You've already forked AstralRinth
forked from didirus/AstralRinth
9bd2cb3c7e
* initial draft; unfinished * images, fixes * fixes * println * revisions * fixes * alternate context setup version * rev * partial revs * rev * clippy ,fmt * fmt/clippy/prepare * fixes * revs
863 lines
28 KiB
Rust
863 lines
28 KiB
Rust
use super::ApiError;
|
|
use crate::auth::{
|
|
filter_authorized_versions, get_user_from_headers, is_authorized, is_authorized_version,
|
|
};
|
|
use crate::database;
|
|
use crate::database::models::image_item;
|
|
use crate::models;
|
|
use crate::models::ids::base62_impl::parse_base62;
|
|
use crate::models::images::ImageContext;
|
|
use crate::models::pats::Scopes;
|
|
use crate::models::projects::{Dependency, FileType, VersionStatus, VersionType};
|
|
use crate::models::teams::Permissions;
|
|
use crate::queue::session::AuthQueue;
|
|
use crate::util::img;
|
|
use crate::util::validate::validation_errors_to_string;
|
|
use actix_web::{delete, get, patch, post, web, HttpRequest, HttpResponse};
|
|
use chrono::{DateTime, Utc};
|
|
use serde::{Deserialize, Serialize};
|
|
use sqlx::PgPool;
|
|
use validator::Validate;
|
|
|
|
pub fn config(cfg: &mut web::ServiceConfig) {
|
|
cfg.service(versions_get);
|
|
cfg.service(super::version_creation::version_create);
|
|
|
|
cfg.service(
|
|
web::scope("version")
|
|
.service(version_get)
|
|
.service(version_delete)
|
|
.service(version_edit)
|
|
.service(version_schedule)
|
|
.service(super::version_creation::upload_file_to_version),
|
|
);
|
|
}
|
|
|
|
#[derive(Serialize, Deserialize, Clone)]
|
|
pub struct VersionListFilters {
|
|
pub game_versions: Option<String>,
|
|
pub loaders: Option<String>,
|
|
pub featured: Option<bool>,
|
|
pub version_type: Option<VersionType>,
|
|
pub limit: Option<usize>,
|
|
pub offset: Option<usize>,
|
|
}
|
|
|
|
#[get("version")]
|
|
pub async fn version_list(
|
|
req: HttpRequest,
|
|
info: web::Path<(String,)>,
|
|
web::Query(filters): web::Query<VersionListFilters>,
|
|
pool: web::Data<PgPool>,
|
|
redis: web::Data<deadpool_redis::Pool>,
|
|
session_queue: web::Data<AuthQueue>,
|
|
) -> Result<HttpResponse, ApiError> {
|
|
let string = info.into_inner().0;
|
|
|
|
let result = database::models::Project::get(&string, &**pool, &redis).await?;
|
|
|
|
let user_option = get_user_from_headers(
|
|
&req,
|
|
&**pool,
|
|
&redis,
|
|
&session_queue,
|
|
Some(&[Scopes::PROJECT_READ, Scopes::VERSION_READ]),
|
|
)
|
|
.await
|
|
.map(|x| x.1)
|
|
.ok();
|
|
|
|
if let Some(project) = result {
|
|
if !is_authorized(&project.inner, &user_option, &pool).await? {
|
|
return Ok(HttpResponse::NotFound().body(""));
|
|
}
|
|
|
|
let version_filters = filters
|
|
.game_versions
|
|
.as_ref()
|
|
.map(|x| serde_json::from_str::<Vec<String>>(x).unwrap_or_default());
|
|
let loader_filters = filters
|
|
.loaders
|
|
.as_ref()
|
|
.map(|x| serde_json::from_str::<Vec<String>>(x).unwrap_or_default());
|
|
let mut versions = database::models::Version::get_many(&project.versions, &**pool, &redis)
|
|
.await?
