AaronPo/the-biergarten-app
1
0
Fork 0
mirror of https://github.com/aaronpo97/the-biergarten-app.git synced 2026-02-16 20:13:49 +00:00
Code Issues Packages Projects 1 Releases Wiki Activity

update: add delete user api route, AuthProvider extracted from App.tsx

Browse Source
This commit is contained in:
Aaron William Po
2023-06-04 13:26:14 -04:00
parent e3da430425
commit 140abaa5a1
12 changed files with 129 additions and 59 deletions
Download Patch File Download Diff File Expand all files Collapse all files

39
src/pages/api/users/[id]/edit.ts → src/pages/api/users/[id]/index.ts
View File

@@ -4,6 +4,7 @@ import getCurrentUser from '@/config/nextConnect/middleware/getCurrentUser';
import validateRequest from '@/config/nextConnect/middleware/validateRequest';
import ServerError from '@/config/util/ServerError';
import DBClient from '@/prisma/DBClient';
import deleteUserById from '@/services/User/deleteUserById';
import findUserByEmail from '@/services/User/findUserByEmail';
import findUserById from '@/services/User/findUserById';
import findUserByUsername from '@/services/User/findUserByUsername';
@@ -21,11 +22,12 @@ const EditUserSchema = BaseCreateUserSchema.pick({
lastName: true,
});
interface EditUserRequest extends UserExtendedNextApiRequest {
interface UserRouteRequest extends UserExtendedNextApiRequest {
query: { id: string };
}
interface EditUserRequest extends UserRouteRequest {
body: z.infer<typeof EditUserSchema>;
query: {
id: string;
};
}
const checkIfUserCanEditUser = async (
@@ -41,7 +43,7 @@ const checkIfUserCanEditUser = async (
}
if (authenticatedUser.id !== userToUpdate.id) {
throw new ServerError('You are not permitted to edit this user', 403);
throw new ServerError('You are not permitted to modify this user', 403);
}
await next();
@@ -88,6 +90,24 @@ const editUser = async (
});
};
const deleteUser = async (
req: UserRouteRequest,
res: NextApiResponse<z.infer<typeof APIResponseValidationSchema>>,
) => {
const { id } = req.query;
const deletedUser = await deleteUserById(id);
if (!deletedUser) {
throw new ServerError('Could not find a user with that id.', 400);
}
res.send({
message: 'Successfully deleted user.',
statusCode: 200,
success: true,
});
};
const router = createRouter<
EditUserRequest,
NextApiResponse<z.infer<typeof APIResponseValidationSchema>>
@@ -103,6 +123,15 @@ router.put(
editUser,
);
router.delete(
getCurrentUser,
validateRequest({
querySchema: z.object({ id: z.string().cuid() }),
}),
checkIfUserCanEditUser,
deleteUser,
);
const handler = router.handler(NextConnectOptions);
export default handler;