-
-
-
${res.t('newStuff')}
-
10/1/2020 - ${LAST_ANNOUNCEMENT_TITLE}
+ const lastNewsPost = NewsPost.lastNewsPost();
+ if (lastNewsPost) {
+ res.status(200).send({
+ html: `
+
+
+
+
+ ${md.unsafeHTMLRender(lastNewsPost.text)}
+
+
+ by ${lastNewsPost.credits}
-
-
-
October Backgrounds and Armoire Items!
-
- We’ve added three new backgrounds to the Background Shop! Now your avatar can dare to
- visit a Haunted Forest, brave the Spooky Scarecrow Field, or bask in the glow of the
- Crescent Moon. Check them out under User Icon > Backgrounds on web and Menu > Inventory >
- Customize Avatar on mobile!
-
-
- Plus, there’s new Gold-purchasable equipment in the Enchanted Armoire, including the
- Autumn Enchanter Set. Better work hard on your real-life tasks to earn all the pieces!
- Enjoy :)
-
-
by AnnDeLune and SabreCat
-
-
Spooky Sparkles in Seasonal Shop
-
- There's a new Gold-purchasable item in the Seasonal Shop:
- Spooky Sparkles! Buy some and then cast it on your friends. I wonder what it will do?
-
-
- If you have Spooky Sparkles cast on you, you will receive the "Alarming Friends" badge!
- Don't worry, any mysterious effects will wear off the next day.... or you can cancel them
- early by buying an Opaque Potion!
-
-
- While you're at it, be sure to check out all the other items in the Seasonal Shop! There
- are lots of equipment items from the previous Fall Festivals. The Seasonal Shop will only
- be open until October 31st, so stock up now.
-
-
by Lemoness and SabreCat
-
- `,
- });
+ `,
+ });
+ } else {
+ res.status(200).send({
+ html: `
+
+ `,
+ });
+ }
},
};
@@ -79,7 +69,6 @@ api.getNews = {
* Prevent this specific Bailey message from appearing automatically.
* @apiGroup News
*
- *
* @apiSuccess {Object} data An empty Object
*
*/
@@ -90,13 +79,17 @@ api.tellMeLaterNews = {
async handler (req, res) {
const { user } = res.locals;
- user.flags.newStuff = false;
+ const lastNewsPost = NewsPost.lastNewsPost();
+ if (lastNewsPost) {
+ user.flags.lastNewStuffRead = lastNewsPost._id;
- const existingNotificationIndex = user.notifications.findIndex(n => n && n.type === 'NEW_STUFF');
- if (existingNotificationIndex !== -1) user.notifications.splice(existingNotificationIndex, 1);
- user.addNotification('NEW_STUFF', { title: LAST_ANNOUNCEMENT_TITLE }, true); // seen by default
+ const existingNotificationIndex = user.notifications.findIndex(n => n && n.type === 'NEW_STUFF');
+ if (existingNotificationIndex !== -1) user.notifications.splice(existingNotificationIndex, 1);
+ user.addNotification('NEW_STUFF', { title: lastNewsPost.title.toUpperCase() }, true); // seen by default
+
+ await user.save();
+ }
- await user.save();
res.respond(200, {});
},
};
diff --git a/website/server/controllers/api-v4/news.js b/website/server/controllers/api-v4/news.js
new file mode 100644
index 0000000000..49a3ef5680
--- /dev/null
+++ b/website/server/controllers/api-v4/news.js
@@ -0,0 +1,224 @@
+import _ from 'lodash';
+import { authWithHeaders } from '../../middlewares/auth';
+import apiError from '../../libs/apiError';
+import { model as NewsPost } from '../../models/newsPost';
+import { ensureNewsPoster } from '../../middlewares/ensureAccessRight';
+import {
+ NotFound,
+} from '../../libs/errors';
+
+const api = {};
+
+/**
+ * @apiDefine postIdRequired
+ * @apiError (400) {BadRequest} postIdRequired A postId is required
+ */
+
+/**
+ * @apiDefine NewsPostNotFound
+ * @apiError (404) {NotFound} NewsPostNotFound The specified news post could not be found.
