mirror of
https://github.com/NginxProxyManager/nginx-proxy-manager.git
synced 2025-09-14 10:52:34 +00:00
248 lines
4.8 KiB
JavaScript
248 lines
4.8 KiB
JavaScript
import express from "express";
|
|
import internalUser from "../internal/user.js";
|
|
import jwtdecode from "../lib/express/jwt-decode.js";
|
|
import userIdFromMe from "../lib/express/user-id-from-me.js";
|
|
import apiValidator from "../lib/validator/api.js";
|
|
import validator from "../lib/validator/index.js";
|
|
import { getValidationSchema } from "../schema/index.js";
|
|
|
|
const router = express.Router({
|
|
caseSensitive: true,
|
|
strict: true,
|
|
mergeParams: true,
|
|
});
|
|
|
|
/**
|
|
* /api/users
|
|
*/
|
|
router
|
|
.route("/")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* GET /api/users
|
|
*
|
|
* Retrieve all users
|
|
*/
|
|
.get((req, res, next) => {
|
|
validator(
|
|
{
|
|
additionalProperties: false,
|
|
properties: {
|
|
expand: {
|
|
$ref: "common#/properties/expand",
|
|
},
|
|
query: {
|
|
$ref: "common#/properties/query",
|
|
},
|
|
},
|
|
},
|
|
{
|
|
expand: typeof req.query.expand === "string" ? req.query.expand.split(",") : null,
|
|
query: typeof req.query.query === "string" ? req.query.query : null,
|
|
},
|
|
)
|
|
.then((data) => {
|
|
return internalUser.getAll(res.locals.access, data.expand, data.query);
|
|
})
|
|
.then((users) => {
|
|
res.status(200).send(users);
|
|
})
|
|
.catch((err) => {
|
|
console.log(err);
|
|
next(err);
|
|
});
|
|
//.catch(next);
|
|
})
|
|
|
|
/**
|
|
* POST /api/users
|
|
*
|
|
* Create a new User
|
|
*/
|
|
.post((req, res, next) => {
|
|
apiValidator(getValidationSchema("/users", "post"), req.body)
|
|
.then((payload) => {
|
|
return internalUser.create(res.locals.access, payload);
|
|
})
|
|
.then((result) => {
|
|
res.status(201).send(result);
|
|
})
|
|
.catch(next);
|
|
});
|
|
|
|
/**
|
|
* Specific user
|
|
*
|
|
* /api/users/123
|
|
*/
|
|
router
|
|
.route("/:user_id")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
.all(userIdFromMe)
|
|
|
|
/**
|
|
* GET /users/123 or /users/me
|
|
*
|
|
* Retrieve a specific user
|
|
*/
|
|
.get((req, res, next) => {
|
|
validator(
|
|
{
|
|
required: ["user_id"],
|
|
additionalProperties: false,
|
|
properties: {
|
|
user_id: {
|
|
$ref: "common#/properties/id",
|
|
},
|
|
expand: {
|
|
$ref: "common#/properties/expand",
|
|
},
|
|
},
|
|
},
|
|
{
|
|
user_id: req.params.user_id,
|
|
expand: typeof req.query.expand === "string" ? req.query.expand.split(",") : null,
|
|
},
|
|
)
|
|
.then((data) => {
|
|
return internalUser.get(res.locals.access, {
|
|
id: data.user_id,
|
|
expand: data.expand,
|
|
omit: internalUser.getUserOmisionsByAccess(res.locals.access, data.user_id),
|
|
});
|
|
})
|
|
.then((user) => {
|
|
res.status(200).send(user);
|
|
})
|
|
.catch((err) => {
|
|
console.log(err);
|
|
next(err);
|
|
});
|
|
})
|
|
|
|
/**
|
|
* PUT /api/users/123
|
|
*
|
|
* Update and existing user
|
|
*/
|
|
.put((req, res, next) => {
|
|
apiValidator(getValidationSchema("/users/{userID}", "put"), req.body)
|
|
.then((payload) => {
|
|
payload.id = req.params.user_id;
|
|
return internalUser.update(res.locals.access, payload);
|
|
})
|
|
.then((result) => {
|
|
res.status(200).send(result);
|
|
})
|
|
.catch(next);
|
|
})
|
|
|
|
/**
|
|
* DELETE /api/users/123
|
|
*
|
|
* Update and existing user
|
|
*/
|
|
.delete((req, res, next) => {
|
|
internalUser
|
|
.delete(res.locals.access, { id: req.params.user_id })
|
|
.then((result) => {
|
|
res.status(200).send(result);
|
|
})
|
|
.catch(next);
|
|
});
|
|
|
|
/**
|
|
* Specific user auth
|
|
*
|
|
* /api/users/123/auth
|
|
*/
|
|
router
|
|
.route("/:user_id/auth")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
.all(userIdFromMe)
|
|
|
|
/**
|
|
* PUT /api/users/123/auth
|
|
*
|
|
* Update password for a user
|
|
*/
|
|
.put((req, res, next) => {
|
|
apiValidator(getValidationSchema("/users/{userID}/auth", "put"), req.body)
|
|
.then((payload) => {
|
|
payload.id = req.params.user_id;
|
|
return internalUser.setPassword(res.locals.access, payload);
|
|
})
|
|
.then((result) => {
|
|
res.status(200).send(result);
|
|
})
|
|
.catch(next);
|
|
});
|
|
|
|
/**
|
|
* Specific user permissions
|
|
*
|
|
* /api/users/123/permissions
|
|
*/
|
|
router
|
|
.route("/:user_id/permissions")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
.all(userIdFromMe)
|
|
|
|
/**
|
|
* PUT /api/users/123/permissions
|
|
*
|
|
* Set some or all permissions for a user
|
|
*/
|
|
.put((req, res, next) => {
|
|
apiValidator(getValidationSchema("/users/{userID}/permissions", "put"), req.body)
|
|
.then((payload) => {
|
|
payload.id = req.params.user_id;
|
|
return internalUser.setPermissions(res.locals.access, payload);
|
|
})
|
|
.then((result) => {
|
|
res.status(200).send(result);
|
|
})
|
|
.catch(next);
|
|
});
|
|
|
|
/**
|
|
* Specific user login as
|
|
*
|
|
* /api/users/123/login
|
|
*/
|
|
router
|
|
.route("/:user_id/login")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* POST /api/users/123/login
|
|
*
|
|
* Log in as a user
|
|
*/
|
|
.post((req, res, next) => {
|
|
internalUser
|
|
.loginAs(res.locals.access, { id: Number.parseInt(req.params.user_id, 10) })
|
|
.then((result) => {
|
|
res.status(200).send(result);
|
|
})
|
|
.catch(next);
|
|
});
|
|
|
|
export default router;
|