umami/pages/api/users/[id]/websites.ts

import { useAuth, useCors } from 'lib/middleware';
import { NextApiRequestQueryBody } from 'lib/types';
import { NextApiResponse } from 'next';
import { methodNotAllowed, ok, unauthorized } from 'next-basics';
import { getUserWebsites } from 'queries';

export interface UserWebsitesRequestBody {
  name: string;
  domain: string;
  shareId: string;
}

export default async (
  req: NextApiRequestQueryBody<any, UserWebsitesRequestBody>,
  res: NextApiResponse,
) => {
  await useCors(req, res);
  await useAuth(req, res);

  const { user } = req.auth;
  const { id: userId } = req.query;

  if (req.method === 'GET') {
    if (!user.isAdmin && user.id !== userId) {
      return unauthorized(res);
    }

    const websites = await getUserWebsites(userId);

    return ok(res, websites);
  }

  return methodNotAllowed(res);
};
Updated roles and permissions logic. 2022-12-07 03:36:41 +01:00			`import { useAuth, useCors } from 'lib/middleware';`
Add admin check. (#1716) * Add admin check. * Fix teamId check. 2022-12-28 00:18:58 +01:00			`import { NextApiRequestQueryBody } from 'lib/types';`
Updated roles and permissions logic. 2022-12-07 03:36:41 +01:00			`import { NextApiResponse } from 'next';`
Add admin check. (#1716) * Add admin check. * Fix teamId check. 2022-12-28 00:18:58 +01:00			`import { methodNotAllowed, ok, unauthorized } from 'next-basics';`
Fixed lint issues. 2023-02-08 01:29:25 +01:00			`import { getUserWebsites } from 'queries';`
Updated roles and permissions logic. 2022-12-07 03:36:41 +01:00
Add user usage. 2023-05-04 02:17:57 +02:00			`export interface UserWebsitesRequestBody {`
Updated roles and permissions logic. 2022-12-07 03:36:41 +01:00			`name: string;`
			`domain: string;`
			`shareId: string;`
			`}`

			`export default async (`
Add user usage. 2023-05-04 02:17:57 +02:00			`req: NextApiRequestQueryBody<any, UserWebsitesRequestBody>,`
Updated roles and permissions logic. 2022-12-07 03:36:41 +01:00			`res: NextApiResponse,`
			`) => {`
			`await useCors(req, res);`
			`await useAuth(req, res);`

Fixed lint issues. 2023-02-08 01:29:25 +01:00			`const { user } = req.auth;`
			`const { id: userId } = req.query;`
Updated roles and permissions logic. 2022-12-07 03:36:41 +01:00
			`if (req.method === 'GET') {`
Fixed lint issues. 2023-02-08 01:29:25 +01:00			`if (!user.isAdmin && user.id !== userId) {`
Add admin check. (#1716) * Add admin check. * Fix teamId check. 2022-12-28 00:18:58 +01:00			`return unauthorized(res);`
			`}`

Fixed lint issues. 2023-02-08 01:29:25 +01:00			`const websites = await getUserWebsites(userId);`
Updated roles and permissions logic. 2022-12-07 03:36:41 +01:00
Fixed lint issues. 2023-02-08 01:29:25 +01:00			`return ok(res, websites);`
Updated roles and permissions logic. 2022-12-07 03:36:41 +01:00			`}`

			`return methodNotAllowed(res);`
			`};`