prevent SQL injections */
  11. const sanitizer = require('sanitizer');
  12. 

  13. /** Crypto package used for hashing */
  14. const crypto = require('crypto');
  15. 

  16. /** Used to parse post data */
  17. const qs = require('querystring');
  18. 

  19. /** Used to load the config file from the disk */
  20. const config = require('../utils/configLoader').getConfig();
  21. 

  22. /** SQL connection */
  23. const con = mysql.createConnection({
  24.     host: config.SQL_HOST,
  25.     user: config.SQL_USER,
  26.     password: config.SQL_PASSWORD,
  27.     database: config.SQL_DATABASE
  28. });
  29. 

  30. con.connect(function(err) {
  31.     if (err)
  32.         console.log(err);
  33. });
  34. 

  35. 

  36. /**
  37.  * Function used to query the database for records
  38.  *
  39.  * @param sqlStatement
  40.  * @returns {Array}
  41.  */
  42. const fetch = function(sqlStatement)
  43. {
  44.     return new Promise(function(resolve, reject)
  45.     {
  46.         con.query(sanitizer.sanitize(sqlStatement), function (err, result)
  47.         {
  48.             if(err)
  49.             {
  50.                 console.log(err);
  51.                 reject(err);
  52.             }
  53.             resolve(result);
  54.         });
  55.     });
  56. };
  57. 

  58. 

  59. module.exports=
  60. {
  61.     /**
  62.      * Function used to use insert statements into the database
  63.      *
  64.      * Don't worry, the input gets sanitized
  65.      *
  66.      * @param sqlStatement
  67.      * @return the id of the new record - if there is one
  68.      */
  69.     insert : function(sqlStatement)
  70.     {
  71.         return new Promise(function(resolve, reject)
  72.         {
  73.             con.query(sanitizer.sanitize(sqlStatement), function (err, result)
  74.             {
  75.                 if (err)
  76.                 {
  77.                     console.log(err);
  78.                     reject();
  79.                 }
  80.                 resolve(result.insertId);
  81.             });
  82.         })
  83.     },
  84. 

  85.     /**
  86.      * function which fetches the sql info on a post based on it's sql id
  87.      * @param id
  88.      * @returns {Array}
  89.      */
  90.     getPostById: function(id)
  91.     {
  92.         console.log("select * from posts where post_id='" + id + "' limit 1");
  93. 

  94.         return new Promise(function(resolve, reject)
  95.         {
  96.             fetch("select * from posts where post_id='" + id + "' limit 1")
  97.                 .then(function(post)
  98.             {
  99.                 resolve(post[0]);
  100.             }).catch(function(error)
  101.             {
  102.                 reject(error);
  103.             });
  104.         });
  105.     },
  106. 

  107. 

  108.     /**
  109.      * Not to be mistaken for getPostData() in @file utils/utils.js,
  110.      * this function extracts a post entry from the sql server
  111.      *
  112.      * @param requestURL url user used to request blog post
  113.      * @return {*} the entry found in the data base -- if any
  114.      */
  115.     getPost : function(requestURL)
  116.     {
  117.         return new Promise(function(resolve, reject)
  118.         {
  119.             var splitURL = requestURL.split("/")
  120.             var q = "select * from categories where url='" + splitURL[1] + "'";
  121. 

  122.             fetch(q).then(function (result_category)
  123.             {
  124.                 if(result_category.length != 0)
  125.                 {
  126. 

  127.                     var q2 = "select * from posts where category_id='" +
  128.                         result_category[0].category_id +
  129.                         "'  and url='" + splitURL[2] + "'";
  130. 

  131.                     fetch(q2).then(function (result_posts)
  132.                     {
  133.                         if(result_posts != 0)
  134.                         {
  135.                             resolve(result_posts[0]);
  136.                         }
  137.                         else
  138.                         {
  139.                             resolve(0);
  140.                         }
  141.                     });
  142.                 }
  143.                 else
  144.                 {
  145.                     resolve(0);
  146.                 }
  147.             });
  148. 

  149.         });
  150.     },
  151. 

  152. 

  153.     /**
  154.      * Function used to retrieve all categories when making the sidebar
  155.      *
  156.      * @return {Promise<Response> | * | Array}
  157.      */
  158.     getCategories : function()
  159.     {
  160.         var q = "select * from categories";
  161.         return fetch(q);
  162.     },
  163. 

  164. 

  165.     /**
  166.      * Function which currently returns all posts of a particular
  167.      * category from the database
  168.      * @param requestURL
  169.      * @return {*|Promise}
  170.      */
  171.     getPostsFromCategory: function(requestURL)
  172.     {
  173.         return new Promise(function(resolve, reject)
  174.         {
  175.             var q = "select * from categories where url ='" + requestURL + "'";
  176.             fetch(q).then(function(categories)
  177.             {
  178.                 if(categories.length != 0)
  179.                 {
  180.                     var qPosts = "select * from posts where category_id='" +
  181.                         categories[0].category_id + "' order by published desc";
  182.                     resolve(fetch(qPosts));
  183.                 }
  184.                 else
  185.                 {
  186.                     resolve([]);
  187.                 }
  188.             });
  189.         });
  190.     },
  191. 

