PluralKit/PluralKit.API/Controllers/v1/MemberController.cs

using System.Threading.Tasks;

using Dapper;

using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;

using Newtonsoft.Json.Linq;

using PluralKit.Core;

namespace PluralKit.API
{
    [ApiController]
    [ApiVersion("1.0")]
    [Route("m")]
    [Route( "v{version:apiVersion}/m" )]
    public class MemberController: ControllerBase
    {
        private IDatabase _db;
        private IAuthorizationService _auth;

        public MemberController(IAuthorizationService auth, IDatabase db)
        {
            _auth = auth;
            _db = db;
        }

        [HttpGet("{hid}")]
        public async Task<ActionResult<JObject>> GetMember(string hid)
        {
            var member = await _db.Execute(conn => conn.QueryMemberByHid(hid));
            if (member == null) return NotFound("Member not found.");

            return Ok(member.ToJson(User.ContextFor(member)));
        }

        [HttpPost]
        [Authorize]
        public async Task<ActionResult<JObject>> PostMember([FromBody] JObject properties)
        {
            var system = User.CurrentSystem();
            if (!properties.ContainsKey("name"))
                return BadRequest("Member name must be specified.");

            await using var conn = await _db.Obtain();

            // Enforce per-system member limit
            var memberCount = await conn.QuerySingleAsync<int>("select count(*) from members where system = @System", new {System = system});
            if (memberCount >= Limits.MaxMemberCount)
                return BadRequest($"Member limit reached ({memberCount} / {Limits.MaxMemberCount}).");

            var member = await conn.CreateMember(system, properties.Value<string>("name"));
            MemberPatch patch;
            try
            {
                patch = JsonModelExt.ToMemberPatch(properties);
            }
            catch (JsonModelParseError e)
            {
                return BadRequest(e.Message);
            }
            
            member = await conn.UpdateMember(member.Id, patch);
            return Ok(member.ToJson(User.ContextFor(member)));
        }

        [HttpPatch("{hid}")]
        [Authorize]
        public async Task<ActionResult<JObject>> PatchMember(string hid, [FromBody] JObject changes)
        {
            await using var conn = await _db.Obtain();

            var member = await conn.QueryMemberByHid(hid);
            if (member == null) return NotFound("Member not found.");
            
            var res = await _auth.AuthorizeAsync(User, member, "EditMember");
            if (!res.Succeeded) return Unauthorized($"Member '{hid}' is not part of your system.");

            MemberPatch patch;
            try
            {
                patch = JsonModelExt.ToMemberPatch(changes);
            }
            catch (JsonModelParseError e)
            {
                return BadRequest(e.Message);
            }
            
            var newMember = await conn.UpdateMember(member.Id, patch);
            return Ok(newMember.ToJson(User.ContextFor(newMember)));
        }
        
        [HttpDelete("{hid}")]
        [Authorize]
        public async Task<ActionResult> DeleteMember(string hid)
        {
            await using var conn = await _db.Obtain();

            var member = await conn.QueryMemberByHid(hid);
            if (member == null) return NotFound("Member not found.");
            
            var res = await _auth.AuthorizeAsync(User, member, "EditMember");
            if (!res.Succeeded) return Unauthorized($"Member '{hid}' is not part of your system.");

            await conn.DeleteMember(member.Id);
            return Ok();
        }
    }
}
Add member routes to API 2019-07-09 22:19:18 +00:00			`using System.Threading.Tasks;`
Large refactor and project restructuring 2020-02-12 14:16:19 +00:00
Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`using Dapper;`

Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00			`using Microsoft.AspNetCore.Authorization;`
Add member routes to API 2019-07-09 22:19:18 +00:00			`using Microsoft.AspNetCore.Mvc;`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00
			`using Newtonsoft.Json.Linq;`

