powr-sdk-api 3.1.4 → 3.1.6

package/dist/middleware/projectId.js

@@ -6,13 +6,11 @@ const config = require('../config');
  * Middleware to inject and validate projectId into requests
  * @param {Object} options - Configuration options
  * @param {boolean} options.isCentralService - Whether this is a central service (like powr-base-cloud)
- * @param {boolean} options.requireProjectId - Whether to require projectId validation (default: true)
  * @param {Array} options.excludePaths - Array of paths to exclude from projectId validation
  * @returns {Function} Express middleware function
  */
 const injectProjectId = (options = {}) => {
   const isCentralService = options.isCentralService || false;
-  const requireProjectId = options.requireProjectId !== false; // Default to true
   const excludePaths = options.excludePaths || ['/auth/login', '/auth/register', '/health'];
   return (req, res, next) => {
     try {
@@ -23,21 +21,14 @@ const injectProjectId = (options = {}) => {
       }
       if (isCentralService) {
         // For central services, get projectId from request
-        const projectId = req.query.projectId || req.body.projectId;
-        if (requireProjectId && !projectId) {
-          return res.status(400).json({
-            success: false,
-            message: 'projectId is required'
-          });
-        }
-        req.projectId = projectId;
+        req.projectId = req.query.projectId || req.body.projectId;
       } else {
         // For individual APIs, use config.projectId
         req.projectId = config.projectId;
       }
 
-      // Validate projectId if required
-      if (requireProjectId && !req.projectId) {
+      // Validate projectId (always required except for excluded paths)
+      if (!req.projectId) {
         return res.status(400).json({
           success: false,
           message: 'projectId is required'

