Home Explore Help
Sign In
mirrors
/
wekan
mirror of https://github.com/wekan/wekan.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: 3aa7a6e244
Branches Tags
wekan
/
models
/
exportExcel.js

exportExcel.js 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. import { runOnServer } from './runOnServer';
    2. 

  2. 

  3. runOnServer(function() {
    4. 

  4.   // the ExporterExcel class is only available on server and in order to import
    5. 

  5.   // it here we use runOnServer to have it inside a function instead of an
    6. 

  6.   // if (Meteor.isServer) block
    7. 

  7.   import { ExporterExcel } from './server/ExporterExcel';
    8. 

  8. 

  9.   // todo XXX once we have a real API in place, move that route there
    10. 

  10.   // todo XXX also  share the route definition between the client and the server
    11. 

  11.   // so that we could use something like
    12. 

  12.   // `ApiRoutes.path('boards/exportExcel', boardId)``
    13. 

  13.   // on the client instead of copy/pasting the route path manually between the
    14. 

  14.   // client and the server.
    15. 

  15.   /**
    16. 

  16.    * @operation exportExcel
    17. 

  17.    * @tag Boards
    18. 

  18.    *
    19. 

  19.    * @summary This route is used to export the board Excel.
    20. 

  20.    *
    21. 

  21.    * @description If user is already logged-in, pass loginToken as param
    22. 

  22.    * "authToken": '/api/boards/:boardId/exportExcel?authToken=:token'
    23. 

  23.    *
    24. 

  24.    * See https://blog.kayla.com.au/server-side-route-authentication-in-meteor/
    25. 

  25.    * for detailed explanations
    26. 

  26.    *
    27. 

  27.    * @param {string} boardId the ID of the board we are exporting
    28. 

  28.    * @param {string} authToken the loginToken
    29. 

  29.    */
    30. 

  30.   Picker.route('/api/boards/:boardId/exportExcel', function (params, req, res) {
    31. 

  31.     const boardId = params.boardId;
    32. 

  32.     let user = null;
    33. 

  33.     let impersonateDone = false;
    34. 

  34.     let adminId = null;
    35. 

  35.     const loginToken = params.query.authToken;
    36. 

  36.     if (loginToken) {
    37. 

  37.       const hashToken = Accounts._hashLoginToken(loginToken);
    38. 

  38.       user = Meteor.users.findOne({
    39. 

  39.         'services.resume.loginTokens.hashedToken': hashToken,
    40. 

  40.       });
    41. 

  41.       adminId = user._id.toString();
    42. 

  42.       impersonateDone = ImpersonatedUsers.findOne({
    43. 

  43.         adminId: adminId,
    44. 

  44.       });
    45. 

  45.     } else if (!Meteor.settings.public.sandstorm) {
    46. 

  46.       Authentication.checkUserId(req.userId);
    47. 

  47.       user = Users.findOne({
    48. 

  48.         _id: req.userId,
    49. 

  49.         isAdmin: true,
    50. 

  50.       });
    51. 

  51.     }
    52. 

  52. 

  53.     const exporterExcel = new ExporterExcel(boardId);
    54. 

  54.     if (exporterExcel.canExport(user) || impersonateDone) {
    55. 

  55.       if (impersonateDone) {
    56. 

  56.         ImpersonatedUsers.insert({
    57. 

  57.           adminId: adminId,
    58. 

  58.           boardId: boardId,
    59. 

  59.           reason: 'exportExcel',
    60. 

  60.         });
    61. 

  61.       }
    62. 

  62.       exporterExcel.build(res);
    63. 

  63.     } else {
    64. 

  64.       res.end(TAPi18n.__('user-can-not-export-excel'));
    65. 

  65.     }
    66. 

  66.   });
    67. 

  67. });
    68.