akf-forum/routes/api/routes/threads.js

const { MessageModel, ThreadModel } = require("../../../models");
const { Router } = require("express")
const { RL, threadEnum } = require('../../../lib');

const app = Router();
app.param("id", async (req, res, next, id) => {
    req.thread = await ThreadModel.get(id);

    if (!req.thread) return res.error(404, `We don't have any thread with id ${id}.`);

    if (req.thread.state !== "OPEN" && !req.user?.admin)
        return res.error(404, `You do not have permissions to view this thread with id ${id}.`)

    next();
});

app.get("/:id", async (req, res) => res.complate(req.thread));

app.get("/:id/messages/", async (req, res) => {

    const { id } = req.params;
    const limit = Number(req.query.limit);
    const skip = Number(req.query.skip);

    const query = { threadID: id };
    if (!req.user.admin) query.deleted = false;

    const options = { sort: { time: -1 } };
    if (limit) options.limit = limit;
    if (skip) options.skip = skip;

    const messages = await MessageModel.find(query, null, options)

    if (!messages.length) return res.error(404, "We don't have any messages in this with your query thread.");

    res.complate(messages);

})

app.post("/", RL(5 * 60_000, 1), async (req, res) => {

    const { title, content, category } = req.body;

    if (!content || !title) return res.error(400, "Missing content/title in request body.");
    const limits = req.app.get("limits");

    if (title.length < 5 || title.length > limits.title) return res.error(400, `title must be between 5 - ${limits.title} characters`);
    if (content.length < 5 || content.length > limits.message) return res.error(400, `content must be between 5 - ${limits.message} characters`);
    const { user } = req;
    const thread = await new ThreadModel({ title, author: user }).takeId()
    if (category)
        thread.categoryID = category;
    const message = await new MessageModel({ content, author: user, threadID: thread.id }).takeId()
    await thread.push(message.id).save();
    await message.save();

    res.complate(thread);

});

app.patch("/:id/", async (req, res) => {
    const { user, thread } = req;

    if (user.id !== thread.authorID && !user.admin) return res.error(403, "You have not got permission for this.");
    if (!Object.values(req.body).some(Boolean)) return res.error(400, "Missing thread informations for update in request body.");


    const { title, state } = req.body;

    if (title) {
        const limits = req.app.get("limits");

        if (title.length < 5 || title.length > limits.title) return res.error(400, `title must be between 5 - ${limits.title} characters`);
        if (thread.oldTitles.at(-1) == title) return res.error(400, "You can't use the same title as the previous one.");

        thread.oldTitles.push(thread.title = title);
    }


    if (state) {
        if (!user.admin)
            return res.error(403, "You have not got permission for change state.");

        if (thread.state === state) return res.error(400, "You can't change thread state to same state.");
        if (!threadEnum.includes(state)) return res.error(400, "Invalid thread state.");
        if (thread.state === "DELETED")
            await MessageModel.updateMany({ threadID: thread.id }, { deleted: false });
        thread.state = state;
    }

    await thread.save();

    res.complate(thread);

})
app.delete("/:id/", async (req, res) => {

    const { user, thread } = req;
    if (user.id != thread.authorID && !user.admin)
        return res.error(403, "You have not got permission for this.");

    if (thread.state == "DELETED") return res.error(404, "This thread is already deleted.");
    thread.state = "DELETED";
    await thread.save();

    await MessageModel.updateMany({ threadID: thread.id }, { deleted: true });
    res.complate(thread);

