174 lines
5.1 KiB
TypeScript
174 lines
5.1 KiB
TypeScript
import { Router } from "@oak/oak";
|
|
import { parseOptionalAuth } from "../lib/auth.ts";
|
|
import {
|
|
APIErrorCode,
|
|
APIException,
|
|
isCreatePlaylistRequest,
|
|
isReorderPlaylistRequest,
|
|
isUpdatePlaylistRequest,
|
|
} from "../model/interfaces.ts";
|
|
import { authMiddleware, type AuthState } from "../middleware/auth.ts";
|
|
import {
|
|
addDumpToPlaylist,
|
|
createPlaylist,
|
|
deletePlaylist,
|
|
getPlaylist,
|
|
getPlaylistImageInfo,
|
|
getPlaylistMembershipsForDump,
|
|
removeDumpFromPlaylist,
|
|
reorderPlaylist,
|
|
setPlaylistImage,
|
|
updatePlaylist,
|
|
} from "../services/playlist-service.ts";
|
|
import {
|
|
PLAYLIST_IMAGES_DIR,
|
|
serveUploadedFile,
|
|
validateImageUpload,
|
|
} from "../lib/upload.ts";
|
|
|
|
const router = new Router<AuthState>({ prefix: "/api/playlists" });
|
|
|
|
// GET /api/playlists/by-dump/:dumpId/memberships — must be before /:playlistId
|
|
router.get("/by-dump/:dumpId/memberships", authMiddleware, (ctx) => {
|
|
const { dumpId } = ctx.params;
|
|
const userId = ctx.state.user.userId;
|
|
const memberships = getPlaylistMembershipsForDump(dumpId, userId);
|
|
ctx.response.body = { success: true, data: memberships };
|
|
});
|
|
|
|
// POST /api/playlists — create
|
|
router.post("/", authMiddleware, async (ctx) => {
|
|
const body = await ctx.request.body.json();
|
|
if (!isCreatePlaylistRequest(body)) {
|
|
throw new APIException(
|
|
APIErrorCode.VALIDATION_ERROR,
|
|
400,
|
|
"Invalid request",
|
|
);
|
|
}
|
|
const playlist = createPlaylist(body, ctx.state.user.userId);
|
|
ctx.response.status = 201;
|
|
ctx.response.body = { success: true, data: playlist };
|
|
});
|
|
|
|
// GET /api/playlists/:playlistId — optional auth
|
|
router.get("/:playlistId", async (ctx) => {
|
|
const requestingUserId = await parseOptionalAuth(ctx);
|
|
const playlist = getPlaylist(ctx.params.playlistId, requestingUserId);
|
|
ctx.response.body = { success: true, data: playlist };
|
|
});
|
|
|
|
// PUT /api/playlists/:playlistId — update metadata
|
|
router.put("/:playlistId", authMiddleware, async (ctx) => {
|
|
const body = await ctx.request.body.json();
|
|
if (!isUpdatePlaylistRequest(body)) {
|
|
throw new APIException(
|
|
APIErrorCode.VALIDATION_ERROR,
|
|
400,
|
|
"Invalid request",
|
|
);
|
|
}
|
|
const playlist = updatePlaylist(
|
|
ctx.params.playlistId,
|
|
body,
|
|
ctx.state.user.userId,
|
|
);
|
|
ctx.response.body = { success: true, data: playlist };
|
|
});
|
|
|
|
// DELETE /api/playlists/:playlistId
|
|
router.delete("/:playlistId", authMiddleware, (ctx) => {
|
|
deletePlaylist(ctx.params.playlistId, ctx.state.user.userId);
|
|
ctx.response.status = 204;
|
|
});
|
|
|
|
// POST /api/playlists/:playlistId/dumps/:dumpId — add dump
|
|
router.post("/:playlistId/dumps/:dumpId", authMiddleware, (ctx) => {
|
|
addDumpToPlaylist(
|
|
ctx.params.playlistId,
|
|
ctx.params.dumpId,
|
|
ctx.state.user.userId,
|
|
);
|
|
ctx.response.status = 204;
|
|
});
|
|
|
|
// DELETE /api/playlists/:playlistId/dumps/:dumpId — remove dump
|
|
router.delete("/:playlistId/dumps/:dumpId", authMiddleware, (ctx) => {
|
|
removeDumpFromPlaylist(
|
|
ctx.params.playlistId,
|
|
ctx.params.dumpId,
|
|
ctx.state.user.userId,
|
|
);
|
|
ctx.response.status = 204;
|
|
});
|
|
|
|
// POST /api/playlists/:playlistId/image — upload playlist image
|
|
router.post("/:playlistId/image", authMiddleware, async (ctx) => {
|
|
const contentType = ctx.request.headers.get("content-type") ?? "";
|
|
if (!contentType.includes("multipart/form-data")) {
|
|
throw new APIException(
|
|
APIErrorCode.BAD_REQUEST,
|
|
400,
|
|
"Expected multipart/form-data",
|
|
);
|
|
}
|
|
|
|
const body = await ctx.request.body.formData();
|
|
const file = body.get("file");
|
|
|
|
if (!(file instanceof File)) {
|
|
throw new APIException(APIErrorCode.BAD_REQUEST, 400, "Missing file field");
|
|
}
|
|
|
|
const data = new Uint8Array(await file.arrayBuffer());
|
|
const mime = validateImageUpload(data);
|
|
|
|
// DB update first (validates ownership and resolves slug → UUID), then file write.
|
|
// If file write fails, attempt to clear the mime we just set.
|
|
const playlist = setPlaylistImage(
|
|
ctx.params.playlistId,
|
|
mime,
|
|
ctx.state.user.userId,
|
|
);
|
|
const filePath = `${PLAYLIST_IMAGES_DIR}/${playlist.id}`;
|
|
await Deno.mkdir(PLAYLIST_IMAGES_DIR, { recursive: true });
|
|
try {
|
|
await Deno.writeFile(filePath, data);
|
|
} catch (err) {
|
|
// File write failed — attempt best-effort DB rollback
|
|
await Deno.remove(filePath).catch(() => {});
|
|
throw err;
|
|
}
|
|
ctx.response.body = { success: true, data: playlist };
|
|
});
|
|
|
|
// GET /api/playlists/:playlistId/image — serve playlist image
|
|
router.get("/:playlistId/image", async (ctx) => {
|
|
const info = getPlaylistImageInfo(ctx.params.playlistId);
|
|
if (!info) {
|
|
ctx.response.status = 404;
|
|
return;
|
|
}
|
|
await serveUploadedFile(
|
|
ctx,
|
|
`${PLAYLIST_IMAGES_DIR}/${info.id}`,
|
|
info.imageMime,
|
|
);
|
|
});
|
|
|
|
// PUT /api/playlists/:playlistId/order — reorder
|
|
router.put("/:playlistId/order", authMiddleware, async (ctx) => {
|
|
const body = await ctx.request.body.json();
|
|
if (!isReorderPlaylistRequest(body)) {
|
|
throw new APIException(
|
|
APIErrorCode.VALIDATION_ERROR,
|
|
400,
|
|
"Invalid request",
|
|
);
|
|
}
|
|
reorderPlaylist(ctx.params.playlistId, body.dumpIds, ctx.state.user.userId);
|
|
ctx.response.body = { success: true, data: null };
|
|
});
|
|
|
|
export default router;
|