1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128 | 1x
1x
1x
1x
1x
1x
1x
1x
1x
1x
1x
| ContactGroup = require('../model/contactGroups').ContactGroup
Q = require 'q'
logger = require 'winston'
authorisation = require './authorisation'
Channel = require('../model/channels').Channel
utils = require "../utils"
###############################
# Adds a contactGroup #
###############################
exports.addContactGroup = ->
# Must be admin
if not authorisation.inGroup 'admin', this.authenticated
utils.logAndSetResponse this, 403, "User #{this.authenticated.email} is not an admin, API access to addContactGroup denied.", 'info'
return
contactGroupData = this.request.body
try
contactGroup = new ContactGroup contactGroupData
result = yield Q.ninvoke(contactGroup, 'save')
utils.logAndSetResponse this, 201, "Contact Group successfully created", 'info'
catch err
utils.logAndSetResponse this, 400, "Could not add a contact group via the API: #{err}", 'error'
#############################################################
# Retrieves the details of a specific contact group #
#############################################################
exports.getContactGroup = (contactGroupId) ->
# Must be admin
if not authorisation.inGroup 'admin', this.authenticated
utils.logAndSetResponse this, 403, "User #{this.authenticated.email} is not an admin, API access to getContactGroup denied.", 'info'
return
contactGroupId = unescape contactGroupId
try
result = yield ContactGroup.findById(contactGroupId).exec()
if result == null
this.body = "Contact Group with id '#{contactGroupId}' could not be found."
this.status = 404
else
this.body = result
catch err
utils.logAndSetResponse this, 500, "Could not find Contact Group by id '#{contactGroupId}' via the API: #{err}", 'error'
##################################
# Updates a contactGroup #
##################################
exports.updateContactGroup = (contactGroupId) ->
# Must be admin
if not authorisation.inGroup 'admin', this.authenticated
utils.logAndSetResponse this, 403, "User #{this.authenticated.email} is not an admin, API access to updateContactGroup denied.", 'info'
return
contactGroupId = unescape contactGroupId
contactGroupData = this.request.body
# Ignore _id if it exists, a user shouldnt be able to update the internal id
if contactGroupData._id
delete contactGroupData._id
try
yield ContactGroup.findByIdAndUpdate(contactGroupId, contactGroupData).exec()
this.body = "Successfully updated contact group."
logger.info "User #{this.authenticated.email} updated contact group with id #{contactGroupId}"
catch err
utils.logAndSetResponse this, 500, "Could not update Contact Group by id #{contactGroupId} via the API: #{err}", 'error'
##################################
# Removes a contactGroup #
##################################
exports.removeContactGroup = (contactGroupId) ->
# Must be admin
if not authorisation.inGroup 'admin', this.authenticated
utils.logAndSetResponse this, 403, "User #{this.authenticated.email} is not an admin, API access to removeContactGroup denied.", 'info'
return
contactGroupId = unescape contactGroupId
try
# find out if there are any alerts associated with this group
linkedAlerts = yield Channel.find({
alerts :{
$elemMatch :{
groups: {
$in: [contactGroupId]
}
}
}
}).exec()
if linkedAlerts.length > 0
this.status = 409
this.body = linkedAlerts
else
yield ContactGroup.findByIdAndRemove(contactGroupId).exec()
this.body = "Successfully removed contact group with ID '#{contactGroupId}'"
logger.info "User #{this.authenticated.email} removed contact group with id #{contactGroupId}"
catch err
utils.logAndSetResponse this, 500, "Could not remove Contact Group by id {contactGroupId} via the API: #{err}", 'error'
#######################################
# Retrieves all contactGroups #
#######################################
exports.getContactGroups = ->
# Must be admin
if not authorisation.inGroup 'admin', this.authenticated
utils.logAndSetResponse this, 403, "User #{this.authenticated.email} is not an admin, API access to getContactGroups denied.", 'info'
return
try
this.body = yield ContactGroup.find().exec()
catch err
utils.logAndSetResponse this, 500, "Could not fetch all Contact Group via the API: #{err}", 'error'
|