diff --git a/common/locales/en/api-v3.json b/common/locales/en/api-v3.json
index fa83245f6f..87c63de581 100644
--- a/common/locales/en/api-v3.json
+++ b/common/locales/en/api-v3.json
@@ -77,5 +77,11 @@
"questAlreadyAccepted": "You already accepted the quest invitation.",
"noActiveQuestToLeave": "No active quest to leave",
"questLeaderCannotLeaveQuest": "Quest leader cannot leave quest",
- "notPartOfQuest": "You are not part of the quest"
+ "notPartOfQuest": "You are not part of the quest",
+ "noActiveQuestToAbort": "There is no active quest to abort.",
+ "onlyLeaderAbortQuest": "Only the group or quest leader can abort a quest.",
+ "questAlreadyRejected": "You already rejected the quest invitation.",
+ "cantCancelActiveQuest": "You can not cancel an active quest, use the abort functionality.",
+ "onlyLeaderCancelQuest": "Only the group or quest leader can cancel the quest.",
+ "questInvitationDoesNotExist": "No quest invitation has been sent out yet."
}
diff --git a/common/locales/en/quests.json b/common/locales/en/quests.json
index 7b3fe7af43..5edae258e5 100644
--- a/common/locales/en/quests.json
+++ b/common/locales/en/quests.json
@@ -78,5 +78,6 @@
"whichQuestStart": "Which quest do you want to start?",
"getMoreQuests": "Get more quests",
"unlockedAQuest": "You unlocked a quest!",
- "leveledUpReceivedQuest": "You leveled up to Level <%= level %> and received a quest scroll!"
+ "leveledUpReceivedQuest": "You leveled up to Level <%= level %> and received a quest scroll!",
+ "questInvitationDoesNotExist": "No quest invitation has been sent out yet."
}
diff --git a/test/api/v3/integration/quests/POST-groups_groupid_quests_abort.test.js b/test/api/v3/integration/quests/POST-groups_groupid_quests_abort.test.js
new file mode 100644
index 0000000000..955d31bc92
--- /dev/null
+++ b/test/api/v3/integration/quests/POST-groups_groupid_quests_abort.test.js
@@ -0,0 +1,126 @@
+import {
+ createAndPopulateGroup,
+ translate as t,
+ generateUser,
+} from '../../../../helpers/api-v3-integration.helper';
+import { v4 as generateUUID } from 'uuid';
+
+describe('POST /groups/:groupId/quests/leave', () => {
+ let questingGroup;
+ let partyMembers;
+ let user;
+ let leader;
+
+ const PET_QUEST = 'whale';
+
+ beforeEach(async () => {
+ let { group, groupLeader, members } = await createAndPopulateGroup({
+ groupDetails: { type: 'party', privacy: 'private' },
+ members: 2,
+ });
+
+ questingGroup = group;
+ leader = groupLeader;
+ partyMembers = members;
+
+ await leader.update({
+ [`items.quests.${PET_QUEST}`]: 1,
+ });
+ user = await generateUser();
+ });
+
+ context('failure conditions', () => {
+ it('returns an error when group is not found', async () => {
+ await expect(partyMembers[0].post(`/groups/${generateUUID()}/quests/abort`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('groupNotFound'),
+ });
+ });
+
+ it('returns an error for a group in which user is not a member', async () => {
+ await expect(user.post(`/groups/${questingGroup._id}/quests/abort`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('groupNotFound'),
+ });
+ });
+
+ it('returns an error when group is a guild', async () => {
+ let { group: guild, groupLeader: guildLeader } = await createAndPopulateGroup({
+ groupDetails: { type: 'guild', privacy: 'private' },
+ });
+
+ await expect(guildLeader.post(`/groups/${guild._id}/quests/abort`))
+ .to.eventually.be.rejected.and.eql({
+ code: 401,
