Dev (#1702)

* Initial Typescript models. * Re-add realtime data * get distinct sessions for session metrics * Add queries for new schema. * Fix Typo. * Add some api/team endpoints. * Fix destructure error. * Fix getWebsites call. * Ignore typescript build errors. * Fix enum issue. * add clickhouse route to deleteWebsite * Fix Website auth. * Updated lint-staged config. * Add permission checks. * Add user role api. * Fix error when updating website. * Fix isAdmin check. Fix Schema. * Initial conversion to react-basics. * Remove user/team transfer from website update. * delete website in relational query * Fix login secure token creation. * Add event type to event. * Allow user to be added to team with role. * Updated login form. * Add Role to TeamUser. * Add database migration. * Refactored permissions check. Updated redis lib. * Feat/um 114 roles and permissions (#1683) * Auth checkpoint. * Merge branch 'dev' into feat/um-114-roles-and-permissions * Add 02 migration. * Added lib/types. * Updated schema. * Updated roles and permissions logic. * Implement react-basics styles. Fix queries. * Update website details layout. * Add 01 migration. * Fix admin create. * Update react-basics. Co-authored-by: Francis Cao <franciscao@gmail.com> Co-authored-by: Mike Cao <mike@mikecao.com> Co-authored-by: Mike Cao <moocao@gmail.com>
2026-02-15 10:05:36 +01:00 · 2022-12-12 19:45:38 -08:00 · 2022-12-12 19:45:38 -08:00 · 8732d056dd
commit 8732d056dd
parent 94848cc41b
165 changed files with 3370 additions and 6268 deletions
--- a/pages/api/users/[id]/index.js
+++ b/pages/api/users/[id]/index.js
@ -1,72 +0,0 @@
-import { badRequest, hashPassword, methodNotAllowed, ok, unauthorized } from 'next-basics';
-import { getUser, deleteUser, updateUser } from 'queries';
-import { useAuth } from 'lib/middleware';
-
-export default async (req, res) => {
-  await useAuth(req, res);
-
-  const {
-    user: { id: userId, isAdmin },
-  } = req.auth;
-  const { id } = req.query;
-
-  if (req.method === 'GET') {
-    if (id !== userId && !isAdmin) {
-      return unauthorized(res);
-    }
-
-    const user = await getUser({ id });
-
-    return ok(res, user);
-  }
-
-  if (req.method === 'POST') {
-    const { username, password } = req.body;
-
-    if (id !== userId && !isAdmin) {
-      return unauthorized(res);
-    }
-
-    const user = await getUser({ id });
-
-    const data = {};
-
-    if (password) {
-      data.password = hashPassword(password);
-    }
-
-    // Only admin can change these fields
-    if (isAdmin) {
-      data.username = username;
-    }
-
-    // Check when username changes
-    if (data.username && user.username !== data.username) {
-      const userByUsername = await getUser({ username });
-
-      if (userByUsername) {
-        return badRequest(res, 'User already exists');
-      }
-    }
-
-    const updated = await updateUser(data, { id });
-
-    return ok(res, updated);
-  }
-
-  if (req.method === 'DELETE') {
-    if (id === userId) {
-      return badRequest(res, 'You cannot delete your own user.');
-    }
-
-    if (!isAdmin) {
-      return unauthorized(res);
-    }
-
-    await deleteUser(id);
-
-    return ok(res);
-  }
-
-  return methodNotAllowed(res);
-};