2 $db_password = "user";
\r
5 $unmatch_password = "パスワードが一致しません";
\r
6 $invaild_parameter = "パラメーターが正しくありません";
\r
7 $success_registor = "登録に成功しました";
\r
8 $success_remove = "削除に成功しました";
\r
9 $success_edit = "編集に成功しました";
\r
10 $notfound_name = "該当名が存在しません";
\r
12 var util = require("util");
\r
14 var async = require("async");
\r
16 var security = require("./security.js");
\r
18 var collection = new ProfileCollection();
\r
20 module.exports = function(app){
\r
21 app.get("/profile",list_proc);
\r
22 app.get("/profile/detail",detail_proc);
\r
23 app.post("/profile/detail",detail_postproc);
\r
24 app.post("/profile/edit",edit_postproc);
\r
25 app.get("/profile/registor",registor_proc);
\r
26 app.post("/profile/registor",registor_postproc);
\r
29 function list_proc(req, res)
\r
31 var limit = $db_limit;
\r
34 if(typeof(req.query.start) != "undefined")
\r
35 start = parseInt(req.query.start);
\r
36 if(typeof(req.query.limit) != "undefined")
\r
37 limit = parseInt(req.query.limit);
\r
41 if(typeof(req.query.search) != "undefined")
\r
43 parttern = req.query.search;
\r
44 collection.FindByNameAsync(parttern,start,limit,cb);
\r
46 collection.ToArrayAsync(start,limit,cb);
\r
49 ],function(err,result){
\r
51 res.render("profile\\message",{message:err});
\r
53 var next = start + limit;
\r
54 var prev = start - limit;
\r
57 res.render("profile\\list",{list:result,search:parttern,next:next,prev:prev,limit:limit});
\r
62 function detail_proc(req, res)
\r
64 if(typeof(req.query.name) == "undefined")
\r
66 res.render("profile\\message",{message:$invaild_parameter});
\r
70 var info = new security.SessionInfomation(false);
\r
71 req.session.items = info;
\r
75 collection.GetAsync(req.query.name,cb);
\r
77 ],function(err,result){
\r
79 res.render("profile\\message",{message:err});
\r
80 else if(result.length == 0)
\r
81 res.render("profile\\message",{message:$notfound_name});
\r
83 res.render("profile\\detail",{list:result,token:info.token});
\r
87 function detail_postproc(req, res)
\r
89 if(req.session.items.token != req.body.token){
\r
90 res.render("profile\\message",{message:$invaild_parameter});
\r
93 if(typeof(req.body.remove) != "undefined"){
\r
96 collection.AuthAsync(req.body.name,req.body.password,cb);
\r
98 function(result,cb){
\r
100 collection.RemoveAsync(req.body.name,cb);
\r
104 ],function(err,result){
\r
106 res.render("profile\\message",{message:err});
\r
107 else if(result == null)
\r
108 res.render("profile\\message",{message:$unmatch_password});
\r
110 res.render("profile\\message",{message:$success_remove});
\r
112 }else if(typeof(req.body.edit) != "undefined"){
\r
115 collection.AuthAsync(req.body.name,req.body.password,cb);
\r
117 function(result,cb){
\r
119 collection.GetAsync(req.body.name,cb);
\r
123 ],function(err,result){
\r
125 res.render("profile\\message",{message:err});
\r
126 }else if(result != null){
\r
127 res.render("profile\\edit",{list:result,token:req.body.token});
\r
129 res.render("profile\\message",{message:$unmatch_password});
\r
133 res.render("profile\\message",{message:$invaild_parameter});
\r
137 function edit_postproc(req, res)
\r
139 if(req.session.items.token != req.body.token){
\r
140 res.render("profile\\message",{message:$invaild_parameter});
\r
143 if(typeof(req.body.name) == "undefined")
\r
145 res.render("profile\\message",{message:$invaild_parameter});
\r
147 }else if(typeof(req.body.edit) != "undefined"){
\r
150 collection.UpdatAsync(req.body.name,req.body,cb);
\r
152 ],function(err,result){
\r
154 res.render("profile\\message",{message:err});
\r
156 res.render("profile\\message",{message:$success_edit});
\r
159 res.render("profile\\message",{message:$invaild_parameter});
\r
163 function registor_postproc(req, res)
\r
165 if(req.session.items.token != req.body.token){
\r
166 res.render("profile\\message",{message:$invaild_parameter});
\r
