umami/pages/api/websites.js

import { getUserWebsites } from 'lib/queries';
import { useAuth } from 'lib/middleware';
import { ok, methodNotAllowed, unauthorized } from 'lib/response';

export default async (req, res) => {
  await useAuth(req, res);

  const { user_id, is_admin } = req.auth;
  const { userId } = req.query;

  if (req.method === 'GET') {
    if (userId && !is_admin) {
      return unauthorized(res);
    }

    const websites = await getUserWebsites(+userId || user_id);

    return ok(res, websites);
  }

  return methodNotAllowed(res);
};
Refactor database queries. 2020-08-12 07:24:41 +02:00			`import { getUserWebsites } from 'lib/queries';`
			`import { useAuth } from 'lib/middleware';`
Allow admins to view account websites. 2020-09-11 08:55:29 +02:00			`import { ok, methodNotAllowed, unauthorized } from 'lib/response';`
Refactor database queries. 2020-08-12 07:24:41 +02:00
			`export default async (req, res) => {`
			`await useAuth(req, res);`

Allow admins to view account websites. 2020-09-11 08:55:29 +02:00			`const { user_id, is_admin } = req.auth;`
			`const { userId } = req.query;`
Refactor database queries. 2020-08-12 07:24:41 +02:00
			`if (req.method === 'GET') {`
Allow admins to view account websites. 2020-09-11 08:55:29 +02:00			`if (userId && !is_admin) {`
			`return unauthorized(res);`
			`}`

			`const websites = await getUserWebsites(+userId \|\| user_id);`
Refactor database queries. 2020-08-12 07:24:41 +02:00
			`return ok(res, websites);`
			`}`

			`return methodNotAllowed(res);`
			`};`