Permissions

2024-07-27 22:08:56 +03:00
parent ffbb2a8bbc
commit 5d57c936a7
10 changed files with 133 additions and 11 deletions
--- a/src/endpoints/permissions/delete.rs
+++ b/src/endpoints/permissions/delete.rs
@ -0,0 +1,26 @@
+use crate::prelude::*;
+
+#[derive(Deserialize, Debug)]
+pub struct Params {
+    folder_id: Uuid,
+    user_id: i32,
+}
+
+pub async fn delete(
+    claims: Claims,
+    State(state): State<AppState>,
+    Json(params): Json<Params>,
+) -> Result<StatusCode, StatusCode> {
+    if params.user_id != claims.user_id {
+        db::folder::get_permissions(params.folder_id, claims.user_id, &state.pool)
+            .await
+            .handle_internal()?
+            .can_manage_guard()?;
+    }
+
+    db::permissions::delete_for_folder(params.folder_id, params.user_id, &state.pool)
+        .await
+        .handle_internal()?;
+
+    Ok(StatusCode::NO_CONTENT)
+}
--- a/src/endpoints/permissions/get.rs
+++ b/src/endpoints/permissions/get.rs
@ -0,0 +1,26 @@
+use std::collections::HashMap;
+
+use db::permissions::PermissionRaw;
+
+use crate::prelude::*;
+
+#[derive(Deserialize, Debug)]
+pub struct Params {
+    folder_id: Uuid,
+}
+
+pub async fn get(
+    Query(params): Query<Params>,
+    claims: Claims,
+    State(state): State<AppState>,
+) -> Result<Json<HashMap<String, PermissionRaw>>, StatusCode> {
+    db::folder::get_permissions(params.folder_id, claims.user_id, &state.pool)
+        .await
+        .handle_internal()?
+        .can_manage_guard()?;
+
+    let permissions = db::permissions::get_all_for_folder(params.folder_id, &state.pool)
+        .await
+        .handle_internal()?;
+    Ok(Json(permissions))
+}
--- a/src/endpoints/permissions/mod.rs
+++ b/src/endpoints/permissions/mod.rs
@ -0,0 +1,3 @@
+pub mod delete;
+pub mod get;
+pub mod set;
--- a/src/endpoints/permissions/set.rs
+++ b/src/endpoints/permissions/set.rs
@ -0,0 +1,32 @@
+use db::permissions::PermissionRaw;
+
+use crate::prelude::*;
+
+#[derive(Deserialize, Debug)]
+pub struct Params {
+    folder_id: Uuid,
+    permission_type: PermissionRaw,
+    user_id: i32,
+}
+
+pub async fn set(
+    claims: Claims,
+    State(state): State<AppState>,
+    Json(params): Json<Params>,
+) -> Result<StatusCode, StatusCode> {
+    db::folder::get_permissions(params.folder_id, claims.user_id, &state.pool)
+        .await
+        .handle_internal()?
+        .can_manage_guard()?;
+
+    db::permissions::insert(
+        params.user_id,
+        params.folder_id,
+        params.permission_type,
+        &state.pool,
+    )
+    .await
+    .handle_internal()?;
+
+    Ok(StatusCode::NO_CONTENT)
+}