+ */
+
+/**
+ * @api {get} /api/v4/news Get latest Bailey announcements
+ * @apiName GetNews
+ * @apiGroup News
+ *
+ * @apiParam (Query) {Number} [page] This parameter can be used to specify the page number
+ * (the initial page is number 0 and not required).
+ *
+ * @apiSuccess {Array} Data An array of Bailey posts
+ *
+ */
+api.getNews = {
+ method: 'GET',
+ url: '/news',
+ middlewares: [authWithHeaders({
+ optional: true,
+ })],
+ noLanguage: true,
+ async handler (req, res) {
+ const { user } = res.locals;
+ const { page } = req.query;
+
+ let isNewsPoster = false;
+ if (user) {
+ isNewsPoster = user.isNewsPoster();
+ }
+
+ const results = await NewsPost.getNews(isNewsPoster, { page });
+ res.respond(200, results);
+ },
+};
+
+/**
+ * @api {post} /api/v4/news Create a new news post
+ * @apiName CreateNewsPost
+ * @apiGroup News
+ *
+ * @apiSuccess {Object} data The created news post (See
/website/server/models/newsPost.js)
+ *
+ * @apiSuccessExample {json} Post:
+ * HTTP/1.1 200 OK
+ * {
+ * "title": "News Title",
+ * ...
+ * }
+ *
+ * @apiPermission NewsPoster
+ */
+api.createNews = {
+ method: 'POST',
+ url: '/news',
+ middlewares: [authWithHeaders(), ensureNewsPoster],
+ async handler (req, res) {
+ const newsPost = new NewsPost(NewsPost.sanitize(req.body));
+ newsPost.author = res.locals.user._id;
+ await newsPost.save();
+
+ res.respond(201, newsPost);
+
+ NewsPost.updateLastNewsPost(newsPost);
+ },
+};
+
+/**
+ * @api {get} /api/v4/news/:postId Get a specific news post
+ * @apiName GetNewsPost
+ * @apiGroup News
+ *
+ * @apiParam (Path) {String} postId The posts _id
+ *
+ * @apiSuccess {Object} data The news post (See
/website/server/models/newsPost.js)
+ *
+ * @apiSuccessExample {json} Post:
+ * HTTP/1.1 200 OK
+ * {
+ * "title": "News Title",
+ * ...
+ * }
+ *
+ * @apiUse postIdRequired
+ * @apiUse NewsPostNotFound
+ *
+ */
+api.getPost = {
+ method: 'GET',
+ url: '/news/:postId',
+ middlewares: [authWithHeaders({
+ optional: true,
+ })],
+ noLanguage: true,
+ async handler (req, res) {
+ req.checkParams('postId', apiError('postIdRequired')).notEmpty().isUUID();
+ const { user } = res.locals;
+
+ const newsPost = await NewsPost.findById(req.params.postId).exec();
+ if (!newsPost || (!user.isNewsPoster() && !newsPost.isPublished)) {
+ throw new NotFound(res.t('newsPostNotFound'));
+ } else {
+ res.respond(200, newsPost);
+ }
+ },
+};
+
+/**
+ * @api {put} /api/v4/news/:postId Update a news post
+ * @apiName UpdateNewsPost
+ * @apiGroup News
+ *
+ * @apiParam (Path) {String} postId The posts _id
+ *
+ * @apiSuccess {Object} data The updated news post (See
/website/server/models/newsPost.js)
+ *
+ * @apiSuccessExample {json} Post:
+ * HTTP/1.1 200 OK
+ * {
+ * "title": "News Title",
+ * ...
