api/sanitizer/sanitizeAll.js

'use strict';
function sanitize( req, sanitizers ){
  // init an object to store clean (sanitized) input parameters if not initialized
  req.clean = req.clean || {};

  // init errors and warnings arrays if not initialized
  req.errors = req.errors || [];
  req.warnings = req.warnings || [];

  // source of input parameters
  // (in this case from the GET querystring params)
  const params = req.query || {};

  for (let s in sanitizers) {
    var sanity = sanitizers[s].sanitize( params, req.clean );

    // if errors occurred then set them
    // on the req object.
    if( sanity.errors.length ){
      req.errors = req.errors.concat( sanity.errors );
    }

    // if warnings occurred then set them
    // on the req object.
    if( sanity.warnings.length ){
      req.warnings = req.warnings.concat( sanity.warnings );
    }
  }
}

// Adds to goodParameters every acceptable parameter passed through API call
function checkParameters( req, sanitizers ) {
  req.warnings = req.warnings || [];
  // source of input parameters
  // (in this case from the GET querystring params)
  const params = req.query || {};
  const goodParameters = {};

  for (let s in sanitizers) {

    // checks if function exists
    if (typeof sanitizers[s].expected === 'function'){
      /** expected() returns {array} ex: [{ name: 'text' }] */
      for (let t in sanitizers[s].expected()) {
        /** {object} prop */
        const prop = sanitizers[s].expected()[t];
        if (prop.hasOwnProperty('name')){
          // adds name of valid parameter
          goodParameters[prop.name] = prop.name;
        }
      }
    }
  }
  // If there are any unexpected parameters & goodParameters isn't empty,
  // add a warning message
  if (Object.keys(goodParameters).length !== 0) {
    for (let p in params) {
      if (!goodParameters.hasOwnProperty(p)){
        req.warnings = req.warnings.concat('Invalid Parameter: ' + p);
      }
    }
  }
}

// runs both sanitize and checkParameters functions in async parallel
function runAllChecks (req, sanitizers) {
  sanitize(req, sanitizers);
  checkParameters(req, sanitizers);
}

// export function
module.exports = {
  sanitize: sanitize,
  checkParameters: checkParameters,
  runAllChecks: runAllChecks
};
use strict for ecmascript 6 syntax, fix typos 7 years ago			`'use strict';`
remove callback in sanitizeAll.runAllChecks for sync processing 7 years ago			`function sanitize( req, sanitizers ){`
only initialize req.clean/errors/warnings if not initialized yet also added tests for sanitizeAll 8 years ago			`// init an object to store clean (sanitized) input parameters if not initialized`
			`req.clean = req.clean \|\| {};`
refactor sanitizers: first pass 9 years ago
only initialize req.clean/errors/warnings if not initialized yet also added tests for sanitizeAll 8 years ago			`// init errors and warnings arrays if not initialized`
			`req.errors = req.errors \|\| [];`
			`req.warnings = req.warnings \|\| [];`
expose error messages in geojson 9 years ago
refactor sanitizers: first pass 9 years ago			`// source of input parameters`
			`// (in this case from the GET querystring params)`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`const params = req.query \|\| {};`
refactor sanitizers: first pass 9 years ago
use strict for ecmascript 6 syntax, fix typos 7 years ago			`for (let s in sanitizers) {`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`var sanity = sanitizers[s].sanitize( params, req.clean );`
refactor sanitizers: first pass 9 years ago
expose error messages in geojson 9 years ago			`// if errors occurred then set them`
			`// on the req object.`
refactor sanitizers: first pass 9 years ago			`if( sanity.errors.length ){`
expose error messages in geojson 9 years ago			`req.errors = req.errors.concat( sanity.errors );`
			`}`

			`// if warnings occurred then set them`
			`// on the req object.`
			`if( sanity.warnings.length ){`
			`req.warnings = req.warnings.concat( sanity.warnings );`
refactor sanitizers: first pass 9 years ago			`}`
			`}`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`}`

typo: delete mentions of joi in sanitizers 7 years ago			`// Adds to goodParameters every acceptable parameter passed through API call`
remove callback in sanitizeAll.runAllChecks for sync processing 7 years ago			`function checkParameters( req, sanitizers ) {`
			`req.warnings = req.warnings \|\| [];`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`// source of input parameters`
			`// (in this case from the GET querystring params)`
			`const params = req.query \|\| {};`
			`const goodParameters = {};`

use strict for ecmascript 6 syntax, fix typos 7 years ago			`for (let s in sanitizers) {`
refactor sanitizers: first pass 9 years ago
remove callback in sanitizeAll.runAllChecks for sync processing 7 years ago			`// checks if function exists`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`if (typeof sanitizers[s].expected === 'function'){`
remove callback in sanitizeAll.runAllChecks for sync processing 7 years ago			`/** expected() returns {array} ex: [{ name: 'text' }] */`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`for (let t in sanitizers[s].expected()) {`
			`/** {object} prop */`
			`const prop = sanitizers[s].expected()[t];`
			`if (prop.hasOwnProperty('name')){`
			`// adds name of valid parameter`
			`goodParameters[prop.name] = prop.name;`
			`}`
			`}`
			`}`
			`}`
remove callback in sanitizeAll.runAllChecks for sync processing 7 years ago			`// If there are any unexpected parameters & goodParameters isn't empty,`
			`// add a warning message`
			`if (Object.keys(goodParameters).length !== 0) {`
			`for (let p in params) {`
			`if (!goodParameters.hasOwnProperty(p)){`
			`req.warnings = req.warnings.concat('Invalid Parameter: ' + p);`
			`}`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`}`
			`}`
refactor sanitizers: first pass 9 years ago			`}`

sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`// runs both sanitize and checkParameters functions in async parallel`
remove callback in sanitizeAll.runAllChecks for sync processing 7 years ago			`function runAllChecks (req, sanitizers) {`
			`sanitize(req, sanitizers);`
			`checkParameters(req, sanitizers);`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`}`

refactor sanitizers: first pass 9 years ago			`// export function`
sanitizeAll validates req.query parameters, export async runAllChecks function 7 years ago			`module.exports = {`
			`sanitize: sanitize,`
			`checkParameters: checkParameters,`
			`runAllChecks: runAllChecks`
			`};`