  192. 

  193.     /**
  194.      * Fetches the recent posts from the database.
  195.      * @returns {Array}
  196.      */
  197.     getRecentPostSQL: function()
  198.     {
  199.         return fetch("select * from posts order by post_id desc limit 10");
  200.     },
  201. 

  202. 

  203.     /**
  204.      * Helper method which returns a list of objects which contains the url
  205.      * and name of thee ten most recent posts
  206.      *
  207.      * {[name: , url: ],[name: , url: ],[name: , url: ],...}
  208.      *
  209.      * @return {*|Promise}
  210.      */
  211.     getRecentPosts: function()
  212.     {
  213.         return new Promise(function(resolve, reject)
  214.         {
  215.             var q = "select name,url, category_id from posts order " +
  216.                 "by post_id desc limit 10";
  217.             fetch(q).then(function(sqlPosts)
  218.             {
  219.                 var promises = [];
  220.                 sqlPosts.forEach(function(post)
  221.                 {
  222.                     promises.push(new Promise(function(res, rej)
  223.                     {
  224.                         var getCategory = "select url from categories where " +
  225.                             "category_id='" + post.category_id + "'";
  226.                         fetch(getCategory).then(function(urls)
  227.                         {
  228.                             var obj = new Object();
  229.                             obj.name = post.name;
  230.                             obj.url = post.url;
  231.                             obj.category = urls[0].url;
  232.                             res(obj);
  233.                         });
  234.                     }));
  235.                 });
  236.                 Promise.all(promises).then(function(goodies)
  237.                 {
  238.                     resolve(goodies);
  239.                 });
  240.             });
  241.         });
  242.     },
  243. 

  244. 

  245.     /**
  246.      * TODO
  247.      * @returns {*|Promise}
  248.      */
  249.     getPopularPosts: function()
  250.     {
  251.         return new Promise(function(resolve, reject)
  252.         {
  253.             var q = "select * from popular_posts";
  254.             fetch(q).then(function(sqlPosts)
  255.             {
  256. 

  257.             });
  258.         });
  259.     },
  260. 

  261. 

  262.     /**
  263.      * Function which checks to see if a user successfully logged in based on
  264.      * the post data which they sent
  265.      *
  266.      * @param postData the post data
  267.      * @return {*|Promise} a json object with {pass: , user: }
  268.      * the pass is whether or not they logged in successfully and the user is
  269.      * the username they successfully logged in with
  270.      */
  271.     checkLogin: function(postData)
  272.     {
  273.         const post = qs.parse(postData);
  274.         return new Promise(function(resolve, reject)
  275.         {
  276.             var result = Object();
  277.             result.pass = false;
  278. 

  279.             if(post.username && post.password)
  280.             {
  281.                 const cleanName = sanitizer.sanitize(post.username);
  282.                 const cleanPassword = sanitizer.sanitize(post.password);
  283. 

  284.                 const getSalt = "select * from users where user_name='" +
  285.                     cleanName + "'";
  286.                 fetch(getSalt).then(function(saltResult)
  287.                 {
  288.                     if(saltResult.length == 1)
  289.                     {
  290.                         const hashedPassword = crypto.createHash('sha256')
  291.                             .update(cleanPassword + saltResult[0].salt)
  292.                             .digest('hex');
  293.                         if(saltResult[0].password === hashedPassword)
  294.                         {
  295.                             result.pass = true;
  296.                             result.user = cleanName;
  297.                             resolve(result);
  298.                         }
  299.                         else
  300.                         {
  301.                             resolve(result)
  302.                         }
  303.                     }
  304.                     else
  305.                     {
  306.                         //incorrect username

  307.                         resolve(result);
  308.                     }
  309.                 })
  310.             }
  311.             else
  312.             {
  313.                 //no login attempts were made

  314.                 resolve(result);
  315.             }
  316.         });
  317.     },
  318. 

  319. 

  320.     /**
  321.      * Fetches a promise containing every post in the database
  322.      * @returns {Array}
  323.      */
  324.     getAllPosts: function()
  325.     {
  326.         return fetch("select * from posts order by published desc");
  327.     },
  328. 

  329. 

  330.     /**
  331.      * Fetches the sql category information based on it's id
  332.      * @param categoryId
  333.      * @returns {Array}
  334.      */
  335.     getCategory: function(categoryId)
  336.     {
  337.         return fetch("select * from categories where category_id='"
  338.             + categoryId + "'");
  339.     },
  340. 

  341. 

  342.     /**Returns download information associated with a download name
  343.      *
  344.      * @param downloadURL
  345.      * @returns {Array}
  346.      */
  347.     getDownload: function(downloadURL)
  348.     {
  349.         var cleanD = sanitizer.sanitize(downloadURL);
  350.         var q = "select * from downloads where name='" + cleanD + "' limit 1";
  351. 

