4

I want to make an HTML form to query MongoDB. How can I write the logic to ignore blank fields? For example, I have two search parameters. If the lastname field is blank, how would I write the query to ignore that field?

router.post('/auth/search', auth, function(req,res){
    var db = req.db;
    console.log(req.body);
    db.users.find({ 'firstname': req.body.firstname,
                    'lastname' :req.body.lastname  // if this field is blank in the form how can I ignore it?

    }, function(err, docs){
        if (err) return err;
        console.log(docs);
        res.send(docs);
    });
});

Appreciate any help. Thanks!

Improve this question

2 Answers 2

Reset to default
6

You can add properties to your query only if they’re truthy:

var query = {};

if (req.body.firstname) {
    query.firstname = req.body.firstname;
}

if (req.body.lastname) {
    query.lastname = req.body.lastname;
}

db.users.find(query, function (err, docs) {
    // …
});
Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

-2

By making search object dynamically.

router.post('/auth/search', auth, function(req,res){
    var db = req.db;
    console.log(req.body);
    var obj = {}
    if(req.body.firstname) {
        obj['firstname'] = req.body.firstname;
    }
    if(req.body.lastname) {
        obj['lastname'] = req.body.lastname;
    }

    db.users.find(obj, function(err, docs){
        if (err) return err;
        console.log(docs);
        res.send(docs);
    });
});
Improve this answer

3 Comments

curl -d '$where=function () { while (true); }' says “don’t do that”.
@HarpreetSingh, it's a matter of whitelisting/sanitizing your inputs. You don't want to openly trust any parameter that's being sent from the end user.
Oh yes, sure it would be a big mistake. Though I know that but slipped from mind this time. Now it will be remembered forever. Thanks :)

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.