<%= i18n('That\'s right-- you can use either i18n() or __()') %>
25 | ``` 26 | 27 | ## Configuration 28 | Localization/internationalization config can be found in `config/i18n.js`, from where you can set your supported locales. 29 | -------------------------------------------------------------------------------- /config/log.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Built-in Log Configuration 3 | * (sails.config.log) 4 | * 5 | * Configure the log level for your app, as well as the transport 6 | * (Underneath the covers, Sails uses Winston for logging, which 7 | * allows for some pretty neat custom transports/adapters for log messages) 8 | * 9 | * For more information on the Sails logger, check out: 10 | * http://sailsjs.org/#/documentation/concepts/Logging 11 | */ 12 | 13 | module.exports.log = { 14 | 15 | /*************************************************************************** 16 | * * 17 | * Valid `level` configs: i.e. the minimum log level to capture with * 18 | * sails.log.*() * 19 | * * 20 | * The order of precedence for log levels from lowest to highest is: * 21 | * silly, verbose, info, debug, warn, error * 22 | * * 23 | * You may also set the level to "silent" to suppress all logs. * 24 | * * 25 | ***************************************************************************/ 26 | 27 | // level: 'info' 28 | 29 | }; 30 | -------------------------------------------------------------------------------- /api/responses/ok.js: -------------------------------------------------------------------------------- 1 | /** 2 | * 200 (OK) Response 3 | * 4 | * Usage: 5 | * return res.ok(); 6 | * return res.ok(data); 7 | * return res.ok(data, 'auth/login'); 8 | * 9 | * @param {Object} data 10 | * @param {String|Object} options 11 | * - pass string to render specified view 12 | */ 13 | 14 | module.exports = function sendOK (data, options) { 15 | 16 | // Get access to `req`, `res`, & `sails` 17 | var req = this.req; 18 | var res = this.res; 19 | var sails = req._sails; 20 | 21 | sails.log.silly('res.ok() :: Sending 200 ("OK") response'); 22 | 23 | // Set status code 24 | res.status(200); 25 | 26 | // If appropriate, serve data as JSON(P) 27 | if (req.wantsJSON) { 28 | return res.jsonx(data); 29 | } 30 | 31 | // If second argument is a string, we take that to mean it refers to a view. 32 | // If it was omitted, use an empty object (`{}`) 33 | options = (typeof options === 'string') ? { view: options } : options || {}; 34 | 35 | // If a view was provided in options, serve it. 36 | // Otherwise try to guess an appropriate view, or if that doesn't 37 | // work, just send JSON. 38 | if (options.view) { 39 | return res.view(options.view, { data: data }); 40 | } 41 | 42 | // If no second argument provided, try to serve the implied view, 43 | // but fall back to sending JSON(P) if no view can be inferred. 44 | else return res.guessView({ data: data }, function couldNotGuessView () { 45 | return res.jsonx(data); 46 | }); 47 | 48 | }; 49 | -------------------------------------------------------------------------------- /tasks/config/jst.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Precompiles Underscore templates to a `.jst` file. 3 | * 4 | * --------------------------------------------------------------- 5 | * 6 | * (i.e. basically it takes HTML files and turns them into tiny little 7 | * javascript functions that you pass data to and return HTML. This can 8 | * speed up template rendering on the client, and reduce bandwidth usage.) 9 | * 10 | * For usage docs see: 11 | * https://github.com/gruntjs/grunt-contrib-jst 12 | * 13 | */ 14 | 15 | module.exports = function(grunt) { 16 | 17 | var templateFilesToInject = [ 18 | 'templates/**/*.html' 19 | ]; 20 | 21 | grunt.config.set('jst', { 22 | dev: { 23 | 24 | // To use other sorts of templates, specify a regexp like the example below: 25 | // options: { 26 | // templateSettings: { 27 | // interpolate: /\{\{(.+?)\}\}/g 28 | // } 29 | // }, 30 | 31 | // Note that the interpolate setting above is simply an example of overwriting lodash's 32 | // default interpolation. If you want to parse templates with the default _.template behavior 33 | // (i.e. using ), there's no need to overwrite `templateSettings.interpolate`. 34 | 35 | 36 | files: { 37 | // e.g. 38 | // 'relative/path/from/gruntfile/to/compiled/template/destination' : ['relative/path/to/sourcefiles/**/*.html'] 39 | '.tmp/public/jst.js': require('../pipeline').templateFilesToInject 40 | } 41 | } 42 | }); 43 | 44 | grunt.loadNpmTasks('grunt-contrib-jst'); 45 | }; 46 | -------------------------------------------------------------------------------- /config/env/production.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Production environment settings 3 | * 4 | * This file can include shared settings for a production environment, 5 | * such as API keys or remote database passwords. If you're using 6 | * a version control solution for your Sails app, this file will 7 | * be committed to your repository unless you add it to your .gitignore 8 | * file. If your repository will be publicly viewable, don't add 9 | * any private information to this file! 10 | * 11 | */ 12 | 13 | module.exports = { 14 | 15 | /*************************************************************************** 16 | * Set the default database connection for models in the production * 17 | * environment (see config/connections.js and config/models.js ) * 18 | ***************************************************************************/ 19 | 20 | // models: { 21 | // connection: 'someMysqlServer' 22 | // }, 23 | 24 | /*************************************************************************** 25 | * Set the port in the production environment to 80 * 26 | ***************************************************************************/ 27 | 28 | // port: 80, 29 | 30 | /*************************************************************************** 31 | * Set the log level in production environment to "silent" * 32 | ***************************************************************************/ 33 | 34 | // log: { 35 | // level: "silent" 36 | // } 37 | 38 | }; 39 | -------------------------------------------------------------------------------- /config/models.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Default model configuration 3 | * (sails.config.models) 4 | * 5 | * Unless you override them, the following properties will be included 6 | * in each of your models. 7 | * 8 | * For more info on Sails models, see: 9 | * http://sailsjs.org/#/documentation/concepts/ORM 10 | */ 11 | 12 | module.exports.models = { 13 | 14 | /*************************************************************************** 15 | * * 16 | * Your app's default connection. i.e. the name of one of your app's * 17 | * connections (see `config/connections.js`) * 18 | * * 19 | ***************************************************************************/ 20 | // connection: 'localDiskDb', 21 | 22 | connection: 'mysql1', 23 | 24 | 25 | /*************************************************************************** 26 | * * 27 | * How and whether Sails will attempt to automatically rebuild the * 28 | * tables/collections/etc. in your schema. * 29 | * * 30 | * See http://sailsjs.org/#/documentation/concepts/ORM/model-settings.html * 31 | * * 32 | ***************************************************************************/ 33 | // migrate: 'alter' 34 | migrate: 'alter' 35 | 36 | }; 37 | -------------------------------------------------------------------------------- /tests/node_modules/Local/SymbolicError.