|
|
.into_iter()
|
|
.skip(filters.offset.unwrap_or(0))
|
|
.take(filters.limit.unwrap_or(usize::MAX))
|
|
.filter(|x| {
|
|
let mut bool = true;
|
|
|
|
if let Some(version_type) = filters.version_type {
|
|
bool &= &*x.inner.version_type == version_type.as_str();
|
|
}
|
|
if let Some(loaders) = &loader_filters {
|
|
bool &= x.loaders.iter().any(|y| loaders.contains(y));
|
|
}
|
|
if let Some(game_versions) = &version_filters {
|
|
bool &= x.game_versions.iter().any(|y| game_versions.contains(y));
|
|
}
|
|
|
|
bool
|
|
})
|
|
.collect::<Vec<_>>();
|
|
|
|
let mut response = versions
|
|
.iter()
|
|
.filter(|version| {
|
|
filters
|
|
.featured
|
|
.map(|featured| featured == version.inner.featured)
|
|
.unwrap_or(true)
|
|
})
|
|
.cloned()
|
|
.collect::<Vec<_>>();
|
|
|
|
versions.sort_by(|a, b| b.inner.date_published.cmp(&a.inner.date_published));
|
|
|
|
// Attempt to populate versions with "auto featured" versions
|
|
if response.is_empty() && !versions.is_empty() && filters.featured.unwrap_or(false) {
|
|
let (loaders, game_versions) = futures::future::try_join(
|
|
database::models::categories::Loader::list(&**pool, &redis),
|
|
database::models::categories::GameVersion::list_filter(
|
|
None,
|
|
Some(true),
|
|
&**pool,
|
|
&redis,
|
|
),
|
|
)
|
|
.await?;
|
|
|
|
let mut joined_filters = Vec::new();
|
|
for game_version in &game_versions {
|
|
for loader in &loaders {
|
|
joined_filters.push((game_version, loader))
|
|
}
|
|
}
|
|
|
|
joined_filters.into_iter().for_each(|filter| {
|
|
versions
|
|
.iter()
|
|
.find(|version| {
|
|
version.game_versions.contains(&filter.0.version)
|
|
&& version.loaders.contains(&filter.1.loader)
|
|
})
|
|
.map(|version| response.push(version.clone()))
|
|
.unwrap_or(());
|
|
});
|
|
|
|
if response.is_empty() {
|
|
versions
|
|
.into_iter()
|
|
.for_each(|version| response.push(version));
|
|
}
|
|
}
|
|
|
|
response.sort_by(|a, b| b.inner.date_published.cmp(&a.inner.date_published));
|
|
response.dedup_by(|a, b| a.inner.id == b.inner.id);
|
|
|
|
let response = filter_authorized_versions(response, &user_option, &pool).await?;
|
|
|
|
Ok(HttpResponse::Ok().json(response))
|
|
} else {
|
|
Ok(HttpResponse::NotFound().body(""))
|
|
}
|
|
}
|
|
|
|
// Given a project ID/slug and a version slug
|
|
#[get("version/{slug}")]
|
|
pub async fn version_project_get(
|
|
req: HttpRequest,
|
|
info: web::Path<(String, String)>,
|
|
pool: web::Data<PgPool>,
|
|
redis: web::Data<deadpool_redis::Pool>,
|
|
session_queue: web::Data<AuthQueue>,
|
|
) -> Result<HttpResponse, ApiError> {
|
|
let id = info.into_inner();
|
|
|
|
let result = database::models::Project::get(&id.0, &**pool, &redis).await?;
|
|
|
|
let user_option = get_user_from_headers(
|
|
&req,
|
|
&**pool,
|
|
&redis,
|
|
&session_queue,
|
|
Some(&[Scopes::PROJECT_READ, Scopes::VERSION_READ]),
|
|
)
|
|
.await
|
|
.map(|x| x.1)
|
|
.ok();
|
|
|
|
if let Some(project) = result {
|
|
if !is_authorized(&project.inner, &user_option, &pool).await? {
|
|
return Ok(HttpResponse::NotFound().body(""));
|
|
}
|
|
|
|
let versions =
|
|
database::models::Version::get_many(&project.versions, &**pool, &redis).await?;
|
|
|
|
let id_opt = parse_base62(&id.1).ok();
|
|
let version = versions
|
|
.into_iter()
|
|
.find(|x| Some(x.inner.id.0 as u64) == id_opt || x.inner.version_number == id.1);
|
|
|
|
if let Some(version) = version {
|
|
if is_authorized_version(&version.inner, &user_option, &pool).await? {
|
|
return Ok(HttpResponse::Ok().json(models::projects::Version::from(version)));
|
|
}
|
|
}
|
|
}
|
|
|
|
Ok(HttpResponse::NotFound().body(""))
|
|
}
|
|
|
|
#[derive(Serialize, Deserialize)]
|
|
pub struct VersionIds {
|
|
pub ids: String,
|
|
}
|
|
|
|
#[get("versions")]
|
|
pub async fn versions_get(
|
|
req: HttpRequest,
|
|
web::Query(ids): web::Query<VersionIds>,
|
|
pool: web::Data<PgPool>,
|
|
redis: web::Data<deadpool_redis::Pool>,
|
|
session_queue: web::Data<AuthQueue>,
|
|
) -> Result<HttpResponse, ApiError> {
|
|
let version_ids = serde_json::from_str::<Vec<models::ids::VersionId>>(&ids.ids)?
