98 lines
2.5 KiB
JavaScript
98 lines
2.5 KiB
JavaScript
const Router = require("@koa/router")
|
|
const controller = require("../../controllers/admin/users")
|
|
const joiValidator = require("../../../middleware/joi-validator")
|
|
const adminOnly = require("../../../middleware/adminOnly")
|
|
const Joi = require("joi")
|
|
|
|
const router = Router()
|
|
|
|
function buildAdminInitValidation() {
|
|
return joiValidator.body(
|
|
Joi.object({
|
|
email: Joi.string().required(),
|
|
password: Joi.string().required(),
|
|
})
|
|
.required()
|
|
.unknown(false)
|
|
)
|
|
}
|
|
|
|
function buildUserSaveValidation(isSelf = false) {
|
|
let schema = {
|
|
email: Joi.string().allow(null, ""),
|
|
password: Joi.string().allow(null, ""),
|
|
forceResetPassword: Joi.boolean().optional(),
|
|
firstName: Joi.string().allow(null, ""),
|
|
lastName: Joi.string().allow(null, ""),
|
|
builder: Joi.object({
|
|
global: Joi.boolean().optional(),
|
|
apps: Joi.array().optional(),
|
|
})
|
|
.unknown(true)
|
|
.optional(),
|
|
// maps appId -> roleId for the user
|
|
roles: Joi.object().pattern(/.*/, Joi.string()).required().unknown(true),
|
|
}
|
|
if (!isSelf) {
|
|
schema = {
|
|
...schema,
|
|
_id: Joi.string(),
|
|
_rev: Joi.string(),
|
|
}
|
|
}
|
|
return joiValidator.body(Joi.object(schema).required().unknown(true))
|
|
}
|
|
|
|
function buildInviteValidation() {
|
|
// prettier-ignore
|
|
return joiValidator.body(Joi.object({
|
|
email: Joi.string().required(),
|
|
}).required())
|
|
}
|
|
|
|
function buildInviteAcceptValidation() {
|
|
// prettier-ignore
|
|
return joiValidator.body(Joi.object({
|
|
inviteCode: Joi.string().required(),
|
|
password: Joi.string().required(),
|
|
}).required().unknown(true))
|
|
}
|
|
|
|
router
|
|
.post(
|
|
"/api/admin/users",
|
|
adminOnly,
|
|
buildUserSaveValidation(),
|
|
controller.save
|
|
)
|
|
.get("/api/admin/users", adminOnly, controller.fetch)
|
|
.delete("/api/admin/users/:id", adminOnly, controller.destroy)
|
|
.get("/api/admin/roles/:appId")
|
|
.post(
|
|
"/api/admin/users/invite",
|
|
adminOnly,
|
|
buildInviteValidation(),
|
|
controller.invite
|
|
)
|
|
// non-admin endpoints
|
|
.post(
|
|
"/api/admin/users/self",
|
|
buildUserSaveValidation(true),
|
|
controller.updateSelf
|
|
)
|
|
.post(
|
|
"/api/admin/users/invite/accept",
|
|
buildInviteAcceptValidation(),
|
|
controller.inviteAccept
|
|
)
|
|
.post(
|
|
"/api/admin/users/init",
|
|
buildAdminInitValidation(),
|
|
controller.adminUser
|
|
)
|
|
.get("/api/admin/users/self", controller.getSelf)
|
|
// admin endpoint but needs to come at end (blocks other endpoints otherwise)
|
|
.get("/api/admin/users/:id", adminOnly, controller.find)
|
|
|
|
module.exports = router
|