first commit

Author: HasanGeorge13

README.md

@@ -0,0 +1,3 @@
+"# Songs-Movies-REST-API" 
+
+In this backend API users can register/login and and create their favorite songs and movies list in their profiles. Also with accessing the correct endpoints, they can reach to the other users profiles and like or comment the songs and movies. I tried to write this API according to ES7 standarts and used express framework and node packages for making it more asynchronous and practical.

controllers/admin.js

@@ -0,0 +1,38 @@
+const User = require("../models/User");
+const errorHandler = require("../helpers/error/errorHandler")
+const MyError = require("../helpers/error/Error");
+
+const deleteUser = errorHandler(async function(req,res,next){
+    const {user_id} = req.params;
+    await User.findByIdAndDelete(user_id);
+    res
+    .status(200)
+    .json({
+        success : true,
+        message : "Deleting succesful"
+    })
+
+})
+
+const editUser = errorHandler(async function(req,res,next){
+    const {user_id} = req.params;
+    
+    const infos = req.body;
+    const user = await User.findByIdAndUpdate(user_id,infos,{
+        
+        new : true,
+        runValidators : true
+    });
+    res
+    .status(200)
+    .json({
+        success : true,
+        message : "Editing succesful",
+        data : user
+        
+    })
+
+})
+
+
+module.exports = {deleteUser,editUser}

controllers/auth.js

@@ -0,0 +1,154 @@
+const User = require("../models/User");
+const errorHandler = require("../helpers/error/errorHandler")
+const {sendTokenWithResponse} = require("../helpers/authentication/tokenOperations");
+const MyError = require("../helpers/error/Error");
+const {checkPasswordMatches,checkInputsExist} = require("../helpers/database/databaseHelpers");
+const crypto = require('crypto');
+const nodemailer = require("nodemailer");
+
+
+
+
+const register = errorHandler(async function(req,res,next){
+    const {name,email,password,role,secretKey} = req.body;
+
+    
+    const user = await User.create({
+        name,
+        email,
+        password,
+        role,
+        secretKey
+    })
+    sendTokenWithResponse(user,res);
+    
+})
+
+const login = errorHandler(async function(req,res,next){
+    
+    const {email,password} = req.body;
+    if(!checkInputsExist(email,password)){
+        return next(new MyError("Please fill your inputs",400))
+    }
+    
+    const user = await User.findOne({email}).select("+password")
+
+    if(!user || !checkPasswordMatches(password,user.password)){
+        return next(new MyError("user doesn't match",400))
+    }
+    
+    
+    sendTokenWithResponse(user,res);
+    
+})
+
+const logout = errorHandler(async function(req,res,next){
+    
+    res
+    .status(200)
+    .cookie("token",null,{
+        expires : new Date(Date.now()),
+        httpOnly:true
+    })
+    .json({
+        success : true,
+        message : "Logout Successful"
+    })
+})
+
+const passwordForgot = errorHandler(async function(req,res,next){
+    const {email} = req.body;
+
+    const user = await User.findOne({
+        email : email
+    })
+    
+    const algorithm = 'aes-256-ctr';
+    const secretKey = 'vOVH6sdmpNWjRRIqCc7rdxs01lwHzfr3';
+    const iv = crypto.randomBytes(16);
+
+    const cipher = crypto.createCipheriv(algorithm, secretKey, iv);
+
+    const encrypted = Buffer.concat([cipher.update(user.secretKey), cipher.final()]);
+
+    
+    const vector = iv.toString('hex')
+    const token = encrypted.toString('hex')
+    
+    
+    
+    var transporter = nodemailer.createTransport({
+        service: 'gmail',
+        auth: {
+          user: 'tokulhasan24@gmail.com',
+          pass: 'Doutzen2301'
+        }
+    });
+
+    const resetPasswordUrl = `http://localhost:5000/api/auth/passwordreset?encryptedToken=${token}&vector=${vector}`;
+
+
+
+    const emailTemplate = `
+        
+        <p>In this <a href = '${resetPasswordUrl}' target = '_blank'>link</a> you can access your temporary token</p>
+        
+    `
+
+    var mailOptions = {
+        from: 'tokulhasan24@gmail.com',
+        to: email,
+        subject: 'Reset Password',
+        html: emailTemplate
+      };
+      
+    transporter.sendMail(mailOptions, function(error, info){
+        if (error) {
+            return next(new MyError("Email could not be sent"))
+        } 
+    })
+
+
+    res
+    .status(200)
+    .json({
+        success : true,
+        message : "email is sended check !"
+    })
+})
+
+
+const passwordReset = errorHandler(async function(req,res,next){
+
+    const {encryptedToken,vector} = req.params;
+    const password = req.body;
+    console.log(encryptedToken)
+    
+    const algorithm = 'aes-256-ctr';
+    const secretKey = 'vOVH6sdmpNWjRRIqCc7rdxs01lwHzfr3';
+    
+    const decipher = crypto.createDecipheriv(algorithm, secretKey, Buffer.from(vector, 'hex'));
+
+    const decrpyted = Buffer.concat([decipher.update(Buffer.from(encryptedToken, 'hex')), decipher.final()]);
+
+    decryptedKey = decrpyted.toString();
+
+    const user = await User.findOne({
+        secretKey : decryptedKey
+    })
+    console.log(user)
+    user.password = password;
+    await user.save()
+    res
+    .status(200)
+    .json({
+        success : true,
+        message : "The password has been changed"
+    })
+    
+})
+
+
+
+module.exports = {register,login,logout,passwordForgot,passwordReset}
+

controllers/movie.js

@@ -0,0 +1,73 @@
+const errorHandler = require("../helpers/error/errorHandler");
+const MyError = require("../helpers/error/Error");
+const Movie = require("../models/Movie");
+const User = require("../models/User");
+const Comment = require("../models/Comment")
+
+const listAllMovies = errorHandler(async function(req,res,next){
+    const movies = await Movie.find().populate({path: "user",select: "name"})
+
+    res
+    .status(200)
+    .json({
+        success : true,
+        movies : movies
+    })
+})
+
+const likeMovie = errorHandler(async function(req,res,next){
+    const {movie_id} = req.params;
+    const id = req.user.id;
+    const movie = await Movie.findById(movie_id);
+    if(movie.likes.includes(id)){
+        return next(new MyError("You have already liked this movie",400))
+    }
+    movie.likes.push(id);
+
+    await movie.save()
+    res
+    .status(200)
+    .json({
+        success : true,
+        data : movie
+    })
+})
+
+const commentMovie = errorHandler(async function(req,res,next){
+    const {movie_id} = req.params;
+    const content = req.body;
+    const comment = await Comment.create({
+        ...content,
+        user : req.user.id,
+        movie: movie_id
+    })
+    const movie = await Movie.findById(movie_id).populate({path: "comments",select: "content user"})
+    movie.comments.push(comment)
+
+    await movie.save();
+
+    res
+    .status(200)
+    .json({
+        success : true,
+        movie : movie
+    })
+})
+
+const getMovieWithDetails = errorHandler(async function(req,res,next){
+    const {movie_id} = req.params;
+    const movie = await Movie.findById(movie_id).populate([
+        {path: "comments",select: "content" ,populate:{path: "user",select: "name"}},
+        {path: "likes",select: "name"},
+        {path: "user",select: "name"}
+    ])
+    res
+    .status(200)
+    .json({
+        success: true,
+        movie : movie
+    })
+})
+
+
+module.exports = {listAllMovies,likeMovie,getMovieWithDetails,commentMovie};