Merge branch 'dev' into feat/um-62-prisma-property-names

2026-02-20 12:35:38 +01:00 · 2022-10-10 12:15:43 -07:00 · 2022-10-10 12:15:43 -07:00 · 3143765954
commit 3143765954
parent 2bd336d1c9 36edbe2f4c
9 changed files with 30 additions and 29 deletions
--- a/pages/api/websites/[id]/index.js
+++ b/pages/api/websites/[id]/index.js
@ -1,5 +1,5 @@
-import { getRandomChars, methodNotAllowed, ok, unauthorized } from 'next-basics';
-import { deleteWebsite, getWebsite, getWebsiteById, updateWebsite } from 'queries';
+import { methodNotAllowed, ok, unauthorized, getRandomChars } from 'next-basics';
+import { deleteWebsite, getAccount, getWebsite, updateWebsite } from 'queries';
 import { allowQuery } from 'lib/auth';
 import { useAuth, useCors } from 'lib/middleware';
 import { validate } from 'uuid';
@ -25,24 +25,31 @@ export default async (req, res) => {
  if (req.method === 'POST') {
    await useAuth(req, res);

-    const { isAdmin: currentUserIsAdmin, userId: currentUserId } = req.auth;
+    const { isAdmin: currentUserIsAdmin, userId: currentUserId, accountUuid } = req.auth;
    const { name, domain, owner, enable_share_url } = req.body;
+    let account;

-    const website = await getWebsiteById(websiteId);
+    if (accountUuid) {
+      account = await getAccount({ accountUuid });
+    }
+
+    const website = await getWebsite(where);
+
+    const shareId = enable_share_url ? website.shareId || getRandomChars(8) : null;

    if (website.userId !== currentUserId && !currentUserIsAdmin) {
      return unauthorized(res);
    }

-    let { shareId } = website;
-
-    if (enable_share_url) {
-      shareId = shareId ? shareId : getRandomChars(8);
-    } else {
-      shareId = null;
-    }
-
-    await updateWebsite(websiteId, { name, domain, shareId, userId: +owner });
+    await updateWebsite(
+      {
+        name,
+        domain,
+        shareId: shareId,
+        userId: account ? account.id : +owner,
+      },
+      where,
+    );

    return ok(res);
  }
--- a/pages/api/websites/index.js
+++ b/pages/api/websites/index.js
@ -32,7 +32,7 @@ export default async (req, res) => {
  if (req.method === 'POST') {
    const { name, domain, owner, enable_share_url } = req.body;

-    const website_owner = account ? account.userId : +owner;
+    const website_owner = account ? account.id : +owner;

    if (website_owner !== currentUserId && !isAdmin) {
      return unauthorized(res);