fair-web/modules/user.js

let User = syzoj.model('user');
const RatingCalculation = syzoj.model('rating_calculation');
const RatingHistory = syzoj.model('rating_history');
const Contest = syzoj.model('contest');
const ContestPlayer = syzoj.model('contest_player');

// Ranklist
app.get('/ranklist', async (req, res) => {
  try {
    const sort = req.query.sort || syzoj.config.sorting.ranklist.field;
    const order = req.query.order || syzoj.config.sorting.ranklist.order;
    if (!['ac_num', 'rating', 'id', 'username'].includes(sort) || !['asc', 'desc'].includes(order)) {
      throw new ErrorMessage('错误的排序参数。');
    }
    let paginate = syzoj.utils.paginate(await User.count({ is_show: true }), req.query.page, syzoj.config.page.ranklist);
    let ranklist = await User.queryPage(paginate, { is_show: true }, { [sort]: order.toUpperCase() });
    await ranklist.forEachAsync(async x => x.renderInformation());

    res.render('ranklist', {
      ranklist: ranklist,
      paginate: paginate,
      curSort: sort,
      curOrder: order === 'asc'
    });
  } catch (e) {
    syzoj.log(e);
    res.render('error', {
      err: e
    });
  }
});

app.get('/find_user', async (req, res) => {
  try {
    let user = await User.fromName(req.query.nickname);
    if (!user) throw new ErrorMessage('无此用户。');
    res.redirect(syzoj.utils.makeUrl(['user', user.id]));
  } catch (e) {
    syzoj.log(e);
    res.render('error', {
      err: e
    });
  }
});

// Login
app.get('/login', async (req, res) => {
  if (res.locals.user) {
    res.render('error', {
      err: new ErrorMessage('您已经登录了，请先注销。', { '注销': syzoj.utils.makeUrl(['logout'], { 'url': req.originalUrl }) })
    });
  } else {
    res.render('login');
  }
});

// Sign up
app.get('/sign_up', async (req, res) => {
  if (res.locals.user) {
    res.render('error', {
      err: new ErrorMessage('您已经登录了，请先注销。', { '注销': syzoj.utils.makeUrl(['logout'], { 'url': req.originalUrl }) })
    });
  } else {
    res.render('sign_up');
  }
});

// Logout
app.post('/logout', async (req, res) => {
  req.session.user_id = null;
  res.clearCookie('login');
  res.redirect(req.query.url || '/');
});

// User page
app.get('/user/:id', async (req, res) => {
  try {
    let id = parseInt(req.params.id);
    let user = await User.findById(id);
    if (!user) throw new ErrorMessage('无此用户。');
    user.ac_problems = await user.getACProblems();
    user.articles = await user.getArticles();
    user.allowedEdit = await user.isAllowedEditBy(res.locals.user);

    let statistics = await user.getStatistics();
    await user.renderInformation();
    user.emailVisible = user.public_email || user.allowedEdit;

    const ratingHistoryValues = await RatingHistory.find({
      where: { user_id: user.id },
      order: { rating_calculation_id: 'ASC' }
    });
    const ratingHistories = [{
      contestName: "初始积分",
      value: syzoj.config.default.user.rating,
      delta: null,
      rank: null
    }];

    for (const history of ratingHistoryValues) {
      const contest = await Contest.findById((await RatingCalculation.findById(history.rating_calculation_id)).contest_id);
      ratingHistories.push({
        contestName: contest.title,
        value: history.rating_after,
        delta: history.rating_after - ratingHistories[ratingHistories.length - 1].value,
        rank: history.rank,
        participants: await ContestPlayer.count({ contest_id: contest.id })
      });
    }
    ratingHistories.reverse();

    res.render('user', {
      show_user: user,
      statistics: statistics,
      ratingHistories: ratingHistories
    });
  } catch (e) {
    syzoj.log(e);
    res.render('error', {
      err: e
    });
  }
});

app.get('/user/:id/edit', async (req, res) => {
  try {
    let id = parseInt(req.params.id);
    let user = await User.findById(id);
    if (!user) throw new ErrorMessage('无此用户。');

    let allowedEdit = await user.isAllowedEditBy(res.locals.user);
    if (!allowedEdit) {
      throw new ErrorMessage('您没有权限进行此操作。');
    }

    user.privileges = await user.getPrivileges();

