freeCodeCamp/server/middlewares/validator.js

import validator from 'express-validator';
import { isPoly } from '../../common/utils/polyvinyl';

const isObject = val => !!val && typeof val === 'object';

export default function() {
  return validator({
    customValidators: {
      matchRegex(param, regex) {
        return regex.test(param);
      },
      isString(value) {
        return typeof value === 'string';
      },
      isNumber(value) {
        return typeof value === 'number';
      },
      isFiles(value) {
        if (!isObject(value)) {
          return false;
        }
        const keys = Object.keys(value);
        return !!keys.length &&
          // every key is a file
          keys.every(key => isObject(value[key])) &&
          // every file has contents
          keys.map(key => value[key]).every(file => isPoly(file));
      }
    },
    customSanitizers: {
      // Refer : http://stackoverflow.com/a/430240/1932901
      trimTags(value) {
        const tagBody = '(?:[^"\'>]|"[^"]*"|\'[^\']*\')*';
        const tagOrComment = new RegExp(
          '<(?:'
          // Comment body.
          + '!--(?:(?:-*[^->])*--+|-?)'
          // Special "raw text" elements whose content should be elided.
          + '|script\\b' + tagBody + '>[\\s\\S]*?</script\\s*'
          + '|style\\b' + tagBody + '>[\\s\\S]*?</style\\s*'
          // Regular name
          + '|/?[a-z]'
          + tagBody
          + ')>',
          'gi'
        );
        let rawValue;
        do {
          rawValue = value;
          value = value.replace(tagOrComment, '');
        } while (value !== rawValue);

        return value.replace(/</g, '&lt;');
      }
    }
  });
}
use (LMP)loopback middleware phases bump loopback-component-passport which uses LMP move custom middlewares to middlewares directory 2015-08-04 08:25:34 +00:00			`import validator from 'express-validator';`
Moves to next challenges 2016-06-01 22:52:08 +00:00			`import { isPoly } from '../../common/utils/polyvinyl';`

			`const isObject = val => !!val && typeof val === 'object';`
use (LMP)loopback middleware phases bump loopback-component-passport which uses LMP move custom middlewares to middlewares directory 2015-08-04 08:25:34 +00:00
Add validation to challenge completion Change ajax requests to send and accept JSON to preserve data types. Fix typos 2016-02-11 06:10:06 +00:00			`export default function() {`
			`return validator({`
			`customValidators: {`
			`matchRegex(param, regex) {`
			`return regex.test(param);`
			`},`
			`isString(value) {`
			`return typeof value === 'string';`
			`},`
			`isNumber(value) {`
			`return typeof value === 'number';`
Moves to next challenges 2016-06-01 22:52:08 +00:00			`},`
			`isFiles(value) {`
			`if (!isObject(value)) {`
			`return false;`
			`}`
			`const keys = Object.keys(value);`
			`return !!keys.length &&`
			`// every key is a file`
			`keys.every(key => isObject(value[key])) &&`
			`// every file has contents`
			`keys.map(key => value[key]).every(file => isPoly(file));`
Add validation to challenge completion Change ajax requests to send and accept JSON to preserve data types. Fix typos 2016-02-11 06:10:06 +00:00			`}`
feat(user): Report profiles This adds a simple email-based mechanism to report profiles for abuse. An email with text from the report is sent to Free Code Camp's support account with the reporter's account in copy. This also adds the reporter's details to the report for follow ups. 2016-12-14 21:24:59 +00:00			`},`
			`customSanitizers: {`
			`// Refer : http://stackoverflow.com/a/430240/1932901`
			`trimTags(value) {`
chore(packages): Update validator and express-validator 2017-12-26 21:17:54 +00:00			`const tagBody = '(?:[^"\'>]\|"[^"]"\|\'[^\']\')*';`
			`const tagOrComment = new RegExp(`
			`'<(?:'`
			`// Comment body.`
			`+ '!--(?:(?:-[^->])--+\|-?)'`
			`// Special "raw text" elements whose content should be elided.`
			`+ '\|script\\b' + tagBody + '>[\\s\\S]?</script\\s'`
			`+ '\|style\\b' + tagBody + '>[\\s\\S]?</style\\s'`
			`// Regular name`
			`+ '\|/?[a-z]'`
			`+ tagBody`
			`+ ')>',`
			`'gi'`
			`);`
			`let rawValue;`
			`do {`
			`rawValue = value;`
			`value = value.replace(tagOrComment, '');`
			`} while (value !== rawValue);`

			`return value.replace(/</g, '<');`
feat(user): Report profiles This adds a simple email-based mechanism to report profiles for abuse. An email with text from the report is sent to Free Code Camp's support account with the reporter's account in copy. This also adds the reporter's details to the report for follow ups. 2016-12-14 21:24:59 +00:00			`}`
use (LMP)loopback middleware phases bump loopback-component-passport which uses LMP move custom middlewares to middlewares directory 2015-08-04 08:25:34 +00:00			`}`
Add validation to challenge completion Change ajax requests to send and accept JSON to preserve data types. Fix typos 2016-02-11 06:10:06 +00:00			`});`
			`}`