PluralKit/PluralKit.API/Controllers/MemberController.cs

using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using PluralKit.Core;

namespace PluralKit.API.Controllers
{
    [ApiController]
    [Route("m")]
    [Route("v1/m")]
    public class MemberController: ControllerBase
    {
        private IDataStore _data;
        private TokenAuthService _auth;

        public MemberController(IDataStore data, TokenAuthService auth)
        {
            _data = data;
            _auth = auth;
        }

        [HttpGet("{hid}")]
        public async Task<ActionResult<PKMember>> GetMember(string hid)
        {
            var member = await _data.GetMemberByHid(hid);
            if (member == null) return NotFound("Member not found.");

            return Ok(member);
        }

        [HttpPost]
        [RequiresSystem]
        public async Task<ActionResult<PKMember>> PostMember([FromBody] PKMember newMember)
        {
            var system = _auth.CurrentSystem;

            if (newMember.Name == null)
                return BadRequest("Member name cannot be null.");

            // Enforce per-system member limit
            var memberCount = await _data.GetSystemMemberCount(system);
            if (memberCount >= Limits.MaxMemberCount)
                return BadRequest($"Member limit reached ({memberCount} / {Limits.MaxMemberCount}).");

            // Explicit bounds checks
            if (newMember.Name != null && newMember.Name.Length > Limits.MaxMemberNameLength)
                return BadRequest($"Member name too long ({newMember.Name.Length} > {Limits.MaxMemberNameLength}.");
            if (newMember.DisplayName != null && newMember.DisplayName.Length > Limits.MaxMemberNameLength)
                return BadRequest($"Member display name too long ({newMember.DisplayName.Length} > {Limits.MaxMemberNameLength}.");
            if (newMember.Pronouns != null && newMember.Pronouns.Length > Limits.MaxPronounsLength)
                return BadRequest($"Member pronouns too long ({newMember.Pronouns.Length} > {Limits.MaxPronounsLength}.");
            if (newMember.Description != null && newMember.Description.Length > Limits.MaxDescriptionLength)
                return BadRequest($"Member descriptions too long ({newMember.Description.Length} > {Limits.MaxDescriptionLength}.");

            // Sanity bounds checks
            if (newMember.AvatarUrl != null && newMember.AvatarUrl.Length > 1000)
                return BadRequest();
            if (newMember.ProxyTags?.Any(tag => tag.Prefix.Length > 1000 || tag.Suffix.Length > 1000) ?? false)
                return BadRequest();

            var member = await _data.CreateMember(system, newMember.Name);

            member.Name = newMember.Name;
            member.DisplayName = newMember.DisplayName;
            member.Color = newMember.Color;
            member.AvatarUrl = newMember.AvatarUrl;
            member.Birthday = newMember.Birthday;
            member.Pronouns = newMember.Pronouns;
            member.Description = newMember.Description;
            member.ProxyTags = newMember.ProxyTags;
            member.KeepProxy = newMember.KeepProxy;
            await _data.SaveMember(member);

            return Ok(member);
        }

        [HttpPatch("{hid}")]
        [RequiresSystem]
        public async Task<ActionResult<PKMember>> PatchMember(string hid, [FromBody] PKMember newMember)
        {
            var member = await _data.GetMemberByHid(hid);
            if (member == null) return NotFound("Member not found.");

            if (member.System != _auth.CurrentSystem.Id) return Unauthorized($"Member '{hid}' is not part of your system.");

            if (newMember.Name == null)
                return BadRequest("Member name can not be null.");

            // Explicit bounds checks
            if (newMember.Name != null && newMember.Name.Length > Limits.MaxMemberNameLength)
                return BadRequest($"Member name too long ({newMember.Name.Length} > {Limits.MaxMemberNameLength}.");
            if (newMember.DisplayName != null && newMember.DisplayName.Length > Limits.MaxMemberNameLength)
                return BadRequest($"Member display name too long ({newMember.DisplayName.Length} > {Limits.MaxMemberNameLength}.");
            if (newMember.Pronouns != null && newMember.Pronouns.Length > Limits.MaxPronounsLength)
                return BadRequest($"Member pronouns too long ({newMember.Pronouns.Length} > {Limits.MaxPronounsLength}.");
            if (newMember.Description != null && newMember.Description.Length > Limits.MaxDescriptionLength)
                return BadRequest($"Member descriptions too long ({newMember.Description.Length} > {Limits.MaxDescriptionLength}.");