    res.locals.user.allowedManage = await res.locals.user.hasPrivilege('manage_user');

    res.render('user_edit', {
      edited_user: user,
      error_info: null
    });
  } catch (e) {
    syzoj.log(e);
    res.render('error', {
      err: e
    });
  }
});

app.get('/forget', async (req, res) => {
  res.render('forget');
});


app.post('/user/:id/edit', async (req, res) => {
  let user;
  try {
    let id = parseInt(req.params.id);
    user = await User.findById(id);
    if (!user) throw new ErrorMessage('无此用户。');

    let allowedEdit = await user.isAllowedEditBy(res.locals.user);
    if (!allowedEdit) throw new ErrorMessage('您没有权限进行此操作。');

    if (req.body.old_password && req.body.new_password) {
      if (user.password !== req.body.old_password && !await res.locals.user.hasPrivilege('manage_user')) throw new ErrorMessage('旧密码错误。');
      user.password = req.body.new_password;
    }

    if (res.locals.user && await res.locals.user.hasPrivilege('manage_user')) {
      if (!syzoj.utils.isValidUsername(req.body.username)) throw new ErrorMessage('无效的用户名。');
      user.username = req.body.username;
      user.email = req.body.email;
    }

    if (res.locals.user && res.locals.user.is_admin) {
      if (!req.body.privileges) {
        req.body.privileges = [];
      } else if (!Array.isArray(req.body.privileges)) {
        req.body.privileges = [req.body.privileges];
      }

      let privileges = req.body.privileges;
      await user.setPrivileges(privileges);
    }

    user.information = req.body.information;
    user.sex = req.body.sex;
    user.public_email = (req.body.public_email === 'on');
    user.prefer_formatted_code = (req.body.prefer_formatted_code === 'on');

    await user.save();

    if (user.id === res.locals.user.id) res.locals.user = user;

    user.privileges = await user.getPrivileges();
    res.locals.user.allowedManage = await res.locals.user.hasPrivilege('manage_user');

    res.render('user_edit', {
      edited_user: user,
      error_info: ''
    });
  } catch (e) {
    user.privileges = await user.getPrivileges();
    res.locals.user.allowedManage = await res.locals.user.hasPrivilege('manage_user');

    res.render('user_edit', {
      edited_user: user,
      error_info: e.message
    });
  }
});
Initial commit 8 years ago			`let User = syzoj.model('user');`
Add rating history. 7 years ago			`const RatingCalculation = syzoj.model('rating_calculation');`
			`const RatingHistory = syzoj.model('rating_history');`
			`const Contest = syzoj.model('contest');`
			`const ContestPlayer = syzoj.model('contest_player');`
Initial commit 8 years ago
			`// Ranklist`
			`app.get('/ranklist', async (req, res) => {`
			`try {`
Move sorting default values to config file. 7 years ago			`const sort = req.query.sort \|\| syzoj.config.sorting.ranklist.field;`
			`const order = req.query.order \|\| syzoj.config.sorting.ranklist.order;`
Add sorting for ranklist. 7 years ago			`if (!['ac_num', 'rating', 'id', 'username'].includes(sort) \|\| !['asc', 'desc'].includes(order)) {`
			`throw new ErrorMessage('错误的排序参数。');`
			`}`
Add contest 8 years ago			`let paginate = syzoj.utils.paginate(await User.count({ is_show: true }), req.query.page, syzoj.config.page.ranklist);`
Move to TypeORM 6 years ago			`let ranklist = await User.queryPage(paginate, { is_show: true }, { [sort]: order.toUpperCase() });`
New UI and divine 8 years ago			`await ranklist.forEachAsync(async x => x.renderInformation());`
Initial commit 8 years ago
			`res.render('ranklist', {`
			`ranklist: ranklist,`
Add sorting for ranklist. 7 years ago			`paginate: paginate,`
			`curSort: sort,`
			`curOrder: order === 'asc'`
Initial commit 8 years ago			`});`
			`} catch (e) {`
Add problem statistics 8 years ago			`syzoj.log(e);`
Initial commit 8 years ago			`res.render('error', {`
			`err: e`
			`});`
			`}`
			`});`

