187 lines
5.3 KiB
TypeScript
187 lines
5.3 KiB
TypeScript
import { Router } from "@oak/oak";
|
|
import { verifyJWT } from "../lib/jwt.ts";
|
|
import {
|
|
APIErrorCode,
|
|
APIException,
|
|
isCreatePlaylistRequest,
|
|
isReorderPlaylistRequest,
|
|
isUpdatePlaylistRequest,
|
|
} from "../model/interfaces.ts";
|
|
import { authMiddleware, type AuthState } from "../middleware/auth.ts";
|
|
import {
|
|
addDumpToPlaylist,
|
|
createPlaylist,
|
|
deletePlaylist,
|
|
getPlaylist,
|
|
getPlaylistImageInfo,
|
|
getPlaylistMembershipsForDump,
|
|
removeDumpFromPlaylist,
|
|
reorderPlaylist,
|
|
setPlaylistImage,
|
|
updatePlaylist,
|
|
} from "../services/playlist-service.ts";
|
|
import {
|
|
detectImageMime,
|
|
MAX_IMAGE_SIZE,
|
|
PLAYLIST_IMAGES_DIR,
|
|
serveUploadedFile,
|
|
} from "../utils/upload.ts";
|
|
|
|
const router = new Router<AuthState>({ prefix: "/api/playlists" });
|
|
|
|
// GET /api/playlists/by-dump/:dumpId/memberships — must be before /:playlistId
|
|
router.get("/by-dump/:dumpId/memberships", authMiddleware, (ctx) => {
|
|
const { dumpId } = ctx.params;
|
|
const userId = ctx.state.user.userId;
|
|
const memberships = getPlaylistMembershipsForDump(dumpId, userId);
|
|
ctx.response.body = { success: true, data: memberships };
|
|
});
|
|
|
|
// POST /api/playlists — create
|
|
router.post("/", authMiddleware, async (ctx) => {
|
|
const body = await ctx.request.body.json();
|
|
if (!isCreatePlaylistRequest(body)) {
|
|
throw new APIException(
|
|
APIErrorCode.VALIDATION_ERROR,
|
|
400,
|
|
"Invalid request",
|
|
);
|
|
}
|
|
const playlist = createPlaylist(body, ctx.state.user.userId);
|
|
ctx.response.status = 201;
|
|
ctx.response.body = { success: true, data: playlist };
|
|
});
|
|
|
|
// GET /api/playlists/:playlistId — optional auth
|
|
router.get("/:playlistId", async (ctx) => {
|
|
let requestingUserId: string | null = null;
|
|
const authHeader = ctx.request.headers.get("Authorization");
|
|
if (authHeader?.startsWith("Bearer ")) {
|
|
const payload = await verifyJWT(authHeader.substring(7));
|
|
if (payload) requestingUserId = payload.userId;
|
|
}
|
|
const playlist = getPlaylist(ctx.params.playlistId, requestingUserId);
|
|
ctx.response.body = { success: true, data: playlist };
|
|
});
|
|
|
|
// PUT /api/playlists/:playlistId — update metadata
|
|
router.put("/:playlistId", authMiddleware, async (ctx) => {
|
|
const body = await ctx.request.body.json();
|
|
if (!isUpdatePlaylistRequest(body)) {
|
|
throw new APIException(
|
|
APIErrorCode.VALIDATION_ERROR,
|
|
400,
|
|
"Invalid request",
|
|
);
|
|
}
|
|
const playlist = updatePlaylist(
|
|
ctx.params.playlistId,
|
|
body,
|
|
ctx.state.user.userId,
|
|
);
|
|
ctx.response.body = { success: true, data: playlist };
|
|
});
|
|
|
|
// DELETE /api/playlists/:playlistId
|
|
router.delete("/:playlistId", authMiddleware, (ctx) => {
|
|
deletePlaylist(ctx.params.playlistId, ctx.state.user.userId);
