akf-forum/routes/api/routes/messages.js

const { MessageModel, ThreadModel } = require("../../../models");
const rateLimit = require('express-rate-limit')

const { Router } = require("express")

const app = Router();


app.get("/:id", async (req, res) => {

    const message = await MessageModel.get(req.params.id);

    if (!message || (message.deleted && req.user && !req.user.admin)) return res.error(404,  `We don't have any message with id ${req.params.id}.`);

    res.complate(message.toObject({ virtuals: true }));

})

app.post("/", rateLimit({
    windowMs: 60_000, max: 1, standardHeaders: true, legacyHeaders: false,
    handler: (request, response, next, options) =>
        !request.user.admin ?
            response.error(options.statusCode, "You are begin ratelimited")
            : next()
}), async (req, res) => {

    const { threadID = null, content = null } = req.body;
    if (!content) return res.error(400, "Missing message content in request body.");

    const thread = await ThreadModel.get(threadID);

    if (!thread) return res.error(404, `We don't have any thread with id ${threadID}.`);

    const message = await new MessageModel({ content, author: req.user, threadID: thread.id }).takeId();
    await message.save();
    await thread.push(message.id).save();

    res.complate(message.toObject({ virtuals: true }));

})
app.post("/:id/react/:type", async (req, res) => {

    const message = await MessageModel.get(req.params.id);
    if (message) {

        if (req.user.id in message.react)
            delete message.react[req.session.userid];
        else
            message.react[req.session.userid] = req.params.type === "like";
        message.markModified("react");
        await message.save();

       
        res.complate(message.toObject({ virtuals: true }));
    } else error(res, 404, `We don't have any message with id ${req.params.id}.`);


});

app.post("/:id/delete", async (req, res) => {
    const message = await MessageModel.get(req.params.id);
    if (!message || (message.deleted && req.user && !req.user.admin)) 
    return res.error(404, `We don't have any message with id ${req.params.id}.`);
    const user = req.user;
    if (user.id != message.authorID && !user.admin)
        return res.error(403, "You have not got permission for this.");
    message.deleted = true;
    await message.save();

    res.complate(message.toObject({ virtuals: true }));

})

app.post("/:id/undelete", async (req, res) => {
    if (!req.user.admin) return res.error(403, "You have not got permission for this.");

    const message = await MessageModel.get(req.params.id);

    if (!message ) return res.error(404,  `We don't have any message with id ${req.params.id}.`);
   
    if (!message.deleted) return res.error(404, "This message is not deleted, first, delete it.");

    message.deleted = false;
    await message.save();

    res.complate(message.toObject({ virtuals: true }));

})

module.exports = app;
Better rendering for messages 2022-08-11 17:55:48 +03:00			`const { MessageModel, ThreadModel } = require("../../../models");`
API is optimized, and better ratelimit 2022-08-10 02:08:18 +03:00			`const rateLimit = require('express-rate-limit')`
Added thread to API 2022-04-03 22:03:47 +03:00
			`const { Router } = require("express")`

			`const app = Router();`

Better rendering for messages 2022-08-11 17:55:48 +03:00
Database changed to MongoDB 2022-04-06 21:14:46 +03:00			`app.get("/:id", async (req, res) => {`
Added thread to API 2022-04-03 22:03:47 +03:00
fix 2022-08-24 22:10:23 +03:00			`const message = await MessageModel.get(req.params.id);`
Added thread to API 2022-04-03 22:03:47 +03:00
Added undelete ways to api 2022-08-26 20:12:23 +03:00			if (!message \|\| (message.deleted && req.user && !req.user.admin)) return res.error(404, `We don't have any message with id ${req.params.id}.`);
Added thread to API 2022-04-03 22:03:47 +03:00
3lü ve güçlü Co-authored-by: Sapphire1525 <Sapphire1525@users.noreply.github.com> Co-authored-by: inoaa79 <inoaa79@users.noreply.github.com> 2022-08-24 22:09:21 +03:00			`res.complate(message.toObject({ virtuals: true }));`
Added thread to API 2022-04-03 22:03:47 +03:00
			`})`

API is optimized, and better ratelimit 2022-08-10 02:08:18 +03:00			`app.post("/", rateLimit({`
			`windowMs: 60_000, max: 1, standardHeaders: true, legacyHeaders: false,`
			`handler: (request, response, next, options) =>`
			`!request.user.admin ?`
			`response.error(options.statusCode, "You are begin ratelimited")`
			`: next()`
			`}), async (req, res) => {`