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Unit test for SymbolicError 3 | */ 4 | 5 | var TestSetup = require ('Local/TestSetup') 6 | var test = new TestSetup (__filename) 7 | var SymbolicError = test.require () 8 | 9 | var assert = require ('assert') 10 | 11 | describe ('SymbolicError, constructor forms)', function () { 12 | describe ('#constructor all args', function () { 13 | it ('has its properties set after the constructor', function () { 14 | // To generate stack trace 15 | SymbolicError.setDebug (true) 16 | 17 | var s = 'login and password invalid'; 18 | var e2 = new Error ("blah blah") 19 | var e = new SymbolicError ('auth.badCredentials', s, e2) 20 | assert (e.code === 'auth.badCredentials') 21 | assert (e.chained === e2) 22 | assert (e.message === s) 23 | 24 | // Look for stack trace in test 25 | if (e2.stack) 26 | console.log (("" + e).indexOf ('Test.Runnable') > 0) 27 | }) 28 | }), 29 | 30 | describe ('#constructor 2 args, first null (symbol)', function () { 31 | it ('has default symbol unknown and message that was passed', function () { 32 | var s = 'login and password invalid' 33 | var e = new SymbolicError (null, s) 34 | assert (e.code === 'unknown') 35 | assert (e.message === s) 36 | }) 37 | }), 38 | 39 | describe ('#constructor instanceof Error', function () { 40 | it ('is an instanceof Error class', function () { 41 | var e = new SymbolicError () 42 | assert (e instanceof Error); 43 | }) 44 | }) 45 | }) 46 | 47 | -------------------------------------------------------------------------------- /lib/SymbolicError.js: -------------------------------------------------------------------------------- 1 | /** 2 | * @module Local/SymbolicError 3 | * @desc Error object with symbolic code (symbol) and error chaining 4 | * @example 5 | * 6 | * if (someError) 7 | * throw new SymbolicError ('auth.badCredentials', "Login/Password pair not valid.") 8 | * 9 | * // example 2: chaining exceptions ... 10 | * 11 | * } catch (e) { 12 | * throw new SymbolicError ('auth.badCredentials', 'bad credentials', e) 13 | * } 14 | * 15 | * // Turn on verbose debugging (stack dump) in stringify output 16 | * 17 | * SymbolicError.setDebug (true) 18 | */ 19 | 20 | module.exports = SymbolicError 21 | 22 | var inherits = require ('util').inherits 23 | 24 | var _debug = false 25 | 26 | function SymbolicError (code, message, chainedException) { 27 | Error.call (this, message) 28 | this.code = code ? code : 'unknown' 29 | this.message = message ? message : "" 30 | 31 | if (_debug) 32 | this.chained = chainedException ? chainedException : null 33 | } 34 | 35 | inherits (SymbolicError, Error) 36 | 37 | var Class = SymbolicError.prototype 38 | 39 | /** 40 | * Turns on debugging, which prints stack trace of e on trace. 41 | */ 42 | Class.setDebug = SymbolicError.setDebug = function (val) { _debug = val ? true : false } 43 | Class.getDebug = SymbolicError.getDebug = function () { return _debug } 44 | 45 | Class.toString = function () { 46 | var s = "SymbolicError(" + this.code + "): " + this.message 47 | 48 | if ( ! _debug) 49 | return s 50 | 51 | if (this.stack) 52 | return s + "\n: " + this.stack 53 | 54 | if ( ! this.chained) 55 | return s 56 | 57 | if (this.chained.stack) 58 | return s + "\n: " + this.chained.stack 59 | 60 | s += "\nChained: " + this.chained 61 | return s 62 | } 63 | 64 | 65 | 66 | 67 | 68 | -------------------------------------------------------------------------------- /lib/Params.js: -------------------------------------------------------------------------------- 1 | /** 2 | * @module Local/Params.js 3 | * @desc Utility object for handling Sails query parameters 4 | */ 5 | 6 | var _ = require ('lodash') 7 | var SymbolicError = require ('Local/SymbolicError') 8 | var JoiParamError = require ('Local/JoiParamError') 9 | 10 | module.exports = Params 11 | 12 | var _copyMap = function (map) { 13 | var obj = {}; 14 | Object.getOwnPropertyNames (map).forEach (function (key) { obj [key] = map [key] }) 15 | return obj; 16 | } 17 | 18 | function Params (httpRequest, optSchema) { 19 | var map = httpRequest.params.all (); 20 | this.items = _copyMap (map) 21 | this.schema = optSchema ? optSchema : null 22 | 23 | // Not sure where this comes from, but it's not a query param so delete it 24 | this.delete ("id") 25 | } 26 | 27 | var Class = Params.prototype; 28 | 29 | Class.delete = function (name) { 30 | delete this.items [name]; 31 | return this 32 | } 33 | 34 | Class.has = function (name) { return this.items [name] !== undefined } 35 | Class.get = function (name) { return this.items [name] } 36 | 37 | /** 38 | * criteria is a scalar or an array 39 | */ 40 | Class.apply = function (collection, fnEach) { 41 | var that = this; 42 | _.each (collection, function (v) { 43 | if (that.items.hasOwnProperty (v)) 44 | that.items [v] = fnEach (that.items [v]); 45 | }) 46 | 47 | return this 48 | } 49 | 50 | Class.toString = function () { return JSON.stringify (this.items) } 51 | 52 | Class.validate = function () { 53 | if (this.schema === null) 54 | throw new SymbolicError ('bug.schemaIsNull', 'call to validate() with null schema in ctor'); 55 | 56 | this.schema.validate (this.items, function (e, value) { 57 | if (e) 58 | throw new JoiParamError(e) 59 | }); 60 | 61 | return this 62 | } 63 | 64 | Class.getAll = function () { return _copyMap (this.items) } 65 | 66 | 67 | 68 | -------------------------------------------------------------------------------- /app.js: -------------------------------------------------------------------------------- 1 | /** 2 | * app.js 3 | * 4 | * Use `app.js` to run your app without `sails lift`. 5 | * To start the server, run: `node app.js`. 6 | * 7 | * This is handy in situations where the sails CLI is not relevant or useful. 8 | * 9 | * For example: 10 | * => `node app.js` 11 | * => `forever start app.js` 12 | * => `node debug app.js` 13 | * => `modulus deploy` 14 | * => `heroku scale` 15 | * 16 | * 17 | * The same command-line arguments are supported, e.g.: 18 | * `node app.js --silent --port=80 --prod` 19 | */ 20 | 21 | // Ensure we're in the project directory, so relative paths work as expected 22 | // no matter where we actually lift from. 23 | process.chdir(__dirname); 24 | 25 | // Ensure a "sails" can be located: 26 | (function() { 27 | var sails; 28 | try { 29 | sails = require('sails'); 30 | } catch (e) { 31 | console.error('To run an app using `node app.js`, you usually need to have a version of `sails` installed in the same directory as your app.'); 32 | console.error('To do that, run `npm install sails`'); 33 | console.error(''); 34 | console.error('Alternatively, if you have sails installed globally (i.e. you did `npm install -g sails`), you can use `sails lift`.'); 35 | console.error('When you run `sails lift`, your app will still use a local `./node_modules/sails` dependency if it exists,'); 36 | console.error('but if it doesn\'t, the app will run with the global sails instead!'); 37 | return; 38 | } 39 | 40 | // Try to get `rc` dependency 41 | var rc; 42 | try { 43 | rc = require('rc'); 44 | } catch (e0) { 45 | try { 46 | rc = require('sails/node_modules/rc'); 47 | } catch (e1) { 48 | console.error('Could not find dependency: `rc`.'); 49 | console.error('Your `.sailsrc` file(s) will be ignored.'); 50 | console.error('To resolve this, run:'); 51 | console.error('npm install rc --save'); 52 | rc = function () { return {}; }; 53 | } 54 | } 55 | 56 | 57 | // Start server 58 | sails.lift(rc('sails')); 59 | })(); 60 | -------------------------------------------------------------------------------- /api/responses/badRequest.js: -------------------------------------------------------------------------------- 1 | /** 2 | * 400 (Bad Request) Handler 3 | * 4 | * Usage: 5 | * return res.badRequest(); 6 | * return res.badRequest(data); 7 | * return res.badRequest(data, 'some/specific/badRequest/view'); 8 | * 9 | * e.g.: 10 | * ``` 11 | * return res.badRequest( 12 | * 'Please choose a valid `password` (6-12 characters)', 13 | * 'trial/signup' 14 | * ); 15 | * ``` 16 | */ 17 | 18 | module.exports = function badRequest(data, options) { 19 | 20 | // Get access to `req`, `res`, & `sails` 21 | var req = this.req; 22 | var res = this.res; 23 | var sails = req._sails; 24 | 25 | // Set status code 26 | res.status(400); 27 | 28 | // Log error to console 29 | if (data !