el.xwx.moe/pages/api/v1/avatar/[id].ts

import type { NextApiRequest, NextApiResponse } from "next";
import { prisma } from "@/lib/api/db";
import readFile from "@/lib/api/storage/readFile";
import { getToken } from "next-auth/jwt";

export default async function Index(req: NextApiRequest, res: NextApiResponse) {
  const queryId = Number(req.query.id);

  if (!queryId)
    return res
      .setHeader("Content-Type", "text/plain")
      .status(401)
      .send("Invalid parameters.");

  const token = await getToken({ req });
  const userId = token?.id;

  if (req.method === "GET") {
    const targetUser = await prisma.user.findUnique({
      where: {
        id: queryId,
      },
      include: {
        whitelistedUsers: true,
      },
    });

    if (!targetUser) {
      return res
        .setHeader("Content-Type", "text/plain")
        .status(400)
        .send("File inaccessible.");
    }

    const isInAPublicCollection = await prisma.collection.findFirst({
      where: {
        ["OR"]: [
          { ownerId: targetUser.id },
          {
            members: {
              some: {
                userId: targetUser.id,
              },
            },
          },
        ],
        isPublic: true,
      },
    });

    if (targetUser?.isPrivate && !isInAPublicCollection) {
      if (!userId) {
        return res
          .setHeader("Content-Type", "text/plain")
          .status(400)
          .send("File inaccessible.");
      }

      const user = await prisma.user.findUnique({
        where: {
          id: userId,
        },
        include: {
          subscriptions: true,
        },
      });

      const whitelistedUsernames = targetUser?.whitelistedUsers.map(
        (whitelistedUsername) => whitelistedUsername.username
      );

      if (!user?.username) {
        return res
          .setHeader("Content-Type", "text/plain")
          .status(400)
          .send("File inaccessible.");
      }

      if (
        user.username &&
        !whitelistedUsernames?.includes(user.username) &&
        targetUser.id !== user.id
      ) {
        return res
          .setHeader("Content-Type", "text/plain")
          .status(400)
          .send("File inaccessible.");
      }
    }

    const { file, contentType, status } = await readFile(
      `uploads/avatar/${queryId}.jpg`
    );

    return res
      .setHeader("Content-Type", contentType)
      .status(status as number)
      .send(file);
  }
}
fully added profile photo submission 2023-05-22 07:20:48 -05:00			`import type { NextApiRequest, NextApiResponse } from "next";`
added the ability for the users to hide there profile 2023-05-22 23:08:16 -05:00			`import { prisma } from "@/lib/api/db";`
digital ocean spaces/aws S3 integratoin 2023-07-01 09:11:39 -05:00			`import readFile from "@/lib/api/storage/readFile";`
finished the public page 2023-11-19 07:12:37 -06:00			`import { getToken } from "next-auth/jwt";`
fully added profile photo submission 2023-05-22 07:20:48 -05:00
tab-seperated modals + eslint fix + much more bug fixed and improvements 2023-06-09 17:31:14 -05:00			`export default async function Index(req: NextApiRequest, res: NextApiResponse) {`
added the ability for the users to hide there profile 2023-05-22 23:08:16 -05:00			`const queryId = Number(req.query.id);`

implemented stripe for the cloud instance 2023-07-15 21:15:43 -05:00			`if (!queryId)`
many visual changes + some code cleanup 2023-05-23 18:07:26 -05:00			`return res`
refactored how avatars are being handled 2023-10-27 23:45:14 -05:00			`.setHeader("Content-Type", "text/plain")`
many visual changes + some code cleanup 2023-05-23 18:07:26 -05:00			`.status(401)`
implemented stripe for the cloud instance 2023-07-15 21:15:43 -05:00			`.send("Invalid parameters.");`
fully added profile photo submission 2023-05-22 07:20:48 -05:00
finished the public page 2023-11-19 07:12:37 -06:00			`const token = await getToken({ req });`
			`const userId = token?.id;`

minor change 2023-11-19 13:40:11 -06:00			`if (req.method === "GET") {`
			`const targetUser = await prisma.user.findUnique({`
added the ability for the users to hide there profile 2023-05-22 23:08:16 -05:00			`where: {`
minor change 2023-11-19 13:40:11 -06:00			`id: queryId,`
added the ability for the users to hide there profile 2023-05-22 23:08:16 -05:00			`},`
add sqlite compatibility + fix whitespace bug collections 2023-08-03 23:33:51 -05:00			`include: {`
minor change 2023-11-19 13:40:11 -06:00			`whitelistedUsers: true,`
Feat/import export (#136) * added import/export functionality 2023-08-10 11:16:44 -05:00			`},`
added the ability for the users to hide there profile 2023-05-22 23:08:16 -05:00			`});`

bug fixed 2023-11-24 12:28:47 -06:00			`if (!targetUser) {`
			`return res`
			`.setHeader("Content-Type", "text/plain")`
			`.status(400)`
			`.send("File inaccessible.");`
			`}`

			`const isInAPublicCollection = await prisma.collection.findFirst({`
			`where: {`
			`["OR"]: [`
			`{ ownerId: targetUser.id },`
			`{`
			`members: {`
			`some: {`
			`userId: targetUser.id,`
			`},`
			`},`
			`},`
			`],`
			`isPublic: true,`
			`},`
			`});`

			`if (targetUser?.isPrivate && !isInAPublicCollection) {`
minor change 2023-11-19 13:40:11 -06:00			`if (!userId) {`
			`return res`
			`.setHeader("Content-Type", "text/plain")`
			`.status(400)`
			`.send("File inaccessible.");`
			`}`
add sqlite compatibility + fix whitespace bug collections 2023-08-03 23:33:51 -05:00
minor change 2023-11-19 13:40:11 -06:00			`const user = await prisma.user.findUnique({`
			`where: {`
			`id: userId,`
			`},`
			`include: {`
			`subscriptions: true,`
			`},`
			`});`

			`const whitelistedUsernames = targetUser?.whitelistedUsers.map(`
			`(whitelistedUsername) => whitelistedUsername.username`
			`);`
finished the public page 2023-11-19 07:12:37 -06:00
minor change 2023-11-19 13:40:11 -06:00			`if (!user?.username) {`
			`return res`
			`.setHeader("Content-Type", "text/plain")`
			`.status(400)`
			`.send("File inaccessible.");`
			`}`

bug fixed 2023-11-24 11:51:43 -06:00			`if (`
			`user.username &&`
			`!whitelistedUsernames?.includes(user.username) &&`
			`targetUser.id !== user.id`
			`) {`
minor change 2023-11-19 13:40:11 -06:00			`return res`
			`.setHeader("Content-Type", "text/plain")`
			`.status(400)`
			`.send("File inaccessible.");`
			`}`
added the ability for the users to hide there profile 2023-05-22 23:08:16 -05:00			`}`
fully added profile photo submission 2023-05-22 07:20:48 -05:00
minor change 2023-11-19 13:40:11 -06:00			`const { file, contentType, status } = await readFile(`
			`uploads/avatar/${queryId}.jpg`
			`);`
fully added profile photo submission 2023-05-22 07:20:48 -05:00
minor change 2023-11-19 13:40:11 -06:00			`return res`
			`.setHeader("Content-Type", contentType)`
			`.status(status as number)`
			`.send(file);`
			`}`
fully added profile photo submission 2023-05-22 07:20:48 -05:00			`}`