+ error: 'NotAuthorized',
+ message: t('guildQuestsNotSupported'),
+ });
+ });
+
+ it('returns an error when quest is not active', async () => {
+ await expect(partyMembers[0].post(`/groups/${questingGroup._id}/quests/abort`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('noActiveQuestToAbort'),
+ });
+ });
+
+ it('returns an error when non quest leader attempts to abort', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+ await partyMembers[0].post(`/groups/${questingGroup._id}/quests/accept`);
+ await partyMembers[1].post(`/groups/${questingGroup._id}/quests/accept`);
+
+ await expect(partyMembers[0].post(`/groups/${questingGroup._id}/quests/abort`))
+ .to.eventually.be.rejected.and.eql({
+ code: 401,
+ error: 'NotAuthorized',
+ message: t('onlyLeaderAbortQuest'),
+ });
+ });
+ });
+
+ it('aborts a quest', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+ await partyMembers[0].post(`/groups/${questingGroup._id}/quests/accept`);
+ await partyMembers[1].post(`/groups/${questingGroup._id}/quests/accept`);
+
+ let res = await leader.post(`/groups/${questingGroup._id}/quests/abort`);
+ Promise.all([
+ leader.sync(),
+ questingGroup.sync(),
+ partyMembers[0].sync(),
+ partyMembers[1].sync(),
+ ]);
+
+ let cleanUserQuestObj = {
+ key: null,
+ progress: {
+ up: 0,
+ down: 0,
+ collect: {},
+ },
+ completed: null,
+ RSVPNeeded: false,
+ };
+
+ expect(leader.party.quest).to.eql(cleanUserQuestObj);
+ expect(partyMembers[0].party.quest).to.eql(cleanUserQuestObj);
+ expect(partyMembers[1].party.quest).to.eql(cleanUserQuestObj);
+ expect(leader.items.quests[PET_QUEST]).to.equal(1);
+ expect(questingGroup.quest).to.deep.equal(res);
+ expect(questingGroup.quest).to.eql({
+ key: null,
+ active: false,
+ leader: null,
+ progress: {
+ collect: {},
+ },
+ members: {},
+ });
+ });
+});
diff --git a/test/api/v3/integration/quests/POST-groups_groupid_quests_cancel.test.js b/test/api/v3/integration/quests/POST-groups_groupid_quests_cancel.test.js
new file mode 100644
index 0000000000..daa995438a
--- /dev/null
+++ b/test/api/v3/integration/quests/POST-groups_groupid_quests_cancel.test.js
@@ -0,0 +1,138 @@
+import {
+ createAndPopulateGroup,
+ translate as t,
+ generateUser,
+} from '../../../../helpers/api-v3-integration.helper';
+import { v4 as generateUUID } from 'uuid';
+
+describe('POST /groups/:groupId/quests/cancel', () => {
+ let questingGroup;
+ let partyMembers;
+ let user;
+ let leader;
+
+ const PET_QUEST = 'whale';
+
+ beforeEach(async () => {
+ let { group, groupLeader, members } = await createAndPopulateGroup({
+ groupDetails: { type: 'party', privacy: 'private' },
+ members: 2,
+ });
+
+ questingGroup = group;
+ leader = groupLeader;
+ partyMembers = members;
+
+ await leader.update({
+ [`items.quests.${PET_QUEST}`]: 1,
+ });
+ user = await generateUser();
+ });
+
+ context('failure conditions', () => {
+ it('returns an error when group is not found', async () => {
+ await expect(partyMembers[0].post(`/groups/${generateUUID()}/quests/cancel`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('groupNotFound'),
+ });
+ });
+
+ it('does not reject quest for a group in which user is not a member', async () => {
+ await expect(user.post(`/groups/${questingGroup._id}/quests/cancel`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('groupNotFound'),
+ });
+ });
+
+ it('returns an error when group is a guild', async () => {