|
|
.into_iter()
|
|
.map(|x| x.into())
|
|
.collect::<Vec<database::models::VersionId>>();
|
|
let versions_data = database::models::Version::get_many(&version_ids, &**pool, &redis).await?;
|
|
|
|
let user_option = get_user_from_headers(
|
|
&req,
|
|
&**pool,
|
|
&redis,
|
|
&session_queue,
|
|
Some(&[Scopes::VERSION_READ]),
|
|
)
|
|
.await
|
|
.map(|x| x.1)
|
|
.ok();
|
|
|
|
let versions = filter_authorized_versions(versions_data, &user_option, &pool).await?;
|
|
|
|
Ok(HttpResponse::Ok().json(versions))
|
|
}
|
|
|
|
#[get("{version_id}")]
|
|
pub async fn version_get(
|
|
req: HttpRequest,
|
|
info: web::Path<(models::ids::VersionId,)>,
|
|
pool: web::Data<PgPool>,
|
|
redis: web::Data<deadpool_redis::Pool>,
|
|
session_queue: web::Data<AuthQueue>,
|
|
) -> Result<HttpResponse, ApiError> {
|
|
let id = info.into_inner().0;
|
|
let version_data = database::models::Version::get(id.into(), &**pool, &redis).await?;
|
|
|
|
let user_option = get_user_from_headers(
|
|
&req,
|
|
&**pool,
|
|
&redis,
|
|
&session_queue,
|
|
Some(&[Scopes::VERSION_READ]),
|
|
)
|
|
.await
|
|
.map(|x| x.1)
|
|
.ok();
|
|
|
|
if let Some(data) = version_data {
|
|
if is_authorized_version(&data.inner, &user_option, &pool).await? {
|
|
return Ok(HttpResponse::Ok().json(models::projects::Version::from(data)));
|
|
}
|
|
}
|
|
|
|
Ok(HttpResponse::NotFound().body(""))
|
|
}
|
|
|
|
#[derive(Serialize, Deserialize, Validate)]
|
|
pub struct EditVersion {
|
|
#[validate(
|
|
length(min = 1, max = 64),
|
|
custom(function = "crate::util::validate::validate_name")
|
|
)]
|
|
pub name: Option<String>,
|
|
#[validate(
|
|
length(min = 1, max = 32),
|
|
regex = "crate::util::validate::RE_URL_SAFE"
|
|
)]
|
|
pub version_number: Option<String>,
|
|
#[validate(length(max = 65536))]
|
|
pub changelog: Option<String>,
|
|
pub version_type: Option<models::projects::VersionType>,
|
|
#[validate(
|
|
length(min = 0, max = 4096),
|
|
custom(function = "crate::util::validate::validate_deps")
|
|
)]
|
|
pub dependencies: Option<Vec<Dependency>>,
|
|
pub game_versions: Option<Vec<models::projects::GameVersion>>,
|
|
pub loaders: Option<Vec<models::projects::Loader>>,
|
|
pub featured: Option<bool>,
|
|
pub primary_file: Option<(String, String)>,
|
|
pub downloads: Option<u32>,
|
|
pub status: Option<VersionStatus>,
|
|
pub file_types: Option<Vec<EditVersionFileType>>,
|
|
}
|
|
|
|
#[derive(Serialize, Deserialize)]
|
|
pub struct EditVersionFileType {
|
|
pub algorithm: String,
|
|
pub hash: String,
|
|
pub file_type: Option<FileType>,
|
|
}
|
|
|
|
#[patch("{id}")]
|
|
pub async fn version_edit(
|
|
req: HttpRequest,
|
|
info: web::Path<(models::ids::VersionId,)>,
|
|
pool: web::Data<PgPool>,
|
|
redis: web::Data<deadpool_redis::Pool>,
|
|
new_version: web::Json<EditVersion>,
|
|
session_queue: web::Data<AuthQueue>,
|
|
) -> Result<HttpResponse, ApiError> {
|
|
let user = get_user_from_headers(
|
|
&req,
|
|
&**pool,
|
|
&redis,
|
|
&session_queue,
|
|
Some(&[Scopes::VERSION_WRITE]),
|
|
)
|
|
.await?