== undefined) { 30 | sails.log.verbose('Sending 400 ("Bad Request") response: \n',data); 31 | } 32 | else sails.log.verbose('Sending 400 ("Bad Request") response'); 33 | 34 | // Only include errors in response if application environment 35 | // is not set to 'production'. In production, we shouldn't 36 | // send back any identifying information about errors. 37 | if (sails.config.environment === 'production') { 38 | data = undefined; 39 | } 40 | 41 | // If the user-agent wants JSON, always respond with JSON 42 | if (req.wantsJSON) { 43 | return res.jsonx(data); 44 | } 45 | 46 | // If second argument is a string, we take that to mean it refers to a view. 47 | // If it was omitted, use an empty object (`{}`) 48 | options = (typeof options === 'string') ? { view: options } : options || {}; 49 | 50 | // If a view was provided in options, serve it. 51 | // Otherwise try to guess an appropriate view, or if that doesn't 52 | // work, just send JSON. 53 | if (options.view) { 54 | return res.view(options.view, { data: data }); 55 | } 56 | 57 | // If no second argument provided, try to serve the implied view, 58 | // but fall back to sending JSON(P) if no view can be inferred. 59 | else return res.guessView({ data: data }, function couldNotGuessView () { 60 | return res.jsonx(data); 61 | }); 62 | 63 | }; 64 | 65 | -------------------------------------------------------------------------------- /api/controllers/UserController.js: -------------------------------------------------------------------------------- 1 | /** 2 | * User controller logic for REST service. 3 | * @module controllers/UserController 4 | * @see module:models/User 5 | */ 6 | 7 | var Promise = require ('bluebird'); 8 | var BCrypt = Promise.promisifyAll (require ('bcrypt')); 9 | var Joi = require ('joi'); 10 | 11 | var StringUtil = require ('Local/stringutil.js'); 12 | var Params = require ('Local/Params'); 13 | 14 | var SailsControllerContext = require ('Local/SailsControllerContext'); 15 | 16 | var createSchema = Joi.object ().keys ({ 17 | firstName: Joi.string ().alphanum ().max (30).required (), 18 | lastName: Joi.string ().alphanum ().max (30).required (), 19 | email: Joi.string ().email ().required (), 20 | password: Joi.string ().regex (/\w{6,128}/).required () 21 | }) 22 | 23 | var ci = SailsControllerContext (); 24 | 25 | module.exports = ci.intercept ({ 26 | /** 27 | * Create User. Must have unique email. Password is hashed prior to storage. 28 | * @function create 29 | * @arg {string} firstName will have lead/trail ws trimmed and upcase first 30 | * @arg {string} lastName will have lead/trail ws trimmed and upcase first 31 | * @arg {string} password Plaintext password for user account. 32 | * @arg {string} email Email must be unique (is used as login for account). 33 | * @returns {string} json User or Standard Error 34 | * @see createSchema for parameter validation 35 | * // req - http.IncomingMessage, res - http.ServerResponse 36 | */ 37 | create: function (req, res) { 38 | var pm = new Params (req, createSchema) 39 | pm.apply (['firstName', 'lastName'], StringUtil.cleanProperName) 40 | 41 | var p = pm.validate ().getAll () 42 | 43 | BCrypt.genSaltAsync (10) 44 | .then (function (salt) { return BCrypt.hashAsync (p.password, salt) }) 45 | .then (function (hash) { p ['password'] = hash; return { data: p } /*User.create (p)*/ }) 46 | .then (function (user) { res.json (user) }) 47 | .catch (function (e) { ci.error (res, e) }) 48 | } 49 | }); 50 | 51 | -------------------------------------------------------------------------------- /lib/TestSetup.js: -------------------------------------------------------------------------------- 1 | /** 2 | * TestSetup class is a setup for a unit test. Initialization of the constructor, 3 | * by default, assumes a parallel test directory structure to that of the actual 4 | * files under test (this can be overridden in the constructor). This makes locating 5 | * the files to be tested mostly automatic, and less brittle than specifying string paths. 6 | * 7 | * @module Local/TestSetup 8 | * @example 9 | * var TestSetup = require ('Local/TestSetup') 10 | * var test = new TestSetup (__filename) 11 | * var Unit = test.require () 12 | * // snip ... 13 | * // Unit is the loaded unit under test, e.g.: 14 | * assert.equal ('Roger', Unit.cleanProperName (' Roger ')) 15 | */ 16 | 17 | module.exports = TestSetup 18 | 19 | function TestSetup (testFilePath, unitFilePath) { 20 | this.testFilePath = testFilePath 21 | if (unitFilePath === undefined) 22 | this.unitFilePath = this.getAssociatedUnitFilePath () 23 | } 24 | 25 | var TOP_LEVEL_TEST_DIR = "tests" 26 | 27 | TestSetup.prototype.getAssociatedUnitFilePath = function () { 28 | 29 | // Given an absolute path to a test file, in a parallel directory structure, under 30 | // "/tests", find the unit file that we should be testing (unit file and test file 31 | // must have exact same name) 32 | 33 | // Assume testing has been launched from top-level directory, and that 34 | // our tests are defined under a parallel stucture in /tests directory in top-level 35 | 36 | var cwd = process.cwd () 37 | 38 | // Make sure current working directory + /tests at beginning testFilepath, and remove. 39 | // (has the effect of removing /tests from the filepath, as well as making sure we 40 | // are in a parallel directory structure, as a sanity check). 41 | 42 | var dir = cwd + "/" + TOP_LEVEL_TEST_DIR 43 | 44 | var i = this.testFilePath.indexOf (dir) 45 | if (i != 0) 46 | throw { code: '', message: "Unit Test filepath = " + this.testFilePath + 47 | ". File is not in directory = " + dir }; 48 | 49 | var unitFilePath = cwd + this.testFilePath.substr (dir.length) 50 | return unitFilePath 51 | } 52 | 53 | TestSetup.prototype.require = function () { 54 | return require (this.unitFilePath) 55 | } 56 | -------------------------------------------------------------------------------- /tasks/pipeline.js: -------------------------------------------------------------------------------- 1 | /** 2 | * grunt/pipeline.js 3 | * 4 | * The order in which your css, javascript, and template files should be 5 | * compiled and linked from your views and static HTML files. 6 | * 7 | * (Note that you can take advantage of Grunt-style wildcard/glob/splat expressions 8 | * for matching multiple files.) 9 | */ 10 | 11 | 12 | 13 | // CSS files to inject in order 14 | // 15 | // (if you're using LESS with the built-in default config, you'll want 16 | // to change `assets/styles/importer.less` instead.) 17 | var cssFilesToInject = [ 18 | 'styles/**/*.css' 19 | ]; 20 | 21 | 22 | // Client-side javascript files to inject in order 23 | // (uses Grunt-style wildcard/glob/splat expressions) 24 | var jsFilesToInject = [ 25 | 26 | // Load sails.io before everything else 27 | 'js/dependencies/sails.io.js', 28 | 29 | // Dependencies like jQuery, or Angular are brought in here 30 | 'js/dependencies/**/*.js', 31 | 32 | // All of the rest of your client-side js files 33 | // will be injected here in no particular order. 34 | 'js/**/*.js' 35 | ]; 36 | 37 | 38 | // Client-side HTML templates are injected using the sources below 39 | // The ordering of these templates shouldn't matter. 40 | // (uses Grunt-style wildcard/glob/splat expressions) 41 | // 42 | // By default, Sails uses JST templates and precompiles them into 43 | // functions for you. If you want to use jade, handlebars, dust, etc., 44 | // with the linker, no problem-- you'll just want to make sure the precompiled 45 | // templates get spit out to the same file. Be sure and check out `tasks/README.md` 46 | // for information on customizing and installing new tasks. 