making route changes

Author: lucyq

client/app/controllers/unmaskController.js

@@ -10,7 +10,11 @@
 define(['helper/mpc', 'controllers/tableController', 'filesaver'], function (mpc, tableController, filesaver) {
 
   // Takes callback(true|false, data).
-  function aggregate_and_unmask(mOut, privateKey, session, password, callback) {
+  function aggregate_and_unmask(mOut, analyticsMasks, privateKey, session, password, callback) {
+
+    aMOut = JSON.parse(analyticsMasks.data);
+
+    console.log('analytics mask',aMOut);
 
     mOut = JSON.parse(mOut.data);
     console.log(mOut);
@@ -57,6 +61,10 @@ define(['helper/mpc', 'controllers/tableController', 'filesaver'], function (mpc
     // Request service to aggregate its shares and send us the result
     var serviceResultShare = getServiceResultShare(session, password);
 
+    var analyticsShares = getAnalyticsShares(session, password);
+
+    console.log(analyticsShares);
+
     Promise.all([analystResultShare, serviceResultShare, questions_public])
       .then(function (resultShares) {
         var analystResult = resultShares[0],
@@ -85,6 +93,21 @@ define(['helper/mpc', 'controllers/tableController', 'filesaver'], function (mpc
     // });
   }
 
+
+  function getAnalyticsShares(session, password) {
+    return $.ajax({
+      type: 'POST',
+      url: '/get_analytics',
+      contentType: 'application/json',
+      data: JSON.stringify({
+        session: session,
+        password: password
+      }),
+      dataType: 'json'
+    });
+  }
+
+
   function getServiceResultShare(session, password) {
     return $.ajax({
       type: 'POST',

client/app/views/unmaskView.js

@@ -26,6 +26,21 @@ define(['jquery', 'controllers/unmaskController', 'controllers/clientController'
 
     }
 
+    function getAnalyticsMasks(sK, sP, pK, masks, callB) {
+      $.ajax({
+        type: 'POST',
+        url: '/get_analytics_masks',
+        contentType: 'application/json',
+        data: JSON.stringify({session: sK, password: sP}),
+        success: function (analyticsMasks) {
+          unmaskController.aggregate_and_unmask(masks, analyticsMasks, pK, sK, sP, callB);
+        },
+        error: function(e) {
+          error(e.responseText);
+        }
+      })
+
+    }
 
     function getMasks(sK, sP, pK) {
       $.ajax({
@@ -34,7 +49,7 @@ define(['jquery', 'controllers/unmaskController', 'controllers/clientController'
         contentType: 'application/json',
         data: JSON.stringify({session: sK, password: sP}),
         success: function (data) {
-          unmaskController.aggregate_and_unmask(data, pK, sK, sP, callb);
+          getAnalyticsMasks(sK, sP, pK, data, callb);
         },
         error: function (e) {
           error(e.responseText);

client/unmask.html

@@ -133,7 +133,7 @@ <h2 class="text-center">Unmask Aggregate Data</h2>
           <form>
             <div class="form-group">
               <label class="control-label" for="session">Session Key</label>
-              <input type="text" id="session" class="form-control" placeholder="Session Key" pattern="^[a-zA-Z0-9]{26}$" autocomplete="off" required/>
+              <input type="text" id="session" value="3wcd7hgekettex9qmk55h6t798" class="form-control" placeholder="Session Key" pattern="^[a-zA-Z0-9]{26}$" autocomplete="off" required/>
               <span id="session-success" class="success-icon glyphicon glyphicon-ok form-control-feedback hidden"
               aria-hidden="true"></span>
               <span id="session-fail" class="fail-icon glyphicon glyphicon-remove form-control-feedback hidden"
@@ -145,7 +145,7 @@ <h2 class="text-center">Unmask Aggregate Data</h2>
             </div>
             <div class="form-group">
               <label class="control-label" for="session-password">Session Password</label>
-              <input type="text" id="session-password" class="form-control" placeholder="Session Password"
+              <input type="text" value="2ywayksw257g56xrdrza1yszrw" id="session-password" class="form-control" placeholder="Session Password"
               pattern="^[a-zA-Z0-9]{26}$"
               autocomplete="off" required>
               <span id="session-password-success" class="success-icon glyphicon glyphicon-ok form-control-feedback hidden" aria-hidden="true"></span>

server/index.js

@@ -620,6 +620,124 @@ app.post('/generate_client_urls', function (req, res) {
   });
 });
 