+ * }
+ *
+ * @apiUse postIdRequired
+ * @apiUse NewsPostNotFound
+ *
+ * @apiPermission NewsPoster
+ */
+api.updateNews = {
+ method: 'PUT',
+ url: '/news/:postId',
+ middlewares: [authWithHeaders(), ensureNewsPoster],
+ async handler (req, res) {
+ req.checkParams('postId', apiError('postIdRequired')).notEmpty().isUUID();
+ const validationErrors = req.validationErrors();
+ if (validationErrors) throw validationErrors;
+
+ const newsPost = await NewsPost.findById(req.params.postId).exec();
+ if (!newsPost) throw new NotFound(res.t('newsPostNotFound'));
+
+ _.merge(newsPost, NewsPost.sanitize(req.body));
+ const savedPost = await newsPost.save();
+
+ res.respond(200, savedPost);
+
+ NewsPost.updateLastNewsPost(newsPost);
+ },
+};
+
+/**
+ * @api {delete} /api/v4/news/:postId Delete a news post
+ * @apiName DeleteNewsPost
+ * @apiGroup News
+ *
+ * @apiParam (Path) {String} postId The posts _id
+ *
+ * @apiSuccess {Object} data An empty object
+ *
+ * @apiUse postIdRequired
+ * @apiUse NewsPostNotFound
+ *
+ * @apiPermission NewsPoster
+ */
+api.deleteNews = {
+ method: 'DELETE',
+ url: '/news/:postId',
+ middlewares: [authWithHeaders(), ensureNewsPoster],
+ async handler (req, res) {
+ req.checkParams('postId', apiError('postIdRequired')).notEmpty().isUUID();
+ const validationErrors = req.validationErrors();
+ if (validationErrors) throw validationErrors;
+
+ const newsPost = await NewsPost.findById(req.params.postId).exec();
+ if (!newsPost) throw new NotFound(res.t('newsPostNotFound'));
+
+ await NewsPost.remove({ _id: req.params.postId }).exec();
+
+ res.respond(200, {});
+ },
+};
+
+/**
+ * @api {post} /api/v4/news/read Mark the latest Bailey announcement as read
+ * @apiName MarkNewsRead
+ * @apiGroup News
+ *
+ * @apiSuccess {Object} data An empty Object
+ */
+api.markNewsRead = {
+ method: 'POST',
+ middlewares: [authWithHeaders()],
+ url: '/news/read',
+ async handler (req, res) {
+ const { user } = res.locals;
+
+ const lastNewsPost = NewsPost.lastNewsPost();
+ if (lastNewsPost) {
+ user.flags.lastNewStuffRead = lastNewsPost._id;
+
+ await user.save();
+ }
+
+ res.respond(200, {});
+ },
+};
+
+export default api;
diff --git a/website/server/libs/user/index.js b/website/server/libs/user/index.js
index 26790993ec..7ab2e44ef3 100644
--- a/website/server/libs/user/index.js
+++ b/website/server/libs/user/index.js
@@ -6,6 +6,7 @@ import {
NotAuthorized,
} from '../errors';
import { model as User, schema as UserSchema } from '../../models/user';
+import { model as NewsPost } from '../../models/newsPost';
import { nameContainsSlur, nameContainsNewline } from './validation';
export async function get (req, res, { isV3 = false }) {
@@ -42,7 +43,6 @@ const updatablePaths = [
'flags.welcomed',
'flags.cardReceived',
'flags.warnedLowHealth',
- 'flags.newStuff',
'achievements',
@@ -55,7 +55,6 @@ const updatablePaths = [
'profile',
'stats',
'inbox.optOut',
- 'tags',
];
// This tells us for which paths users can call `PUT /user`.