})

module.exports = app;
MAJOR BUG: REQ => RES.ERROR, delete user fetch 2022-08-11 03:03:26 +03:00			`const { MessageModel, ThreadModel } = require("../../../models");`
Added thread to API 2022-04-03 22:03:47 +03:00			`const { Router } = require("express")`
/undelete depr, added thread.state 2022-09-21 23:54:48 +03:00			`const { RL, threadEnum } = require('../../../lib');`
Added thread to API 2022-04-03 22:03:47 +03:00
			`const app = Router();`
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`app.param("id", async (req, res, next, id) => {`
			`req.thread = await ThreadModel.get(id);`
Added thread to API 2022-04-03 22:03:47 +03:00
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			if (!req.thread) return res.error(404, `We don't have any thread with id ${id}.`);
Added thread to API 2022-04-03 22:03:47 +03:00
/undelete depr, added thread.state 2022-09-21 23:54:48 +03:00			`if (req.thread.state !== "OPEN" && !req.user?.admin)`
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			return res.error(404, `You do not have permissions to view this thread with id ${id}.`)
Added thread to API 2022-04-03 22:03:47 +03:00
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`next();`
Added thread to API 2022-04-03 22:03:47 +03:00			`});`

Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`app.get("/:id", async (req, res) => res.complate(req.thread));`
Better rendering for messages 2022-08-11 17:55:48 +03:00
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`app.get("/:id/messages/", async (req, res) => {`
Better rendering for messages 2022-08-11 17:55:48 +03:00
String fixes 2022-08-11 18:15:27 +03:00			`const { id } = req.params;`
Better rendering for messages 2022-08-11 17:55:48 +03:00			`const limit = Number(req.query.limit);`
fix for mobile and support for pages 2022-08-28 17:34:29 +03:00			`const skip = Number(req.query.skip);`
Better rendering for messages 2022-08-11 17:55:48 +03:00
			`const query = { threadID: id };`
3lü ve güçlü Co-authored-by: Sapphire1525 <Sapphire1525@users.noreply.github.com> Co-authored-by: inoaa79 <inoaa79@users.noreply.github.com> 2022-08-24 22:09:21 +03:00			`if (!req.user.admin) query.deleted = false;`
Better rendering for messages 2022-08-11 17:55:48 +03:00
new theme is fixed in everypage 2022-08-29 16:16:44 +03:00			`const options = { sort: { time: -1 } };`
Better rendering for messages 2022-08-11 17:55:48 +03:00			`if (limit) options.limit = limit;`
fix for mobile and support for pages 2022-08-28 17:34:29 +03:00			`if (skip) options.skip = skip;`
Better rendering for messages 2022-08-11 17:55:48 +03:00
			`const messages = await MessageModel.find(query, null, options)`

fix for mobile and support for pages 2022-08-28 17:34:29 +03:00			`if (!messages.length) return res.error(404, "We don't have any messages in this with your query thread.");`
Better rendering for messages 2022-08-11 17:55:48 +03:00
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`res.complate(messages);`
Better rendering for messages 2022-08-11 17:55:48 +03:00
			`})`
Database changed to MongoDB 2022-04-06 21:14:46 +03:00
Added old titles, and content for API. 2022-09-21 23:06:14 +03:00			`app.post("/", RL(5 * 60_000, 1), async (req, res) => {`
Database changed to MongoDB 2022-04-06 21:14:46 +03:00
Added category 2022-09-09 20:55:05 +03:00			`const { title, content, category } = req.body;`

API is optimized, and better ratelimit 2022-08-10 02:08:18 +03:00			`if (!content \|\| !title) return res.error(400, "Missing content/title in request body.");`
Added limits to config.json 2022-09-17 16:27:01 +03:00			`const limits = req.app.get("limits");`

/undelete depr, added thread.state 2022-09-21 23:54:48 +03:00			if (title.length < 5 \|\| title.length > limits.title) return res.error(400, `title must be between 5 - ${limits.title} characters`);
			if (content.length < 5 \|\| content.length > limits.message) return res.error(400, `content must be between 5 - ${limits.message} characters`);
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`const { user } = req;`
API is optimized, and better ratelimit 2022-08-10 02:08:18 +03:00			`const thread = await new ThreadModel({ title, author: user }).takeId()`
Added category 2022-09-09 20:55:05 +03:00			`if (category)`
			`thread.categoryID = category;`
API is optimized, and better ratelimit 2022-08-10 02:08:18 +03:00			`const message = await new MessageModel({ content, author: user, threadID: thread.id }).takeId()`
			`await thread.push(message.id).save();`
Mongoose is fixed & optimized The dublicate key error fixed, ids as string. classes removed. using mongoose's magic 2022-08-09 19:16:34 +03:00			`await message.save();`
Database changed to MongoDB 2022-04-06 21:14:46 +03:00
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`res.complate(thread);`
Database changed to MongoDB 2022-04-06 21:14:46 +03:00
			`});`