|
|
.1;
|
|
|
|
new_version
|
|
.validate()
|
|
.map_err(|err| ApiError::Validation(validation_errors_to_string(err, None)))?;
|
|
|
|
let version_id = info.into_inner().0;
|
|
let id = version_id.into();
|
|
|
|
let result = database::models::Version::get(id, &**pool, &redis).await?;
|
|
|
|
if let Some(version_item) = result {
|
|
let project_item =
|
|
database::models::Project::get_id(version_item.inner.project_id, &**pool, &redis)
|
|
.await?;
|
|
|
|
let team_member = database::models::TeamMember::get_from_user_id_project(
|
|
version_item.inner.project_id,
|
|
user.id.into(),
|
|
&**pool,
|
|
)
|
|
.await?;
|
|
|
|
let permissions = Permissions::get_permissions_by_role(&user.role, &team_member);
|
|
|
|
if let Some(perms) = permissions {
|
|
if !perms.contains(Permissions::UPLOAD_VERSION) {
|
|
return Err(ApiError::CustomAuthentication(
|
|
"You do not have the permissions to edit this version!".to_string(),
|
|
));
|
|
}
|
|
|
|
let mut transaction = pool.begin().await?;
|
|
|
|
if let Some(name) = &new_version.name {
|
|
sqlx::query!(
|
|
"
|
|
UPDATE versions
|
|
SET name = $1
|
|
WHERE (id = $2)
|
|
",
|
|
name.trim(),
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(number) = &new_version.version_number {
|
|
sqlx::query!(
|
|
"
|
|
UPDATE versions
|
|
SET version_number = $1
|
|
WHERE (id = $2)
|
|
",
|
|
number,
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(version_type) = &new_version.version_type {
|
|
sqlx::query!(
|
|
"
|
|
UPDATE versions
|
|
SET version_type = $1
|
|
WHERE (id = $2)
|
|
",
|
|
version_type.as_str(),
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(dependencies) = &new_version.dependencies {
|
|
if let Some(project) = project_item {
|
|
if project.project_type != "modpack" {
|
|
sqlx::query!(
|
|
"
|
|
DELETE FROM dependencies WHERE dependent_id = $1
|
|
",
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
|
|
let builders = dependencies
|
|
.iter()
|
|
.map(|x| database::models::version_item::DependencyBuilder {
|
|
project_id: x.project_id.map(|x| x.into()),
|
|
version_id: x.version_id.map(|x| x.into()),
|
|
file_name: x.file_name.clone(),
|
|
dependency_type: x.dependency_type.to_string(),
|
|
})
|
|
.collect::<Vec<database::models::version_item::DependencyBuilder>>();
|
|
|
|
for dependency in builders {
|
|
dependency
|
|
.insert(version_item.inner.id, &mut transaction)
|
|
.await?;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if let Some(game_versions) = &new_version.game_versions {
|
|
sqlx::query!(
|
|
"
|
|
DELETE FROM game_versions_versions WHERE joining_version_id = $1
|
|
",
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
|
|
for game_version in game_versions {
|
|
let game_version_id = database::models::categories::GameVersion::get_id(
|
|
&game_version.0,
|
|
&mut *transaction,
|
|
)
|
|
.await?
