Merge branch 'email/unsubscribe'

Author: Hans Kristian Flaatten

apps/auth/controller.js

@@ -20,10 +20,16 @@ const qs = require('querystring');
 const admins = new Set(process.env.APP_ADMINS.split(','));
 
 app.get('/login', (req, res) => {
-  const error = req.query.error;
-  const errorDescription = req.query.error_description;
+  let error;
 
-  res.render('login.html', { req, error, errorDescription });
+  if (req.query.error) {
+    error = {
+      title: `Error: ${req.query.error}`,
+      message: req.query.error_description,
+    };
+  }
+
+  res.render('login.html', { req, error });
 });
 
 app.get('/logout', (req, res) => {

apps/auth/middleware.js

@@ -11,8 +11,7 @@ module.exports = function authMiddleware(req, res, next) {
   if (!req.session.auth
       && !/^\/favicon.ico/.test(req.originalUrl)
       && !/^\/login/.test(req.originalUrl)
-      && !/^\/page\//.test(req.originalUrl)
-      && !/^\/app(\/[^\/]+){2}\/(webhook|[0-9a-f]{40})\/?$/.test(req.originalUrl)
+      && !/^\/email/.test(req.originalUrl)
   ) {
     return res.redirect('/login');
   }

apps/email/controller.js

@@ -0,0 +1,75 @@
+/* eslint no-unused-vars: 0 */
+'use strict';
+
+const router = require('express').Router;
+
+const app = router();
+const ApiUser = require('../app/model').ApiUser;
+
+app.get('/', (req, res) => res.redirect('/email/unsubscribe'));
+
+app.get('/unsubscribe', (req, res, next) => {
+  if (req.session.auth) {
+    res.redirect('/profile');
+  } else {
+    next();
+  }
+});
+
+app.get('/unsubscribe', (req, res, next) => {
+  const error = req.session.message;
+
+  delete req.session.message;
+  res.render('email/unsubscribe.html', { req, error });
+});
+
+app.get('/unsubscribed', (req, res, next) => {
+  const error = {
+    class: 'positive',
+    title: 'Avmelding gjennomført',
+    message: 'Du vil ikke lenger motta epost fra Nasjonal Turbase.',
+  };
+
+  res.render('email/unsubscribed.html', { req, error });
+});
+
+app.post('/unsubscribe', (req, res, next) => {
+  if (!req.body.email) {
+    req.session.message = {
+      title: 'Avmelding feilet',
+      message: 'Epost kan ikke være tom',
+    };
+
+    res.set('x-app-status', 'failure');
+    res.set('x-app-message', 'empty_email');
+    return res.redirect(303, '/email/unsubscribe');
+  }
+
+  return ApiUser.findOne({ 'contact.email': req.body.email }, (findErr, user) => {
+    if (findErr) { return res.redirect('/email/unsubscribe'); }
+    if (!user) { return res.redirect(303, '/email/unsubscribed'); }
+
+    user.notify = false;
+    return user.save({ validateBeforeSave: false }, (saveErr) => {
+      if (saveErr) { return res.redirect(303, '/email/unsubscribe'); }
+      return res.redirect(303, '/email/unsubscribed');
+    });
+  });
+});
+
+app.get('/unsubscribe/:id', (req, res, next) => {
+  ApiUser.findOne({ _id: req.params.id }, (findErr, user) => {
+    if (findErr) { return res.redirect(303, '/email/unsubscribe'); }
+    if (!user) { return res.redirect(303, '/email/unsubscribed'); }
+
+    user.notify = false;
+    return user.save({ validateBeforeSave: false }, (saveErr) => {
+      if (saveErr) { return res.redirect(303, '/email/unsubscribe'); }
+      return res.redirect(303, '/email/unsubscribed');
+    });
+  });
+});
+
+app.get('*', (req, res) => res.redirect('/email'));
+
+module.exports = app;

index.js

@@ -36,6 +36,7 @@ app.use('/', require('./apps/auth/controller'));
 app.use('/profile', require('./apps/profile/controller'));
 app.use('/app', require('./apps/app/controller'));
 app.use('/admin', require('./apps/admin/controller'));
+app.use('/email', require('./apps/email/controller'));
 
