const express = require('express') const app = express() const port = 3001 const bodyParser = require('body-parser') const { json } = require('body-parser') app.listen(port, () => console.log(`Example app listening at http://localhost:${port}`)) app.use(bodyParser.json()) app.use( bodyParser.urlencoded({ extended: true, }) ) let allowCrossDomain = function(req, res, next) { res.header('Access-Control-Allow-Origin', "*"); res.header('Access-Control-Allow-Headers', "*"); res.header('Access-Control-Allow-Methods', "*"); next(); } app.use(allowCrossDomain); const Pool = require('pg').Pool const pool = new Pool({ user: 'admin', password: 'admin', host: 'localhost', database: 'ecommerce_db', }) const getUsers = (request, response) => { pool.query('SELECT * FROM users ORDER BY id ASC', (error, results) => { if (error) { throw error } response.status(200).json(results.rows) }) } app.get('/', getUsers) const getUserByName = (request, response) => { pool.query('SELECT * FROM users WHERE firstname = $1 or lastname = $1', [request.params.name], (error, results) => { if (error) { throw error } response.status(200).json(results.rows) }) } app.get('/users/:name', getUserByName) const addUser = (request, response) => { pool.query('INSERT INTO users (firstname, lastname, email) VALUES ($1, $2, $3) RETURNING *', [request.body.firstname, request.body.lastname, request.body.email], (error, results) => { if (error) { throw error } response.status(200).json(results.rows) }) } app.post('/users/adduser', addUser) const updateUser = (request, response) => { const id = parseInt(request.params.id) const { firstname, lastname, email } = request.body pool.query( 'UPDATE users SET firstName = $1, lastName = $2, email = $3 WHERE id = $4 RETURNING *', [firstname, lastname, email, id], (error, results) => { if (results.rowCount === 0) { response.send("Hey that user id doesn't exist") } else { response.status(200).send(`Updated user ${id}`) } } ) } app.put('/users/update/:id', updateUser) const deleteUser = (request, response) => { const id = parseInt(request.params.id) pool.query( 'DELETE FROM users WHERE id = $1', [id], (error, results) => { if (results.rowCount === 0) { response.send("Hey that user id doesn't exist") } else { response.status(200).send(`Deleted user ${id}`) } } ) } app.delete('/users/delete/:id', deleteUser) const table_data = [{ name:"manufacturer", required_fields:["companyname","contactname","contactemail","contactphonenumber"], all_fields:["companyname","contactname","contactemail","contactphonenumber"] },{ name:"customer", required_fields:["companyname","customername","customeremail","customerphonenumber"], all_fields:["companyname","customername","customeremail","customerphonenumber"] },{ name:"item", required_fields:["name","description"], all_fields:["name","description"] },{ name:"purchaseorder", required_fields:["manufacturerid","itemid","userid","quantity","dateordered"], all_fields:["manufacturerid","itemid","userid","quantity","dateordered","datereceived"] },{ name:"salesorder", required_fields:["customerid","itemid","userid","quantity","dateordered"], all_fields:["customerid","itemid","userid","quantity","dateordered","datereceived"] },{ name:"logininfo", required_fields:["username","password","role","uniqueid"], all_fields:["username","password","role","uniqueid"] } ]; var RequiredFieldsExist = (body,fields) => { for (var keys of fields) { if (!(keys in body)) { return false; } } return true; } var OutputRequiredFieldNames = (required_fields) => required_fields.reduce((result,field)=>(result==="")?result+=field:result+=","+field,""); var OutputSqlArgumentNumbers = (required_fields) => required_fields.reduce((result,field,count)=>(result==="")?result+="$"+(count+1):result+=","+"$"+(count+1),""); var OutputBodyData = (body,required_fields) => required_fields.filter((field)=>body[field]!==undefined).map((field)=>body[field]); var CountFieldNames = (body,all_fields) => { var counter = 0; for (var i=0;i { var finalStr = ""; var count = 0; for (var i=0;i{ app.get("/"+table.name+"/view",(req,res)=>{ pool.query('SELECT * FROM '+table.name+' ORDER BY id ASC', (error, results) => { if (error) { throw error } res.status(200).json(results.rows) }) }); app.get("/"+table.name+"/view/:id",(req,res)=>{ pool.query('SELECT * FROM '+table.name+' where id=$1 ORDER BY id ASC', [req.params.id] , (error, results) => { if (error) { throw error } res.status(200).json(results.rows) }) }); app.post("/"+table.name+"/add", (req,res)=>{ if (req.body) { if (RequiredFieldsExist(req.body,table.required_fields)) { pool.query('insert into '+table.name+'('+OutputRequiredFieldNames(table.required_fields)+') values('+OutputSqlArgumentNumbers(table.required_fields)+') returning *', OutputBodyData(req.body,table.required_fields) , (error, results) => { if (error) { throw error } res.status(200).json(results.rows) }) } else { res.status(400).json("Missing a field! Required Fields: "+OutputRequiredFieldNames(table.required_fields)); } }}); app.put("/"+table.name+"/update/:id", (req,res)=>{ if (req.body && req.params.id && CountFieldNames(req.body,table.all_fields)>0) { //console.log([...OutputBodyData(req.body,table.all_fields),Number(req.params.id)]) //console.log("update "+table.name+" set "+OutputSqlArgumentsAndFieldNames(req.body,table.all_fields)+" where id=$"+(Object.keys(req.body).length+1)+" returning *") pool.query("update "+table.name+" set "+OutputSqlArgumentsAndFieldNames(req.body,table.all_fields)+" where id=$"+(CountFieldNames(req.body,table.all_fields)+1)+" returning *", [...OutputBodyData(req.body,table.all_fields),req.params.id] , (error, results) => { if (error) { throw error } res.status(200).json(results.rows) }) } else { res.status(400).json("Missing id or invalid fields! Valid fields are: "+OutputRequiredFieldNames(table.all_fields)); }}); app.delete("/"+table.name+"/delete/:id", (req,res)=>{ if (req.params.id) { pool.query("delete from "+table.name+" where id=$1 returning *", [req.params.id] , (error, results) => { if (error) { throw error } res.status(200).json(results.rows) }) } else { res.status(400).json("Missing id!") }}); }) const login = (request, response) => { pool.query('SELECT uniqueid,role FROM logininfo WHERE username = $1 and password = $2', [request.params.username, request.params.password], (error, results) => { if (results.rowCount === 0) { response.send("Invalid Username or Password") } else { response.status(200).json(results.rows) } }) } const usernameExists = (request, response) => { pool.query('SELECT uniqueid FROM logininfo WHERE username = $1', [request.params.username], (error, results) => { if (results.rowCount === 0) { response.send([]) } else { response.status(200).json(results.rows) } }) } const getSalesOrderByCustomerId = (request,response) => { pool.query('SELECT * FROM salesorder WHERE customerid = $1 order by id desc', [request.params.customerid], (error, results) => { if (results.rowCount === 0) { response.send([]) } else { response.status(200).json(results.rows) } }) } const getSalesOrderByUserId = (request,response) => { pool.query('SELECT * FROM salesorder WHERE userid = $1 order by id desc', [request.params.userid], (error, results) => { if (results.rowCount === 0) { response.send([]) } else { response.status(200).json(results.rows) } }) } const getPurchaseOrderByUserId = (request,response) => { pool.query('SELECT * FROM purchaseorder WHERE userid = $1 order by id desc', [request.params.userid], (error, results) => { if (results.rowCount === 0) { response.send([]) } else { response.status(200).json(results.rows) } }) } const getPurchaseOrderByManufacturerId = (request,response) => { pool.query('SELECT * FROM purchaseorder WHERE manufacturerid = $1 order by id desc', [request.params.manufacturerid], (error, results) => { if (results.rowCount === 0) { response.send([]) } else { response.status(200).json(results.rows) } }) } const setSalesOrderReceived = (request,response) => { if (request.body && request.body.datereceived) { pool.query('update salesorder set datereceived=$2 where id=$1 returning *', [request.params.id,request.body.datereceived], (error, results) => { if (results.rowCount === 0) { response.send([]) } else { response.status(200).json(results.rows) } }) }else { response.status(400).json("Missing datereceived!"); } } const setPurchaseOrderReceived = (request,response) => { if (request.body && request.body.datereceived) { pool.query('update purchaseorder set datereceived=$2 where id=$1 returning *', [request.params.id,request.body.datereceived], (error, results) => { if (results.rowCount === 0) { response.send([]) } else { response.status(200).json(results.rows) } }) }else { response.status(400).json("Missing datereceived!"); } } app.get('/login/:username/:password', login) app.get('/login/:username', usernameExists) app.get('/salesorder/bycustomerid/:customerid', getSalesOrderByCustomerId) app.get('/salesorder/byuserid/:userid', getSalesOrderByUserId) app.get('/purchaseorder/byuserid/:userid', getPurchaseOrderByUserId) app.get('/purchaseorder/bymanufacturerid/:manufacturerid', getPurchaseOrderByManufacturerId) app.put('/salesorder/setreceived/:id', setSalesOrderReceived) app.put('/purchaseorder/setreceived/:id', setPurchaseOrderReceived) // console.log(JSON.stringify(results))