import { getUserWebsites } from 'lib/queries'; import { useAuth } from 'lib/middleware'; import { ok, methodNotAllowed, unauthorized } from 'lib/response'; export default async (req, res) => { await useAuth(req, res); const { user_id: current_user_id, is_admin } = req.auth; const { user_id } = req.query; const userId = +user_id; if (req.method === 'GET') { if (userId !== current_user_id && !is_admin) { return unauthorized(res); } const websites = await getUserWebsites(userId || current_user_id); return ok(res, websites); } return methodNotAllowed(res); };