 // Redirect to /app
 app.get('/', (req, res) => {

test/acceptance/email.js

@@ -0,0 +1,171 @@
+'use strict';
+
+const assert = require('assert');
+const supertest = require('supertest');
+const req = supertest(require('../../').app);
+
+const ApiUser = require('../../apps/app/model').ApiUser;
+const apps = require('../fixtures/apps');
+
+describe('GET /email', () => {
+  const url = '/email';
+
+  it('redirects user to unsubscribe', done => {
+    req.get(url)
+      .expect(302)
+      .expect('Location', '/email/unsubscribe', done);
+  });
+});
+
+describe('GET /email/unsubscribe', () => {
+  const url = '/email/unsubscribe';
+
+  it('redirects authenticated user to profile', done => {
+    req.get(url)
+      .set('Cookie', process.env.USER_NO_APPS_COOKIE)
+      .expect(302)
+      .expect('Location', '/profile', done);
+  });
+
+  it('returns unsubscribe form', done => {
+    req.get(url)
+      .expect(200)
+      .expect(/Avmelding/)
+      .expect(/Meld av/, done);
+  });
+});
+
+describe('POST /email/unsubscribe', () => {
+  const url = '/email/unsubscribe';
+
+  it('returns error for missing email', done => {
+    req.post(url)
+      .type('form')
+      .expect(303)
+      .expect('x-app-status', 'failure')
+      .expect('x-app-message', 'empty_email')
+      .expect('Location', '/email/unsubscribe', done);
+  });
+
+  it('unsubscribes existing API user', done => {
+    req.post(url)
+      .type('form')
+      .send({ email: apps[2].contact.email })
+      .expect(303)
+      .expect('Location', '/email/unsubscribed')
+      .end(err => {
+        assert.ifError(err);
+
+        ApiUser.findOne({ _id: apps[2]._id }, (findErr, user) => {
+          assert.ifError(findErr);
+          assert.equal(user.notify, false);
+          done();
+        });
+      });
+  });
+
+  it('unsubscribes unsubscribed API user', done => {
+    req.post(url)
+      .type('form')
+      .send({ email: apps[3].contact.email })
+      .expect(303)
+      .expect('Location', '/email/unsubscribed')
+      .end(err => {
+        assert.ifError(err);
+
+        ApiUser.findOne({ _id: apps[3]._id }, (findErr, user) => {
+          assert.ifError(findErr);
+          assert.equal(user.notify, false);
+          done();
+        });
+      });
+  });
+
+  it('unsubscribes non-existing API user', done => {
+    const id = '999999999999999999999999';
+    const email = '[email protected]';
+
+    req.post(url)
+      .type('form')
+      .send({ email })
+      .expect(303)
+      .expect('Location', '/email/unsubscribed')
+      .end(err => {
+        assert.ifError(err);
+
+        ApiUser.findOne({ _id: id }, (findErr, user) => {
+          assert.ifError(findErr);
+          assert.deepEqual(user, null);
+          done();
+        });
+      });
+  });
+});
+
+describe('GET /email/unsubscribed', () => {
+  const url = '/email/unsubscribed';
+
+  it('returns unsubscribed page', done => {
+    req.get(url)
+      .expect(200)
+      .expect(/Avmeldt/)
+      .expect(/Avmelding gjennomført/, done);
+  });
+});
+
+describe('GET /email/unsubscribe/:id', () => {
+  const url = '/email/unsubscribe';
+
+  it('redirects user for invalid :id', done => {
+    req.get(`${url}/123abc`)
+      .expect(303)
+      .expect('Location', '/email/unsubscribe', done);
+  });
+
+  it('unsubscribes existing API user', done => {
+    req.get(`${url}/${apps[1]._id}`)
+      .expect(303)
+      .expect('Location', '/email/unsubscribed')
+      .end(err => {
+        assert.ifError(err);
+
+        ApiUser.findOne({ _id: apps[1]._id }, (findErr, user) => {
+          assert.ifError(findErr);
+          assert.equal(user.notify, false);
+          done();
+        });
+      });
+  });
+
+  it('unsubscribes unsubscribed API user', done => {
+    req.get(`${url}/${apps[2]._id}`)
+      .expect(303)
+      .expect('Location', '/email/unsubscribed')
+      .end(err => {
+        assert.ifError(err);
+
+        ApiUser.findOne({ _id: apps[2]._id }, (findErr, user) => {
+          assert.ifError(findErr);
+          assert.equal(user.notify, false);
+          done();
+        });
+      });
+  });
+
+  it('unsubscribes non-existing API user', done => {
+    const id = '999999999999999999999999';
+
+    req.get(`${url}/${id}`)
+      .expect(303)
+      .expect('Location', '/email/unsubscribed')
+      .end(err => {
+        assert.ifError(err);
+
+        ApiUser.findOne({ _id: id }, (findErr, user) => {
+          assert.ifError(findErr);
+          assert.deepEqual(user, null);
+          done();
+        });
+      });
+  });
+});

