yuuza/outline
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
e754f89e5c96def8b830f63b29b2fa779c7ded1f
outline/server/routes/api/subscriptions.ts
Apoorv Mishra f4461573de Refactor to accommodate authentication, transaction and pagination states together (#4636) 
* fix: refactor to accommodate authentication, transaction and pagination together into ctx.state

* feat: allow passing response type to APIContext
2023-01-04 23:51:44 +05:30

154 lines
3.6 KiB
TypeScript
Raw Blame History

import Router from "koa-router";
import subscriptionCreator from "@server/commands/subscriptionCreator";
import subscriptionDestroyer from "@server/commands/subscriptionDestroyer";
import auth from "@server/middlewares/authentication";
import { transaction } from "@server/middlewares/transaction";
import { Subscription, Document } from "@server/models";
import { authorize } from "@server/policies";
import { presentSubscription } from "@server/presenters";
import { APIContext } from "@server/types";
import { assertIn, assertUuid } from "@server/validation";
import pagination from "./middlewares/pagination";
const router = new Router();
router.post(
"subscriptions.list",
auth(),
pagination(),
async (ctx: APIContext) => {
const { user } = ctx.state.auth;
const { documentId, event } = ctx.request.body;
assertUuid(documentId, "documentId is required");
assertIn(
event,
["documents.update"],
`Not a valid subscription event for documents`
);
const document = await Document.findByPk(documentId, { userId: user.id });
authorize(user, "read", document);
const subscriptions = await Subscription.findAll({
where: {
documentId: document.id,
userId: user.id,
event,
},
order: [["createdAt", "DESC"]],
offset: ctx.state.pagination.offset,
limit: ctx.state.pagination.limit,
});
ctx.body = {
pagination: ctx.state.pagination,
data: subscriptions.map(presentSubscription),
};
}
);
router.post("subscriptions.info", auth(), async (ctx: APIContext) => {
const { user } = ctx.state.auth;
const { documentId, event } = ctx.request.body;
assertUuid(documentId, "documentId is required");
assertIn(
event,
["documents.update"],
"Not a valid subscription event for documents"
);
const document = await Document.findByPk(documentId, { userId: user.id });
authorize(user, "read", document);
// There can be only one subscription with these props.
const subscription = await Subscription.findOne({
where: {
userId: user.id,
documentId: document.id,
event,
},
rejectOnEmpty: true,
});
ctx.body = {
data: presentSubscription(subscription),
};
});
router.post(
"subscriptions.create",
auth(),
transaction(),
async (ctx: APIContext) => {
const { auth, transaction } = ctx.state;
const { user } = auth;
const { documentId, event } = ctx.request.body;
assertUuid(documentId, "documentId is required");
assertIn(
event,
["documents.update"],
"Not a valid subscription event for documents"
);
const document = await Document.findByPk(documentId, {
userId: user.id,
transaction,
});
authorize(user, "subscribe", document);
const subscription = await subscriptionCreator({
user,
documentId: document.id,
event,
ip: ctx.request.ip,
transaction,
});
ctx.body = {
data: presentSubscription(subscription),
};
}
);
router.post(
"subscriptions.delete",
auth(),
transaction(),
async (ctx: APIContext) => {
const { auth, transaction } = ctx.state;
const { user } = auth;
const { id } = ctx.request.body;
assertUuid(id, "id is required");
const subscription = await Subscription.findByPk(id, {
rejectOnEmpty: true,
transaction,
});
authorize(user, "delete", subscription);
await subscriptionDestroyer({
user,
subscription,
ip: ctx.request.ip,
transaction,
});
ctx.body = {
success: true,
};
}
);
export default router;
Reference in New Issue View Git Blame Copy Permalink