			`app.get('/find_user', async (req, res) => {`
			`try {`
			`let user = await User.fromName(req.query.nickname);`
Make error message more friendly 8 years ago			`if (!user) throw new ErrorMessage('无此用户。');`
Initial commit 8 years ago			`res.redirect(syzoj.utils.makeUrl(['user', user.id]));`
			`} catch (e) {`
Add problem statistics 8 years ago			`syzoj.log(e);`
Initial commit 8 years ago			`res.render('error', {`
			`err: e`
			`});`
			`}`
			`});`

			`// Login`
			`app.get('/login', async (req, res) => {`
			`if (res.locals.user) {`
			`res.render('error', {`
Make error message more friendly 8 years ago			`err: new ErrorMessage('您已经登录了，请先注销。', { '注销': syzoj.utils.makeUrl(['logout'], { 'url': req.originalUrl }) })`
Initial commit 8 years ago			`});`
			`} else {`
			`res.render('login');`
			`}`
			`});`

			`// Sign up`
			`app.get('/sign_up', async (req, res) => {`
			`if (res.locals.user) {`
			`res.render('error', {`
Make error message more friendly 8 years ago			`err: new ErrorMessage('您已经登录了，请先注销。', { '注销': syzoj.utils.makeUrl(['logout'], { 'url': req.originalUrl }) })`
Initial commit 8 years ago			`});`
			`} else {`
			`res.render('sign_up');`
			`}`
			`});`

			`// Logout`
Change some get to post 7 years ago			`app.post('/logout', async (req, res) => {`
Initial commit 8 years ago			`req.session.user_id = null;`
Fix login will expire 8 years ago			`res.clearCookie('login');`
Redirect to last page after login, logout and sign_up 8 years ago			`res.redirect(req.query.url \|\| '/');`
Initial commit 8 years ago			`});`

			`// User page`
			`app.get('/user/:id', async (req, res) => {`
			`try {`
			`let id = parseInt(req.params.id);`
Move to TypeORM 6 years ago			`let user = await User.findById(id);`
Add error message for nonexistent user page 7 years ago			`if (!user) throw new ErrorMessage('无此用户。');`
Initial commit 8 years ago			`user.ac_problems = await user.getACProblems();`
New UI and divine 8 years ago			`user.articles = await user.getArticles();`
Add contest 8 years ago			`user.allowedEdit = await user.isAllowedEditBy(res.locals.user);`
Initial commit 8 years ago
Add statistics pie chart to user page 8 years ago			`let statistics = await user.getStatistics();`
Fix information markdown not rendered in user page 8 years ago			`await user.renderInformation();`
Add public_email option for user 7 years ago			`user.emailVisible = user.public_email \|\| user.allowedEdit;`
Add statistics pie chart to user page 8 years ago
Move to TypeORM 6 years ago			`const ratingHistoryValues = await RatingHistory.find({`
			`where: { user_id: user.id },`
			`order: { rating_calculation_id: 'ASC' }`
			`});`
Add rating history. 7 years ago			`const ratingHistories = [{`
Fix bugs. 7 years ago			`contestName: "初始积分",`
Add rating history. 7 years ago			`value: syzoj.config.default.user.rating,`
			`delta: null,`
			`rank: null`
			`}];`

			`for (const history of ratingHistoryValues) {`
Move to TypeORM 6 years ago			`const contest = await Contest.findById((await RatingCalculation.findById(history.rating_calculation_id)).contest_id);`
Add rating history. 7 years ago			`ratingHistories.push({`
			`contestName: contest.title,`
			`value: history.rating_after,`
			`delta: history.rating_after - ratingHistories[ratingHistories.length - 1].value,`
			`rank: history.rank,`
			`participants: await ContestPlayer.count({ contest_id: contest.id })`
			`});`
			`}`
Fix bugs. 7 years ago			`ratingHistories.reverse();`
Add rating history. 7 years ago
Initial commit 8 years ago			`res.render('user', {`
Add statistics pie chart to user page 8 years ago			`show_user: user,`
Add rating history. 7 years ago			`statistics: statistics,`
			`ratingHistories: ratingHistories`
Initial commit 8 years ago			`});`
			`} catch (e) {`
Add problem statistics 8 years ago			`syzoj.log(e);`
Initial commit 8 years ago			`res.render('error', {`
			`err: e`
			`});`
			`}`
			`});`

