watson/umami
1
0
Fork 0
mirror of https://github.com/umami-software/umami.git synced 2026-02-14 17:45:38 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Convert teams api routes.

Browse source
This commit is contained in:
Mike Cao 2025-01-24 23:34:02 -08:00
parent 7d5556a637
commit e51f182403
15 changed files with 354 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

75
src/app/api/teams/[teamId]/route.ts Normal file
View file

@ -0,0 +1,75 @@
import { z } from 'zod';
import { unauthorized, json, badRequest, notFound, ok } from 'lib/response';
import { canDeleteTeam, canUpdateTeam, canViewTeam, checkAuth } from 'lib/auth';
import { checkRequest } from 'lib/request';
import { deleteTeam, getTeam, updateTeam } from 'queries';
export async function GET(request: Request, { params }: { params: Promise<{ teamId: string }> }) {
const schema = z.object({
teamId: z.string().uuid(),
});
const { error } = await checkRequest(request, schema);
if (error) {
return badRequest(error);
}
const { teamId } = await params;
const auth = await checkAuth(request);
if (!auth || !(await canViewTeam(auth, teamId))) {
return unauthorized();
}
const team = await getTeam(teamId, { includeMembers: true });
if (!team) {
return notFound('Team not found.');
}
return json(team);
}
export async function POST(request: Request, { params }: { params: Promise<{ teamId: string }> }) {
const schema = z.object({
name: z.string().max(50),
accessCode: z.string().max(50),
});
const { body, error } = await checkRequest(request, schema);
if (error) {
return badRequest(error);
}
const { teamId } = await params;
const auth = await checkAuth(request);
if (!auth || !(await canUpdateTeam(auth, teamId))) {
return unauthorized('You must be the owner of this team.');
}
const team = await updateTeam(teamId, body);
return json(team);
}
export async function DELETE(
request: Request,
{ params }: { params: Promise<{ teamId: string }> },
) {
const { teamId } = await params;
const auth = await checkAuth(request);
if (!auth || !(await canDeleteTeam(auth, teamId))) {
return unauthorized('You must be the owner of this team.');
}
await deleteTeam(teamId);
return ok();
}