Tags: Initial commit.

Tags can now be added to projects.  Tags consist of
a "Tag Entity", which has the actual definition of the tag
such as { type, name }.

Tags themselves are just mappings between the Tag entities
and the projects or tasks.  A tag looks like this:
{
  projectId: x,
  tagId: y
}

Tag Entities can only be manipulated by admins using the
standard CRUD functions at the /tagentity end point.

Tags can be manipulated by anyone that owns that project,
at the /tag end point.

Important endpoints:

/tag/* -- standard CRUD endpoints
/tag/add -- adds a new tag entity
/tag -- disabled so you can't list all tag mappings
/tag/findAllByProjectId/:id -- list all the tags for a given projectId
  This end point will also look up and return the tag entities.

An initial set of test cases is included.

Author: polastre

.gitmodules

@@ -0,0 +1,3 @@
+[submodule "assets/js/vendor/select2"]
+	path = assets/js/vendor/select2
+	url = https://github.com/ivaynberg/select2.git

api/controllers/EventController.js

@@ -6,6 +6,7 @@
  */
 
 var _ = require('underscore');
+var async = require('async');
 var icalendar = require('icalendar');
 var projUtils = require('../services/projectUtils');
 

api/controllers/TagController.js

@@ -5,6 +5,97 @@
  * @description :: Manipulate tags (add / delete / assign to projects/tasks)
  */
 
+var _ = require('underscore');
+var async = require('async');
+var projUtils = require('../services/projectUtils');
+
 module.exports = {
 
+  findAllByProjectId: function (req, res) {
+    Tag.findByProjectId(req.params.id, function (err, tags) {
+      var entities = {};
+      var tagIds = [];
+
+      // Helper function for async to look up each tag entitiy
+      var getTags = function (tagId, done) {
+        if (entities[tagId]) { return done(); }
+        TagEntity.findOne(tagId, function (err, t) {
+          entities[tagId] = t;
+          done(err);
+        });
+      }
+
+      // Get all the tag ids
+      for (var i = 0; i < tags.length; i++) {
+        tagIds.push(tags[i].id);
+      }
+
+      // Get the tag entities for each id
+      async.each(tagIds, getTags, function(err) {
+        if (err) { return res.send(400, { message: "Error looking up tags"}); }
+        // Attach the tag entity to the tag
+        for (var i = 0; i < tags.length; i++) {
+          tags[i].tag = entities[tags[i].id];
+          return res.send(tags);
+        }
+      });
+    });
+  },
+
+  // Add a new tag entity to the system (alias for TagEntity.create)
+  add: function (req, res) {
+    if (req.route.method != 'post') { return res.send(400, { message: 'Unsupported operation.' } ); }
+    var tag = _.extend(req.body || {}, req.params);
+    TagEntity.findOne({where: { name: tag.name, type: tag.type }}, function (err, existingTag) {
+      if (err) { return res.send(400, { message: 'Error looking up tag' }); }
+      if (existingTag) { return res.send(existingTag); }
+      TagEntity.create(tag, function (err, tag) {
+        if (err) { return res.send(400, { message: 'Error creating tag' }); }
+        return res.send(tag);
+      });
+    });    
+  },
+
+  // Override default create to check parameters and
+  // ensure duplicate tags are not created.
+  create: function (req, res) {
+    if (req.route.method != 'post') { return res.send(400, { message: 'Unsupported operation.' } ); }    
+    var tag = _.extend(req.body || {}, req.params);
+    if (!tag.projectId) { tag.projectId = null; }
+    if (!tag.taskId) { tag.taskId = null; }
+    if (!tag.tagId) { return res.send(400, { message: "Must specify a tag id" }); }
+    if (!tag.projectId && !tag.taskId) { return res.send(400, { message: "Must specify either a project or task" }); }
+    // check if the tag already exists
+    Tag.findOne(
+      { where: { projectId: tag.projectId, taskId: tag.taskId, tagId: tag.tagId }},
+      function (err, existingTag) {
+        if (err) { return res.send(400, { message: 'Error looking up tag' }); }
+        if (existingTag) { return res.send(existingTag); }
+        // Create tag if it doesn't exist
+        Tag.create(tag, function (err, tag) {
+          if (err) { return res.send(400, { message: 'Error creating tag' }); }
+          return res.send(tag);
+        });
+      }
+    );
+  },
+
+  // Override destroy to ensure owner has access to project
+  destroy: function (req, res) {
+    if (req.route.method != 'delete') { return res.send(400, { message: 'Unsupported operation.' } ); }    
+    Tag.findOneById( req.params.id, function (err, tag) {
+      if (err) { return res.send(400, { message: 'Error looking up tag' }); }
+      if (!tag) { return res.send(404, { message: 'Tag not found'}); }
+      // check if this user is authorized
+      projUtils.authorized(tag.projectId, req.user[0].id, function (err, proj) {
+        if (err) { return res.send(400, { message: err }); }
+        if (!err && !proj) { return res.send(403, { message: 'Not authorized.'}); }
+        tag.destroy(function (err) {
+          if (err) { return res.send(400, { message: 'Error destroying tag mapping' }); }
+          return res.send(tag);
+        });
+      });
+    });
+  }
+
 };