@@ -122,9 +121,7 @@ export async function update (req, res, { isV3 = false }) {
throw new NotAuthorized(res.t('mustPurchaseToSet', { val, key }));
}
- if (acceptablePUTPaths[key] && key !== 'tags') {
- _.set(user, key, val);
- } else if (key === 'tags') {
+ if (key === 'tags') {
if (!Array.isArray(val)) throw new BadRequest('mustBeArray');
const removedTagsIds = [];
@@ -161,6 +158,15 @@ export async function update (req, res, { isV3 = false }) {
tags: tagId,
},
}, { multi: true }).exec());
+ } else if (key === 'flags.newStuff' && val === false) {
+ // flags.newStuff was removed from the user schema and is only returned for compatibility
+ // reasons but we're keeping the ability to set it in API v3
+ const lastNewsPost = NewsPost.lastNewsPost();
+ if (lastNewsPost) {
+ user.flags.lastNewStuffRead = lastNewsPost._id;
+ }
+ } else if (acceptablePUTPaths[key]) {
+ _.set(user, key, val);
} else {
throw new NotAuthorized(res.t('messageUserOperationProtected', { operation: key }));
}
diff --git a/website/server/middlewares/appRoutes.js b/website/server/middlewares/appRoutes.js
index 646985c3a5..19931eab6b 100644
--- a/website/server/middlewares/appRoutes.js
+++ b/website/server/middlewares/appRoutes.js
@@ -36,6 +36,7 @@ app.use('/api/v3', rateLimiter, v3Router);
const v4RouterOverrides = [
// 'GET-/status', Example to override the GET /status api call
'POST-/user/auth/local/register',
+ 'GET-/news',
'GET-/user',
'PUT-/user',
'POST-/user/class/cast/:spellId',
diff --git a/website/server/middlewares/ensureAccessRight.js b/website/server/middlewares/ensureAccessRight.js
index a16da0d5f7..12b2293a68 100644
--- a/website/server/middlewares/ensureAccessRight.js
+++ b/website/server/middlewares/ensureAccessRight.js
@@ -13,6 +13,16 @@ export function ensureAdmin (req, res, next) {
return next();
}
+export function ensureNewsPoster (req, res, next) {
+ const { user } = res.locals;
+
+ if (!user.contributor.newsPoster) {
+ return next(new NotAuthorized(apiError('noNewsPosterAccess')));
+ }
+
+ return next();
+}
+
export function ensureSudo (req, res, next) {
const { user } = res.locals;
diff --git a/website/server/models/newsPost.js b/website/server/models/newsPost.js
new file mode 100644
index 0000000000..3f1ccb236a
--- /dev/null
+++ b/website/server/models/newsPost.js
@@ -0,0 +1,95 @@
+import mongoose from 'mongoose';
+import baseModel from '../libs/baseModel';
+import logger from '../libs/logger';
+
+const { Schema } = mongoose;
+const POSTS_PER_PAGE = 10;
+
+export const schema = new Schema({
+ title: { $type: String, required: true },
+ text: { $type: String, required: true },
+ credits: { $type: String, required: true },
+ author: { $type: String, ref: 'User', required: true },
+ publishDate: { $type: Date, required: true, default: Date.now },
+ published: { $type: Boolean, required: true, default: false },
+}, {
+ strict: true,
+ minimize: false, // So empty objects are returned
+ typeKey: '$type', // So that we can use fields named `type`
+});
+
+schema.plugin(baseModel, {
+ noSet: ['_id', 'author'],
+ timestamps: true,
+});
+
+schema.statics.getNews = async function getNews (isAdmin, options = { page: 0 }) {
+ let query;
+ if (!isAdmin) {
+ query = this.find({
+ published: true,
+ publishDate: { $lte: new Date() },
+ });
+ } else {
+ query = this.find();
+ }
+
+ let page = 0;
+ if (typeof options.page !== 'undefined') {
+ page = options.page;
+ }
+
+ return query
+ .sort({ publishDate: -1 })
+ .limit(POSTS_PER_PAGE)
+ .skip(POSTS_PER_PAGE * Number(page))
+ .exec();
+};
+
+const NEWS_CACHE_TIME = 5 * 60 * 1000;
+
+let cachedLastNewsPost = null;
+
+schema.statics.getLastPostFromDatabase = async function getLastPostFromDatabase () {
+ const post = await this.findOne({
+ published: true,
+ publishDate: { $lte: new Date() },
+ }).sort({ publishDate: -1 }).exec();
+
+ return post;
+};
+
+schema.statics.lastNewsPost = function lastNewsPost () {
+ return cachedLastNewsPost;
+};
+
+schema.statics.updateLastNewsPost = function updateLastNewsPost (newPost) {
+ const isSame = !cachedLastNewsPost ? false : cachedLastNewsPost._id === newPost._id;