|
|
.ok_or_else(|| {
|
|
ApiError::InvalidInput(
|
|
"No database entry for game version provided.".to_string(),
|
|
)
|
|
})?;
|
|
|
|
sqlx::query!(
|
|
"
|
|
INSERT INTO game_versions_versions (game_version_id, joining_version_id)
|
|
VALUES ($1, $2)
|
|
",
|
|
game_version_id as database::models::ids::GameVersionId,
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
database::models::Project::update_game_versions(
|
|
version_item.inner.project_id,
|
|
&mut transaction,
|
|
)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(loaders) = &new_version.loaders {
|
|
sqlx::query!(
|
|
"
|
|
DELETE FROM loaders_versions WHERE version_id = $1
|
|
",
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
|
|
for loader in loaders {
|
|
let loader_id =
|
|
database::models::categories::Loader::get_id(&loader.0, &mut *transaction)
|
|
.await?
|
|
.ok_or_else(|| {
|
|
ApiError::InvalidInput(
|
|
"No database entry for loader provided.".to_string(),
|
|
)
|
|
})?;
|
|
|
|
sqlx::query!(
|
|
"
|
|
INSERT INTO loaders_versions (loader_id, version_id)
|
|
VALUES ($1, $2)
|
|
",
|
|
loader_id as database::models::ids::LoaderId,
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
database::models::Project::update_loaders(
|
|
version_item.inner.project_id,
|
|
&mut transaction,
|
|
)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(featured) = &new_version.featured {
|
|
sqlx::query!(
|
|
"
|
|
UPDATE versions
|
|
SET featured = $1
|
|
WHERE (id = $2)
|
|
",
|
|
featured,
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(primary_file) = &new_version.primary_file {
|
|
let result = sqlx::query!(
|
|
"
|
|
SELECT f.id id FROM hashes h
|
|
INNER JOIN files f ON h.file_id = f.id
|
|
WHERE h.algorithm = $2 AND h.hash = $1
|
|
",
|
|
primary_file.1.as_bytes(),
|
|
primary_file.0
|
|
)
|
|
.fetch_optional(&**pool)
|
|
.await?
|
|
.ok_or_else(|| {
|
|
ApiError::InvalidInput(format!(
|
|
"Specified file with hash {} does not exist.",
|
|
primary_file.1.clone()
|
|
))
|
|
})?;
|
|
|
|
sqlx::query!(
|
|
"
|
|
UPDATE files
|
|
SET is_primary = FALSE
|
|
WHERE (version_id = $1)
|
|
",
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
|
|
sqlx::query!(
|
|
"
|
|
UPDATE files
|
|
SET is_primary = TRUE
|
|
WHERE (id = $1)
|
|
",
|
|
result.id,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(body) = &new_version.changelog {
|
|
sqlx::query!(
|
|
"
|
|
UPDATE versions
|
|
SET changelog = $1
|
|
WHERE (id = $2)
|
|
",
|
|
body,
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(downloads) = &new_version.downloads {
|
|
if !user.role.is_mod() {
|
|
return Err(ApiError::CustomAuthentication(
|
|
"You don't have permission to set the downloads of this mod".to_string(),
|
|
));
|
|
}
|
|
|
|
sqlx::query!(
|
|
"
|
|
UPDATE versions
|
|
SET downloads = $1
|
|
WHERE (id = $2)
|
|
",
|
|
*downloads as i32,
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
|
|
let diff = *downloads - (version_item.inner.downloads as u32);
|
|
|
|
sqlx::query!(
|
|
"
|
|
UPDATE mods
|
|
SET downloads = downloads + $1
|
|
WHERE (id = $2)
|
|
",
|
|
diff as i32,
|
|
version_item.inner.project_id as database::models::ids::ProjectId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(status) = &new_version.status {
|
|
if !status.can_be_requested() {
|
|
return Err(ApiError::InvalidInput(
|
|
"The requested status cannot be set!".to_string(),
|
|
));
|
|
}
|
|
|
|
sqlx::query!(
|
|
"
|
|
UPDATE versions
|
|
SET status = $1
|
|
WHERE (id = $2)
|
|
",
|
|
status.as_str(),
|
|
id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
|
|
if let Some(file_types) = &new_version.file_types {
|
|
for file_type in file_types {
|
|
let result = sqlx::query!(
|
|
"
|
|
SELECT f.id id FROM hashes h
|
|
INNER JOIN files f ON h.file_id = f.id
|
|
WHERE h.algorithm = $2 AND h.hash = $1
|
|
",
|
|
file_type.hash.as_bytes(),
|
|
file_type.algorithm
|
|
)
|
|
.fetch_optional(&**pool)
|
|
.await?
