1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
|
import { z } from 'zod';
import { parseRequest } from '@/lib/request';
import { badRequest, json, ok, serverError, unauthorized } from '@/lib/response';
import { canDeleteLink, canUpdateLink, canViewLink } from '@/permissions';
import { deleteLink, getLink, updateLink } from '@/queries/prisma';
export async function GET(request: Request, { params }: { params: Promise<{ linkId: string }> }) {
const { auth, error } = await parseRequest(request);
if (error) {
return error();
}
const { linkId } = await params;
if (!(await canViewLink(auth, linkId))) {
return unauthorized();
}
const website = await getLink(linkId);
return json(website);
}
export async function POST(request: Request, { params }: { params: Promise<{ linkId: string }> }) {
const schema = z.object({
name: z.string().optional(),
url: z.string().optional(),
slug: z.string().min(8).optional(),
});
const { auth, body, error } = await parseRequest(request, schema);
if (error) {
return error();
}
const { linkId } = await params;
const { name, url, slug } = body;
if (!(await canUpdateLink(auth, linkId))) {
return unauthorized();
}
try {
const result = await updateLink(linkId, { name, url, slug });
return Response.json(result);
} catch (e: any) {
if (e.message.toLowerCase().includes('unique constraint') && e.message.includes('slug')) {
return badRequest({ message: 'That slug is already taken.' });
}
return serverError(e);
}
}
export async function DELETE(
request: Request,
{ params }: { params: Promise<{ linkId: string }> },
) {
const { auth, error } = await parseRequest(request);
if (error) {
return error();
}
const { linkId } = await params;
if (!(await canDeleteLink(auth, linkId))) {
return unauthorized();
}
await deleteLink(linkId);
return ok();
}
|