umami/pages/api/website/index.js

import { ok, unauthorized, methodNotAllowed, getRandomChars } from 'next-basics';
import { updateWebsite, createWebsite, getWebsiteById } from 'queries';
import { useAuth } from 'lib/middleware';
import { uuid } from 'lib/crypto';

export default async (req, res) => {
  await useAuth(req, res);

  const { user_id, is_admin } = req.auth;
  const { website_id, enable_share_url } = req.body;

  if (req.method === 'POST') {
    const { name, domain, owner } = req.body;
    const website_owner = parseInt(owner);

    if (website_id) {
      const website = await getWebsiteById(website_id);

      if (website.user_id !== user_id && !is_admin) {
        return unauthorized(res);
      }

      let { share_id } = website;

      if (enable_share_url) {
        share_id = share_id ? share_id : getRandomChars(8);
      } else {
        share_id = null;
      }

      await updateWebsite(website_id, { name, domain, share_id, user_id: website_owner });

      return ok(res);
    } else {
      const website_uuid = uuid();
      const share_id = enable_share_url ? getRandomChars(8) : null;
      const website = await createWebsite(website_owner, { website_uuid, name, domain, share_id });

      return ok(res, website);
    }
  }

  return methodNotAllowed(res);
};
Use next-basics package. 2022-08-29 05:20:54 +02:00			`import { ok, unauthorized, methodNotAllowed, getRandomChars } from 'next-basics';`
move queries 2022-07-12 23:14:36 +02:00			`import { updateWebsite, createWebsite, getWebsiteById } from 'queries';`
Auth and session middleware. 2020-07-28 08:52:14 +02:00			`import { useAuth } from 'lib/middleware';`
Use next-basics package. 2022-08-29 05:20:54 +02:00			`import { uuid } from 'lib/crypto';`
Auth and session middleware. 2020-07-28 08:52:14 +02:00
			`export default async (req, res) => {`
			`await useAuth(req, res);`

Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00			`const { user_id, is_admin } = req.auth;`
Updated forms. 2020-08-17 06:28:54 +02:00			`const { website_id, enable_share_url } = req.body;`
Auth and session middleware. 2020-07-28 08:52:14 +02:00
Website edit functionality. 2020-08-07 11:27:12 +02:00			`if (req.method === 'POST') {`
Features: - Removes spellcheck for domain entry field - Adds the ability to assign websites to other users if you are an admin 2022-08-26 17:22:46 +02:00			`const { name, domain, owner } = req.body;`
			`const website_owner = parseInt(owner);`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00
Website edit functionality. 2020-08-07 11:27:12 +02:00			`if (website_id) {`
Enable public website sharing. 2020-08-15 10:17:15 +02:00			`const website = await getWebsiteById(website_id);`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00
Use token authentication for API requests. 2020-09-18 07:52:20 +02:00			`if (website.user_id !== user_id && !is_admin) {`
			`return unauthorized(res);`
			`}`
Enable public website sharing. 2020-08-15 10:17:15 +02:00
Use token authentication for API requests. 2020-09-18 07:52:20 +02:00			`let { share_id } = website;`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00
Use token authentication for API requests. 2020-09-18 07:52:20 +02:00			`if (enable_share_url) {`
			`share_id = share_id ? share_id : getRandomChars(8);`
			`} else {`
			`share_id = null;`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00			`}`

Features: - Removes spellcheck for domain entry field - Adds the ability to assign websites to other users if you are an admin 2022-08-26 17:22:46 +02:00			`await updateWebsite(website_id, { name, domain, share_id, user_id: website_owner });`
Use token authentication for API requests. 2020-09-18 07:52:20 +02:00
			`return ok(res);`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00			`} else {`
			`const website_uuid = uuid();`
Updated forms. 2020-08-17 06:28:54 +02:00			`const share_id = enable_share_url ? getRandomChars(8) : null;`
Features: - Removes spellcheck for domain entry field - Adds the ability to assign websites to other users if you are an admin 2022-08-26 17:22:46 +02:00			`const website = await createWebsite(website_owner, { website_uuid, name, domain, share_id });`
Website edit functionality. 2020-08-07 11:27:12 +02:00
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00			`return ok(res, website);`
Website edit functionality. 2020-08-07 11:27:12 +02:00			`}`
			`}`

Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00			`return methodNotAllowed(res);`
Auth and session middleware. 2020-07-28 08:52:14 +02:00			`};`