Added thread to API 2022-04-03 22:03:47 +03:00			`const { threadID = null, content = null } = req.body;`
API is optimized, and better ratelimit 2022-08-10 02:08:18 +03:00			`if (!content) return res.error(400, "Missing message content in request body.");`
Added thread to API 2022-04-03 22:03:47 +03:00
API is optimized, and better ratelimit 2022-08-10 02:08:18 +03:00			`const thread = await ThreadModel.get(threadID);`
Added thread to API 2022-04-03 22:03:47 +03:00
3lü ve güçlü Co-authored-by: Sapphire1525 <Sapphire1525@users.noreply.github.com> Co-authored-by: inoaa79 <inoaa79@users.noreply.github.com> 2022-08-24 22:09:21 +03:00			if (!thread) return res.error(404, `We don't have any thread with id ${threadID}.`);
Added thread to API 2022-04-03 22:03:47 +03:00
API is optimized, and better ratelimit 2022-08-10 02:08:18 +03:00			`const message = await new MessageModel({ content, author: req.user, threadID: thread.id }).takeId();`
			`await message.save();`
			`await thread.push(message.id).save();`
Added thread to API 2022-04-03 22:03:47 +03:00
3lü ve güçlü Co-authored-by: Sapphire1525 <Sapphire1525@users.noreply.github.com> Co-authored-by: inoaa79 <inoaa79@users.noreply.github.com> 2022-08-24 22:09:21 +03:00			`res.complate(message.toObject({ virtuals: true }));`
Added thread to API 2022-04-03 22:03:47 +03:00
			`})`
V3 2022-08-11 00:38:44 +03:00			`app.post("/:id/react/:type", async (req, res) => {`

			`const message = await MessageModel.get(req.params.id);`
			`if (message) {`

			`if (req.user.id in message.react)`
			`delete message.react[req.session.userid];`
			`else`
			`message.react[req.session.userid] = req.params.type === "like";`
			`message.markModified("react");`
			`await message.save();`

3lü ve güçlü Co-authored-by: Sapphire1525 <Sapphire1525@users.noreply.github.com> Co-authored-by: inoaa79 <inoaa79@users.noreply.github.com> 2022-08-24 22:09:21 +03:00
			`res.complate(message.toObject({ virtuals: true }));`
String fixes 2022-08-11 18:15:27 +03:00			} else error(res, 404, `We don't have any message with id ${req.params.id}.`);
V3 2022-08-11 00:38:44 +03:00

			`});`
Added thread to API 2022-04-03 22:03:47 +03:00
create and del thread, and del message to fetch 2022-08-11 02:43:15 +03:00			`app.post("/:id/delete", async (req, res) => {`
			`const message = await MessageModel.get(req.params.id);`
Added undelete ways to api 2022-08-26 20:12:23 +03:00			`if (!message \|\| (message.deleted && req.user && !req.user.admin))`
			return res.error(404, `We don't have any message with id ${req.params.id}.`);
create and del thread, and del message to fetch 2022-08-11 02:43:15 +03:00			`const user = req.user;`
			`if (user.id != message.authorID && !user.admin)`
3lü ve güçlü Co-authored-by: Sapphire1525 <Sapphire1525@users.noreply.github.com> Co-authored-by: inoaa79 <inoaa79@users.noreply.github.com> 2022-08-24 22:09:21 +03:00			`return res.error(403, "You have not got permission for this.");`
create and del thread, and del message to fetch 2022-08-11 02:43:15 +03:00			`message.deleted = true;`
			`await message.save();`

3lü ve güçlü Co-authored-by: Sapphire1525 <Sapphire1525@users.noreply.github.com> Co-authored-by: inoaa79 <inoaa79@users.noreply.github.com> 2022-08-24 22:09:21 +03:00			`res.complate(message.toObject({ virtuals: true }));`
create and del thread, and del message to fetch 2022-08-11 02:43:15 +03:00
			`})`

Added undelete ways to api 2022-08-26 20:12:23 +03:00			`app.post("/:id/undelete", async (req, res) => {`
			`if (!req.user.admin) return res.error(403, "You have not got permission for this.");`

			`const message = await MessageModel.get(req.params.id);`

			if (!message ) return res.error(404, `We don't have any message with id ${req.params.id}.`);

			`if (!message.deleted) return res.error(404, "This message is not deleted, first, delete it.");`

			`message.deleted = false;`
			`await message.save();`

			`res.complate(message.toObject({ virtuals: true }));`

			`})`

Added thread to API 2022-04-03 22:03:47 +03:00			`module.exports = app;`