|
|
.ok_or_else(|| {
|
|
ApiError::InvalidInput(format!(
|
|
"Specified file with hash {} does not exist.",
|
|
file_type.algorithm.clone()
|
|
))
|
|
})?;
|
|
|
|
sqlx::query!(
|
|
"
|
|
UPDATE files
|
|
SET file_type = $2
|
|
WHERE (id = $1)
|
|
",
|
|
result.id,
|
|
file_type.file_type.as_ref().map(|x| x.as_str()),
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
}
|
|
}
|
|
|
|
// delete any images no longer in the changelog
|
|
let checkable_strings: Vec<&str> = vec![&new_version.changelog]
|
|
.into_iter()
|
|
.filter_map(|x| x.as_ref().map(|y| y.as_str()))
|
|
.collect();
|
|
let context = ImageContext::Version {
|
|
version_id: Some(version_item.inner.id.into()),
|
|
};
|
|
|
|
img::delete_unused_images(context, checkable_strings, &mut transaction, &redis).await?;
|
|
|
|
database::models::Version::clear_cache(&version_item, &redis).await?;
|
|
database::models::Project::clear_cache(
|
|
version_item.inner.project_id,
|
|
None,
|
|
Some(true),
|
|
&redis,
|
|
)
|
|
.await?;
|
|
transaction.commit().await?;
|
|
Ok(HttpResponse::NoContent().body(""))
|
|
} else {
|
|
Err(ApiError::CustomAuthentication(
|
|
"You do not have permission to edit this version!".to_string(),
|
|
))
|
|
}
|
|
} else {
|
|
Ok(HttpResponse::NotFound().body(""))
|
|
}
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
pub struct SchedulingData {
|
|
pub time: DateTime<Utc>,
|
|
pub requested_status: VersionStatus,
|
|
}
|
|
|
|
#[post("{id}/schedule")]
|
|
pub async fn version_schedule(
|
|
req: HttpRequest,
|
|
info: web::Path<(models::ids::VersionId,)>,
|
|
pool: web::Data<PgPool>,
|
|
redis: web::Data<deadpool_redis::Pool>,
|
|
scheduling_data: web::Json<SchedulingData>,
|
|
session_queue: web::Data<AuthQueue>,
|
|
) -> Result<HttpResponse, ApiError> {
|
|
let user = get_user_from_headers(
|
|
&req,
|
|
&**pool,
|
|
&redis,
|
|
&session_queue,
|
|
Some(&[Scopes::VERSION_WRITE]),
|
|
)
|
|
.await?
