server/server.js

const express = require('express');
var passport = require('passport');
var Amadeus = require('amadeus');
var Strategy = require('passport-local').Strategy;
const bodyParser = require('body-parser');
const axios = require('axios');
const config = require('./config');
const utils = require('./utils');
const https = require('https');
const app = express();
const port = process.env.PORT || 5000;
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: true }));

// Use application-level middleware for common functionality, including
// logging, parsing, and session handling.
app.use(require('morgan')('combined'));
app.use(require('cookie-parser')());
app.use(require('express-session')({ secret: 'thequickbrownfoxjumpsoversomething', resave: true, saveUninitialized: false }));

// Initialize Passport and restore authentication state, if any, from the
// session.
app.use(passport.initialize());
app.use(passport.session());

var amadeus = new Amadeus({
    clientId: config.clientId,
    clientSecret: config.clientSecret,
});

var MongoClient = require('mongodb').MongoClient;

var ObjectID = new require('mongodb').ObjectID;

MongoClient.connect(config.url, {useNewUrlParser:true},function(err, client) {
    if (err) throw err;
    app.locals.db = client.db(config.db);
    app.listen(port, () => console.log(`Listening on port ${port}`));
    console.log("Database connected");
});

passport.use(new Strategy(
    function(username, password, cb) {
        app.locals.db.collection("companies").findOne({"username":username}, function(err, user) {
            if (err) { return cb(err); }
            if (!user) { return cb(null, false); }
            if (user.password != utils.hashPassword(password)) { return cb(null, false); }
            return cb(null, {_id:user._id,company_name: user.company_name,username:user.username});
        });
    }));

passport.serializeUser(function(user, cb) {
    cb(null, {_id:user._id,company_name: user.company_name,username:user.username});
});

passport.deserializeUser(function(user, cb) {
    app.locals.db.collection("companies").findOne({"_id":ObjectID(user._id)}, function (err, user) {
        if (err) { return cb(err); }
        cb(null, utils.parseOutPassword(user));
    });
});

app.get('/yelp',function (req, res) {
    axios.get('https://api.yelp.com/v3/businesses/search?limit=3&categories=venues&location='+req.query.location,{
        headers:{
            'Authorization': 'Bearer hGly48lgeqWTCo_lvHZYzvpNmoyuvK-awoGpsF5kWzr_loJYaD0wKDogWo171o-sWX1bzhRkNdVDmXndguWNt_DCV23DpSN4XVLgzUj7XntW1Go_55YPtQeDK-hwXHYx',
        },
    }).then((response) => {
            var response = response.data;
            res.send(response);
        },
        (error) => {
            var status = error.response.status
        }
    );
});

app.get('/yelp2',function (req, res) {
    axios.get('https://api.yelp.com/v3/businesses/search?limit=3&categories=hotels&location='+req.query.location,{
        headers:{
            'Authorization': 'Bearer hGly48lgeqWTCo_lvHZYzvpNmoyuvK-awoGpsF5kWzr_loJYaD0wKDogWo171o-sWX1bzhRkNdVDmXndguWNt_DCV23DpSN4XVLgzUj7XntW1Go_55YPtQeDK-hwXHYx',
        },
    }).then((response) => {
            var response = response.data;
            res.send(response);
        },
        (error) => {
            var status = error.response.status
        }
    );
});

app.get('/api/destination', async  function(req,res){
    var data = await amadeus.shopping.flightDestinations.get({
        origin : req.query.origin
    });
    data = await JSON.parse(data.body);
    res.send(data.data[0]);
});

app.get('/api/airport',async function (req,res) {
    // Airport Nearest Relevant Airport (for London)
    var data = await amadeus.referenceData.locations.airports.get({
        longitude : parseFloat(req.query.lng),
        latitude  : parseFloat(req.query.lat)
    });
    data = await JSON.parse(data.body);
    res.send(data["data"][0]);
});


app.get('/api/account',
    function(req, res) {
        res.send(utils.parseOutPassword(req.user));
    });

app.get('/api/login',
    function(req, res){
        res.send('login');
    });

app.post('/api/login',
    passport.authenticate('local'),
    function(req, res) {
        res.status(200).send(req.user);
    });

app.get('/api/logout',
    function(req, res){
        req.logout();
        res.redirect('/');
    });