47 | var templateFilesToInject = [ 48 | 'templates/**/*.html' 49 | ]; 50 | 51 | 52 | 53 | // Prefix relative paths to source files so they point to the proper locations 54 | // (i.e. where the other Grunt tasks spit them out, or in some cases, where 55 | // they reside in the first place) 56 | module.exports.cssFilesToInject = cssFilesToInject.map(function(path) { 57 | return '.tmp/public/' + path; 58 | }); 59 | module.exports.jsFilesToInject = jsFilesToInject.map(function(path) { 60 | return '.tmp/public/' + path; 61 | }); 62 | module.exports.templateFilesToInject = templateFilesToInject.map(function(path) { 63 | return 'assets/' + path; 64 | }); 65 | -------------------------------------------------------------------------------- /lib/MethodInterceptor.js: -------------------------------------------------------------------------------- 1 | /** 2 | * @module Local/MethodInterceptor.js 3 | * @desc Utility object for intercepting/wrapping methods 4 | * @example 5 | * 6 | * // Here's an OOP way to do things: 7 | * 8 | * function SomeConstructor () { 9 | * this.interceptor = new MethodInterceptor 10 | * (SomeConstructor.prototype.wrapper, this); 11 | * } 12 | * 13 | * // This function is the "interceptor" (wrapper) function. It 14 | * // doesn't automatically call the wrapped function (we must do it ourselves). 15 | * 16 | * SomeConstructor.prototype.wrapper = function (originalFn, originalThis, arguments) { 17 | * // N.B. 'this' will be set to the second arg of the MethodInterceptor 18 | * // constructor. We passed in "this" so this will behave like an OOP method. 19 | * // But the second arg can be anything, including null (optional context). 20 | * 21 | * // You should call the original function like this: 22 | * 23 | * originalFn.apply (originalThis, arguments) 24 | * } 25 | */ 26 | 27 | module.exports = MethodInterceptor 28 | 29 | /** 30 | * Constructor. 31 | * @arg {function} interceptorFn is the function that wraps the original function. 32 | * @arg {object} optContextObject is optional object passed into the wrapper function. 33 | */ 34 | function MethodInterceptor (interceptorFn, optContextObject) { 35 | this.interceptorFn = interceptorFn 36 | this.contextObject = optContextObject ? optContextObject : null 37 | } 38 | 39 | var Class = MethodInterceptor.prototype; 40 | 41 | Class.intercept = function (obj) { 42 | for (var name in obj) { 43 | 44 | // Only wrap local functions 45 | 46 | if ( ! obj.hasOwnProperty (name) || typeof obj [name] !== 'function') 47 | continue; 48 | 49 | // fn is original function on the object, to wrap 50 | 51 | var originalFn = obj [name]; 52 | var ifn = this.interceptorFn; 53 | 54 | // set method on object to be our function wrapper, which gets 55 | // the original function (fn), optContextObject as 'this', and arguments array 56 | 57 | obj [name] = function () { 58 | return ifn.call (this.optContextObject, originalFn, this, arguments) 59 | } 60 | } 61 | 62 | return obj; 63 | } 64 | 65 | -------------------------------------------------------------------------------- /lib/SailsControllerContext.js: -------------------------------------------------------------------------------- 1 | /** 2 | * @module Local/SailsControllerContext.js 3 | * @desc Singleton for all controllers. Has a wrapper (interceptor) 4 | * function that can be easily hooked around all methods for 5 | * a Sails controller. 6 | * @example 7 | * 8 | * // get singleton ('new' optional) 9 | * var ci = SailsControllerContext (); 10 | * 11 | * // setup intercept on all methods of the object, 12 | * // and return the object 13 | * module.exports = ci.intercept ({ 14 | * create: function (req, res) { 15 | */ 16 | 17 | var MethodInterceptor = require ('Local/MethodInterceptor') 18 | var SymbolicError = require ('Local/SymbolicError') 19 | 20 | module.exports = _SailsControllerContext; 21 | 22 | var interceptor = null 23 | 24 | function SailsControllerContext () { 25 | interceptor = new MethodInterceptor (Class.controllerAction, this); 26 | } 27 | 28 | var Class = SailsControllerContext.prototype; 29 | 30 | /** 31 | * Call this function to finish a controller method, e.g. from an error callback 32 | * @example 33 | * 34 | * .then (function (user) { res.json (user) }) 35 | * .catch (function (e) { ci.error (res, e) }) // <= call here with exception 36 | */ 37 | Class.error = function (res, e) { 38 | // SymbolicErrors are designed to serialize correctly 39 | 40 | if (e instanceof SymbolicError) 41 | res.json ({ error: e }); // Google JSON standard => { error: } or { data: } 42 | else 43 | throw e; // Unhandled/unexpected exception 44 | } 45 | 46 | /** 47 | * wrapper (interceptor) function 48 | */ 49 | Class.controllerAction = function (originalFn, originalThis, arguments) { 50 | try { 51 | var req = arguments [0]; 52 | var res = arguments [1]; 53 | 54 | // Call original intercepted (wrapped) function 55 | 56 | originalFn.apply (originalThis, arguments) 57 | } catch (e) { 58 | this.error (res, e); 59 | } 60 | } 61 | 62 | // Expose the interceptor function 63 | 64 | Class.intercept = function (obj) { return interceptor.intercept (obj) } 65 | 66 | // ** Singleton pattern 67 | 68 | var _singleton = null 69 | 70 | function _SailsControllerContext () { 71 | if (_singleton === null) 72 | _singleton = new SailsControllerContext (); 73 | 74 | return _singleton; 75 | } 76 | 77 | -------------------------------------------------------------------------------- /config/policies.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Policy Mappings 3 | * (sails.config.policies) 4 | * 5 | * Policies are simple functions which run **before** your controllers. 6 | * You can apply one or more policies to a given controller, or protect 7 | * its actions individually. 8 | * 9 | * Any policy file (e.g. `api/policies/authenticated.js`) can be accessed 10 | * below by its filename, minus the extension, (e.g. "authenticated") 11 | * 12 | * For more information on how policies work, see: 13 | * http://sailsjs.org/#/documentation/concepts/Policies 14 | * 15 | * For more information on configuring policies, check out: 16 | * http://sailsjs.org/#/documentation/reference/sails.config/sails.config.policies.html 17 | */ 18 | 19 | 20 | module.exports.policies = { 21 | 22 | /*************************************************************************** 23 | * * 24 | * Default policy for all controllers and actions (`true` allows public * 25 | * access) * 26 | * * 27 | ***************************************************************************/ 28 | 29 | // '*': true, 30 | 31 | /*************************************************************************** 32 | * * 33 | * Here's an example of mapping some policies to run before a controller * 34 | * and its actions * 35 | * * 36 | ***************************************************************************/ 37 | // RabbitController: { 38 | 39 | // Apply the `false` policy as the default for all of RabbitController's actions 40 | // (`false` prevents all access, which ensures that nothing bad happens to our rabbits) 41 | // '*': false, 42 | 43 | // For the action `nurture`, apply the 'isRabbitMother' policy 44 | // (this overrides `false` above) 45 | // nurture : 'isRabbitMother', 46 | 47 | // Apply the `isNiceToAnimals` AND `hasRabbitFood` policies 48 | // before letting any users feed our rabbits 49 | // feed : ['isNiceToAnimals', 'hasRabbitFood'] 50 | // } 51 | }; 52 | -------------------------------------------------------------------------------- /Gruntfile.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Gruntfile 3 | * 4 | * This Node script is executed when you run `grunt` or `sails lift`. 5 | * It's purpose is to load the Grunt tasks in your project's `tasks` 6 | * folder, and allow you to add and remove tasks as you see fit. 7 | * For more information on how this works, check out the `README.md` 8 | * file that was generated in your `tasks` folder. 