From 320d1b016747ba4501da9417d9ce5f99368a5768 Mon Sep 17 00:00:00 2001 From: Frédéric Guillot Date: Tue, 2 Jan 2018 22:04:48 -0800 Subject: Refactor packages to have more idiomatic code base --- api/user.go | 185 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 185 insertions(+) create mode 100644 api/user.go (limited to 'api/user.go') diff --git a/api/user.go b/api/user.go new file mode 100644 index 0000000..96571b0 --- /dev/null +++ b/api/user.go @@ -0,0 +1,185 @@ +// Copyright 2017 Frédéric Guillot. All rights reserved. +// Use of this source code is governed by the Apache 2.0 +// license that can be found in the LICENSE file. + +package api + +import ( + "errors" + + "github.com/miniflux/miniflux/http/handler" +) + +// CreateUser is the API handler to create a new user. +func (c *Controller) CreateUser(ctx *handler.Context, request *handler.Request, response *handler.Response) { + if !ctx.IsAdminUser() { + response.JSON().Forbidden() + return + } + + user, err := decodeUserPayload(request.Body()) + if err != nil { + response.JSON().BadRequest(err) + return + } + + if err := user.ValidateUserCreation(); err != nil { + response.JSON().BadRequest(err) + return + } + + if c.store.UserExists(user.Username) { + response.JSON().BadRequest(errors.New("This user already exists")) + return + } + + err = c.store.CreateUser(user) + if err != nil { + response.JSON().ServerError(errors.New("Unable to create this user")) + return + } + + user.Password = "" + response.JSON().Created(user) +} + +// UpdateUser is the API handler to update the given user. +func (c *Controller) UpdateUser(ctx *handler.Context, request *handler.Request, response *handler.Response) { + if !ctx.IsAdminUser() { + response.JSON().Forbidden() + return + } + + userID, err := request.IntegerParam("userID") + if err != nil { + response.JSON().BadRequest(err) + return + } + + user, err := decodeUserPayload(request.Body()) + if err != nil { + response.JSON().BadRequest(err) + return + } + + if err := user.ValidateUserModification(); err != nil { + response.JSON().BadRequest(err) + return + } + + originalUser, err := c.store.UserByID(userID) + if err != nil { + response.JSON().BadRequest(errors.New("Unable to fetch this user from the database")) + return + } + + if originalUser == nil { + response.JSON().NotFound(errors.New("User not found")) + return + } + + originalUser.Merge(user) + if err = c.store.UpdateUser(originalUser); err != nil { + response.JSON().ServerError(errors.New("Unable to update this user")) + return + } + + response.JSON().Created(originalUser) +} + +// Users is the API handler to get the list of users. +func (c *Controller) Users(ctx *handler.Context, request *handler.Request, response *handler.Response) { + if !ctx.IsAdminUser() { + response.JSON().Forbidden() + return + } + + users, err := c.store.Users() + if err != nil { + response.JSON().ServerError(errors.New("Unable to fetch the list of users")) + return + } + + response.JSON().Standard(users) +} + +// UserByID is the API handler to fetch the given user by the ID. +func (c *Controller) UserByID(ctx *handler.Context, request *handler.Request, response *handler.Response) { + if !ctx.IsAdminUser() { + response.JSON().Forbidden() + return + } + + userID, err := request.IntegerParam("userID") + if err != nil { + response.JSON().BadRequest(err) + return + } + + user, err := c.store.UserByID(userID) + if err != nil { + response.JSON().BadRequest(errors.New("Unable to fetch this user from the database")) + return + } + + if user == nil { + response.JSON().NotFound(errors.New("User not found")) + return + } + + response.JSON().Standard(user) +} + +// UserByUsername is the API handler to fetch the given user by the username. +func (c *Controller) UserByUsername(ctx *handler.Context, request *handler.Request, response *handler.Response) { + if !ctx.IsAdminUser() { + response.JSON().Forbidden() + return + } + + username := request.StringParam("username", "") + user, err := c.store.UserByUsername(username) + if err != nil { + response.JSON().BadRequest(errors.New("Unable to fetch this user from the database")) + return + } + + if user == nil { + response.JSON().NotFound(errors.New("User not found")) + return + } + + response.JSON().Standard(user) +} + +// RemoveUser is the API handler to remove an existing user. +func (c *Controller) RemoveUser(ctx *handler.Context, request *handler.Request, response *handler.Response) { + if !ctx.IsAdminUser() { + response.JSON().Forbidden() + return + } + + userID, err := request.IntegerParam("userID") + if err != nil { + response.JSON().BadRequest(err) + return + } + + user, err := c.store.UserByID(userID) + if err != nil { + response.JSON().ServerError(errors.New("Unable to fetch this user from the database")) + return + } + + if user == nil { + response.JSON().NotFound(errors.New("User not found")) + return + } + + if err := c.store.RemoveUser(user.ID); err != nil { + response.JSON().BadRequest(errors.New("Unable to remove this user from the database")) + return + } + + response.JSON().NoContent() +} -- cgit v1.2.3