if (err) { return next(err); } // Successful, so render. res.render('bookinstance_form', {title: 'Create BookInstance', book_list:books}); }); }; // Handle BookInstance create on POST. exports.bookinstance_create_post = [ // Validate fields. body('book', 'Book must be specified').isLength({ min: 1 }).trim(), body('imprint', 'Imprint must be specified').isLength({ min: 1 }).trim(), body('due_back', 'Invalid date').optional({ checkFalsy: true }).isISO8601(), // Sanitize fields. sanitizeBody('book').trim().escape(), sanitizeBody('imprint').trim().escape(), sanitizeBody('status').trim().escape(), sanitizeBody('due_back').toDate(), // Process request after validation and sanitization. (req, res, next) => { // Extract the validation errors from a request. const errors = validationResult(req); // Create a BookInstance object with escaped and trimmed data. var bookinstance = new BookInstance( { book: req.body.book, imprint: req.body.imprint, status: req.body.status,
exports.navi_post_create = [ // Validate fields. body('name', 'Meme name required').isLength({ min: 1 }).trim(), body('width').isNumeric(), body('height').isNumeric(), body('background_color', 'Background color required').isLength({ min: 1 }).trim(), body('image_url', 'Image URL required').isLength({ min: 1 }).trim(), body('image_width').isNumeric(), body('image_height').isNumeric(), body('font_size').isNumeric(), body('font_color', 'Font color required').isLength({ min: 1 }).trim(), body('caption', 'Caption required').isLength({ min: 1 }).trim(), // Sanitize fields. sanitizeBody('name').trim(), sanitizeBody('background_color').trim(), sanitizeBody('image_url').trim(), sanitizeBody('font_color').trim(), sanitizeBody('caption').trim(), // Process request after validation and sanitization. (req, res, next) => { // Extract the validation errors from a request. const errors = validationResult(req); // Create an item object with escaped and trimmed data. var meme = new Meme({ name: req.body.name, width: req.body.width, height: req.body.height,
if(typeof req.body.genre==='undefined') req.body.genre=[]; else req.body.genre=new Array(req.body.genre); } next(); }, // Validate fields. body('title', 'Title must not be empty.').isLength({ min: 1 }).trim(), body('author', 'Author must not be empty.').isLength({ min: 1 }).trim(), body('summary', 'Summary must not be empty.').isLength({ min: 1 }).trim(), body('isbn', 'ISBN must not be empty').isLength({ min: 1 }).trim(), // Sanitize fields (using wildcard). sanitizeBody('*').trim().escape(), // Process request after validation and sanitization. (req, res, next) => { // Extract the validation errors from a request. const errors = validationResult(req); // Create a Book object with escaped and trimmed data. var book = new Book( { title: req.body.title, author: req.body.author, summary: req.body.summary, isbn: req.body.isbn, genre: req.body.genre });
if (err) { res.status(500).send({error: 'Error getting item'}); return next(err); } else { // Successful res.status(200).json(item); } }); }; exports.item_create = [ // Validate that the name field is not empty. body('name', 'Item name required').isLength({ min: 1 }).trim(), // Sanitize (trim and escape) the name field. sanitizeBody('name').trim().escape(), // Process request after validation and sanitization. (req, res, next) => { // Extract the validation errors from a request. const errors = validationResult(req); // Create an item object with escaped and trimmed data. var item = new Item( { name: req.body.name } ); if (!errors.isEmpty()) { // There are errors. res.status(500).send({error: 'Error creating item'}); return;