            // Sanity bounds checks
            if (newMember.ProxyTags?.Any(tag => (tag.Prefix?.Length ?? 0) > 1000 || (tag.Suffix?.Length ?? 0) > 1000) ?? false)
                return BadRequest();

            member.Name = newMember.Name;
            member.DisplayName = newMember.DisplayName.NullIfEmpty();
            member.Color = newMember.Color.NullIfEmpty();
            member.AvatarUrl = newMember.AvatarUrl.NullIfEmpty();
            member.Birthday = newMember.Birthday;
            member.Pronouns = newMember.Pronouns.NullIfEmpty();
            member.Description = newMember.Description.NullIfEmpty();
            member.ProxyTags = newMember.ProxyTags;
            member.KeepProxy = newMember.KeepProxy;
            await _data.SaveMember(member);

            return Ok(member);
        }
        
        [HttpDelete("{hid}")]
        [RequiresSystem]
        public async Task<ActionResult<PKMember>> DeleteMember(string hid)
        {
            var member = await _data.GetMemberByHid(hid);
            if (member == null) return NotFound("Member not found.");
            
            if (member.System != _auth.CurrentSystem.Id) return Unauthorized($"Member '{hid}' is not part of your system.");
            
            await _data.DeleteMember(member);

            return Ok();
        }
    }
}
Add support for multiple proxy tags Tangentially closes #103. 2019-10-28 19:15:27 +00:00			`using System.Linq;`
Add member routes to API 2019-07-09 22:19:18 +00:00			`using System.Threading.Tasks;`
			`using Microsoft.AspNetCore.Mvc;`
			`using PluralKit.Core;`

			`namespace PluralKit.API.Controllers`
			`{`
			`[ApiController]`
			`[Route("m")]`
Version API endpoints 2019-07-09 22:23:41 +00:00			`[Route("v1/m")]`
Add member routes to API 2019-07-09 22:19:18 +00:00			`public class MemberController: ControllerBase`
			`{`
Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`private IDataStore _data;`
Add member routes to API 2019-07-09 22:19:18 +00:00			`private TokenAuthService _auth;`

Add support for multiple proxy tags Tangentially closes #103. 2019-10-28 19:15:27 +00:00			`public MemberController(IDataStore data, TokenAuthService auth)`
Add member routes to API 2019-07-09 22:19:18 +00:00			`{`
Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`_data = data;`
Add member routes to API 2019-07-09 22:19:18 +00:00			`_auth = auth;`
			`}`

			`[HttpGet("{hid}")]`
			`public async Task<ActionResult<PKMember>> GetMember(string hid)`
			`{`
Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`var member = await _data.GetMemberByHid(hid);`
Add member routes to API 2019-07-09 22:19:18 +00:00			`if (member == null) return NotFound("Member not found.");`

			`return Ok(member);`
			`}`

Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`[HttpPost]`
			`[RequiresSystem]`
			`public async Task<ActionResult<PKMember>> PostMember([FromBody] PKMember newMember)`
			`{`
			`var system = _auth.CurrentSystem;`

			`if (newMember.Name == null)`
Add support for multiple proxy tags Tangentially closes #103. 2019-10-28 19:15:27 +00:00			`return BadRequest("Member name cannot be null.");`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00
Added max member count to limits A given system can now have up to 1000 members. Within 50 members of that limit, a warning will display whenever a new member is created via the bot. Once the limit is reached, a final warning will appear indicating that no additional members can be created unless members are first deleted. Attempting to create a new member at that point by any method will result in an error message indicating that the limit has been reached. Respecting this in pk;import required some restructuring to tease apart which members already exist and which ones need to be created prior to creating any members as it seems preferable to fail early and give the user the ability to intervene rather than pushing the system to the member cap and requiring manual deletion of "lower priority" members before others can be created. One consequence of the restructure is that existing members are being read in bulk which is a performance improvement of 25-70% depending on how many switches need to be imported (the more members you have, the more noticeable this is). 2019-10-20 07:16:57 +00:00			`// Enforce per-system member limit`
Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`var memberCount = await _data.GetSystemMemberCount(system);`
Added max member count to limits A given system can now have up to 1000 members. Within 50 members of that limit, a warning will display whenever a new member is created via the bot. Once the limit is reached, a final warning will appear indicating that no additional members can be created unless members are first deleted. Attempting to create a new member at that point by any method will result in an error message indicating that the limit has been reached. Respecting this in pk;import required some restructuring to tease apart which members already exist and which ones need to be created prior to creating any members as it seems preferable to fail early and give the user the ability to intervene rather than pushing the system to the member cap and requiring manual deletion of "lower priority" members before others can be created. One consequence of the restructure is that existing members are being read in bulk which is a performance improvement of 25-70% depending on how many switches need to be imported (the more members you have, the more noticeable this is). 2019-10-20 07:16:57 +00:00			`if (memberCount >= Limits.MaxMemberCount)`
			`return BadRequest($"Member limit reached ({memberCount} / {Limits.MaxMemberCount}).");`

Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`// Explicit bounds checks`
			`if (newMember.Name != null && newMember.Name.Length > Limits.MaxMemberNameLength)`
			`return BadRequest($"Member name too long ({newMember.Name.Length} > {Limits.MaxMemberNameLength}.");`
Add display name editing - Set display name during member POST - Update display name during member PATCH 2019-08-09 15:37:52 +00:00			`if (newMember.DisplayName != null && newMember.DisplayName.Length > Limits.MaxMemberNameLength)`
			`return BadRequest($"Member display name too long ({newMember.DisplayName.Length} > {Limits.MaxMemberNameLength}.");`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`if (newMember.Pronouns != null && newMember.Pronouns.Length > Limits.MaxPronounsLength)`
			`return BadRequest($"Member pronouns too long ({newMember.Pronouns.Length} > {Limits.MaxPronounsLength}.");`
			`if (newMember.Description != null && newMember.Description.Length > Limits.MaxDescriptionLength)`
			`return BadRequest($"Member descriptions too long ({newMember.Description.Length} > {Limits.MaxDescriptionLength}.");`

			`// Sanity bounds checks`
			`if (newMember.AvatarUrl != null && newMember.AvatarUrl.Length > 1000)`
			`return BadRequest();`
Add support for multiple proxy tags Tangentially closes #103. 2019-10-28 19:15:27 +00:00			`if (newMember.ProxyTags?.Any(tag => tag.Prefix.Length > 1000 \|\| tag.Suffix.Length > 1000) ?? false)`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`return BadRequest();`

Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`var member = await _data.CreateMember(system, newMember.Name);`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00
			`member.Name = newMember.Name;`
Add display name editing - Set display name during member POST - Update display name during member PATCH 2019-08-09 15:37:52 +00:00			`member.DisplayName = newMember.DisplayName;`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`member.Color = newMember.Color;`
			`member.AvatarUrl = newMember.AvatarUrl;`
			`member.Birthday = newMember.Birthday;`
			`member.Pronouns = newMember.Pronouns;`
			`member.Description = newMember.Description;`
Add support for multiple proxy tags Tangentially closes #103. 2019-10-28 19:15:27 +00:00			`member.ProxyTags = newMember.ProxyTags;`
Allow keeping proxy tags when proxying messages. Required database migration: Closes #75. 2019-10-30 08:26:50 +00:00			`member.KeepProxy = newMember.KeepProxy;`
Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`await _data.SaveMember(member);`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00
Return member after create/edit Changing the POST and PATCH routes to return the member that's been created/edited, similar to how it worked before. Makes it easier to compare changes and get a newly created member's ID 2019-07-28 20:27:54 +00:00			`return Ok(member);`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`}`

Add member routes to API 2019-07-09 22:19:18 +00:00			`[HttpPatch("{hid}")]`
			`[RequiresSystem]`
			`public async Task<ActionResult<PKMember>> PatchMember(string hid, [FromBody] PKMember newMember)`
			`{`
Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`var member = await _data.GetMemberByHid(hid);`
Add member routes to API 2019-07-09 22:19:18 +00:00			`if (member == null) return NotFound("Member not found.");`

			`if (member.System != _auth.CurrentSystem.Id) return Unauthorized($"Member '{hid}' is not part of your system.");`

Fix bounds checking on member patch endpoint 2019-07-19 16:36:47 +00:00			`if (newMember.Name == null)`
			`return BadRequest("Member name can not be null.");`

