liz/PluralKit
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add member routes to API

Browse Source
This commit is contained in:
Ske
2019-07-10 00:19:18 +02:00
parent 4874879979
commit 9a5152a74c
8 changed files with 96 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

66
PluralKit.API/Controllers/MemberController.cs Normal file
View File

@@ -0,0 +1,66 @@
using System.Data;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using PluralKit.Core;
namespace PluralKit.API.Controllers
{
[ApiController]
[Route("m")]
public class MemberController: ControllerBase
{
private MemberStore _members;
private IDbConnection _conn;
private TokenAuthService _auth;
public MemberController(MemberStore members, IDbConnection conn, TokenAuthService auth)
{
_members = members;
_conn = conn;
_auth = auth;
}
[HttpGet("{hid}")]
public async Task<ActionResult<PKMember>> GetMember(string hid)
{
var member = await _members.GetByHid(hid);
if (member == null) return NotFound("Member not found.");
return Ok(member);
}
[HttpPatch("{hid}")]
[RequiresSystem]
public async Task<ActionResult<PKMember>> PatchMember(string hid, [FromBody] PKMember newMember)
{
var member = await _members.GetByHid(hid);
if (member == null) return NotFound("Member not found.");
if (member.System != _auth.CurrentSystem.Id) return Unauthorized($"Member '{hid}' is not part of your system.");
// Explicit bounds checks
if (newMember.Name.Length > Limits.MaxMemberNameLength)
return BadRequest($"Member name too long ({newMember.Name.Length} > {Limits.MaxMemberNameLength}.");
if (newMember.Pronouns.Length > Limits.MaxPronounsLength)
return BadRequest($"Member pronouns too long ({newMember.Pronouns.Length} > {Limits.MaxPronounsLength}.");
if (newMember.Description.Length > Limits.MaxDescriptionLength)
return BadRequest($"Member descriptions too long ({newMember.Description.Length} > {Limits.MaxDescriptionLength}.");
// Sanity bounds checks
if (newMember.AvatarUrl.Length > 1000 || newMember.Prefix.Length > 1000 || newMember.Suffix.Length > 1000)
return BadRequest();
member.Name = newMember.Name;
member.Color = newMember.Color;
member.AvatarUrl = newMember.AvatarUrl;
member.Birthday = newMember.Birthday;
member.Pronouns = newMember.Pronouns;
member.Description = newMember.Description;
member.Prefix = newMember.Prefix;
member.Suffix = newMember.Suffix;
await _members.Save(member);
return Ok();
}
}
}

5
PluralKit.API/Controllers/SystemController.cs
View File

@@ -99,9 +99,9 @@ namespace PluralKit.API.Controllers
}
[HttpPatch]
[RequiresSystem]
public async Task<ActionResult<PKSystem>> EditSystem([FromBody] PKSystem newSystem)
{
if (_auth.CurrentSystem == null) return Unauthorized("No token specified in Authorization header.");
var system = _auth.CurrentSystem;
system.Name = newSystem.Name;
@@ -115,10 +115,9 @@ namespace PluralKit.API.Controllers
}
[HttpPost("switches")]
[RequiresSystem]
public async Task<IActionResult> PostSwitch([FromBody] PostSwitchParams param)
{
if (_auth.CurrentSystem == null) return Unauthorized("No token specified in Authorization header.");
if (param.Members.Distinct().Count() != param.Members.Count())
return BadRequest("Duplicate members in member list.");