169 if(typeof(req.body.registor) != "undefined"){
\r
172 collection.AddAsync(req.body,cb);
\r
174 ],function(err,result){
\r
176 res.render("profile\\message",{message:err});
\r
178 res.render("profile\\message",{message:$success_registor});
\r
181 res.render("profile\\message",{message:$invaild_parameter});
\r
184 function registor_proc(req, res)
\r
186 var info = new security.SessionInfomation(false);
\r
187 req.session.items = info;
\r
189 res.render("profile\\registor",{token:info.token});
\r
193 // ProfileCollectionクラス
\r
195 function ProfileCollection()
\r
197 var pool = new MySQLPool();
\r
198 this.AuthAsync = function(name,password,cb){
\r
200 function(callback){
\r
201 pool.acquire(callback);
\r
203 function(client,callback){
\r
204 client.query("SELECT * FROM list WHERE name = ?",[name],function(err,result){
\r
205 callback(err,result,client);
\r
208 function(result,client,callback){
\r
209 pool.release(client);
\r
210 if(result[0].password == password)
\r
211 callback(null,true);
\r
213 callback(null,false);
\r
217 this.GetAsync = function(name,cb){
\r
219 function(callback){
\r
220 pool.acquire(callback);
\r
222 function(client,callback){
\r
223 client.query("SELECT * FROM list WHERE name = ?",[name],function(err,result){
\r
224 callback(err,result,client);
\r
227 function(result,client,callback){
\r
228 pool.release(client);
\r
229 callback(null,result);
\r
233 this.AddAsync = function(data,cb){
\r
237 height:data.height,
\r
238 weight:data.weight,
\r
240 password:data.password,
\r
241 lastmodified:new Date(),
\r
245 function(callback){
\r
246 pool.acquire(callback);
\r
248 function(client,callback){
\r
249 client.query("INSERT INTO list SET ?",[item],function(err,result){
\r
250 callback(err,result,client);
\r
253 function(result,client,callback){
\r
254 pool.release(client);
\r
255 callback(null,result);
\r
259 this.UpdatAsync = function(name,data,cb){
\r
263 height:data.height,
\r
264 weight:data.weight,
\r
266 password:data.password,
\r
267 lastmodified:new Date(),
\r
271 function(callback){
\r
272 pool.acquire(callback);
\r
274 function(client,callback){
\r
275 client.query("UPDATE list SET ? WHERE name = ?",[item,name],function(err,result){
\r
276 callback(err,result,client);
\r
279 function(result,client,callback){
\r
280 pool.release(client);
\r
281 callback(null,result);
\r
285 this.RemoveAsync = function(name,cb){
\r
287 function(callback){
\r
288 pool.acquire(callback);
\r
290 function(client,callback){
\r
291 client.query("DELETE FROM list WHERE name = ?",[name],function(err,result){
\r
292 callback(err,result,client);
\r
295 function(result,client,callback){
\r
296 pool.release(client);
\r
297 callback(null,result);
\r
301 this.FindByNameAsync = function(pattern,start,count,cb){
\r
303 function(callback){
\r
304 pool.acquire(callback);
\r
306 function(client,callback){
\r
307 client.query("SELECT * FROM list WHERE name LIKE ? LIMIT ?,?",[pattern+"%",start,count],function(err,result){
\r
308 callback(err,result,client);
\r
311 function(result,client,callback){
\r
312 pool.release(client);
\r
313 callback(null,result);
\r
317 this.ToArrayAsync = function(start,count,cb){
\r
319 function(callback){
\r
320 pool.acquire(callback);
\r
322 function(client,callback){
\r
323 client.query("SELECT * FROM list LIMIT ?,?",[start,count],function(err,result){
\r
324 callback(err,result,client);
\r
327 function(result,client,callback){
\r
328 pool.release(client);
\r
329 callback(null,result);
\r
335 function MySQLPool()
\r
337 var generic_pool = require("generic-pool");
\r
338 var mysql = require("mysql");
\r
339 return generic_pool.Pool({
\r
342 create : function(cb){
\r
343 var connection = mysql.createConnection({
\r
344 host : "localhost",
\r
346 password : $db_password,
\r
347 database : "profile",
\r
349 connection.connect();
\r
350 cb(null,connection);
\r
352 destroy : function(db){
\r