9 | * 10 | * WARNING: 11 | * Unless you know what you're doing, you shouldn't change this file. 12 | * Check out the `tasks` directory instead. 13 | */ 14 | 15 | module.exports = function(grunt) { 16 | 17 | 18 | // Load the include-all library in order to require all of our grunt 19 | // configurations and task registrations dynamically. 20 | var includeAll; 21 | try { 22 | includeAll = require('include-all'); 23 | } catch (e0) { 24 | try { 25 | includeAll = require('sails/node_modules/include-all'); 26 | } 27 | catch(e1) { 28 | console.error('Could not find `include-all` module.'); 29 | console.error('Skipping grunt tasks...'); 30 | console.error('To fix this, please run:'); 31 | console.error('npm install include-all --save`'); 32 | console.error(); 33 | 34 | grunt.registerTask('default', []); 35 | return; 36 | } 37 | } 38 | 39 | 40 | /** 41 | * Loads Grunt configuration modules from the specified 42 | * relative path. These modules should export a function 43 | * that, when run, should either load/configure or register 44 | * a Grunt task. 45 | */ 46 | function loadTasks(relPath) { 47 | return includeAll({ 48 | dirname: require('path').resolve(__dirname, relPath), 49 | filter: /(.+)\.js$/ 50 | }) || {}; 51 | } 52 | 53 | /** 54 | * Invokes the function from a Grunt configuration module with 55 | * a single argument - the `grunt` object. 56 | */ 57 | function invokeConfigFn(tasks) { 58 | for (var taskName in tasks) { 59 | if (tasks.hasOwnProperty(taskName)) { 60 | tasks[taskName](grunt); 61 | } 62 | } 63 | } 64 | 65 | 66 | 67 | 68 | // Load task functions 69 | var taskConfigurations = loadTasks('./tasks/config'), 70 | registerDefinitions = loadTasks('./tasks/register'); 71 | 72 | // (ensure that a default task exists) 73 | if (!registerDefinitions.default) { 74 | registerDefinitions.default = function (grunt) { grunt.registerTask('default', []); }; 75 | } 76 | 77 | // Run task functions to configure Grunt. 78 | invokeConfigFn(taskConfigurations); 79 | invokeConfigFn(registerDefinitions); 80 | 81 | }; 82 | -------------------------------------------------------------------------------- /config/routes.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Route Mappings 3 | * (sails.config.routes) 4 | * 5 | * Your routes map URLs to views and controllers. 6 | * 7 | * If Sails receives a URL that doesn't match any of the routes below, 8 | * it will check for matching files (images, scripts, stylesheets, etc.) 9 | * in your assets directory. e.g. `http://localhost:1337/images/foo.jpg` 10 | * might match an image file: `/assets/images/foo.jpg` 11 | * 12 | * Finally, if those don't match either, the default 404 handler is triggered. 13 | * See `api/responses/notFound.js` to adjust your app's 404 logic. 14 | * 15 | * Note: Sails doesn't ACTUALLY serve stuff from `assets`-- the default Gruntfile in Sails copies 16 | * flat files from `assets` to `.tmp/public`. This allows you to do things like compile LESS or 17 | * CoffeeScript for the front-end. 18 | * 19 | * For more information on configuring custom routes, check out: 20 | * http://sailsjs.org/#/documentation/concepts/Routes/RouteTargetSyntax.html 21 | */ 22 | 23 | module.exports.routes = { 24 | 25 | /*************************************************************************** 26 | * * 27 | * Make the view located at `views/homepage.ejs` (or `views/homepage.jade`, * 28 | * etc. depending on your default view engine) your home page. * 29 | * * 30 | * (Alternatively, remove this and add an `index.html` file in your * 31 | * `assets` directory) * 32 | * * 33 | ***************************************************************************/ 34 | 35 | '/': { 36 | view: 'homepage' 37 | }, 38 | 39 | /*************************************************************************** 40 | * * 41 | * Custom routes here... * 42 | * * 43 | * If a request to a URL doesn't match any of the custom routes above, it * 44 | * is matched against Sails route blueprints. See `config/blueprints.js` * 45 | * for configuration options and examples. * 46 | * * 47 | ***************************************************************************/ 48 | 49 | 'post /login' : 'AuthController.login' 50 | 51 | }; 52 | -------------------------------------------------------------------------------- /api/responses/forbidden.js: -------------------------------------------------------------------------------- 1 | /** 2 | * 403 (Forbidden) Handler 3 | * 4 | * Usage: 5 | * return res.forbidden(); 6 | * return res.forbidden(err); 7 | * return res.forbidden(err, 'some/specific/forbidden/view'); 8 | * 9 | * e.g.: 10 | * ``` 11 | * return res.forbidden('Access denied.'); 12 | * ``` 13 | */ 14 | 15 | module.exports = function forbidden (data, options) { 16 | 17 | // Get access to `req`, `res`, & `sails` 18 | var req = this.req; 19 | var res = this.res; 20 | var sails = req._sails; 21 | 22 | // Set status code 23 | res.status(403); 24 | 25 | // Log error to console 26 | if (data !== undefined) { 27 | sails.log.verbose('Sending 403 ("Forbidden") response: \n',data); 28 | } 29 | else sails.log.verbose('Sending 403 ("Forbidden") response'); 30 | 31 | // Only include errors in response if application environment 32 | // is not set to 'production'. In production, we shouldn't 33 | // send back any identifying information about errors. 34 | if (sails.config.environment === 'production') { 35 | data = undefined; 36 | } 37 | 38 | // If the user-agent wants JSON, always respond with JSON 39 | if (req.wantsJSON) { 40 | return res.jsonx(data); 41 | } 42 | 43 | // If second argument is a string, we take that to mean it refers to a view. 44 | // If it was omitted, use an empty object (`{}`) 45 | options = (typeof options === 'string') ? { view: options } : options || {}; 46 | 47 | // If a view was provided in options, serve it. 48 | // Otherwise try to guess an appropriate view, or if that doesn't 49 | // work, just send JSON. 50 | if (options.view) { 51 | return res.view(options.view, { data: data }); 52 | } 53 | 54 | // If no second argument provided, try to serve the default view, 55 | // but fall back to sending JSON(P) if any errors occur. 56 | else return res.view('403', { data: data }, function (err, html) { 57 | 58 | // If a view error occured, fall back to JSON(P). 59 | if (err) { 60 | // 61 | // Additionally: 62 | // • If the view was missing, ignore the error but provide a verbose log. 63 | if (err.code === 'E_VIEW_FAILED') { 64 | sails.log.verbose('res.forbidden() :: Could not locate view for error page (sending JSON instead). Details: ',err); 65 | } 66 | // Otherwise, if this was a more serious error, log to the console with the details. 67 | else { 68 | sails.log.warn('res.forbidden() :: When attempting to render error page view, an error occured (sending JSON instead). Details: ', err); 69 | } 70 | return res.jsonx(data); 71 | } 72 | 73 | return res.send(html); 74 | }); 75 | 76 | }; 77 | 78 | -------------------------------------------------------------------------------- /api/responses/serverError.js: -------------------------------------------------------------------------------- 1 | /** 2 | * 500 (Server Error) Response 3 | * 4 | * Usage: 5 | * return res.serverError(); 6 | * return res.serverError(err); 7 | * return res.serverError(err, 'some/specific/error/view'); 8 | * 9 | * NOTE: 10 | * If something throws in a policy or controller, or an internal 11 | * error is encountered, Sails will call `res.serverError()` 12 | * automatically. 13 | */ 14 | 15 | module.exports = function serverError (data, options) { 16 | 17 | // Get access to `req`, `res`, & `sails` 18 | var req = this.req; 19 | var res = this.res; 20 | var sails = req._sails; 21 | 22 | // Set status code 23 | res.status(500); 24 | 25 | // Log error to console 26 | if (data !