app.put('/api/employee/:id',
    async function(req,res){
        try{
            var name = req.body.name;
            var airline_class = req.body.airline_class;
            var longitude = req.body.longitude;
            var location = req.body.location;
            var latitude = req.body.latitude;
            var data = {};
            if(utils.validVenueName(name)){
                data['employee.$.name'] = name;
            }
            if(utils.validLocation(location)){
                data['employee.$.location'] = location;
            }
            if(!isNaN(parseFloat(longitude))){
                data['employee.$.longitude'] = longitude;
            }
            if(!isNaN(parseFloat(latitude))) {
                data['employee.$.latitude'] = latitude;
            }
            if(utils.validAirlineClass(airline_class)){
                data['employee.$.airline_class'] = airline_class;
            }
            if(data != {}) {
                const db = req.app.locals.db;
                console.log(data);
                var company = await db.collection("companies").findOneAndUpdate({_id: ObjectID(req.user._id),'employee._id':ObjectID(req.params.id)}, {
                    $set: data,
                }, {returnOriginal: false});
                console.log(req.user._id);
                if (company) {
                    res.send(utils.parseOutPassword(company.value));
                } else {
                    res.send({"message": "Could not update employee"});
                }
            }else{
                res.send({"message":"Invalid data"});
            }
        }catch (e) {
            console.log(e);
            res.end();
        }
    });

app.delete('/api/employee/:id',
    async function(req,res){
        try{
            var employee_id = req.params.id;
            const db = req.app.locals.db;
            var company = await db.collection("companies").findOneAndUpdate({_id:ObjectID(req.user._id)},{$pull:{employee:{_id:ObjectID(employee_id)}}},{returnOriginal:false});
            if(company){
                res.send(utils.parseOutPassword(company.value));
            }else{
                res.send({"message":"Could not delete employee"});
            }
        }catch (e) {
            console.log(e);
            res.end();
        }
    });

app.post('/api/employee',
    async function(req,res){
        try{
            var name = req.body.name;
            var airline_class = req.body.airline_class;
            var longitude = req.body.longitude;
            var latitude = req.body.latitude;
            var location = req.body.location;
            if(utils.validName(name) && !isNaN(parseFloat(longitude)) && !isNaN(parseFloat(latitude)) && utils.validAirlineClass(airline_class) && utils.validLocation(location)){
                const db = req.app.locals.db;
                var company = await db.collection("companies").findOneAndUpdate({_id:ObjectID(req.user._id)},{$push:{employee:{name:name,airline_class:airline_class,longitude:longitude,location:location,latitude:latitude,_id:ObjectID()}}},{returnOriginal:false});
                if(company){
                    res.send(utils.parseOutPassword(company.value));
                }else{
                    res.send({"message":"Could not create employee"});
                }
            }else{
                res.send("error")//TODO throw better error
            }
        }catch (e) {
            console.log(e);
            res.end();
        }
    });

app.delete('/api/venue/:id',
    async function(req,res){
        try{
            var employee_id = req.params.id;
            const db = req.app.locals.db;
            var company = await db.collection("companies").findOneAndUpdate({_id:ObjectID(req.user._id)},{$pull:{venue:{_id:ObjectID(employee_id)}}},{returnOriginal:false});
            if(company){
                res.send(utils.parseOutPassword(company.value));
            }else{
                res.send({"message":"Could not delete venue"});
            }
        }catch (e) {
            console.log(e);
            res.end();
        }
    });

app.put('/api/venue/:id',
    async function(req,res){
        try{
            var name = req.body.name;
            var longitude = req.body.longitude;
            var latitude = req.body.latitude;
            var location = req.body.location;
            var data = {};
            if(utils.validVenueName(name)){
                data['venue.$.name'] = name;
            }
            if(!isNaN(parseFloat(longitude))){
                data['venue.$.longitude'] = longitude;
            }
            if(!isNaN(parseFloat(latitude))) {
                data['venue.$.latitude'] = latitude;
            }
            if(utils.validLocation(location)){
                data['venue.$.location'] = location;
            }
            if(data != {}) {
                const db = req.app.locals.db;
                var company = await db.collection("companies").findOneAndUpdate({_id: ObjectID(req.user._id),'venue._id':ObjectID(req.params.id)}, {
                    $set: data,
                }, {returnOriginal: false});
                if (company) {
                    res.send(utils.parseOutPassword(company.value));
                } else {
                    res.send({"message": "Could not update venue"});
                }
            }else{
                res.send({"message":"Invalid data"});
            }
        }catch (e) {
            console.log(e);
            res.end();
        }
    });

