As a User, I'd like to be able to have a customized Profile.

[AlexLLKong]

This is the user's profile page. They can edit their name, email, and password.

Figma wireframe

• HTML Components

  • Profile
  • Footer

• Endpoints

  • PATCH /profile

[nok-ko]

@AlexLLKong just changed the base branch on the PR to dev. 😅 It's easy to forget.

[nok-ko]

Can use await bcrypt.hash(…) here instead of .hashSync(…).

[nok-ko]

Closes #21.

[nok-ko]

Review made on my phone, pardon some of the curt comments (and ask clarification if you need!)

Will come back with another review once I'm at a computer.

[nok-ko]

You probably don't need the ifs here: IIRC nothing happens if you set an object's property to undefined.

[nok-ko]

First comment was sort of wrong, but this can be made terser:

const queryValues = {
    emailAddress: req.body.email,
    name: req.body.name,
// admittedly, the next line is kind of silly, maybe keep the original password code:
    pwd: req.body.pwd !== undefined ? (await bcrypt.hash(req.body.pwd, 10)) : undefined
};

const updateQuery = Object.fromEntries(
    Object.entries(queryValues).filter(e => e[1] !== undefined)
);

[nok-ko]

Wonder if it's better to skip this, and just do a single request to the database, catch this error case on the update failing. Reasoning being that two requests are slower than one, and that there's actually a weird race condition here, if someone deletes a user you want to update, just after you run the "user exists" query.

[nok-ko]

Tracked in #37, resolving this for now.

[nok-ko]

Probably shouldn't call this “avatarURL” any more.

[nok-ko]

Tracked in #36, resolving for now.

[nok-ko]

We should make sure all of our CSS follows the same naming convention sometime.

[nok-ko]

Could shorten this to:

[fooInput, barInput, bazInput].map(checkForInvalidInput);

[nok-ko]

Better name might be validate.

[nok-ko]

These editFoo functions could be generated by a higher order function, don't repeat yourself.

[nok-ko]

E.g:

function makeEditAction(inputEl, defaultValue){
    return function () {
        if (inputEl.disabled){
            inputEl.disabled= false; 
            inputEl.focus();
            inputEl.onfocus = clearInput(inputEl);
            return;
        }
        inputEl.disabled = true;
        inputEl.value = defaultValue;
    }
}

const editEmail = makeEditAction(EmailInput, userEmail);
const editFullName = makeEditAction(FullNameInput, userName);
const editPassword = makeEditAction(PasswordInput, "12345");

[nok-ko]

Could replace the switch... case with an object mapping error IDs to strings/actions.

[nok-ko]

Just use JSDoc comment style.

[nok-ko]

Also please try to make sure all of your functions have header comments describing what they do, ideally in JSDoc format

[nok-ko]

More substantial review. General recommendations aside from the specific stuff:

• Look for reused or “magic” CSS values, put them in CSS custom properties.
• Add doc comments to any functions longer than a couple of lines. (Not a big priority, but nice going forward.)
• Avoid readFileSync, use the functions in the node:fs/promises package instead.

Other side stuff:

• Default profile picture could be an SVG instead of what we have now. Okay for now, since it's just a placeholder.
• Consider putting some of the clientside JS in separate ES6 modules, especially stuff we might re-use.
• I don't quite understand how the error flag system works, so can't really offer cogent criticism… It seems to make sense, but I'm not sure.

Otherwise, I haven't looked at the actual UX of the thing, just the code… something to do later. 😅

[nok-ko]

Kind of confusing that we have both a user-profile.html + user-profile.css and a profile.html + profile.css.

[nok-ko]

Alex says they're not used anymore – will remove.

[nok-ko]

I think we ought to stop using fs.*Sync methods - we can just await the async versions from fs/promises when we need to, it's just as easy to use.

[nok-ko]

// at top of file: 
import {readFile} from 'node:fs/promises';

Suggested change

	const html = fs.readFileSync(componentLocation, "utf8");
	const html = await readFile(componentLocation, "utf8");

[nok-ko]

As for why: readFileSync() blocks the event loop, fs/promises' readFile() doesn't.