== undefined) { 27 | sails.log.error('Sending 500 ("Server Error") response: \n',data); 28 | } 29 | else sails.log.error('Sending empty 500 ("Server Error") response'); 30 | 31 | // Only include errors in response if application environment 32 | // is not set to 'production'. In production, we shouldn't 33 | // send back any identifying information about errors. 34 | if (sails.config.environment === 'production') { 35 | data = undefined; 36 | } 37 | 38 | // If the user-agent wants JSON, always respond with JSON 39 | if (req.wantsJSON) { 40 | return res.jsonx(data); 41 | } 42 | 43 | // If second argument is a string, we take that to mean it refers to a view. 44 | // If it was omitted, use an empty object (`{}`) 45 | options = (typeof options === 'string') ? { view: options } : options || {}; 46 | 47 | // If a view was provided in options, serve it. 48 | // Otherwise try to guess an appropriate view, or if that doesn't 49 | // work, just send JSON. 50 | if (options.view) { 51 | return res.view(options.view, { data: data }); 52 | } 53 | 54 | // If no second argument provided, try to serve the default view, 55 | // but fall back to sending JSON(P) if any errors occur. 56 | else return res.view('500', { data: data }, function (err, html) { 57 | 58 | // If a view error occured, fall back to JSON(P). 59 | if (err) { 60 | // 61 | // Additionally: 62 | // • If the view was missing, ignore the error but provide a verbose log. 63 | if (err.code === 'E_VIEW_FAILED') { 64 | sails.log.verbose('res.serverError() :: Could not locate view for error page (sending JSON instead). Details: ',err); 65 | } 66 | // Otherwise, if this was a more serious error, log to the console with the details. 67 | else { 68 | sails.log.warn('res.serverError() :: When attempting to render error page view, an error occured (sending JSON instead). Details: ', err); 69 | } 70 | return res.jsonx(data); 71 | } 72 | 73 | return res.send(html); 74 | }); 75 | 76 | }; 77 | 78 | -------------------------------------------------------------------------------- /api/responses/notFound.js: -------------------------------------------------------------------------------- 1 | /** 2 | * 404 (Not Found) Handler 3 | * 4 | * Usage: 5 | * return res.notFound(); 6 | * return res.notFound(err); 7 | * return res.notFound(err, 'some/specific/notfound/view'); 8 | * 9 | * e.g.: 10 | * ``` 11 | * return res.notFound(); 12 | * ``` 13 | * 14 | * NOTE: 15 | * If a request doesn't match any explicit routes (i.e. `config/routes.js`) 16 | * or route blueprints (i.e. "shadow routes", Sails will call `res.notFound()` 17 | * automatically. 18 | */ 19 | 20 | module.exports = function notFound (data, options) { 21 | 22 | // Get access to `req`, `res`, & `sails` 23 | var req = this.req; 24 | var res = this.res; 25 | var sails = req._sails; 26 | 27 | // Set status code 28 | res.status(404); 29 | 30 | // Log error to console 31 | if (data !== undefined) { 32 | sails.log.verbose('Sending 404 ("Not Found") response: \n',data); 33 | } 34 | else sails.log.verbose('Sending 404 ("Not Found") response'); 35 | 36 | // Only include errors in response if application environment 37 | // is not set to 'production'. In production, we shouldn't 38 | // send back any identifying information about errors. 39 | if (sails.config.environment === 'production') { 40 | data = undefined; 41 | } 42 | 43 | // If the user-agent wants JSON, always respond with JSON 44 | if (req.wantsJSON) { 45 | return res.jsonx(data); 46 | } 47 | 48 | // If second argument is a string, we take that to mean it refers to a view. 49 | // If it was omitted, use an empty object (`{}`) 50 | options = (typeof options === 'string') ? { view: options } : options || {}; 51 | 52 | // If a view was provided in options, serve it. 53 | // Otherwise try to guess an appropriate view, or if that doesn't 54 | // work, just send JSON. 55 | if (options.view) { 56 | return res.view(options.view, { data: data }); 57 | } 58 | 59 | // If no second argument provided, try to serve the default view, 60 | // but fall back to sending JSON(P) if any errors occur. 61 | else return res.view('404', { data: data }, function (err, html) { 62 | 63 | // If a view error occured, fall back to JSON(P). 64 | if (err) { 65 | // 66 | // Additionally: 67 | // • If the view was missing, ignore the error but provide a verbose log. 68 | if (err.code === 'E_VIEW_FAILED') { 69 | sails.log.verbose('res.notFound() :: Could not locate view for error page (sending JSON instead). Details: ',err); 70 | } 71 | // Otherwise, if this was a more serious error, log to the console with the details. 72 | else { 73 | sails.log.warn('res.notFound() :: When attempting to render error page view, an error occured (sending JSON instead). Details: ', err); 74 | } 75 | return res.jsonx(data); 76 | } 77 | 78 | return res.send(html); 79 | }); 80 | 81 | }; 82 | 83 | -------------------------------------------------------------------------------- /tests/node_modules/Local/Params.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Unit test for Params 3 | */ 4 | 5 | var TestSetup = require ('Local/TestSetup') 6 | var test = new TestSetup (__filename) 7 | var Params = test.require () 8 | 9 | var assert = require ('assert') 10 | 11 | function makeMockRequest (obj) { 12 | var o = obj 13 | o.id = 1 14 | return { 15 | params: { 16 | all: function () { 17 | return o 18 | } 19 | } 20 | } 21 | } 22 | 23 | describe ('Params (Local Module)', function () { 24 | describe ('#constructor', function () { 25 | it ('should copy all passed parameters.', function () { 26 | 27 | var req = makeMockRequest ({ 'hello': 1, 'world': 5, 'howdy': 'there' }); 28 | var pm = new Params (req); 29 | 30 | assert.equal (true, pm.has ('hello'), "1st property is there"); 31 | assert.equal (1, pm.get ('hello'), "first property value equal"); 32 | 33 | assert.equal (true, pm.has ('world'), "2nd property is there"); 34 | assert.equal (5, pm.get ('world'), "2nd property value equal"); 35 | 36 | assert.equal (true, pm.has ('howdy'), "3rd property is there"); 37 | assert.equal ('there', pm.get ('howdy'), "3rd property value equal"); 38 | }) // it 39 | }), 40 | 41 | describe ('#delete', function () { 42 | it ('should delete item', function () { 43 | 44 | var req = makeMockRequest ({ 'hello': 1, 'world': 5, 'howdy': 'there' }); 45 | var pm = new Params (req); 46 | 47 | pm.delete ('hello'); 48 | 49 | assert.equal (false, pm.has ('hello'), "1st property is there"); 50 | 51 | assert.equal (true, pm.has ('world'), "2nd property is there"); 52 | assert.equal (5, pm.get ('world'), "2nd property value equal"); 53 | 54 | assert.equal (true, pm.has ('howdy'), "3rd property is there"); 55 | assert.equal ('there', pm.get ('howdy'), "3rd property value equal"); 56 | }) 57 | }), 58 | 59 | describe ('#apply', function () { 60 | it ('should apply functions to array items', function () { 61 | 62 | var req = makeMockRequest ({ 'hello': 1, 'world': 5 }); 63 | var pm = new Params (req); 64 | 65 | var criteria = ['world']; 66 | var blahFunction = function (x) { return x + "blah" }; 67 | pm.apply (criteria, blahFunction); 68 | 69 | assert.equal (true, pm.has ('hello'), "1st property is there"); 70 | assert.equal (1, pm.get ('hello'), "first property value equal"); 71 | 72 | assert.equal (true, pm.has ('world'), "2nd property is there"); 73 | assert.equal ("5blah", pm.get ('world'), "applied value - 2nd property value got applied"); 74 | }) 75 | }) 76 | 77 | 78 | }) 79 | 80 | -------------------------------------------------------------------------------- /config/i18n.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Internationalization / Localization Settings 3 | * (sails.config.i18n) 4 | * 5 | * If your app will touch people from all over the world, i18n (or internationalization) 6 | * may be an important part of your international strategy. 