m/umami
1
0
Fork 0
mirror of https://github.com/kremalicious/umami.git synced 2025-02-02 04:49:32 +01:00
Code Issues Packages Projects Releases Wiki Activity
27226d1b0e
umami/pages/api/reports/[id].ts
Mike Cao 95d824542f Added ability to delete reports.
2023-07-30 00:11:26 -07:00

79 lines
1.8 KiB
TypeScript
Raw Blame History

import { canUpdateReport, canViewReport, canDeleteReport } from 'lib/auth';
import { useAuth, useCors } from 'lib/middleware';
import { NextApiRequestQueryBody } from 'lib/types';
import { NextApiResponse } from 'next';
import { methodNotAllowed, ok, unauthorized } from 'next-basics';
import { getReportById, updateReport, deleteReport } from 'queries';
export interface ReportRequestQuery {
id: string;
}
export interface ReportRequestBody {
websiteId: string;
type: string;
name: string;
description: string;
parameters: string;
}
export default async (
req: NextApiRequestQueryBody<ReportRequestQuery, ReportRequestBody>,
res: NextApiResponse,
) => {
await useCors(req, res);
await useAuth(req, res);
const { id: reportId } = req.query;
const {
user: { id: userId },
} = req.auth;
if (req.method === 'GET') {
const report = await getReportById(reportId);
if (!(await canViewReport(req.auth, report))) {
return unauthorized(res);
}
report.parameters = JSON.parse(report.parameters);
return ok(res, report);
}
if (req.method === 'POST') {
const { websiteId, type, name, description, parameters } = req.body;
const report = await getReportById(reportId);
if (!(await canUpdateReport(req.auth, report))) {
return unauthorized(res);
}
const result = await updateReport(reportId, {
websiteId,
userId,
type,
name,
description,
parameters: JSON.stringify(parameters),
} as any);
return ok(res, result);
}
if (req.method === 'DELETE') {
const report = await getReportById(reportId);
if (!(await canDeleteReport(req.auth, report))) {
return unauthorized(res);
}
await deleteReport(reportId);
return ok(res);
}
return methodNotAllowed(res);
};
Reference in New Issue View Git Blame Copy Permalink