package/dist/routes/feeds.js

@@ -0,0 +1,346 @@
+"use strict";
+
+const express = require('express');
+const router = express.Router();
+const {
+  getDb
+} = require('../services/mongo');
+const {
+  ObjectId
+} = require('mongodb');
+
+// Create new post
+router.post('/', async (req, res) => {
+  try {
+    const {
+      content,
+      media,
+      isPublic = true,
+      tags,
+      mentions
+    } = req.body;
+    const projectId = req.projectId;
+    const userId = req.user.id;
+    if (!content && (!media || media.length === 0)) {
+      return res.status(400).json({
+        success: false,
+        message: 'Content or media is required'
+      });
+    }
+    const db = await getDb();
+    const newPost = {
+      projectId,
+      authorId: new ObjectId(userId),
+      content: content || '',
+      media: media || [],
+      likesCount: 0,
+      commentsCount: 0,
+      isPublic,
+      tags: tags || [],
+      mentions: mentions ? mentions.map(id => new ObjectId(id)) : [],
+      createdAt: new Date(),
+      updatedAt: new Date()
+    };
+    const result = await db.collection('feeds').insertOne(newPost);
+
+    // Populate author info
+    const author = await db.collection('users').findOne({
+      _id: new ObjectId(userId)
+    }, {
+      projection: {
+        name: 1,
+        email: 1,
+        avatar: 1
+      }
+    });
+    const createdPost = {
+      ...newPost,
+      _id: result.insertedId,
+      author
+    };
+    return res.status(201).json({
+      success: true,
+      message: 'Post created successfully',
+      data: createdPost
+    });
+  } catch (error) {
+    console.error('Error creating post:', error);
+    return res.status(500).json({
+      success: false,
+      message: 'Failed to create post'
+    });
+  }
+});
+
+// Get feed with pagination and filters
+router.get('/', async (req, res) => {
+  try {
+    const {
+      page = 1,
+      limit = 10,
+      userId,
+      tag,
+      search
+    } = req.query;
+    const projectId = req.projectId;
+    const skip = (parseInt(page) - 1) * parseInt(limit);
+    const query = {
+      projectId
+    };
+    if (userId) {
+      query.authorId = new ObjectId(userId);
+    }
+    if (tag) {
+      query.tags = {
+        $in: [tag]
+      };
+    }
+    if (search) {
+      query.$or = [{
+        content: {
+          $regex: search,
+          $options: 'i'
+        }
+      }, {
+        tags: {
+          $in: [new RegExp(search, 'i')]
+        }
+      }];
+    }
+    const db = await getDb();
+
+    // Get posts with author info
+    const posts = await db.collection('feeds').aggregate([{
+      $match: query
+    }, {
+      $sort: {
+        createdAt: -1
+      }
+    }, {
+      $skip: skip
+    }, {
+      $limit: parseInt(limit)
+    }, {
+      $lookup: {
+        from: 'users',
+        localField: 'authorId',
+        foreignField: '_id',
+        as: 'author'
+      }
+    }, {
+      $unwind: '$author'
+    }, {
+      $project: {
+        'author.password': 0,
+        'author.access': 0
+      }
+    }]).toArray();
+    const total = await db.collection('feeds').countDocuments(query);
+    return res.json({
+      success: true,
+      data: posts,
+      pagination: {
+        page: parseInt(page),
+        limit: parseInt(limit),
+        total,
+        pages: Math.ceil(total / parseInt(limit))
+      }
+    });
+  } catch (error) {
+    console.error('Error fetching feed:', error);
+    return res.status(500).json({
+      success: false,
+      message: 'Failed to fetch feed'
+    });
+  }
+});
+
+// Get single post
+router.get('/:id', async (req, res) => {
+  try {
+    const {
+      id
+    } = req.params;
+    const projectId = req.projectId;
+    const db = await getDb();
+    const post = await db.collection('feeds').aggregate([{
+      $match: {
+        _id: new ObjectId(id),
+        projectId
+      }
+    }, {
+      $lookup: {
+        from: 'users',
+        localField: 'authorId',
+        foreignField: '_id',
+        as: 'author'
+      }
+    }, {
+      $unwind: '$author'
+    }, {
+      $project: {
+        'author.password': 0,
+        'author.access': 0
+      }
+    }]).next();
+    if (!post) {
+      return res.status(404).json({
+        success: false,
+        message: 'Post not found'
+      });
+    }
+    return res.json({
+      success: true,
+      data: post
+    });
+  } catch (error) {
+    console.error('Error fetching post:', error);
+    return res.status(500).json({
+      success: false,
+      message: 'Failed to fetch post'
+    });
+  }
+});
+
+// Update post
+router.put('/:id', async (req, res) => {
+  try {
+    const {
+      id
+    } = req.params;
+    const {
+      content,
+      media,
+      isPublic,
+      tags,
+      mentions
+    } = req.body;
+    const projectId = req.projectId;
+    const userId = req.user.id;
+    const db = await getDb();
+    const post = await db.collection('feeds').findOne({
+      _id: new ObjectId(id),
+      projectId,
+      authorId: new ObjectId(userId)
+    });
+    if (!post) {
+      return res.status(404).json({
+        success: false,
+        message: 'Post not found or unauthorized'
+      });
+    }
+    const updateData = {
+      updatedAt: new Date()
+    };
+    if (content !== undefined) updateData.content = content;
+    if (media !== undefined) updateData.media = media;
+    if (isPublic !== undefined) updateData.isPublic = isPublic;
+    if (tags !== undefined) updateData.tags = tags;
+    if (mentions !== undefined) updateData.mentions = mentions.map(id => new ObjectId(id));
+    await db.collection('feeds').updateOne({
+      _id: new ObjectId(id)
+    }, {
+      $set: updateData
+    });
+    return res.json({
+      success: true,
+      message: 'Post updated successfully'
+    });
+  } catch (error) {
+    console.error('Error updating post:', error);
+    return res.status(500).json({
+      success: false,
+      message: 'Failed to update post'
+    });
+  }
+});
+
+// Delete post
+router.delete('/:id', async (req, res) => {
+  try {
+    const {
+      id
+    } = req.params;
+    const projectId = req.projectId;
+    const userId = req.user.id;
+    const db = await getDb();
+    const post = await db.collection('feeds').findOne({
+      _id: new ObjectId(id),
+      projectId,
+      authorId: new ObjectId(userId)
+    });
+    if (!post) {
+      return res.status(404).json({
+        success: false,
+        message: 'Post not found or unauthorized'
+      });
+    }
+    await db.collection('feeds').deleteOne({
+      _id: new ObjectId(id)
+    });
+    return res.json({
+      success: true,
+      message: 'Post deleted successfully'
+    });
+  } catch (error) {
+    console.error('Error deleting post:', error);
+    return res.status(500).json({
+      success: false,
+      message: 'Failed to delete post'
+    });
+  }
+});
+
+// Like/unlike post
+router.post('/:id/like', async (req, res) => {
+  try {
+    const {
+      id
+    } = req.params;
+    const {
+      liked
+    } = req.body;
+    const projectId = req.projectId;
+    const userId = req.user.id;
+    const db = await getDb();
+
+    // Update like count
+    const updateOperation = liked ? {
+      $inc: {
+        likesCount: 1
+      }
+    } : {
+      $inc: {
+        likesCount: -1
+      }
+    };
+    await db.collection('feeds').updateOne({
+      _id: new ObjectId(id),
+      projectId
+    }, updateOperation);
+
+    // Update user's like status
+    await db.collection('likes').updateOne({
+      userId: new ObjectId(userId),
+      contentId: id,
+      projectId
+    }, {
+      $set: {
+        liked
+      }
+    }, {
+      upsert: true
+    });
+    return res.json({
+      success: true,
+      message: liked ? 'Post liked' : 'Post unliked'
+    });
+  } catch (error) {
+    console.error('Error updating like:', error);
+    return res.status(500).json({
+      success: false,
+      message: 'Failed to update like'
+    });
+  }
+});
+module.exports = router;