Add member routes to API 2019-07-09 22:19:18 +00:00			`// Explicit bounds checks`
Fix bounds checking on member patch endpoint 2019-07-19 16:36:47 +00:00			`if (newMember.Name != null && newMember.Name.Length > Limits.MaxMemberNameLength)`
Add member routes to API 2019-07-09 22:19:18 +00:00			`return BadRequest($"Member name too long ({newMember.Name.Length} > {Limits.MaxMemberNameLength}.");`
Add display name editing - Set display name during member POST - Update display name during member PATCH 2019-08-09 15:37:52 +00:00			`if (newMember.DisplayName != null && newMember.DisplayName.Length > Limits.MaxMemberNameLength)`
			`return BadRequest($"Member display name too long ({newMember.DisplayName.Length} > {Limits.MaxMemberNameLength}.");`
Fix bounds checking on member patch endpoint 2019-07-19 16:36:47 +00:00			`if (newMember.Pronouns != null && newMember.Pronouns.Length > Limits.MaxPronounsLength)`
Add member routes to API 2019-07-09 22:19:18 +00:00			`return BadRequest($"Member pronouns too long ({newMember.Pronouns.Length} > {Limits.MaxPronounsLength}.");`
Fix bounds checking on member patch endpoint 2019-07-19 16:36:47 +00:00			`if (newMember.Description != null && newMember.Description.Length > Limits.MaxDescriptionLength)`
Add member routes to API 2019-07-09 22:19:18 +00:00			`return BadRequest($"Member descriptions too long ({newMember.Description.Length} > {Limits.MaxDescriptionLength}.");`

			`// Sanity bounds checks`
Fix PATCHing members with one-sided proxy tags 2019-11-03 18:16:06 +00:00			`if (newMember.ProxyTags?.Any(tag => (tag.Prefix?.Length ?? 0) > 1000 \|\| (tag.Suffix?.Length ?? 0) > 1000) ?? false)`
Add member routes to API 2019-07-09 22:19:18 +00:00			`return BadRequest();`

			`member.Name = newMember.Name;`
Fix bounds checks and normalise nulls in API 2019-12-02 15:49:39 +00:00			`member.DisplayName = newMember.DisplayName.NullIfEmpty();`
			`member.Color = newMember.Color.NullIfEmpty();`
			`member.AvatarUrl = newMember.AvatarUrl.NullIfEmpty();`
Add member routes to API 2019-07-09 22:19:18 +00:00			`member.Birthday = newMember.Birthday;`
Fix bounds checks and normalise nulls in API 2019-12-02 15:49:39 +00:00			`member.Pronouns = newMember.Pronouns.NullIfEmpty();`
			`member.Description = newMember.Description.NullIfEmpty();`
Add support for multiple proxy tags Tangentially closes #103. 2019-10-28 19:15:27 +00:00			`member.ProxyTags = newMember.ProxyTags;`
Allow keeping proxy tags when proxying messages. Required database migration: Closes #75. 2019-10-30 08:26:50 +00:00			`member.KeepProxy = newMember.KeepProxy;`
Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`await _data.SaveMember(member);`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00
Return member after create/edit Changing the POST and PATCH routes to return the member that's been created/edited, similar to how it worked before. Makes it easier to compare changes and get a newly created member's ID 2019-07-28 20:27:54 +00:00			`return Ok(member);`
Add member routes to API 2019-07-09 22:19:18 +00:00			`}`
Add endpoint to delete members - Add endpoint to delete members through a DELETE request 2019-07-28 22:03:50 +00:00
			`[HttpDelete("{hid}")]`
			`[RequiresSystem]`
			`public async Task<ActionResult<PKMember>> DeleteMember(string hid)`
			`{`
Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`var member = await _data.GetMemberByHid(hid);`
Add endpoint to delete members - Add endpoint to delete members through a DELETE request 2019-07-28 22:03:50 +00:00			`if (member == null) return NotFound("Member not found.");`

			`if (member.System != _auth.CurrentSystem.Id) return Unauthorized($"Member '{hid}' is not part of your system.");`

Refactor data stores, merging the Store classes 2019-10-26 17:45:30 +00:00			`await _data.DeleteMember(member);`
Add endpoint to delete members - Add endpoint to delete members through a DELETE request 2019-07-28 22:03:50 +00:00
			`return Ok();`
			`}`
Add member routes to API 2019-07-09 22:19:18 +00:00			`}`
Return member after create/edit Changing the POST and PATCH routes to return the member that's been created/edited, similar to how it worked before. Makes it easier to compare changes and get a newly created member's ID 2019-07-28 20:27:54 +00:00			`}`