			`app.get('/user/:id/edit', async (req, res) => {`
			`try {`
			`let id = parseInt(req.params.id);`
Move to TypeORM 6 years ago			`let user = await User.findById(id);`
Make error message more friendly 8 years ago			`if (!user) throw new ErrorMessage('无此用户。');`
Initial commit 8 years ago
			`let allowedEdit = await user.isAllowedEditBy(res.locals.user);`
New UI and divine 8 years ago			`if (!allowedEdit) {`
Make error message more friendly 8 years ago			`throw new ErrorMessage('您没有权限进行此操作。');`
Initial commit 8 years ago			`}`

Add user privilege manage 8 years ago			`user.privileges = await user.getPrivileges();`

			`res.locals.user.allowedManage = await res.locals.user.hasPrivilege('manage_user');`

Rename some URLs to follow UOJ 8 years ago			`res.render('user_edit', {`
Initial commit 8 years ago			`edited_user: user,`
			`error_info: null`
			`});`
			`} catch (e) {`
Add problem statistics 8 years ago			`syzoj.log(e);`
Initial commit 8 years ago			`res.render('error', {`
			`err: e`
			`});`
			`}`
			`});`

Implement forget password. 7 years ago			`app.get('/forget', async (req, res) => {`
			`res.render('forget');`
			`});`



Initial commit 8 years ago			`app.post('/user/:id/edit', async (req, res) => {`
			`let user;`
			`try {`
			`let id = parseInt(req.params.id);`
Move to TypeORM 6 years ago			`user = await User.findById(id);`
Add error message for nonexistent user page 7 years ago			`if (!user) throw new ErrorMessage('无此用户。');`
Initial commit 8 years ago
New UI and divine 8 years ago			`let allowedEdit = await user.isAllowedEditBy(res.locals.user);`
Make error message more friendly 8 years ago			`if (!allowedEdit) throw new ErrorMessage('您没有权限进行此操作。');`
Initial commit 8 years ago
			`if (req.body.old_password && req.body.new_password) {`
Add user privilege manage 8 years ago			`if (user.password !== req.body.old_password && !await res.locals.user.hasPrivilege('manage_user')) throw new ErrorMessage('旧密码错误。');`
Initial commit 8 years ago			`user.password = req.body.new_password;`
			`}`

Add user privilege manage 8 years ago			`if (res.locals.user && await res.locals.user.hasPrivilege('manage_user')) {`
Make error message more friendly 8 years ago			`if (!syzoj.utils.isValidUsername(req.body.username)) throw new ErrorMessage('无效的用户名。');`
Allow admin to edit username 8 years ago			`user.username = req.body.username;`
Disallow normal users to change email 7 years ago			`user.email = req.body.email;`
Allow admin to edit username 8 years ago			`}`

Add user privilege manage 8 years ago			`if (res.locals.user && res.locals.user.is_admin) {`
			`if (!req.body.privileges) {`
			`req.body.privileges = [];`
			`} else if (!Array.isArray(req.body.privileges)) {`
			`req.body.privileges = [req.body.privileges];`
			`}`

			`let privileges = req.body.privileges;`
			`await user.setPrivileges(privileges);`
			`}`

Initial commit 8 years ago			`user.information = req.body.information;`
New UI and divine 8 years ago			`user.sex = req.body.sex;`
Add public_email option for user 7 years ago			`user.public_email = (req.body.public_email === 'on');`
Add code format 6 years ago			`user.prefer_formatted_code = (req.body.prefer_formatted_code === 'on');`
Initial commit 8 years ago
			`await user.save();`

Allow admin to edit username 8 years ago			`if (user.id === res.locals.user.id) res.locals.user = user;`

Add user privilege manage 8 years ago			`user.privileges = await user.getPrivileges();`
			`res.locals.user.allowedManage = await res.locals.user.hasPrivilege('manage_user');`

Rename some URLs to follow UOJ 8 years ago			`res.render('user_edit', {`
Initial commit 8 years ago			`edited_user: user,`
Make error message more friendly 8 years ago			`error_info: ''`
Initial commit 8 years ago			`});`
			`} catch (e) {`
Add user privilege manage 8 years ago			`user.privileges = await user.getPrivileges();`
			`res.locals.user.allowedManage = await res.locals.user.hasPrivilege('manage_user');`

Rename some URLs to follow UOJ 8 years ago			`res.render('user_edit', {`
Initial commit 8 years ago			`edited_user: user,`
Make error message more friendly 8 years ago			`error_info: e.message`
Initial commit 8 years ago			`});`
			`}`
			`});`