devops/encoach_frontend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
7fa4edf37df807343eede34236bd3c814c75f4ad
encoach_frontend/src/pages/api/discounts/[id].ts

83 lines
2.2 KiB
TypeScript
Raw Blame History

// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
import type { NextApiRequest, NextApiResponse } from "next";
import client from "@/lib/mongodb";
import { withIronSessionApiRoute } from "iron-session/next";
import { sessionOptions } from "@/lib/session";
import { PERMISSIONS } from "@/constants/userPermissions";
const db = client.db(process.env.MONGODB_DB);
export default withIronSessionApiRoute(handler, sessionOptions);
async function handler(req: NextApiRequest, res: NextApiResponse) {
if (req.method === "GET") return get(req, res);
if (req.method === "DELETE") return del(req, res);
if (req.method === "PATCH") return patch(req, res);
}
async function get(req: NextApiRequest, res: NextApiResponse) {
if (!req.session.user) {
res.status(401).json({ ok: false });
return;
}
const { id } = req.query as { id: string };
const docSnap = await db.collection("discounts").findOne({ id: id });
if (docSnap) {
res.status(200).json(docSnap);
} else {
res.status(404).json(undefined);
}
}
async function patch(req: NextApiRequest, res: NextApiResponse) {
if (!req.session.user) {
res.status(401).json({ ok: false });
return;
}
const { id } = req.query as { id: string };
const docSnap = await db.collection("discounts").findOne({ id: id });
if (docSnap) {
if (!["developer", "admin"].includes(req.session.user.type)) {
res.status(403).json({ ok: false });
return;
}
await db.collection("discounts").updateOne(
{ id: id },
{ $set: { id: id, ...req.body},
{ upsert: true }
);
res.status(200).json({ ok: true });
} else {
res.status(404).json({ ok: false });
}
}
async function del(req: NextApiRequest, res: NextApiResponse) {
if (!req.session.user) {
res.status(401).json({ ok: false });
return;
}
const { id } = req.query as { id: string };
const docSnap = await db.collection("discounts").findOne({ id: id });
if (docSnap) {
if (!["developer", "admin"].includes(req.session.user.type)) {
res.status(403).json({ ok: false });
return;
}
await db.collection("discounts").deleteOne({ id: id });
res.status(200).json({ ok: true });
} else {
res.status(404).json({ ok: false });
}
}
Reference in New Issue View Git Blame Copy Permalink