CartoDB-SQL-API/app/controllers/app.js

var app    = require('express').createServer()
  , Step   = require(global.settings.app_root + '/lib/step')
  , oAuth  = require(global.settings.app_root + '/app/models/oauth')
  , PSQL   = require(global.settings.app_root + '/app/models/psql')  
  , _      = require('underscore');
  _.mixin(require('underscore.string'));


// CartoDB v1 SQL API
//
// all requests expect the following URL args:
// - `sql` {String} SQL to execute
//
// for private (read/write) queries:
// - `auth_token` {String} oAuth API token from CartoDB. In URL or request header.
//
// eg. /v1/?sql=SELECT 1 as one&auth_token=my_token
//
// for public (read only) queries:
// - `database` {String} The database to execute queries on
//
// eg. /v1/?sql=SELECT 1 as one&database=my_public_db
//
// NOTE: private queries can only be ran on databases the oAuth key gives access to. 
app.get('/v1/', function(req, res){
  
  //sanitize input
  var sql       = req.query.sql;
  var database  = req.query.database; 
  sql      = (sql == "")      ? null : sql;
  database = (database == "") ? null : database;  
    
  try {
    if (!_.isString(sql)) throw new Error("You must indicate a sql query");
    var pg;
    
    Step(
      function getUser() {
        oAuth.authorize(req, this);
      },
      function querySql(err, user_id){
        if (err) throw err;
        pg = new PSQL(user_id, database);
        pg.query(sql, this);
      },
      function packageResults(err, result){
        if (err) throw err;
        //pg.end(); //TODO: Fix this - we should use a proper generic pool
        res.send(result.rows);
      },
      function exceptionHandle(err, result){
        handleException(res,err);      
      }
    );  
  } catch (err) {
    handleException(res,err);
  }  
});

function handleException(res, err){
  var msg = (global.settings.environment == 'development') ? {error:[err.message], stack: err.stack} : {error:[err.message]}
  res.send(msg, 400);  
}

app.listen(global.settings.node_port);
//module.exports = app;
first draft, tidied, unit tests, modules, refactor, environments, see TODO for next steps" 2011-06-13 11:23:02 +08:00			`var app = require('express').createServer()`
			`, Step = require(global.settings.app_root + '/lib/step')`
			`, oAuth = require(global.settings.app_root + '/app/models/oauth')`
			`, PSQL = require(global.settings.app_root + '/app/models/psql')`
			`, _ = require('underscore');`
			`_.mixin(require('underscore.string'));`


			`// CartoDB v1 SQL API`
			`//`
			`// all requests expect the following URL args:`
			// - `sql` {String} SQL to execute
			`//`
			`// for private (read/write) queries:`
			// - `auth_token` {String} oAuth API token from CartoDB. In URL or request header.
			`//`
			`// eg. /v1/?sql=SELECT 1 as one&auth_token=my_token`
			`//`
			`// for public (read only) queries:`
			// - `database` {String} The database to execute queries on
			`//`
			`// eg. /v1/?sql=SELECT 1 as one&database=my_public_db`
			`//`
			`// NOTE: private queries can only be ran on databases the oAuth key gives access to.`
			`app.get('/v1/', function(req, res){`

			`//sanitize input`
remove args trim (broken for some reason) and funcionise exception handler 2011-06-13 20:07:21 +08:00			`var sql = req.query.sql;`
			`var database = req.query.database;`
first draft, tidied, unit tests, modules, refactor, environments, see TODO for next steps" 2011-06-13 11:23:02 +08:00			`sql = (sql == "") ? null : sql;`
remove args trim (broken for some reason) and funcionise exception handler 2011-06-13 20:07:21 +08:00			`database = (database == "") ? null : database;`

first draft, tidied, unit tests, modules, refactor, environments, see TODO for next steps" 2011-06-13 11:23:02 +08:00			`try {`
			`if (!_.isString(sql)) throw new Error("You must indicate a sql query");`
			`var pg;`

			`Step(`
			`function getUser() {`
			`oAuth.authorize(req, this);`
			`},`
			`function querySql(err, user_id){`
			`if (err) throw err;`
			`pg = new PSQL(user_id, database);`
			`pg.query(sql, this);`
			`},`
			`function packageResults(err, result){`
			`if (err) throw err;`
fix psql bug 2011-06-16 17:55:36 +08:00			`//pg.end(); //TODO: Fix this - we should use a proper generic pool`
first draft, tidied, unit tests, modules, refactor, environments, see TODO for next steps" 2011-06-13 11:23:02 +08:00			`res.send(result.rows);`
			`},`
			`function exceptionHandle(err, result){`
remove args trim (broken for some reason) and funcionise exception handler 2011-06-13 20:07:21 +08:00			`handleException(res,err);`
first draft, tidied, unit tests, modules, refactor, environments, see TODO for next steps" 2011-06-13 11:23:02 +08:00			`}`
			`);`
			`} catch (err) {`
remove args trim (broken for some reason) and funcionise exception handler 2011-06-13 20:07:21 +08:00			`handleException(res,err);`
first draft, tidied, unit tests, modules, refactor, environments, see TODO for next steps" 2011-06-13 11:23:02 +08:00			`}`
			`});`

remove args trim (broken for some reason) and funcionise exception handler 2011-06-13 20:07:21 +08:00			`function handleException(res, err){`
			`var msg = (global.settings.environment == 'development') ? {error:[err.message], stack: err.stack} : {error:[err.message]}`
			`res.send(msg, 400);`
			`}`

first draft, tidied, unit tests, modules, refactor, environments, see TODO for next steps" 2011-06-13 11:23:02 +08:00			`app.listen(global.settings.node_port);`
			`//module.exports = app;`