+ let { group: guild, groupLeader: guildLeader } = await createAndPopulateGroup({
+ groupDetails: { type: 'guild', privacy: 'private' },
+ });
+
+ await expect(guildLeader.post(`/groups/${guild._id}/quests/cancel`))
+ .to.eventually.be.rejected.and.eql({
+ code: 401,
+ error: 'NotAuthorized',
+ message: t('guildQuestsNotSupported'),
+ });
+ });
+
+ it('returns an error when group is not on a quest', async () => {
+ await expect(partyMembers[0].post(`/groups/${questingGroup._id}/quests/cancel`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('questInvitationDoesNotExist'),
+ });
+ });
+
+ it('only the leader can cancel the quest', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+
+ await expect(partyMembers[0].post(`/groups/${questingGroup._id}/quests/cancel`))
+ .to.eventually.be.rejected.and.eql({
+ code: 401,
+ error: 'NotAuthorized',
+ message: t('onlyLeaderCancelQuest'),
+ });
+ });
+
+ it('does not cancel a quest already underway', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+ await partyMembers[0].post(`/groups/${questingGroup._id}/quests/accept`);
+ // quest will start after everyone has accepted
+ await partyMembers[1].post(`/groups/${questingGroup._id}/quests/accept`);
+
+ await expect(leader.post(`/groups/${questingGroup._id}/quests/cancel`))
+ .to.eventually.be.rejected.and.eql({
+ code: 401,
+ error: 'NotAuthorized',
+ message: t('cantCancelActiveQuest'),
+ });
+ });
+ });
+
+ it('cancels a quest', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+ await partyMembers[0].post(`/groups/${questingGroup._id}/quests/accept`);
+
+ let res = await leader.post(`/groups/${questingGroup._id}/quests/cancel`);
+
+ await Promise.all([
+ leader.sync(),
+ partyMembers[0].sync(),
+ partyMembers[1].sync(),
+ questingGroup.sync(),
+ ]);
+
+ let clean = {
+ key: null,
+ progress: {
+ up: 0,
+ down: 0,
+ collect: {},
+ },
+ completed: null,
+ RSVPNeeded: false,
+ };
+
+ expect(leader.party.quest).eql(clean);
+ expect(partyMembers[1].party.quest).eql(clean);
+ expect(partyMembers[0].party.quest).eql(clean);
+
+ expect(res).to.eql(questingGroup.quest);
+ expect(questingGroup.quest).to.eql({
+ key: null,
+ active: false,
+ leader: null,
+ progress: {
+ collect: {},
+ },
+ members: {},
+ });
+ });
+});
diff --git a/test/api/v3/integration/quests/POST-groups_groupid_quests_reject.test.js b/test/api/v3/integration/quests/POST-groups_groupid_quests_reject.test.js
new file mode 100644
index 0000000000..1eb62aa0c6
--- /dev/null
+++ b/test/api/v3/integration/quests/POST-groups_groupid_quests_reject.test.js
@@ -0,0 +1,146 @@
+import {
+ createAndPopulateGroup,
+ translate as t,
+ generateUser,
+} from '../../../../helpers/api-v3-integration.helper';
+import { v4 as generateUUID } from 'uuid';
+
+describe('POST /groups/:groupId/quests/reject', () => {
+ let questingGroup;
+ let partyMembers;
+ let user;
+ let leader;
+
+ const PET_QUEST = 'whale';
+
+ beforeEach(async () => {
+ let { group, groupLeader, members } = await createAndPopulateGroup({
+ groupDetails: { type: 'party', privacy: 'private' },
+ members: 2,
+ });
+
+ questingGroup = group;
+ leader = groupLeader;
+ partyMembers = members;
+
+ await leader.update({
+ [`items.quests.${PET_QUEST}`]: 1,
+ });
+ user = await generateUser();
+ });
+
+ context('failure conditions', () => {
+ it('returns an error when group is not found', async () => {