7 | * 8 | * 9 | * For more informationom i18n in Sails, check out: 10 | * http://sailsjs.org/#/documentation/concepts/Internationalization 11 | * 12 | * For a complete list of i18n options, see: 13 | * https://github.com/mashpie/i18n-node#list-of-configuration-options 14 | * 15 | * 16 | */ 17 | 18 | module.exports.i18n = { 19 | 20 | /*************************************************************************** 21 | * * 22 | * Which locales are supported? * 23 | * * 24 | ***************************************************************************/ 25 | 26 | // locales: ['en', 'es', 'fr', 'de'] 27 | 28 | /**************************************************************************** 29 | * * 30 | * What is the default locale for the site? Note that this setting will be * 31 | * overridden for any request that sends an "Accept-Language" header (i.e. * 32 | * most browsers), but it's still useful if you need to localize the * 33 | * response for requests made by non-browser clients (e.g. cURL). * 34 | * * 35 | ****************************************************************************/ 36 | 37 | // defaultLocale: 'en', 38 | 39 | /**************************************************************************** 40 | * * 41 | * Automatically add new keys to locale (translation) files when they are * 42 | * encountered during a request? * 43 | * * 44 | ****************************************************************************/ 45 | 46 | // updateFiles: false, 47 | 48 | /**************************************************************************** 49 | * * 50 | * Path (relative to app root) of directory to store locale (translation) * 51 | * files in. * 52 | * * 53 | ****************************************************************************/ 54 | 55 | // localesDirectory: '/config/locales' 56 | 57 | }; 58 | -------------------------------------------------------------------------------- /config/csrf.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Cross-Site Request Forgery Protection Settings 3 | * (sails.config.csrf) 4 | * 5 | * CSRF tokens are like a tracking chip. While a session tells the server that a user 6 | * "is who they say they are", a csrf token tells the server "you are where you say you are". 7 | * 8 | * When enabled, all non-GET requests to the Sails server must be accompanied by 9 | * a special token, identified as the '_csrf' parameter. 10 | * 11 | * This option protects your Sails app against cross-site request forgery (or CSRF) attacks. 12 | * A would-be attacker needs not only a user's session cookie, but also this timestamped, 13 | * secret CSRF token, which is refreshed/granted when the user visits a URL on your app's domain. 14 | * 15 | * This allows us to have certainty that our users' requests haven't been hijacked, 16 | * and that the requests they're making are intentional and legitimate. 17 | * 18 | * This token has a short-lived expiration timeline, and must be acquired by either: 19 | * 20 | * (a) For traditional view-driven web apps: 21 | * Fetching it from one of your views, where it may be accessed as 22 | * a local variable, e.g.: 23 | * 26 | * 27 | * or (b) For AJAX/Socket-heavy and/or single-page apps: 28 | * Sending a GET request to the `/csrfToken` route, where it will be returned 29 | * as JSON, e.g.: 30 | * { _csrf: 'ajg4JD(JGdajhLJALHDa' } 31 | * 32 | * 33 | * Enabling this option requires managing the token in your front-end app. 34 | * For traditional web apps, it's as easy as passing the data from a view into a form action. 35 | * In AJAX/Socket-heavy apps, just send a GET request to the /csrfToken route to get a valid token. 36 | * 37 | * For more information on CSRF, check out: 38 | * http://en.wikipedia.org/wiki/Cross-site_request_forgery 39 | * 40 | * For more information on this configuration file, including info on CSRF + CORS, see: 41 | * http://beta.sailsjs.org/#/documentation/reference/sails.config/sails.config.csrf.html 42 | * 43 | */ 44 | 45 | /**************************************************************************** 46 | * * 47 | * Enabled CSRF protection for your site? * 48 | * * 49 | ****************************************************************************/ 50 | 51 | // module.exports.csrf = false; 52 | 53 | /**************************************************************************** 54 | * * 55 | * You may also specify more fine-grained settings for CSRF, including the * 56 | * domains which are allowed to request the CSRF token via AJAX. These * 57 | * settings override the general CORS settings in your config/cors.js file. * 58 | * * 59 | ****************************************************************************/ 60 | 61 | // module.exports.csrf = { 62 | // grantTokenViaAjax: true, 63 | // origin: '' 64 | // } 65 | -------------------------------------------------------------------------------- /tasks/README.md: -------------------------------------------------------------------------------- 1 | # About the `tasks` folder 2 | 3 | The `tasks` directory is a suite of Grunt tasks and their configurations, bundled for your convenience. The Grunt integration is mainly useful for bundling front-end assets, (like stylesheets, scripts, & markup templates) but it can also be used to run all kinds of development tasks, from browserify compilation to database migrations. 4 | 5 | If you haven't used [Grunt](http://gruntjs.com/) before, be sure to check out the [Getting Started](http://gruntjs.com/getting-started) guide, as it explains how to create a [Gruntfile](http://gruntjs.com/sample-gruntfile) as well as install and use Grunt plugins. Once you're familiar with that process, read on! 6 | 7 | 8 | ### How does this work? 9 | 10 | The asset pipeline bundled in Sails is a set of Grunt tasks configured with conventional defaults designed to make your project more consistent and productive. 11 | 12 | The entire front-end asset workflow in Sails is completely customizable-- while it provides some suggestions out of the box, Sails makes no pretense that it can anticipate all of the needs you'll encounter building the browser-based/front-end portion of your application. Who's to say you're even building an app for a browser? 13 | 14 | 15 | 16 | ### What tasks does Sails run automatically? 17 | 18 | Sails runs some of these tasks (the ones in the `tasks/register` folder) automatically when you run certain commands. 19 | 20 | ###### `sails lift` 21 | 22 | Runs the `default` task (`tasks/register/default.js`). 23 | 24 | ###### `sails lift --prod` 25 | 26 | Runs the `prod` task (`tasks/register/prod.js`). 27 | 28 | ###### `sails www` 29 | 30 | Runs the `build` task (`tasks/register/build.js`). 31 | 32 | ###### `sails www --prod` (production) 33 | 34 | Runs the `buildProd` task (`tasks/register/buildProd.js`). 35 | 36 | 37 | ### Can I customize this for SASS, Angular, client-side Jade templates, etc? 38 | 39 | You can modify, omit, or replace any of these Grunt tasks to fit your requirements. You can also add your own Grunt tasks- just add a `someTask.js` file in the `grunt/config` directory to configure the new task, then register it with the appropriate parent task(s) (see files in `grunt/register/*.js`). 40 | 41 | 42 | ### Do I have to use Grunt? 43 | 44 | Nope! To disable Grunt integration in Sails, just delete your Gruntfile or disable the Grunt hook. 45 | 46 | 47 | ### What if I'm not building a web frontend? 48 | 49 | That's ok! A core tenant of Sails is client-agnosticism-- it's especially designed for building APIs used by all sorts of clients; native Android/iOS/Cordova, serverside SDKs, etc. 50 | 51 | You can completely disable Grunt by following the instructions above. 