views/email/unsubscribe.html

@@ -0,0 +1,26 @@
+{% extends "login.html" %}
+
+{% block title %}Avmelding – Nasjonal Turbase{% endblock %}
+
+{% block form %}
+<h2 class="ui image header">
+  <i class="send icon"></i>
+  <div class="content">Avmelding</div>
+</h2>
+<form class="ui large form" method="post">
+  <div class="ui stacked segment">
+    <div class="two fields">
+      <div class="field">
+        <input name="email" type="email" placeholder="Epost">
+      </div>
+      <div class="field">
+        <button type="submit" class="ui fluid large submit button">
+          Meld av
+        </button>
+      </div>
+    </div>
+  </div>
+
+  {% include "components/message.html" %}
+</form>
+{% endblock %}

views/email/unsubscribed.html

@@ -0,0 +1,11 @@
+{% extends "login.html" %}
+
+{% block title %}Avmeldt – Nasjonal Turbase{% endblock %}
+
+{% block form %}
+<h2 class="ui image header">
+  <i class="send outline icon"></i>
+  <div class="content">Avmeldt</div>
+</h2>
+
+{% endblock %}

views/login.html

@@ -24,26 +24,21 @@
 
 <div class="ui middle aligned center aligned grid">
   <div class="column">
-    <h2 class="ui green image header">
-      <i class="huge map icon"></i>
-      <div class="content">Nasjonal Turbase Developer</div>
-    </h2>
-    <form class="ui large form">
-      <div class="ui stacked segment">
-        <a href="/login/github" class="ui fluid large green submit button">
-          <i class="github icon"></i> Logg inn med GitHub
-        </a>
-      </div>
+    {% block form %}
+      <h2 class="ui green image header">
+        <i class="huge map icon"></i>
+        <div class="content">Nasjonal Turbase Developer</div>
+      </h2>
+      <form class="ui large form">
+        <div class="ui stacked segment">
+          <a href="/login/github" class="ui fluid large green submit button">
+            <i class="github icon"></i> Logg inn med GitHub
+          </a>
+        </div>
+      </form>
+    {% endblock %}
 
-    {% if error %}
-      <div class="ui left aligned top aligned negative message">
-        <i class="close icon"></i>
-        <div class="header">Error: {{ error }}</div>
-        <p>{{ errorDescription }}</p>
-      </div>
-    {% endif %}
-
-    </form>
+    {% include "components/message.html" %}
 
     <div class="ui message">
       Ny til Nasjonal Turbase? <a href="http://www.nasjonalturbase.no">Les mer</a>