swissmakers_gmbh/swiss-datashare
12
0
Fork 0
mirror of https://github.com/swissmakers/swiss-datashare.git synced 2026-04-21 06:03:13 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
d8084e401d7572b2d6e38ffa20cb678a0fb0e615
swiss-datashare/backend/src/user/user.controller.ts

99 lines
2.5 KiB
TypeScript
Raw Normal View History

feat: add user operations to backend
2022-12-05 10:02:19 +01:00
import {
Body,
Controller,
Delete,
Get,
fix: prevent deletion of last admin account
2024-11-14 17:39:06 +01:00
HttpCode,
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
Param,
Patch,
Post,
fix: frontend error when user deleted
2023-03-04 23:40:02 +01:00
Res,
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
UseGuards,
} from "@nestjs/common";
feat: remove appwrite and add nextjs backend
2022-10-09 22:30:32 +02:00
import { User } from "@prisma/client";
fix: frontend error when user deleted
2023-03-04 23:40:02 +01:00
import { Response } from "express";
feat: remove appwrite and add nextjs backend
2022-10-09 22:30:32 +02:00
import { GetUser } from "src/auth/decorator/getUser.decorator";
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
import { AdministratorGuard } from "src/auth/guard/isAdmin.guard";
feat: remove appwrite and add nextjs backend
2022-10-09 22:30:32 +02:00
import { JwtGuard } from "src/auth/guard/jwt.guard";
fix: prevent deletion of last admin account
2024-11-14 17:39:06 +01:00
import { ConfigService } from "../config/config.service";
feat: add user management
2022-12-05 15:53:24 +01:00
import { CreateUserDTO } from "./dto/createUser.dto";
import { UpdateOwnUserDTO } from "./dto/updateOwnUser.dto";
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
import { UpdateUserDto } from "./dto/updateUser.dto";
fix: dto returns
2022-10-10 17:58:42 +02:00
import { UserDTO } from "./dto/user.dto";
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
import { UserSevice } from "./user.service";
feat: remove appwrite and add nextjs backend
2022-10-09 22:30:32 +02:00
@Controller("users")
export class UserController {
fix: enable secure cookies if app url starts with https
2024-09-24 12:21:41 +02:00
constructor(
private userService: UserSevice,
fix: prevent deletion of last admin account
2024-11-14 17:39:06 +01:00
private config: ConfigService
fix: enable secure cookies if app url starts with https
2024-09-24 12:21:41 +02:00
) {}
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
// Own user operations
feat: remove appwrite and add nextjs backend
2022-10-09 22:30:32 +02:00
@Get("me")
@UseGuards(JwtGuard)
fix: error in logs if "allow unauthenticated shares" is enabled
2024-03-25 19:12:27 +01:00
async getCurrentUser(@GetUser() user?: User) {
if (!user) return null;
feat(auth): add OAuth2 login (#276) * feat(auth): add OAuth2 login with GitHub and Google * chore(translations): add files for Japanese * fix(auth): fix link function for GitHub * feat(oauth): basic oidc implementation * feat(oauth): oauth guard * fix: disable image optimizations for logo to prevent caching issues with custom logos * fix: memory leak while downloading large files * chore(translations): update translations via Crowdin (#278) * New translations en-us.ts (Japanese) * New translations en-us.ts (Japanese) * New translations en-us.ts (Japanese) * release: 0.18.2 * doc(translations): Add Japanese README (#279) * Added Japanese README. * Added JAPANESE README link to README.md. * Updated Japanese README. * Updated Environment Variable Table. * updated zh-cn README. * feat(oauth): unlink account * refactor(oauth): make providers extensible * fix(oauth): fix discoveryUri error when toggle google-enabled * feat(oauth): add microsoft and discord as oauth provider * docs(oauth): update README.md * docs(oauth): update oauth2-guide.md * set password to null for new oauth users * New translations en-us.ts (Japanese) (#281) * chore(translations): add Polish files * fix(oauth): fix random username and password * feat(oauth): add totp * fix(oauth): fix totp throttle * fix(oauth): fix qrcode and remove comment * feat(oauth): add error page * fix(oauth): i18n of error page * feat(auth): add OAuth2 login * fix(auth): fix link