api/sanitizer/sanitizeAll.js

const async = require('async');

function sanitize( req, sanitizers, cb ){
  // init an object to store clean (sanitized) input parameters if not initialized
  req.clean = req.clean || {};

  // init errors and warnings arrays if not initialized
  req.errors = req.errors || [];
  req.warnings = req.warnings || [];

  // source of input parameters
  // (in this case from the GET querystring params)
  const params = req.query || {};

  for (var s in sanitizers) {
    var sanity = sanitizers[s].sanitize( params, req.clean );

    // if errors occurred then set them
    // on the req object.
    if( sanity.errors.length ){
      req.errors = req.errors.concat( sanity.errors );
    }

    // if warnings occurred then set them
    // on the req object.
    if( sanity.warnings.length ){
      req.warnings = req.warnings.concat( sanity.warnings );
    }
  }
  return cb( undefined, req.clean );
}

// Adds to goodParameters every acceptable parameter passed through API call
function checkParameters(req, sanitizers, cb) {
  // source of input parameters
  // (in this case from the GET querystring params)
  const params = req.query || {};
  const goodParameters = {};

  for (var s in sanitizers) {

    // checks if there is a function that returns valid params
    if (typeof sanitizers[s].expected === 'function'){
      /** func returns {array} ex: [{ name: 'text' }, { name: 'parsed_text' }] */
      for (let t in sanitizers[s].expected()) {
        /** {object} prop */
        const prop = sanitizers[s].expected()[t];
        if (prop.hasOwnProperty('name')){
          // adds name of valid parameter
          goodParameters[prop.name] = prop.name;
        }
      }
    }
  }
  // If there are any unexpected parameters, add a warning to messages
  for (let p in params) {
    if (!goodParameters.hasOwnProperty(p)){
      req.warnings = req.warnings.concat('Invalid Parameter: ' + p);
    }
  }
  return cb( undefined, req.clean );
}

// runs both sanitize and checkParameters functions in async parallel
function runAllChecks (req, sanitizers, cb) {
  async.parallel([
    sanitize.bind(null, req, sanitizers),
    checkParameters.bind(null, req, sanitizers)
  ], cb);
}

// export function
module.exports = {
  sanitize: sanitize,
  checkParameters: checkParameters,
  runAllChecks: runAllChecks
};
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`const async = require('async');`

refactor sanitizers: first pass 9 years ago			`function sanitize( req, sanitizers, cb ){`
only initialize req.clean/errors/warnings if not initialized yet also added tests for sanitizeAll 8 years ago			`// init an object to store clean (sanitized) input parameters if not initialized`
			`req.clean = req.clean \|\| {};`
refactor sanitizers: first pass 9 years ago
only initialize req.clean/errors/warnings if not initialized yet also added tests for sanitizeAll 8 years ago			`// init errors and warnings arrays if not initialized`
			`req.errors = req.errors \|\| [];`
			`req.warnings = req.warnings \|\| [];`
expose error messages in geojson 9 years ago
refactor sanitizers: first pass 9 years ago			`// source of input parameters`
			`// (in this case from the GET querystring params)`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`const params = req.query \|\| {};`
refactor sanitizers: first pass 9 years ago
			`for (var s in sanitizers) {`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`var sanity = sanitizers[s].sanitize( params, req.clean );`
refactor sanitizers: first pass 9 years ago
expose error messages in geojson 9 years ago			`// if errors occurred then set them`
			`// on the req object.`
refactor sanitizers: first pass 9 years ago			`if( sanity.errors.length ){`
expose error messages in geojson 9 years ago			`req.errors = req.errors.concat( sanity.errors );`
			`}`

			`// if warnings occurred then set them`
			`// on the req object.`
			`if( sanity.warnings.length ){`
			`req.warnings = req.warnings.concat( sanity.warnings );`
refactor sanitizers: first pass 9 years ago			`}`
			`}`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`return cb( undefined, req.clean );`
			`}`

typo: delete mentions of joi in sanitizers 7 years ago			`// Adds to goodParameters every acceptable parameter passed through API call`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`function checkParameters(req, sanitizers, cb) {`
			`// source of input parameters`
			`// (in this case from the GET querystring params)`
			`const params = req.query \|\| {};`
			`const goodParameters = {};`

			`for (var s in sanitizers) {`
refactor sanitizers: first pass 9 years ago
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`// checks if there is a function that returns valid params`
			`if (typeof sanitizers[s].expected === 'function'){`
			`/** func returns {array} ex: [{ name: 'text' }, { name: 'parsed_text' }] */`
			`for (let t in sanitizers[s].expected()) {`
			`/** {object} prop */`
			`const prop = sanitizers[s].expected()[t];`
			`if (prop.hasOwnProperty('name')){`
			`// adds name of valid parameter`
			`goodParameters[prop.name] = prop.name;`
			`}`
			`}`
			`}`
			`}`
			`// If there are any unexpected parameters, add a warning to messages`
			`for (let p in params) {`
			`if (!goodParameters.hasOwnProperty(p)){`
			`req.warnings = req.warnings.concat('Invalid Parameter: ' + p);`
			`}`
			`}`
expose error messages in geojson 9 years ago			`return cb( undefined, req.clean );`
refactor sanitizers: first pass 9 years ago			`}`

sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`// runs both sanitize and checkParameters functions in async parallel`
			`function runAllChecks (req, sanitizers, cb) {`
			`async.parallel([`
			`sanitize.bind(null, req, sanitizers),`
			`checkParameters.bind(null, req, sanitizers)`
			`], cb);`
			`}`

refactor sanitizers: first pass 9 years ago			`// export function`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`module.exports = {`
			`sanitize: sanitize,`
			`checkParameters: checkParameters,`
			`runAllChecks: runAllChecks`
			`};`