Hide epilogue away in users and show how to use it alongside custom r…

…outes.
daniellarita · Oct 31, 2016 · 977e122 · 977e122
1 parent ac5f92a
commit 977e122
Show file tree

Hide file tree

Showing 3 changed files with 56 additions and 41 deletions.
diff --git a/server/api.js b/server/api.js
@@ -1,55 +1,17 @@
 'use strict'
-const epilogue = require('epilogue')
 
 const db = require('APP/db')
-const api = require('express').Router()
+const api = module.exports = require('express').Router()
 
 api
   .get('/heartbeat', (req, res) => res.send({ok: true,}))
   .use('/auth', require('./auth'))
-
-// Epilogue can make routes for us
-epilogue.initialize({app: api, sequelize: db})
-
-var users = epilogue.resource({
-  model: db.model('users'),
-  endpoints: ['/users', '/users/:id']
-});
-
-const mustBeLoggedIn = (req, res, context) => {
-  if (!req.user) {
-    res.status(401).send('You must be logged in')
-    return context.stop
-  }
-
-  return context.continue
-}
-
-const selfOnly = action => (req, res, context) => {
-  if (req.params.id !== req.user.id) {
-    res.status(403).send(`You can only ${action} yourself.`)
-    return context.stop
-  }
-  return context.continue  
-}
-
-const forbidden = message => (req, res, context) => {
-  res.status(403).send(message)
-  return context.stop
-}
-
-users.delete.auth(mustBeLoggedIn)
-users.delete.auth(selfOnly)
-users.list.auth(forbidden)
-users.read.auth(mustBeLoggedIn)
-
+  .use('/users', require('./users'))
 
 // Send along any errors
 api.use((err, req, res, next) => {
   res.status(500).send(err)
 })
 
 // No routes matched? 404.
-api.use((req, res) => res.status(404).end())
-
-module.exports = api
+api.use((req, res) => res.status(404).end())
diff --git a/server/epilogue.js b/server/epilogue.js
@@ -0,0 +1,31 @@
+const epilogue = require('epilogue')
+const api = require('./api')
+const db = require('APP/db')
+
+// Epilogue can make routes for us
+epilogue.initialize({app: api, sequelize: db})
+
+const mustBeLoggedIn = (req, res, context) => {
+  if (!req.user) {
+    res.status(401).send('You must be logged in')
+    return context.stop
+  }
+
+  return context.continue
+}
+
+const selfOnly = action => (req, res, context) => {
+  if (req.params.id !== req.user.id) {
+    res.status(403).send(`You can only ${action} yourself.`)
+    return context.stop
+  }
+  return context.continue  
+}
+
+const forbidden = message => (req, res, context) => {
+  res.status(403).send(message)
+  return context.stop
+}
+
+epilogue.filters = {mustBeLoggedIn, selfOnly, forbidden,}
+module.exports = epilogue
diff --git a/server/users.js b/server/users.js
@@ -0,0 +1,22 @@
+'use strict'
+
+const epilogue = require('./epilogue')
+const db = require('APP/db')
+
+const customUserRoutes = require('express').Router() 
+
+// Custom routes go here.
+
+module.exports = customUserRoutes
+
+// Epilogue will automatically create standard RESTful routes
+const users = epilogue.resource({
+  model: db.model('users'),
+  endpoints: ['/users', '/users/:id']
+})
+
+const {mustBeLoggedIn, selfOnly, forbidden} = epilogue.filters
+users.delete.auth(mustBeLoggedIn)
+users.delete.auth(selfOnly)
+users.list.auth(forbidden)
+users.read.auth(mustBeLoggedIn)