  352.         return new Promise(function(resolve, reject)
  353.         {
  354.            fetch(q).then(function(sqlData)
  355.            {
  356.                return module.exports.incrementDownloadCount(sqlData);
  357.            }).then(function(sqlData)
  358.            {
  359.                resolve(sqlData)
  360.            }).catch(function(error)
  361.            {
  362.                reject(error);
  363.            })
  364.         });
  365.     },
  366. 

  367. 

  368.     /** Increments the download count in the database
  369.      *
  370.      * @param sqlRow
  371.      * @returns {*|Promise}
  372.      */
  373.     incrementDownloadCount: function(sqlRow)
  374.     {
  375.         return new Promise(function(resolve, reject)
  376.         {
  377.             if(sqlRow.length == 1)
  378.             {
  379.                 var q = "update downloads set download_count='" +
  380.                     (sqlRow[0].download_count + 1) + "' where download_id='" +
  381.                     sqlRow[0].download_id + "'";
  382.                 console.log(q);
  383.                 module.exports.insert(q).then(function(r)
  384.                 {
  385.                     resolve(sqlRow);
  386.                 }).catch(function(err)
  387.                 {
  388.                     reject(err);
  389.                 })
  390.             }
  391.             else
  392.             {
  393.                 resolve(sqlRow);
  394.             }
  395.         });
  396.     },
  397. 

  398. 

  399.     /**
  400.      * Fetches all the downloads from the database
  401.      *
  402.      * @returns {Array}
  403.      */
  404.     getAllDownloads: function()
  405.     {
  406.         return fetch("select * from downloads");
  407.     },
  408. 

  409. 

  410.     /**
  411.      * Inserts a download row into the database
  412.      *
  413.      * @param name of the download
  414.      * @param file name of file
  415.      * @returns {*|the}
  416.      */
  417.     addDownload: function(name, file)
  418.     {
  419.         const q = "insert into downloads (name, file, download_count) " +
  420.             "values('" + name + "', '" + file + "', '0')";
  421. 

  422.         return module.exports.insert(q);
  423.     },
  424. 

  425. 

  426.     /**
  427.      *
  428.      * @param id
  429.      */
  430.     removeDownload: function(id)
  431.     {
  432.         const q = "delete from downloads where download_id='" + id + "'";
  433. 

  434.         return module.exports.insert(q);
  435.     },
  436. 

  437. 

  438.     /**
  439.      * Based on the post data submitted by the user this function updates
  440.      * the information on the post in the database
  441.      * @param postData
  442.      * @returns {*|the}
  443.      */
  444.     editPost: function(postData)
  445.     {
  446.         const url = postData.edit_name_new.split(" ").join("-").toLowerCase();
  447. 

  448.         const q = "update posts " +
  449.                     "set category_id='" + postData.edit_cat_num + "' " +
  450.                     ",name='" + postData.edit_name_new + "' " +
  451.                     ",url='" + url + "' " +
  452.                     ",picture_url='" + postData.edit_pic + "' " +
  453.                     ",published='" + postData.edit_date + "' " +
  454.                     " where post_id='" + postData.edit_post_2 + "'";
  455. 

  456.         return module.exports.insert(q);
  457.     },
  458. 

  459. 

  460.     /**
  461.      * Function which returns a promise which contains the string of the
  462.      * entire sitemap for the blog.
  463.      * @returns {Promise|*}
  464.      */
  465.     getSiteMap: function()
  466.     {
  467.         return new Promise(function(resolve, reject)
  468.         {
  469.             const base = "http://jrtechs.net/";
  470. 

  471.             var sm = base + "\n";
  472.             var promises = [];
  473.             module.exports.getCategories().then(function(categories)
  474.             {
  475.                 categories.forEach(function(cat)
  476.                 {
  477.                     promises.push(new Promise(function(res, rej)
  478.                     {
  479.                         sm += base + "category/" + cat.url + "\n";
  480. 

  481.                         module.exports.getPostsFromCategory(cat.url).then(function(posts)
  482.                         {
  483.                             posts.forEach(function(post)
  484.                             {
  485.                                 sm += base + cat.url + "/" + post.url + "\n";
  486.                             });
  487.                             res()
  488.                         })
  489.                     }));
  490.                 });
  491. 

  492.                 Promise.all(promises).then(function()
  493.                 {
  494.                     resolve(sm);
  495.                 }).catch(function(error)
  496.                 {
  497.                     throw error;
  498.                 });
  499. 

  500.             });
  501. 

  502.         });
  503.     },
  504. 

  505. 

  506.     /**
  507.      * Logs visited page for backend server analytics.
  508.      *
  509.      * @param ip
  510.      * @param page
  511.      */
  512.     logTraffic: function(ip, page)
  513.     {
  514.         if(page.length > 40)
  515.         {
  516.             console.log("Error, request too long to log ip:"
  517.                 + ip + " page: " + page);
  518.             return;
  519.         }
  520. 

  521.         if(ip.length > 20)
  522.         {
  523.             ip = "";
  524.         }
  525. 

  526.         const q = "insert into traffic_log (url, ip, date) values " +
  527.             "('" + page + "', '" + ip + "', now())";
  528. 

  529.         module.exports.insert(q);
  530.     }
  531. };