36 lines
1.4 KiB
JavaScript
36 lines
1.4 KiB
JavaScript
const { Router } = require("express");
|
|
const app = Router();
|
|
const { UserModel, MessageModel, ThreadModel } = require("../models");
|
|
|
|
app.get("/", async (req, res) => {
|
|
const page = Number(req.query.page) || 0;
|
|
const query = req.user?.admin ? {} : { deleted: false };
|
|
let users = await UserModel.find(query).limit(10).skip(page * 10);
|
|
return res.reply("users", { users, page, pages: Math.ceil(await UserModel.count(query) / 10) });
|
|
});
|
|
|
|
app.get("/:id/avatar", async (req, res) => {
|
|
if (!req.user || (!req.user.admin && req.params.id !== req.user.id)) return res.error(403, "You have not got permission for this.");
|
|
const member = await UserModel.get(req.params.id);
|
|
|
|
if (member && (req.user?.admin || !member.deleted))
|
|
res.reply("avatar_upload", { member })
|
|
else
|
|
res.error(404, `We don't have any user with id ${req.params.id}.`);
|
|
})
|
|
app.get("/:id", async (req, res) => {
|
|
const user = req.user
|
|
const { id } = req.params;
|
|
const member = await UserModel.get(id, "+lastSeen +ips");
|
|
|
|
if (member && (user?.admin || !member.deleted)) {
|
|
|
|
const message = await MessageModel.count({ authorID: id });
|
|
const thread = await ThreadModel.count({ authorID: id });
|
|
res.reply("user", { member, counts: { message, thread}, discord: req.app.get("discord_auth") })
|
|
}
|
|
else res.error(404, `We don't have any user with id ${id}.`);
|
|
|
|
});
|
|
|
|
module.exports = app; |