package/dist/routes/forms.js

@@ -52,12 +52,6 @@ router.get('/:formName', async (req, res) => {
       formName
     } = req.params;
     const projectId = req.projectId;
-    if (!projectId) {
-      return res.status(400).json({
-        success: false,
-        message: 'projectId is required'
-      });
-    }
     const db = await getDb();
     const collection = db.collection("powrForm");
     const formData = await collection.findOne({
@@ -170,15 +164,7 @@ router.get('/getCount/:formName', async (req, res) => {
 // POST /create-form - Upload JSON file and store form data
 router.post('/create-form', upload.single('jsonFile'), async (req, res) => {
   try {
-    const {
-      projectId
-    } = req.query;
-    if (!projectId) {
-      return res.status(400).json({
-        success: false,
-        message: 'projectId is required as query parameter'
-      });
-    }
+    const projectId = req.projectId;
     if (!req.file) {
       return res.status(400).json({
         success: false,

package/dist/routes/index.js

@@ -25,6 +25,7 @@ const slidesRoutes = require('./slides');
 const notificationsRoutes = require('./notifications');
 const profilesRoutes = require('./profiles');
 const chatRoutes = require('./chat');
+const feedsRoutes = require('./feeds');
 
 // Synchronous router creation
 const createPowrRoutes = (options = {}) => {
@@ -47,6 +48,7 @@ const createPowrRoutes = (options = {}) => {
   router.use('/notifications', verifyToken, notificationsRoutes);
   router.use('/profiles', verifyToken, profilesRoutes);
   router.use('/chat', verifyToken, chatRoutes);
+  router.use('/feeds', verifyToken, feedsRoutes);
   return router;
 };
 

package/dist/routes/invoices.js

@@ -34,12 +34,6 @@ router.get('/:invoiceId', async (req, res) => {
   } = req.params;
   const projectId = req.projectId;
   try {
-    if (!projectId) {
-      return res.status(400).json({
-        success: false,
-        message: 'projectId is required.'
-      });
-    }
     const _id = new ObjectId(invoiceId);
     const db = await getDb();
     const invoiceData = await db.collection("invoices").findOne({
@@ -68,12 +62,6 @@ router.post('/', async (req, res) => {
     serviceSection,
     paymentSection
   } = req.body;
-  if (!projectId) {
-    return res.status(400).json({
-      success: false,
-      message: "projectId is required."
-    });
-  }
   const invoice = {
     invoiceNumber,
     dateOfIssue,
@@ -113,12 +101,6 @@ router.put('/:invoiceId', async (req, res) => {
     invoiceId
   } = req.params;
   const projectId = req.projectId;
-  if (!projectId) {
-    return res.status(400).json({
-      success: false,
-      message: "projectId is required."
-    });
-  }
   let filter;
   try {
     filter = {

package/dist/routes/likes.js

@@ -16,13 +16,13 @@ router.post('/', async (req, res) => {
   } = req.body;
   const {
     userId,
-    projectId,
     contentId
   } = req.query;
-  if (!userId || typeof liked !== 'boolean' || !projectId) {
+  const projectId = req.projectId;
+  if (!userId || typeof liked !== 'boolean') {
     return res.status(400).json({
       success: false,
-      message: 'userId and projectId are required in query, liked (boolean) is required in body.'
+      message: 'userId is required in query, liked (boolean) is required in body.'
     });
   }
   try {
@@ -58,15 +58,9 @@ router.post('/', async (req, res) => {
 });
 router.get('/', async (req, res) => {
   const {
-    projectId,
     contentId
   } = req.query;
-  if (!projectId) {
-    return res.status(400).json({
-      success: false,
-      message: 'projectId is required in query.'
-    });
-  }
+  const projectId = req.projectId;
   try {
     const query = {
       projectId
@@ -97,14 +91,14 @@ router.get('/:likeId', async (req, res) => {
     likeId
   } = req.params;
   const {
-    projectId,
     contentId
   } = req.query;
+  const projectId = req.projectId;
   try {
     const filter = {
-      userId: new ObjectId(likeId)
+      userId: new ObjectId(likeId),
+      projectId
     };
-    if (projectId) filter.projectId = projectId;
     if (contentId) filter.contentId = contentId;
     const db = await getDb();
     const like = await db.collection('likes').findOne(filter);

package/dist/routes/ratings.js

@@ -65,12 +65,6 @@ router.get("/", async (req, res) => {
     userId
   } = req.query;
   const projectId = req.projectId;
-  if (!projectId) {
-    return res.status(400).json({
-      success: false,
-      message: "projectId is required."
-    });
-  }
   try {
     const query = {
       projectId
@@ -106,10 +100,10 @@ router.delete("/", async (req, res) => {
     ratingId
   } = req.query;
   const projectId = req.projectId;
-  if (!ratingId || !projectId) {
+  if (!ratingId) {
     return res.status(400).json({
       success: false,
-      message: "Both ratingId and projectId are required to delete a rating."
+      message: "ratingId is required to delete a rating."
     });
   }
   try {
@@ -143,10 +137,10 @@ router.get("/average", async (req, res) => {
     itemId
   } = req.query;
   const projectId = req.projectId;
-  if (!projectId || !itemId) {
+  if (!itemId) {
     return res.status(400).json({
       success: false,
-      message: "Both projectId and itemId are required."
+      message: "itemId is required."
     });
   }
   try {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "powr-sdk-api",
-  "version": "3.1.4",
+  "version": "3.1.6",
   "description": "Shared API core library for PowrStack projects",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",