mirror of
https://github.com/swissmakers/swiss-datashare.git
synced 2026-04-11 10:27:01 +02:00
02cd98fa9c
* feat(auth): add OAuth2 login with GitHub and Google * chore(translations): add files for Japanese * fix(auth): fix link function for GitHub * feat(oauth): basic oidc implementation * feat(oauth): oauth guard * fix: disable image optimizations for logo to prevent caching issues with custom logos * fix: memory leak while downloading large files * chore(translations): update translations via Crowdin (#278) * New translations en-us.ts (Japanese) * New translations en-us.ts (Japanese) * New translations en-us.ts (Japanese) * release: 0.18.2 * doc(translations): Add Japanese README (#279) * Added Japanese README. * Added JAPANESE README link to README.md. * Updated Japanese README. * Updated Environment Variable Table. * updated zh-cn README. * feat(oauth): unlink account * refactor(oauth): make providers extensible * fix(oauth): fix discoveryUri error when toggle google-enabled * feat(oauth): add microsoft and discord as oauth provider * docs(oauth): update README.md * docs(oauth): update oauth2-guide.md * set password to null for new oauth users * New translations en-us.ts (Japanese) (#281) * chore(translations): add Polish files * fix(oauth): fix random username and password * feat(oauth): add totp * fix(oauth): fix totp throttle * fix(oauth): fix qrcode and remove comment * feat(oauth): add error page * fix(oauth): i18n of error page * feat(auth): add OAuth2 login * fix(auth): fix link function for GitHub * feat(oauth): basic oidc implementation * feat(oauth): oauth guard * feat(oauth): unlink account * refactor(oauth): make providers extensible * fix(oauth): fix discoveryUri error when toggle google-enabled * feat(oauth): add microsoft and discord as oauth provider * docs(oauth): update README.md * docs(oauth): update oauth2-guide.md * set password to null for new oauth users * fix(oauth): fix random username and password * feat(oauth): add totp * fix(oauth): fix totp throttle * fix(oauth): fix qrcode and remove comment * feat(oauth): add error page * fix(oauth): i18n of error page * refactor: return null instead of `false` in `getIdOfCurrentUser` functiom * feat: show original oauth error if available * refactor: run formatter * refactor(oauth): error message i18n * refactor(oauth): make OAuth token available someone may use it (to revoke token or get other info etc.) also improved the i18n message * chore(oauth): remove unused import * chore: add database migration * fix: missing python installation for nanoid --------- Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: ふうせん <10260662+fusengum@users.noreply.github.com>
85 lines
2.3 KiB
TypeScript
85 lines
2.3 KiB
TypeScript
import {
|
|
Body,
|
|
Controller,
|
|
Delete,
|
|
Get,
|
|
Param,
|
|
Patch,
|
|
Post,
|
|
Res,
|
|
UseGuards,
|
|
} from "@nestjs/common";
|
|
import { User } from "@prisma/client";
|
|
import { Response } from "express";
|
|
import { GetUser } from "src/auth/decorator/getUser.decorator";
|
|
import { AdministratorGuard } from "src/auth/guard/isAdmin.guard";
|
|
import { JwtGuard } from "src/auth/guard/jwt.guard";
|
|
import { CreateUserDTO } from "./dto/createUser.dto";
|
|
import { UpdateOwnUserDTO } from "./dto/updateOwnUser.dto";
|
|
import { UpdateUserDto } from "./dto/updateUser.dto";
|
|
import { UserDTO } from "./dto/user.dto";
|
|
import { UserSevice } from "./user.service";
|
|
|
|
@Controller("users")
|
|
export class UserController {
|
|
constructor(private userService: UserSevice) {}
|
|
|
|
// Own user operations
|
|
@Get("me")
|
|
@UseGuards(JwtGuard)
|
|
async getCurrentUser(@GetUser() user: User) {
|
|
const userDTO = new UserDTO().from(user);
|
|
userDTO.hasPassword = !!user.password;
|
|
return userDTO;
|
|
}
|
|
|
|
@Patch("me")
|
|
@UseGuards(JwtGuard)
|
|
async updateCurrentUser(
|
|
@GetUser() user: User,
|
|
@Body() data: UpdateOwnUserDTO,
|
|
) {
|
|
return new UserDTO().from(await this.userService.update(user.id, data));
|
|
}
|
|
|
|
@Delete("me")
|
|
@UseGuards(JwtGuard)
|
|
async deleteCurrentUser(
|
|
@GetUser() user: User,
|
|
@Res({ passthrough: true }) response: Response,
|
|
) {
|
|
response.cookie("access_token", "accessToken", { maxAge: -1 });
|
|
response.cookie("refresh_token", "", {
|
|
path: "/api/auth/token",
|
|
httpOnly: true,
|
|
maxAge: -1,
|
|
});
|
|
return new UserDTO().from(await this.userService.delete(user.id));
|
|
}
|
|
|
|
// Global user operations
|
|
@Get()
|
|
@UseGuards(JwtGuard, AdministratorGuard)
|
|
async list() {
|
|
return new UserDTO().fromList(await this.userService.list());
|
|
}
|
|
|
|
@Post()
|
|
@UseGuards(JwtGuard, AdministratorGuard)
|
|
async create(@Body() user: CreateUserDTO) {
|
|
return new UserDTO().from(await this.userService.create(user));
|
|
}
|
|
|
|
@Patch(":id")
|
|
@UseGuards(JwtGuard, AdministratorGuard)
|
|
async update(@Param("id") id: string, @Body() user: UpdateUserDto) {
|
|
return new UserDTO().from(await this.userService.update(id, user));
|
|
}
|
|
|
|
@Delete(":id")
|
|
@UseGuards(JwtGuard, AdministratorGuard)
|
|
async delete(@Param("id") id: string) {
|
|
return new UserDTO().from(await this.userService.delete(id));
|
|
}
|
|
}
|