+ await expect(partyMembers[0].post(`/groups/${generateUUID()}/quests/reject`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('groupNotFound'),
+ });
+ });
+
+ it('does not accept quest for a group in which user is not a member', async () => {
+ await expect(user.post(`/groups/${questingGroup._id}/quests/accept`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('groupNotFound'),
+ });
+ });
+
+ it('returns an error when group is a guild', async () => {
+ let { group: guild, groupLeader: guildLeader } = await createAndPopulateGroup({
+ groupDetails: { type: 'guild', privacy: 'private' },
+ });
+
+ await expect(guildLeader.post(`/groups/${guild._id}/quests/reject`))
+ .to.eventually.be.rejected.and.eql({
+ code: 401,
+ error: 'NotAuthorized',
+ message: t('guildQuestsNotSupported'),
+ });
+ });
+
+ it('returns an error when group is not on a quest', async () => {
+ await expect(partyMembers[0].post(`/groups/${questingGroup._id}/quests/reject`))
+ .to.eventually.be.rejected.and.eql({
+ code: 404,
+ error: 'NotFound',
+ message: t('questInvitationDoesNotExist'),
+ });
+ });
+
+ it('return an error when an user rejects an invite twice', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+ await partyMembers[0].post(`/groups/${questingGroup._id}/quests/reject`);
+
+ await expect(partyMembers[0].post(`/groups/${questingGroup._id}/quests/reject`))
+ .to.eventually.be.rejected.and.eql({
+ code: 400,
+ error: 'BadRequest',
+ message: t('questAlreadyRejected'),
+ });
+ });
+
+ it('return an error when an user rejects an invite already accepted', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+ await partyMembers[0].post(`/groups/${questingGroup._id}/quests/accept`);
+
+ await expect(partyMembers[0].post(`/groups/${questingGroup._id}/quests/reject`))
+ .to.eventually.be.rejected.and.eql({
+ code: 400,
+ error: 'BadRequest',
+ message: t('questAlreadyAccepted'),
+ });
+ });
+
+ it('does not reject invite for a quest already underway', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+ await partyMembers[0].post(`/groups/${questingGroup._id}/quests/accept`);
+ // quest will start after everyone has accepted
+ await partyMembers[1].post(`/groups/${questingGroup._id}/quests/accept`);
+
+ await expect(partyMembers[0].post(`/groups/${questingGroup._id}/quests/reject`))
+ .to.eventually.be.rejected.and.eql({
+ code: 401,
+ error: 'NotAuthorized',
+ message: t('questAlreadyUnderway'),
+ });
+ });
+ });
+
+ context('successfully quest rejection', () => {
+ let cleanUserQuestObj = {
+ key: null,
+ progress: {
+ up: 0,
+ down: 0,
+ collect: {},
+ },
+ completed: null,
+ RSVPNeeded: false,
+ };
+
+ it('rejects a quest invitation', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+
+ let res = await partyMembers[0].post(`/groups/${questingGroup._id}/quests/reject`);
+ await partyMembers[0].sync();
+ await questingGroup.sync();
+
+ expect(partyMembers[0].party.quest).to.eql(cleanUserQuestObj);
+ expect(questingGroup.quest.members[partyMembers[0]._id]).to.be.false;
+ expect(questingGroup.quest.active).to.be.false;
+ expect(res).to.eql(questingGroup.quest);
+ });
+
+ it('starts the quest when the last user reject', async () => {
+ await leader.post(`/groups/${questingGroup._id}/quests/invite/${PET_QUEST}`);
+ await partyMembers[0].post(`/groups/${questingGroup._id}/quests/accept`);
+ await partyMembers[1].post(`/groups/${questingGroup._id}/quests/reject`);
+ await questingGroup.sync();
+