app.post('/api/venue',
    async function(req,res){
        try{
            var name = req.body.name;
            var longitude = req.body.longitude;
            var latitude = req.body.latitude;
            var location = req.body.location;
            if(utils.validVenueName(name) && !isNaN(parseFloat(longitude)) && !isNaN(parseFloat(latitude)) && utils.validLocation(location)){
                const db = req.app.locals.db;
                var company = await db.collection("companies").findOneAndUpdate({_id:ObjectID(req.user._id)},{$push:{venue:{name:name,longitude:longitude,latitude:latitude,location:location,_id:ObjectID()}}},{returnOriginal:false});
                if(company){
                    res.send(utils.parseOutPassword(company.value));
                }else{
                    res.send({"message":"Could not create venue"});
                }
            }else{
                res.send("error")//TODO throw better error
            }
        }catch (e) {
            console.log(e);
            res.end();
        }
    });

app.post('/api/signup', async (req, res) => {
    try {
        var username = req.body.username;
        var password = req.body.password;
        var company_name = req.body.company_name;
        if(utils.validCompanyName(company_name) && utils.validPassword(password) && utils.validUsername(username)) {
            const db = req.app.locals.db;
            const company = await db.collection("companies").findOne({$or:[{"company_name":company_name},{"username":username}]});
            if (company) {
                //Company or username already exists
                res.send({"message":"Company Name or Username already exists"});
            } else {
                //Sign up the company
                var user = await db.collection("companies").insertOne({"company_name":company_name,"employee":[],"venue":[],"username":username,"password":utils.hashPassword(password)});
                if(user){
                    user = user.ops[0];
                    res.send(utils.parseOutPassword(user));
                }else{
                    //Could not create user
                    res.send("error")//TODO throw better error
                }
            }
        }else{
            res.end();
        }
    }catch (e) {
        console.log(e);
        res.end();
    }
});

app.post('/api/search', async (req, res) => {
    try {
        var startDate = req.body.startDate;
        var endDate = req.body.endDate;
        var peopleInputs = req.body.peopleInputs;
        console.log(peopleInputs);
        var venueInputs = req.body.venueInputs;

        var dest_set = [];
        var src_dict = {};
        for(var i = 0; i < venueInputs.length; i++) {
            var dest_response = await amadeus.referenceData.locations.airports.get({
                longitude : venueInputs[i].longitude,
                latitude  : venueInputs[i].latitude
            });
            var data = JSON.parse(dest_response.body);
            data = data.data;
            venueInputs[i].iata = data[0]['iataCode'];
            dest_set.push(data[0]['iataCode']);
        }

        for(var i = 0; i < peopleInputs.length; i++) {
            var src_response = await amadeus.referenceData.locations.airports.get({
                longitude : peopleInputs[i].longitude,
                latitude  : peopleInputs[i].latitude
            });
            var temp = JSON.parse(src_response.body);
            temp = temp.data;
            var airportCode = temp[0]['iataCode'];
            peopleInputs[i].iata = airportCode;
            if(airportCode in src_dict) {
                src_dict[airportCode] = src_dict[airportCode] + 1;
            }
            else {
                src_dict[airportCode] = 1;
            }
        }
        var endpoint_url = 'https://us-central1-hackathon-232619.cloudfunctions.net/pythonCall?';
        endpoint_url+=('&dl=' + JSON.stringify(src_dict));
        endpoint_url+=('&mo=' + dest_set.join(","));
        endpoint_url+=('&date=' + formatDate(startDate));
        console.log(endpoint_url);
        https.get(endpoint_url, (resp) => {
            let data = '';
            resp.on('data', (chunk) => {
                data += chunk;
            });
            resp.on('end', () => {
                var t = data.split(",");
                var  city = t[0].substring(2,t[0].length)+","+t[1].substring(1,t[1].length-1);
                var cost = t[2].substring(t[2].length-2).trim();
                cost = cost.substring(0,cost.length-1);
                var response = {peopleInputs:peopleInputs,venueInputs:venueInputs,city:city,cost:cost};
                res.send(response);
            });
        }).on("error", (err) => {
            console.log("Error");
        });
        //TODO: parse and return requested info

    }catch (e) {
        console.log(e);
        res.end();
    }
});

function formatDate(date) {
    var d = new Date(date),
        month = '' + (d.getMonth() + 1),
        day = '' + d.getDate(),
        year = d.getFullYear();

    if (month.length < 2) month = '0' + month;
    if (day.length < 2) day = '0' + day;

    return [year, month, day].join('-');
}