|
|
ctx.response.status = 204;
|
|
});
|
|
|
|
// POST /api/playlists/:playlistId/dumps/:dumpId — add dump
|
|
router.post("/:playlistId/dumps/:dumpId", authMiddleware, (ctx) => {
|
|
addDumpToPlaylist(
|
|
ctx.params.playlistId,
|
|
ctx.params.dumpId,
|
|
ctx.state.user.userId,
|
|
);
|
|
ctx.response.status = 204;
|
|
});
|
|
|
|
// DELETE /api/playlists/:playlistId/dumps/:dumpId — remove dump
|
|
router.delete("/:playlistId/dumps/:dumpId", authMiddleware, (ctx) => {
|
|
removeDumpFromPlaylist(
|
|
ctx.params.playlistId,
|
|
ctx.params.dumpId,
|
|
ctx.state.user.userId,
|
|
);
|
|
ctx.response.status = 204;
|
|
});
|
|
|
|
// POST /api/playlists/:playlistId/image — upload playlist image
|
|
router.post("/:playlistId/image", authMiddleware, async (ctx) => {
|
|
const contentType = ctx.request.headers.get("content-type") ?? "";
|
|
if (!contentType.includes("multipart/form-data")) {
|
|
throw new APIException(
|
|
APIErrorCode.BAD_REQUEST,
|
|
400,
|
|
"Expected multipart/form-data",
|
|
);
|
|
}
|
|
|
|
const body = await ctx.request.body.formData();
|
|
const file = body.get("file");
|
|
|
|
if (!(file instanceof File)) {
|
|
throw new APIException(APIErrorCode.BAD_REQUEST, 400, "Missing file field");
|
|
}
|
|
|
|
if (file.size > MAX_IMAGE_SIZE) {
|
|
throw new APIException(
|
|
APIErrorCode.BAD_REQUEST,
|
|
400,
|
|
"File too large (max 5 MB)",
|
|
);
|
|
}
|
|
|
|
const data = new Uint8Array(await file.arrayBuffer());
|
|
const mime = detectImageMime(data);
|
|
if (!mime) {
|
|
throw new APIException(
|
|
APIErrorCode.BAD_REQUEST,
|
|
400,
|
|
"File content is not a recognised image (JPEG, PNG, GIF, WebP)",
|
|
);
|
|
}
|
|
|
|
// Resolve slug → UUID via service (validates ownership too), then write file
|
|
const playlist = setPlaylistImage(
|
|
ctx.params.playlistId,
|
|
mime,
|
|
ctx.state.user.userId,
|
|
);
|
|
await Deno.mkdir(PLAYLIST_IMAGES_DIR, { recursive: true });
|
|
await Deno.writeFile(`${PLAYLIST_IMAGES_DIR}/${playlist.id}`, data);
|
|
ctx.response.body = { success: true, data: playlist };
|
|
});
|
|
|
|
// GET /api/playlists/:playlistId/image — serve playlist image
|
|
router.get("/:playlistId/image", async (ctx) => {
|
|
const info = getPlaylistImageInfo(ctx.params.playlistId);
|
|
if (!info) {
|
|
ctx.response.status = 404;
|
|
return;
|
|
}
|
|
await serveUploadedFile(
|
|
ctx,
|
|
`${PLAYLIST_IMAGES_DIR}/${info.id}`,
|
|
info.imageMime,
|
|
);
|
|
});
|
|
|
|
// PUT /api/playlists/:playlistId/order — reorder
|
|
router.put("/:playlistId/order", authMiddleware, async (ctx) => {
|
|
const body = await ctx.request.body.json();
|
|
if (!isReorderPlaylistRequest(body)) {
|
|
throw new APIException(
|
|
APIErrorCode.VALIDATION_ERROR,
|
|
400,
|
|
"Invalid request",
|
|
);
|
|
}
|
|
reorderPlaylist(ctx.params.playlistId, body.dumpIds, ctx.state.user.userId);
|
|
ctx.response.body = { success: true, data: null };
|
|
});
|
|
|
|
export default router;
|