function for GitHub * feat(oauth): basic oidc implementation * feat(oauth): oauth guard * feat(oauth): unlink account * refactor(oauth): make providers extensible * fix(oauth): fix discoveryUri error when toggle google-enabled * feat(oauth): add microsoft and discord as oauth provider * docs(oauth): update README.md * docs(oauth): update oauth2-guide.md * set password to null for new oauth users * fix(oauth): fix random username and password * feat(oauth): add totp * fix(oauth): fix totp throttle * fix(oauth): fix qrcode and remove comment * feat(oauth): add error page * fix(oauth): i18n of error page * refactor: return null instead of `false` in `getIdOfCurrentUser` functiom * feat: show original oauth error if available * refactor: run formatter * refactor(oauth): error message i18n * refactor(oauth): make OAuth token available someone may use it (to revoke token or get other info etc.) also improved the i18n message * chore(oauth): remove unused import * chore: add database migration * fix: missing python installation for nanoid --------- Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: ふうせん <10260662+fusengum@users.noreply.github.com>
2023-10-22 22:09:53 +08:00
const userDTO = new UserDTO().from(user);
userDTO.hasPassword = !!user.password;
return userDTO;
feat: remove appwrite and add nextjs backend
2022-10-09 22:30:32 +02:00
}
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
@Patch("me")
@UseGuards(JwtGuard)
feat: add user management
2022-12-05 15:53:24 +01:00
async updateCurrentUser(
@GetUser() user: User,
fix: prevent deletion of last admin account
2024-11-14 17:39:06 +01:00
@Body() data: UpdateOwnUserDTO
feat: add user management
2022-12-05 15:53:24 +01:00
) {
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
return new UserDTO().from(await this.userService.update(user.id, data));
}
@Delete("me")
fix: prevent deletion of last admin account
2024-11-14 17:39:06 +01:00
@HttpCode(204)
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
@UseGuards(JwtGuard)
fix: frontend error when user deleted
2023-03-04 23:40:02 +01:00
async deleteCurrentUser(
@GetUser() user: User,
fix: prevent deletion of last admin account
2024-11-14 17:39:06 +01:00
@Res({ passthrough: true }) response: Response
fix: frontend error when user deleted
2023-03-04 23:40:02 +01:00
) {
fix: prevent deletion of last admin account
2024-11-14 17:39:06 +01:00
await this.userService.delete(user.id);
feat: add 'secureCookies' configuration variable to explicitly set the secure flag and prevent confusion
2024-11-14 17:31:17 +01:00
const isSecure = this.config.get("general.secureCookies");
fix: enable secure cookies if app url starts with https
2024-09-24 12:21:41 +02:00
response.cookie("access_token", "accessToken", {
maxAge: -1,
secure: isSecure,
});
fix: frontend error when user deleted
2023-03-04 23:40:02 +01:00
response.cookie("refresh_token", "", {
path: "/api/auth/token",
httpOnly: true,
maxAge: -1,
fix: enable secure cookies if app url starts with https
2024-09-24 12:21:41 +02:00
secure: isSecure,
fix: frontend error when user deleted
2023-03-04 23:40:02 +01:00
});
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
}
// Global user operations
@Get()
@UseGuards(JwtGuard, AdministratorGuard)
async list() {
return new UserDTO().fromList(await this.userService.list());
}
@Post()
@UseGuards(JwtGuard, AdministratorGuard)
feat: add user management
2022-12-05 15:53:24 +01:00
async create(@Body() user: CreateUserDTO) {
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
return new UserDTO().from(await this.userService.create(user));
}
@Patch(":id")
@UseGuards(JwtGuard, AdministratorGuard)
async update(@Param("id") id: string, @Body() user: UpdateUserDto) {
return new UserDTO().from(await this.userService.update(id, user));
}
@Delete(":id")
@UseGuards(JwtGuard, AdministratorGuard)
feat: add user management
2022-12-05 15:53:24 +01:00
async delete(@Param("id") id: string) {
feat: add user operations to backend
2022-12-05 10:02:19 +01:00
return new UserDTO().from(await this.userService.delete(id));
}
feat: remove appwrite and add nextjs backend
2022-10-09 22:30:32 +02:00
}
Reference in New Issue Copy Permalink