+app.post('/get_analytics_masks', function (req, res) {
+  console.log('GET to get_analytics_masks.');
+  console.log(req.body);
+
+  var schema = {
+    session: joi.string().alphanum().required(),
+    password: joi.string().alphanum().required()
+  };
+
+  joi.validate(req.body, schema, function (valErr, body) {
+    if (valErr) {
+      console.log(valErr);
+      res.status(500).send('Invalid or missing fields.');
+      return;
+    }
+
+    var fail = function (err) {
+      console.log(err);
+      res.status(500).send(err);
+    };
+    var success = function () {
+      AnalyticsMask.where({session: body.session}).find(function (err, data) {
+        if (err) {
+          console.log(err);
+          res.status(500).send('Error getting analytics masks.');
+          return;
+        }
+        if (!data || data.length === 0) {
+          res.status(500).send('No submissions yet. Please come back later.');
+          return;
+        }
+        else {
+          console.log(data);
+          res.send({data: JSON.stringify(data)});
+          return;
+        }
+      });
+    };
+
+    verify_password(body.session, body.password, function () {
+      verify_status(body.session, "STOP", success, fail);
+    }, fail);
+  });
+
+});
+
+// endpoint for getting all of the cubes for a specific session
+app.post('/get_cubes', function (req, res) {
+  console.log('POST to get_cubes.');
+  console.log(req.body);
+
+  var schema = {
+    session: joi.string().alphanum().required(),
+    password: joi.string().alphanum().required()
+  };
+
+  joi.validate(req.body, schema, function (valErr, body) {
+    if (valErr) {
+      console.log(valErr);
+      res.status(500).send('Invalid or missing fields.');
+      return;
+    }
+
+    var fail = function (err) {
+      console.log(err);
+      res.status(500).send(err);
+    };
+    var success = function () {
+      Cube.where({session: body.session}).find(function (err, data) {
+        if (err) {
+          console.log(err);
+          res.status(500).send('Error getting cubes.');
+          return;
+        }
+        if (!data || data.length === 0) {
+          res.status(500).send('No submissions yet. Please come back later.');
+          return;
+        }
+        else {
+          console.log(data.length);
+          var result = {};
+          for (var i = 0; i < 5; i++) {
+            for (var j = i + 1; j < 5; j++) {
+              result[i + ":" + j] = [];
+            }
+          }
+
+          for (var d = 0; d < data.length; d++) {
+            var one_submission = data[d].fields;
+            for (var i = 0; i < 5; i++) {
+              for (var j = i + 1; j < 5; j++) {
+                result[i + ":" + j].push(one_submission[i + ":" + j]);
+              }
+            }
+          }
+
+          // Sort (to shuffle/remove order) pairs
+          // now it cannot be inferred which pairs are from the same submission.
+          for (var i = 0; i < 5; i++) {
+            for (var j = i + 1; j < 5; j++) {
+              result[i + ":" + j] = result[i + ":" + j].sort();
+            }
+          }
+
+          res.send(result);
+          return;
+        }
+      });
+    };
+
+    verify_password(body.session, body.password, function () {
+      verify_status(body.session, "STOP", success, fail);
+    }, fail);
+  });
+
+});
+
+
 // endpoint for getting already generated client unique urls
 app.post('/get_client_urls', function (req, res) {
   console.log('POST /get_client_urls');
@@ -830,6 +948,66 @@ app.post('/get_cubes', function (req, res) {
 
 });
 
+
+// endpoint for getting the service share of the result of the aggregation
+app.post('/get_analytics', function (req, res) {
+  console.log('POST /get_analytics');
+  console.log(req.body);
+
+  var schema = {
+    session: joi.string().alphanum().required(),
+    password: joi.string().alphanum().required()
+  };
+
+  joi.validate(req.body, schema, function (valErr, body) {
+    if (valErr) {
+      console.log(valErr);
+      res.status(500).send('Invalid or missing fields.');
+      return;
+    }
+
+    var fail = function (err) {
+      console.log(err);
+      res.status(500).send(err);
+    };
+    var success = function () {
+      Analytics.where({session: body.session}).find(function (err, data) {
+        if (err) {
+          console.log(err);
+          res.status(500).send('Error computing aggregate.');
+          return;
+        }
+
+        // make sure query result is not empty
+        if (data.length >= 1) {
+          console.log('Computing share of aggregate.');
+
+          var invalidShareCount = mpc.countInvalidShares(data, true),
+            serviceShare = mpc.aggregateShares(data, true);
+
+          // TODO: we should set a threshold and abort if there are too
+          // many invalid shares
+          console.log('Invalid share count:', invalidShareCount);
+
+          console.log('Sending aggregate.');
+          console.log('SERVICE SHARE', serviceShare);
+          res.json(serviceShare);
+
+          return;
+        }
+        else {
+          res.status(500).send('No submissions yet. Please come back later.');
+          return;
+        }
+      });
+    };
+
+    verify_password(body.session, body.password, function () {
+      verify_status(body.session, "STOP", success, fail);
+    }, fail);
+  });
+});
+
 // endpoint for getting the service share of the result of the aggregation
 app.post('/get_aggregate', function (req, res) {
   console.log('POST /get_aggregate');