Add member routes to API 2019-07-09 22:19:18 +00:00			`using PluralKit.Core;`

Large refactor and project restructuring 2020-02-12 14:16:19 +00:00			`namespace PluralKit.API`
Add member routes to API 2019-07-09 22:19:18 +00:00			`{`
			`[ApiController]`
Integrate ApiVersioning library for ASP.NET 2020-05-07 02:39:49 +00:00			`[ApiVersion("1.0")]`
Add member routes to API 2019-07-09 22:19:18 +00:00			`[Route("m")]`
Integrate ApiVersioning library for ASP.NET 2020-05-07 02:39:49 +00:00			`[Route( "v{version:apiVersion}/m" )]`
Add member routes to API 2019-07-09 22:19:18 +00:00			`public class MemberController: ControllerBase`
			`{`
Finally retire the PKMember setters! 2020-06-29 12:15:30 +00:00			`private IDatabase _db;`
Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00			`private IAuthorizationService _auth;`
Add member routes to API 2019-07-09 22:19:18 +00:00
Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`public MemberController(IAuthorizationService auth, IDatabase db)`
Add member routes to API 2019-07-09 22:19:18 +00:00			`{`
			`_auth = auth;`
Finally retire the PKMember setters! 2020-06-29 12:15:30 +00:00			`_db = db;`
Add member routes to API 2019-07-09 22:19:18 +00:00			`}`

			`[HttpGet("{hid}")]`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`public async Task<ActionResult<JObject>> GetMember(string hid)`
Add member routes to API 2019-07-09 22:19:18 +00:00			`{`
Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`var member = await _db.Execute(conn => conn.QueryMemberByHid(hid));`
Add member routes to API 2019-07-09 22:19:18 +00:00			`if (member == null) return NotFound("Member not found.");`

Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00			`return Ok(member.ToJson(User.ContextFor(member)));`
Add member routes to API 2019-07-09 22:19:18 +00:00			`}`

Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`[HttpPost]`
Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00			`[Authorize]`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`public async Task<ActionResult<JObject>> PostMember([FromBody] JObject properties)`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`{`
Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00			`var system = User.CurrentSystem();`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`if (!properties.ContainsKey("name"))`
			`return BadRequest("Member name must be specified.");`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00
Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`await using var conn = await _db.Obtain();`

Added max member count to limits A given system can now have up to 1000 members. Within 50 members of that limit, a warning will display whenever a new member is created via the bot. Once the limit is reached, a final warning will appear indicating that no additional members can be created unless members are first deleted. Attempting to create a new member at that point by any method will result in an error message indicating that the limit has been reached. Respecting this in pk;import required some restructuring to tease apart which members already exist and which ones need to be created prior to creating any members as it seems preferable to fail early and give the user the ability to intervene rather than pushing the system to the member cap and requiring manual deletion of "lower priority" members before others can be created. One consequence of the restructure is that existing members are being read in bulk which is a performance improvement of 25-70% depending on how many switches need to be imported (the more members you have, the more noticeable this is). 2019-10-20 07:16:57 +00:00			`// Enforce per-system member limit`
Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`var memberCount = await conn.QuerySingleAsync<int>("select count(*) from members where system = @System", new {System = system});`
Added max member count to limits A given system can now have up to 1000 members. Within 50 members of that limit, a warning will display whenever a new member is created via the bot. Once the limit is reached, a final warning will appear indicating that no additional members can be created unless members are first deleted. Attempting to create a new member at that point by any method will result in an error message indicating that the limit has been reached. Respecting this in pk;import required some restructuring to tease apart which members already exist and which ones need to be created prior to creating any members as it seems preferable to fail early and give the user the ability to intervene rather than pushing the system to the member cap and requiring manual deletion of "lower priority" members before others can be created. One consequence of the restructure is that existing members are being read in bulk which is a performance improvement of 25-70% depending on how many switches need to be imported (the more members you have, the more noticeable this is). 2019-10-20 07:16:57 +00:00			`if (memberCount >= Limits.MaxMemberCount)`
			`return BadRequest($"Member limit reached ({memberCount} / {Limits.MaxMemberCount}).");`

Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`var member = await conn.CreateMember(system, properties.Value<string>("name"));`
Finally retire the PKMember setters! 2020-06-29 12:15:30 +00:00			`MemberPatch patch;`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`try`
			`{`
Finally retire the PKMember setters! 2020-06-29 12:15:30 +00:00			`patch = JsonModelExt.ToMemberPatch(properties);`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`}`
Large refactor and project restructuring 2020-02-12 14:16:19 +00:00			`catch (JsonModelParseError e)`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`{`
			`return BadRequest(e.Message);`
			`}`

Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`member = await conn.UpdateMember(member.Id, patch);`
			`return Ok(member.ToJson(User.ContextFor(member)));`
Add endpoint to create new member by POST request 2019-07-27 03:37:23 +00:00			`}`

Add member routes to API 2019-07-09 22:19:18 +00:00			`[HttpPatch("{hid}")]`
Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00			`[Authorize]`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`public async Task<ActionResult<JObject>> PatchMember(string hid, [FromBody] JObject changes)`
Add member routes to API 2019-07-09 22:19:18 +00:00			`{`
Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`await using var conn = await _db.Obtain();`

			`var member = await conn.QueryMemberByHid(hid);`
Add member routes to API 2019-07-09 22:19:18 +00:00			`if (member == null) return NotFound("Member not found.");`
Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00
			`var res = await _auth.AuthorizeAsync(User, member, "EditMember");`
			`if (!res.Succeeded) return Unauthorized($"Member '{hid}' is not part of your system.");`
Add member routes to API 2019-07-09 22:19:18 +00:00
Finally retire the PKMember setters! 2020-06-29 12:15:30 +00:00			`MemberPatch patch;`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`try`
			`{`
Finally retire the PKMember setters! 2020-06-29 12:15:30 +00:00			`patch = JsonModelExt.ToMemberPatch(changes);`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`}`
Large refactor and project restructuring 2020-02-12 14:16:19 +00:00			`catch (JsonModelParseError e)`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`{`
			`return BadRequest(e.Message);`
			`}`

Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`var newMember = await conn.UpdateMember(member.Id, patch);`
Return new member after member PATCH (#191) 2020-07-05 10:54:51 +00:00			`return Ok(newMember.ToJson(User.ContextFor(newMember)));`
Add member routes to API 2019-07-09 22:19:18 +00:00			`}`
Add endpoint to delete members - Add endpoint to delete members through a DELETE request 2019-07-28 22:03:50 +00:00
			`[HttpDelete("{hid}")]`
Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00			`[Authorize]`
Upgrade API serialisation code to enable potential context-based serialisation 2019-12-28 14:52:59 +00:00			`public async Task<ActionResult> DeleteMember(string hid)`
Add endpoint to delete members - Add endpoint to delete members through a DELETE request 2019-07-28 22:03:50 +00:00			`{`
Retire more IDataStore methods 2020-06-29 12:54:11 +00:00			`await using var conn = await _db.Obtain();`

			`var member = await conn.QueryMemberByHid(hid);`
Add endpoint to delete members - Add endpoint to delete members through a DELETE request 2019-07-28 22:03:50 +00:00			`if (member == null) return NotFound("Member not found.");`

Migrate API to ASP.NET Core Auth services + refactor 2020-06-15 23:15:59 +00:00			`var res = await _auth.AuthorizeAsync(User, member, "EditMember");`
			`if (!res.Succeeded) return Unauthorized($"Member '{hid}' is not part of your system.");`
Retire more IDataStore methods 2020-06-29 12:54:11 +00:00
			`await conn.DeleteMember(member.Id);`
Add endpoint to delete members - Add endpoint to delete members through a DELETE request 2019-07-28 22:03:50 +00:00			`return Ok();`
			`}`
Add member routes to API 2019-07-09 22:19:18 +00:00			`}`
Return member after create/edit Changing the POST and PATCH routes to return the member that's been created/edited, similar to how it worked before. Makes it easier to compare changes and get a newly created member's ID 2019-07-28 20:27:54 +00:00			`}`