pronounss/backend/routes/auth/invite.go

package auth

import (
	"net/http"
	"time"

	"codeberg.org/pronounscc/pronouns.cc/backend/db"
	"codeberg.org/pronounscc/pronouns.cc/backend/server"
	"emperror.dev/errors"
	"github.com/go-chi/render"
)

type inviteResponse struct {
	Code    string    `json:"code"`
	Created time.Time `json:"created"`
	Used    bool      `json:"used"`
}

func dbInviteToResponse(i db.Invite) inviteResponse {
	return inviteResponse{
		Code:    i.Code,
		Created: i.Created,
		Used:    i.Used,
	}
}

func (s *Server) getInvites(w http.ResponseWriter, r *http.Request) error {
	if !s.RequireInvite {
		return server.APIError{Code: server.ErrInvitesDisabled}
	}

	ctx := r.Context()
	claims, _ := server.ClaimsFromContext(ctx)

	if claims.APIToken {
		return server.APIError{Code: server.ErrMissingPermissions, Details: "This endpoint cannot be used by API tokens"}
	}

	is, err := s.DB.UserInvites(ctx, claims.UserID)
	if err != nil {
		return errors.Wrap(err, "getting user invites")
	}

	resps := make([]inviteResponse, len(is))
	for i := range is {
		resps[i] = dbInviteToResponse(is[i])
	}

	render.JSON(w, r, resps)
	return nil
}

func (s *Server) createInvite(w http.ResponseWriter, r *http.Request) error {
	if !s.RequireInvite {
		return server.APIError{Code: server.ErrInvitesDisabled}
	}

	ctx := r.Context()
	claims, _ := server.ClaimsFromContext(ctx)

	if claims.APIToken {
		return server.APIError{Code: server.ErrMissingPermissions, Details: "This endpoint cannot be used by API tokens"}
	}

	inv, err := s.DB.CreateInvite(ctx, claims.UserID)
	if err != nil {
		if err == db.ErrTooManyInvites {
			return server.APIError{Code: server.ErrInviteLimitReached}
		}

		return errors.Wrap(err, "creating invite")
	}

	render.JSON(w, r, dbInviteToResponse(inv))
	return nil
}
feat: add invites to backend 2022-11-18 15:27:52 +01:00			`package auth`

			`import (`
			`"net/http"`
			`"time"`

change import url 2023-06-03 16:18:47 +02:00			`"codeberg.org/pronounscc/pronouns.cc/backend/db"`
			`"codeberg.org/pronounscc/pronouns.cc/backend/server"`
feat: add invites to backend 2022-11-18 15:27:52 +01:00			`"emperror.dev/errors"`
			`"github.com/go-chi/render"`
			`)`

			`type inviteResponse struct {`
feat: add invites page 2023-03-14 00:16:19 +01:00			Code string `json:"code"`
feat: add invites to backend 2022-11-18 15:27:52 +01:00			Created time.Time `json:"created"`
			Used bool `json:"used"`
			`}`

			`func dbInviteToResponse(i db.Invite) inviteResponse {`
			`return inviteResponse{`
			`Code: i.Code,`
			`Created: i.Created,`
			`Used: i.Used,`
			`}`
			`}`

			`func (s Server) getInvites(w http.ResponseWriter, r http.Request) error {`
			`if !s.RequireInvite {`
			`return server.APIError{Code: server.ErrInvitesDisabled}`
			`}`

			`ctx := r.Context()`
			`claims, _ := server.ClaimsFromContext(ctx)`

feat: restrict certain endpoints from API tokens and/or read-only tokens 2023-03-30 16:58:35 +02:00			`if claims.APIToken {`
			`return server.APIError{Code: server.ErrMissingPermissions, Details: "This endpoint cannot be used by API tokens"}`
			`}`

feat: add invites to backend 2022-11-18 15:27:52 +01:00			`is, err := s.DB.UserInvites(ctx, claims.UserID)`
			`if err != nil {`
			`return errors.Wrap(err, "getting user invites")`
			`}`

			`resps := make([]inviteResponse, len(is))`
			`for i := range is {`
			`resps[i] = dbInviteToResponse(is[i])`
			`}`

			`render.JSON(w, r, resps)`
			`return nil`
			`}`

			`func (s Server) createInvite(w http.ResponseWriter, r http.Request) error {`
			`if !s.RequireInvite {`
			`return server.APIError{Code: server.ErrInvitesDisabled}`
			`}`

			`ctx := r.Context()`
			`claims, _ := server.ClaimsFromContext(ctx)`

feat: restrict certain endpoints from API tokens and/or read-only tokens 2023-03-30 16:58:35 +02:00			`if claims.APIToken {`
			`return server.APIError{Code: server.ErrMissingPermissions, Details: "This endpoint cannot be used by API tokens"}`
			`}`

feat: add invites to backend 2022-11-18 15:27:52 +01:00			`inv, err := s.DB.CreateInvite(ctx, claims.UserID)`
			`if err != nil {`
			`if err == db.ErrTooManyInvites {`
			`return server.APIError{Code: server.ErrInviteLimitReached}`
			`}`

			`return errors.Wrap(err, "creating invite")`
			`}`

			`render.JSON(w, r, dbInviteToResponse(inv))`
			`return nil`
			`}`