+ const isPublished = newPost.published;
+ const isNewer = !cachedLastNewsPost ? true : cachedLastNewsPost.publishDate < newPost.publishDate;
+ const isInFuture = newPost.publishDate > (new Date());
+ if (
+ isSame // if the same post it could have been updated
+ || (isPublished && isNewer && !isInFuture)
+ ) {
+ cachedLastNewsPost = newPost;
+ }
+};
+
+export const model = mongoose.model('NewsPost', schema);
+
+function getAndUpdateLastNewsPost () {
+ model.getLastPostFromDatabase().then(lastPost => {
+ if (lastPost) {
+ model.updateLastNewsPost(lastPost);
+ }
+ }).catch(err => logger.error(err));
+}
+
+export function refreshNewsPost (interval) {
+ return setInterval(() => getAndUpdateLastNewsPost(), interval);
+}
+
+// Fetches the last news post and refresh it every 5 minutes
+getAndUpdateLastNewsPost();
+refreshNewsPost(NEWS_CACHE_TIME);
diff --git a/website/server/models/user/hooks.js b/website/server/models/user/hooks.js
index 8ee9e8d2e8..3bcbab791b 100644
--- a/website/server/models/user/hooks.js
+++ b/website/server/models/user/hooks.js
@@ -31,6 +31,10 @@ schema.plugin(baseModel, {
delete plainObj.filters;
+ if (plainObj.flags && originalDoc.isSelected('flags.lastNewStuffRead')) {
+ plainObj.flags.newStuff = originalDoc.checkNewStuff();
+ }
+
return plainObj;
},
});
diff --git a/website/server/models/user/methods.js b/website/server/models/user/methods.js
index 9c7d0d9a7c..d92fd30557 100644
--- a/website/server/models/user/methods.js
+++ b/website/server/models/user/methods.js
@@ -22,6 +22,7 @@ import * as inboxLib from '../../libs/inbox'; // eslint-disable-line import/no-c
import amazonPayments from '../../libs/payments/amazon'; // eslint-disable-line import/no-cycle
import stripePayments from '../../libs/payments/stripe'; // eslint-disable-line import/no-cycle
import paypalPayments from '../../libs/payments/paypal'; // eslint-disable-line import/no-cycle
+import { model as NewsPost } from '../newsPost';
const { daysSince } = common;
@@ -295,6 +296,12 @@ schema.statics.transformJSONUser = function transformJSONUser (jsonUser, addComp
if (addComputedStats) this.addComputedStatsToJSONObj(jsonUser.stats, jsonUser);
};
+// Returns true if the user has read the last news post
+schema.methods.checkNewStuff = function checkNewStuff () {
+ const lastNewsPost = NewsPost.lastNewsPost();
+ return Boolean(lastNewsPost && this.flags && this.flags.lastNewStuffRead !== lastNewsPost._id);
+};
+
// Add stats.toNextLevel, stats.maxMP and stats.maxHealth
// to a JSONified User stats object
schema.statics.addComputedStatsToJSONObj = function addComputedStatsToUserJSONObj (
@@ -491,7 +498,11 @@ schema.methods.isMemberOfGroupPlan = async function isMemberOfGroupPlan () {
};
schema.methods.isAdmin = function isAdmin () {
- return this.contributor && this.contributor.admin;
+ return Boolean(this.contributor && this.contributor.admin);
+};
+
+schema.methods.isNewsPoster = function isNewsPoster () {
+ return Boolean(this.contributor && this.contributor.newsPoster);
};
// When converting to json add inbox messages from the Inbox collection
diff --git a/website/server/models/user/schema.js b/website/server/models/user/schema.js
index abc6426a56..dc62630f59 100644
--- a/website/server/models/user/schema.js
+++ b/website/server/models/user/schema.js
@@ -158,6 +158,7 @@ export default new Schema({
max: 9,
},
admin: Boolean,
+ newsPoster: Boolean,
sudo: Boolean,
// Artisan, Friend, Blacksmith, etc
text: String,
@@ -245,7 +246,11 @@ export default new Schema({
},
dropsEnabled: { $type: Boolean, default: false }, // unused
itemsEnabled: { $type: Boolean, default: false },
- newStuff: { $type: Boolean, default: false },
+ lastNewStuffRead: { $type: String, default: '' },
+ // The newStuff field was changed to be a computed property when returning the user in json,
+ // so that it doesn't have to be updated for each bailey post.
+ // See models/user/hooks#toJSONTransform
+ // newStuff: { $type: Boolean, default: false },
rewrite: { $type: Boolean, default: true },
classSelected: { $type: Boolean, default: false },
mathUpdates: Boolean,