+ expect(questingGroup.quest.active).to.be.true;
+ });
+ });
+});
diff --git a/website/src/controllers/api-v3/quests.js b/website/src/controllers/api-v3/quests.js
index 39da2cec29..bf25b81396 100644
--- a/website/src/controllers/api-v3/quests.js
+++ b/website/src/controllers/api-v3/quests.js
@@ -6,9 +6,7 @@ import analytics from '../../libs/api-v3/analyticsService';
import {
model as Group,
} from '../../models/group';
-import {
- model as User,
-} from '../../models/user';
+import { model as User } from '../../models/user';
import {
NotFound,
NotAuthorized,
@@ -23,7 +21,7 @@ import { quests as questScrolls } from '../../../../common/script/content';
function canStartQuestAutomatically (group) {
// If all members are either true (accepted) or false (rejected) return true
// If any member is null/undefined (undecided) return false
- return _.every(group.quest.members, Boolean);
+ return _.every(group.quest.members, _.isBoolean);
}
let api = {};
@@ -182,6 +180,167 @@ api.acceptQuest = {
},
};
+/**
+ * @api {post} /groups/:groupId/quests/reject Reject a quest
+ * @apiVersion 3.0.0
+ * @apiName RejectQuest
+ * @apiGroup Group
+ *
+ * @apiParam {string} groupId The group _id (or 'party')
+ *
+ * @apiSuccess {Object} quest Quest Object
+ */
+api.rejectQuest = {
+ method: 'POST',
+ url: '/groups/:groupId/quests/reject',
+ middlewares: [authWithHeaders(), cron],
+ async handler (req, res) {
+ let user = res.locals.user;
+
+ req.checkParams('groupId', res.t('groupIdRequired')).notEmpty();
+
+ let validationErrors = req.validationErrors();
+ if (validationErrors) throw validationErrors;
+
+ let group = await Group.getGroup({user, groupId: req.params.groupId, fields: 'type quest'});
+ if (!group) throw new NotFound(res.t('groupNotFound'));
+ if (group.type !== 'party') throw new NotAuthorized(res.t('guildQuestsNotSupported'));
+ if (!group.quest.key) throw new NotFound(res.t('questInvitationDoesNotExist'));
+ if (group.quest.active) throw new NotAuthorized(res.t('questAlreadyUnderway'));
+ if (group.quest.members[user._id]) throw new BadRequest(res.t('questAlreadyAccepted'));
+ if (group.quest.members[user._id] === false) throw new BadRequest(res.t('questAlreadyRejected'));
+
+ group.quest.members[user._id] = false;
+ group.markModified('quest.members');
+
+ user.party.quest = Group.cleanQuestProgress();
+ user.markModified('party.quest');
+
+ if (canStartQuestAutomatically(group)) {
+ await group.startQuest(user);
+ }
+
+ let [savedGroup] = await Q.all([
+ group.save(),
+ user.save(),
+ ]);
+
+ res.respond(200, savedGroup.quest);
+
+ analytics.track('quest', {
+ category: 'behavior',
+ owner: false,
+ response: 'reject',
+ gaLabel: 'reject',
+ questName: group.quest.key,
+ uuid: user._id,
+ });
+ },
+};
+
+/**
+ * @api {post} /groups/:groupId/quests/cancel Cancels a quest
+ * @apiVersion 3.0.0
+ * @apiName CancelQuest
+ * @apiGroup Group
+ *
+ * @apiParam {string} groupId The group _id (or 'party')
+ *
+ * @apiSuccess {Object} quest Quest Object
+ */
+api.cancelQuest = {
+ method: 'POST',
+ url: '/groups/:groupId/quests/cancel',
+ middlewares: [authWithHeaders(), cron],
+ async handler (req, res) {
+ // Cancel a quest BEFORE it has begun (i.e., in the invitation stage)
+ // Quest scroll has not yet left quest owner's inventory so no need to return it.
+ // Do not wipe quest progress for members because they'll want it to be applied to the next quest that's started.