/undelete depr, added thread.state 2022-09-21 23:54:48 +03:00			`app.patch("/:id/", async (req, res) => {`
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`const { user, thread } = req;`
Page is OK! Edits, About me, ip ban 2022-08-29 19:31:59 +03:00
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`if (user.id !== thread.authorID && !user.admin) return res.error(403, "You have not got permission for this.");`
/undelete depr, added thread.state 2022-09-21 23:54:48 +03:00			`if (!Object.values(req.body).some(Boolean)) return res.error(400, "Missing thread informations for update in request body.");`


			`const { title, state } = req.body;`

			`if (title) {`
			`const limits = req.app.get("limits");`

			if (title.length < 5 \|\| title.length > limits.title) return res.error(400, `title must be between 5 - ${limits.title} characters`);
			`if (thread.oldTitles.at(-1) == title) return res.error(400, "You can't use the same title as the previous one.");`

			`thread.oldTitles.push(thread.title = title);`
			`}`

Added limits to config.json 2022-09-17 16:27:01 +03:00
/undelete depr, added thread.state 2022-09-21 23:54:48 +03:00			`if (state) {`
			`if (!user.admin)`
			`return res.error(403, "You have not got permission for change state.");`
Added char limits 2022-09-17 00:27:38 +03:00
/undelete depr, added thread.state 2022-09-21 23:54:48 +03:00			`if (thread.state === state) return res.error(400, "You can't change thread state to same state.");`
			`if (!threadEnum.includes(state)) return res.error(400, "Invalid thread state.");`
			`if (thread.state === "DELETED")`
			`await MessageModel.updateMany({ threadID: thread.id }, { deleted: false });`
			`thread.state = state;`
			`}`
Added old titles, and content for API. 2022-09-21 23:06:14 +03:00
Page is OK! Edits, About me, ip ban 2022-08-29 19:31:59 +03:00			`await thread.save();`

Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`res.complate(thread);`
Page is OK! Edits, About me, ip ban 2022-08-29 19:31:59 +03:00
			`})`
http fixs, added ip ban to api, and admin panel 2022-08-29 21:32:57 +03:00			`app.delete("/:id/", async (req, res) => {`
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00
			`const { user, thread } = req;`
create and del thread, and del message to fetch 2022-08-11 02:43:15 +03:00			`if (user.id != thread.authorID && !user.admin)`
Better rendering for messages 2022-08-11 17:55:48 +03:00			`return res.error(403, "You have not got permission for this.");`
create and del thread, and del message to fetch 2022-08-11 02:43:15 +03:00
HTTP codes, approval system for user, email 2022-09-24 01:39:06 +03:00			`if (thread.state == "DELETED") return res.error(404, "This thread is already deleted.");`
/undelete depr, added thread.state 2022-09-21 23:54:48 +03:00			`thread.state = "DELETED";`
create and del thread, and del message to fetch 2022-08-11 02:43:15 +03:00			`await thread.save();`
HOTFIX FOR MESSAGE API 2022-08-31 16:05:23 +03:00
When thread deleted, delete its messages 2022-08-31 15:14:14 +03:00			`await MessageModel.updateMany({ threadID: thread.id }, { deleted: true });`
Caching for users, and rename is fixed 2022-08-31 14:44:28 +03:00			`res.complate(thread);`
create and del thread, and del message to fetch 2022-08-11 02:43:15 +03:00
			`})`

Added thread to API 2022-04-03 22:03:47 +03:00			`module.exports = app;`