[nok-ko]

Why reassign index? Just use two different variables:

Suggested change

	let index = new JSDOM(doc);
	// Add the footer
	index = loadHTMLComponent(index, "footer", "footer", "./html/footer.html");
	const dom = new JSDOM(doc);
	// Add the footer
	const index = loadHTMLComponent(dom, "footer", "footer", "./html/footer.html");

I can't really see a reason for the other way, maybe I'm missing something.

[nok-ko]

My preference is for that suggested version – then the types of the two variables are always the same as initialized.

[nok-ko]

You don't seem to (explicitly) cover the case when the user is not logged in, in this endpoint.

[nok-ko]

First comment was sort of wrong, but this can be made terser:

const queryValues = {
    emailAddress: req.body.email,
    name: req.body.name,
// admittedly, the next line is kind of silly, maybe keep the original password code:
    pwd: req.body.pwd !== undefined ? (await bcrypt.hash(req.body.pwd, 10)) : undefined
};

const updateQuery = Object.fromEntries(
    Object.entries(queryValues).filter(e => e[1] !== undefined)
);

[nok-ko]

Suggested change

	// Make the POST call seperatly
	// Make the POST call separately

[nok-ko]

Suggested change

console.log(responseText);

[nok-ko]

What I meant:

Suggested change

	const ResponseText = await response.text();
	const feedback = document.getElementById("Update-Error");
	switch(ResponseText){
	case "userUpdated":
	// Successfully updated
	feedback.innerText = "Successfully Updated Profile";
	feedback.style.color = "green";
	break;
	case "emailInUse":
	// Email already in use.
	feedback.innerText = "That email is already in use";
	feedback.style.color = "red";
	break;
	default:
	feedback.innerText = "There was an issue on the server";
	feedback.style.color = "red";
	}
	const ResponseText = await response.text();
	const feedbackEl = document.getElementById("Update-Error");
	const [newText, newStyle] = {
	"userUpdated": ["Successfully updated profile.", { color: 'green' }],
	"emailInUse": ["That email is already in use.", { color: 'red' }],
	"_default": ["There was an issue on the server.", { color: 'red' }]
	}[ResponseText ?? '_default'];
	feedback.textContent = newText;
	Object.assign(feedback.style, newStyle);

And the even better thing to do would be to put that error message style (color: red/color: green) into a CSS class so that we can edit it from the stylesheet and not have too much markup in the JavaScript.

[nok-ko]

E.g:

function makeEditAction(inputEl, defaultValue){
    return function () {
        if (inputEl.disabled){
            inputEl.disabled= false; 
            inputEl.focus();
            inputEl.onfocus = clearInput(inputEl);
            return;
        }
        inputEl.disabled = true;
        inputEl.value = defaultValue;
    }
}

const editEmail = makeEditAction(EmailInput, userEmail);
const editFullName = makeEditAction(FullNameInput, userName);
const editPassword = makeEditAction(PasswordInput, "12345");

[nok-ko]

Workflow runs are failing because templates are not masked from the HTML Validator. Sigh, will fix later.

[AlexLLKong]

Post Code Review Changes

• Move html components into separate folder and naming convention.
• Credentials in the README.md for reg user and admin.
• Strip out ready function.
• Strip out profile.html and profile.css.
• Use await for fs.
• Add session check for /profile-details.
  • Also refactor frequently-used redirect/error check code into functions: checkLoginError and redirectToLogin.
  • Should really be Express middlewares.
• Strip out /signup.
• Check for console.logs.
• Fix stretching on profile pictures

[nok-ko]

Code review with Alex

[nok-ko]

Wow, even made the checks pass! Awesome work, guys.

[AlexLLKong]

Wow, even made the checks pass! Awesome work, guys.

wait why did the checks pass? I don't think anything was done to make them pass

[nok-ko]

wait why did the checks pass? I don't think anything was done to make them pass

'Cause the workflow was only set up to check files in html/ :)

[nok-ko]

Code review and merge branches (1hr) (1) [4]