52 | 53 | If you still want to use Grunt for other purposes, but don't want any of the default web front-end stuff, just delete your project's `assets` folder and remove the front-end oriented tasks from the `grunt/register` and `grunt/config` folders. You can also run `sails new myCoolApi --no-frontend` to omit the `assets` folder and front-end-oriented Grunt tasks for future projects. You can also replace your `sails-generate-frontend` module with alternative community generators, or create your own. This allows `sails new` to create the boilerplate for native iOS apps, Android apps, Cordova apps, SteroidsJS apps, etc. 54 | 55 | -------------------------------------------------------------------------------- /config/globals.js: -------------------------------------------------------------------------------- 1 | /** 2 | * Global Variable Configuration 3 | * (sails.config.globals) 4 | * 5 | * Configure which global variables which will be exposed 6 | * automatically by Sails. 7 | * 8 | * For more information on configuration, check out: 9 | * http://sailsjs.org/#/documentation/reference/sails.config/sails.config.globals.html 10 | */ 11 | module.exports.globals = { 12 | 13 | /**************************************************************************** 14 | * * 15 | * Expose the lodash installed in Sails core as a global variable. If this * 16 | * is disabled, like any other node module you can always run npm install * 17 | * lodash --save, then var _ = require('lodash') at the top of any file. * 18 | * * 19 | ****************************************************************************/ 20 | 21 | // _: true, 22 | 23 | /**************************************************************************** 24 | * * 25 | * Expose the async installed in Sails core as a global variable. If this is * 26 | * disabled, like any other node module you can always run npm install async * 27 | * --save, then var async = require('async') at the top of any file. * 28 | * * 29 | ****************************************************************************/ 30 | 31 | // async: true, 32 | 33 | /**************************************************************************** 34 | * * 35 | * Expose the sails instance representing your app. If this is disabled, you * 36 | * can still get access via req._sails. * 37 | * * 38 | ****************************************************************************/ 39 | 40 | // sails: true, 41 | 42 | /**************************************************************************** 43 | * * 44 | * Expose each of your app's services as global variables (using their * 45 | * "globalId"). E.g. a service defined in api/models/NaturalLanguage.js * 46 | * would have a globalId of NaturalLanguage by default. If this is disabled, * 47 | * you can still access your services via sails.services.* * 48 | * * 49 | ****************************************************************************/ 50 | 51 | // services: true, 52 | 53 | /**************************************************************************** 54 | * * 55 | * Expose each of your app's models as global variables (using their * 56 | * "globalId"). E.g. a model defined in api/models/User.js would have a * 57 | * globalId of User by default. If this is disabled, you can still access * 58 | * your models via sails.models.*. * 59 | * * 60 | ****************************************************************************/ 61 | 62 | // models: true 63 | }; 64 | -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | ################################################ 2 | ############### .gitignore ################## 3 | ################################################ 4 | # 5 | # This file is only relevant if you are using git. 6 | # 7 | # Files which match the splat patterns below will 8 | # be ignored by git. This keeps random crap and 9 | # and sensitive credentials from being uploaded to 10 | # your repository. It allows you to configure your 11 | # app for your machine without accidentally 12 | # committing settings which will smash the local 13 | # settings of other developers on your team. 14 | # 15 | # Some reasonable defaults are included below, 16 | # but, of course, you should modify/extend/prune 17 | # to fit your needs! 18 | ################################################ 19 | 20 | 21 | 22 | 23 | ################################################ 24 | # Local Configuration 25 | # 26 | # Explicitly ignore files which contain: 27 | # 28 | # 1. Sensitive information you'd rather not push to 29 | # your git repository. 30 | # e.g., your personal API keys or passwords. 31 | # 32 | # 2. Environment-specific configuration 33 | # Basically, anything that would be annoying 34 | # to have to change every time you do a 35 | # `git pull` 36 | # e.g., your local development database, or 37 | # the S3 bucket you're using for file uploads 38 | # development. 39 | # 40 | ################################################ 41 | 42 | config/local.js 43 | 44 | 45 | 46 | 47 | 48 | ################################################ 49 | # Dependencies 50 | # 51 | # When releasing a production app, you may 52 | # consider including your node_modules and 53 | # bower_components directory in your git repo, 54 | # but during development, its best to exclude it, 55 | # since different developers may be working on 56 | # different kernels, where dependencies would 57 | # need to be recompiled anyway. 58 | # 59 | # More on that here about node_modules dir: 60 | # http://www.futurealoof.com/posts/nodemodules-in-git.html 61 | # (credit Mikeal Rogers, @mikeal) 62 | # 63 | # About bower_components dir, you can see this: 64 | # http://addyosmani.com/blog/checking-in-front-end-dependencies/ 65 | # (credit Addy Osmani, @addyosmani) 66 | # 67 | ################################################ 68 | 69 | node_modules/* 70 | !node_modules/Local 71 | 72 | bower_components 73 | 74 | 75 | 76 | 77 | ################################################ 78 | # Sails.js / Waterline / Grunt 79 | # 80 | # Files generated by Sails and Grunt, or related 81 | # tasks and adapters. 82 | ################################################ 83 | .tmp 84 | dump.rdb 85 | 86 | 87 | 88 | 89 | 90 | ################################################ 91 | # Node.js / NPM 92 | # 93 | # Common files generated by Node, NPM, and the 94 | # related ecosystem. 95 | ################################################ 96 | lib-cov 97 | *.seed 98 | *.log 99 | *.out 100 | *.pid 101 | npm-debug.log 102 | 103 | 104 | 105 | 106 | 107 | ################################################ 108 | # Miscellaneous 109 | # 110 | # Common files generated by text editors, 111 | # operating systems, file systems, etc. 112 | ################################################ 113 | 114 | *~ 115 | *# 116 | .DS_STORE 117 | .netbeans 118 | nbproject 119 | .idea 120 | .node_history 121 | 122 | ## Our local scratch directory 123 | scratch 124 | 125 | ################################################ 126 | # Documentation 127 | # 128 | # Allow checkin of markdown (for GitHub), but 129 | # ignore all other docs 130 | ################################################ 131 | 132 | doc/* 133 | !doc/markdown 134 | 135 | 136 | 137 | -------------------------------------------------------------------------------- /views/layout.ejs: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 |
50 | 64 | Why might this be happening? 65 |
66 |
71 |
72 | 
50 | 64 | Why might this be happening? 65 |
66 |
71 |
72 | <%= view.pathFromApp + '.' +view.ext %>
27 | Run sails generate api user. This will create two files: a model api/models/User.js and a controllerapi/controllers/UserController.js.
28 |
38 | Run sails lift to start up your app server. If you visit http://localhost:1337/user in your browser, you'll see a WebSocket-compatible user API.
39 |
Blueprints are just the beginning. You'll probably also want to learn how to customize your app's routes, set up security policies, configure your data sources, and build custom controller actions. For more help getting started, check out the links on this page.
49 | 50 |