api/controllers/TagEntityController.js

@@ -0,0 +1,18 @@
+/**
+ * TagEntityController
+ *
+ * @module		:: Controller
+ * @description	:: Administration of the system's tags
+ */
+
+module.exports = {
+
+  /**
+   * This controller is purely for administrative use to
+   * add/remove/list/etc tag entities.
+   *
+   * The security policies prevent non-Administrator users
+   * from accessing this controller.
+   */
+
+};

api/policies/projectId.js

@@ -0,0 +1,23 @@
+/**
+* Get the project referenced in :id and check if access is allowed
+*/
+var util = require('../services/projectUtils')
+
+module.exports = function projectId (req, res, next) {
+  if (req.body) {
+    var userId = null;
+    if (req.user) {
+      userId = req.user[0].id;
+    }
+    util.authorized(req.body.projectId, userId, function (err, proj) {
+      if (err) { return res.send({ message: err }); }
+      if (!err && !proj) { return res.send(403, { message: 'Not authorized.'}); }
+      req.proj = proj;
+      req.projectId = proj.id;
+      next();
+    });
+  // no :id is specified, so continue
+  } else {
+    next();
+  }
+};

assets/js/vendor/select2

@@ -59,17 +59,31 @@ module.exports.policies = {
     'unlike': ['authenticated', 'requireUserId', 'addUserId', 'requireId']
   },
 
-  TaskController : {
-    'findAllByProjectId': ['authenticated', 'addUserId', 'project']
-  },
-
   EventController : {
     'create': ['authenticated', 'addUserId', 'eventUuid'],
     'findAllByProjectId': ['authenticated', 'addUserId', 'requireId', 'project'],
     'attend': ['authenticated', 'requireUserId', 'addUserId', 'requireId'],
     'cancel': ['authenticated', 'requireUserId', 'addUserId', 'requireId'],
     'rsvp': ['authenticated', 'requireUserId', 'addUserId'],
     'ical': ['authenticated', 'addUserId', 'project']
+  },
+
+  TagController : {
+    '*': ['authenticated'],
+    'find': false,
+    'create': ['authenticated', 'requireUserId', 'projectId'],
+    'destroy': ['authenticated', 'requireUserId', 'requireId'],
+    'add': ['authenticated', 'requireUserId'],
+    'findAllByProjectId': ['authenticated', 'requireId', 'project']
+  },
+
+  TagEntityController : {
+    // Purely for administrative functions
+    '*': 'admin'
+  },
+
+  TaskController : {
+    'findAllByProjectId': ['authenticated', 'addUserId', 'project']
   }
 
   /*

config/policies.js

@@ -13,5 +13,19 @@ module.exports = {
   'project': {
     'title': 'Project Title',
     'description': 'Project Description'
-  }
+  },
+  'tags': [
+    {
+      'type': 'skill',
+      'name': 'Tag1'
+    },
+    {
+      'type': 'skill',
+      'name': 'Tag2'
+    },
+    {
+      'type': 'office',
+      'name': 'Tag3'
+    }    
+  ]
 };