+ let user = res.locals.user;
+ let groupId = req.params.groupId;
+
+ req.checkParams('groupId', res.t('groupIdRequired')).notEmpty();
+
+ let validationErrors = req.validationErrors();
+ if (validationErrors) throw validationErrors;
+
+ let group = await Group.getGroup({user, groupId, fields: 'type leader quest'});
+ if (!group) throw new NotFound(res.t('groupNotFound'));
+ if (group.type !== 'party') throw new NotAuthorized(res.t('guildQuestsNotSupported'));
+ if (!group.quest.key) throw new NotFound(res.t('questInvitationDoesNotExist'));
+ if (user._id !== group.leader && group.quest.leader !== user._id) throw new NotAuthorized(res.t('onlyLeaderCancelQuest'));
+ if (group.quest.active) throw new NotAuthorized(res.t('cantCancelActiveQuest'));
+
+ group.quest = Group.cleanGroupQuest();
+ group.markModified('quest');
+
+ let [savedGroup] = await Promise.all([
+ group.save(),
+ User.update(
+ {'party._id': groupId},
+ {$set: {'party.quest': Group.cleanQuestProgress()}},
+ {multi: true}
+ ),
+ ]);
+
+ res.respond(200, savedGroup.quest);
+ },
+};
+
+/**
+ * @api {post} /groups/:groupId/quests/abort Abort the current quest
+ * @apiVersion 3.0.0
+ * @apiName AbortQuest
+ * @apiGroup Group
+ *
+ * @apiParam {string} groupId The group _id (or 'party')
+ *
+ * @apiSuccess {Object} quest Quest Object
+ */
+api.abortQuest = {
+ method: 'POST',
+ url: '/groups/:groupId/quests/abort',
+ middlewares: [authWithHeaders(), cron],
+ async handler (req, res) {
+ // Abort a quest AFTER it has begun (see questCancel for BEFORE)
+ let user = res.locals.user;
+ let groupId = req.params.groupId;
+
+ req.checkParams('groupId', res.t('groupIdRequired')).notEmpty();
+
+ let validationErrors = req.validationErrors();
+ if (validationErrors) throw validationErrors;
+
+ let group = await Group.getGroup({user, groupId, fields: 'type quest leader'});
+ if (!group) throw new NotFound(res.t('groupNotFound'));
+ if (group.type !== 'party') throw new NotAuthorized(res.t('guildQuestsNotSupported'));
+ if (!group.quest.active) throw new NotFound(res.t('noActiveQuestToAbort'));
+ if (user._id !== group.leader && user._id !== group.quest.leader) throw new NotAuthorized(res.t('onlyLeaderAbortQuest'));
+
+ let memberUpdates = User.update({
+ 'party._id': groupId,
+ }, {
+ $set: {'party.quest': Group.cleanQuestProgress()},
+ $inc: {_v: 1}, // TODO update middleware
+ }, {multi: true}).exec();
+
+ let questLeaderUpdate = User.update({
+ _id: group.quest.leader,
+ }, {
+ $inc: {
+ [`items.quests.${group.quest.key}`]: 1, // give back the quest to the quest leader
+ },
+ }).exec();
+
+ group.quest = Group.cleanGroupQuest();
+ group.markModified('quest');
+
+ let [groupSaved] = await Q.all([group.save(), memberUpdates, questLeaderUpdate]);
+
+ res.respond(200, groupSaved.quest);
+ },
+};
+
/**
* @api {post} /groups/:groupId/quests/leave Leaves the active quest
* @apiVersion 3.0.0
diff --git a/website/src/models/group.js b/website/src/models/group.js
index ff7a22b63c..d955ed1fda 100644
--- a/website/src/models/group.js
+++ b/website/src/models/group.js
@@ -300,8 +300,8 @@ schema.methods.startQuest = async function startQuest (user) {
});
};
+// return a clean object for user.quest
function _cleanQuestProgress (merge) {
- // TODO clone? (also in sendChat message)
let clean = {
key: null,
progress: {
@@ -321,8 +321,22 @@ function _cleanQuestProgress (merge) {
return clean;
}
+// TODO move to User.cleanQuestProgress?
schema.statics.cleanQuestProgress = _cleanQuestProgress;
+// returns a clean object for group.quest
+schema.statics.cleanGroupQuest = function cleanGroupQuest () {
+ return {
+ key: null,
+ active: false,
+ leader: null,
+ progress: {
+ collect: {},
+ },
+ members: {},
+ };
+};
+
// Participants: Grant rewards & achievements, finish quest
// Returns the promise from update().exec()
schema.methods.finishQuest = function finishQuest (quest) {