|
|
.1;
|
|
|
|
if scheduling_data.time < Utc::now() {
|
|
return Err(ApiError::InvalidInput(
|
|
"You cannot schedule a version to be released in the past!".to_string(),
|
|
));
|
|
}
|
|
|
|
if !scheduling_data.requested_status.can_be_requested() {
|
|
return Err(ApiError::InvalidInput(
|
|
"Specified requested status cannot be requested!".to_string(),
|
|
));
|
|
}
|
|
|
|
let string = info.into_inner().0;
|
|
let result = database::models::Version::get(string.into(), &**pool, &redis).await?;
|
|
|
|
if let Some(version_item) = result {
|
|
let team_member = database::models::TeamMember::get_from_user_id_project(
|
|
version_item.inner.project_id,
|
|
user.id.into(),
|
|
&**pool,
|
|
)
|
|
.await?;
|
|
|
|
if !user.role.is_mod()
|
|
&& !team_member
|
|
.map(|x| x.permissions.contains(Permissions::EDIT_DETAILS))
|
|
.unwrap_or(false)
|
|
{
|
|
return Err(ApiError::CustomAuthentication(
|
|
"You do not have permission to edit this version's scheduling data!".to_string(),
|
|
));
|
|
}
|
|
|
|
let mut transaction = pool.begin().await?;
|
|
sqlx::query!(
|
|
"
|
|
UPDATE versions
|
|
SET status = $1, date_published = $2
|
|
WHERE (id = $3)
|
|
",
|
|
VersionStatus::Scheduled.as_str(),
|
|
scheduling_data.time,
|
|
version_item.inner.id as database::models::ids::VersionId,
|
|
)
|
|
.execute(&mut *transaction)
|
|
.await?;
|
|
|
|
database::models::Version::clear_cache(&version_item, &redis).await?;
|
|
transaction.commit().await?;
|
|
|
|
Ok(HttpResponse::NoContent().body(""))
|
|
} else {
|
|
Ok(HttpResponse::NotFound().body(""))
|
|
}
|
|
}
|
|
|
|
#[delete("{version_id}")]
|
|
pub async fn version_delete(
|
|
req: HttpRequest,
|
|
info: web::Path<(models::ids::VersionId,)>,
|
|
pool: web::Data<PgPool>,
|
|
redis: web::Data<deadpool_redis::Pool>,
|
|
session_queue: web::Data<AuthQueue>,
|
|
) -> Result<HttpResponse, ApiError> {
|
|
let user = get_user_from_headers(
|
|
&req,
|
|
&**pool,
|
|
&redis,
|
|
&session_queue,
|
|
Some(&[Scopes::VERSION_DELETE]),
|
|
)
|
|
.await?
|
|
.1;
|
|
let id = info.into_inner().0;
|
|
|
|
let version = database::models::Version::get(id.into(), &**pool, &redis)
|
|
.await?
|
|
.ok_or_else(|| {
|
|
ApiError::InvalidInput("The specified version does not exist!".to_string())
|
|
})?;
|
|
|
|
if !user.role.is_admin() {
|
|
let team_member = database::models::TeamMember::get_from_user_id_project(
|
|
version.inner.project_id,
|
|
user.id.into(),
|
|
&**pool,
|
|
)
|
|
.await
|
|
.map_err(ApiError::Database)?
|
|
.ok_or_else(|| {
|
|
ApiError::InvalidInput(
|
|
"You do not have permission to delete versions in this team".to_string(),
|
|
)
|
|
})?;
|
|
|
|
if !team_member
|
|
.permissions
|
|
.contains(Permissions::DELETE_VERSION)
|
|
{
|
|
return Err(ApiError::CustomAuthentication(
|
|
"You do not have permission to delete versions in this team".to_string(),
|
|
));
|
|
}
|
|
}
|
|
|
|
let mut transaction = pool.begin().await?;
|
|
let context = ImageContext::Version {
|
|
version_id: Some(version.inner.id.into()),
|
|
};
|
|
let uploaded_images =
|
|
database::models::Image::get_many_contexted(context, &mut transaction).await?;
|
|
for image in uploaded_images {
|
|
image_item::Image::remove(image.id, &mut transaction, &redis).await?;
|
|
}
|
|
|
|
let result =
|
|
database::models::Version::remove_full(version.inner.id, &redis, &mut transaction).await?;
|
|
|
|
database::models::Project::clear_cache(version.inner.project_id, None, Some(true), &redis)
|
|
.await?;
|
|
|
|
transaction.commit().await?;
|
|
|
|
if result.is_some() {
|
|
Ok(HttpResponse::NoContent().body(""))
|
|
} else {
|
|
Ok(HttpResponse::NotFound().body(""))
|
|
}
|
|
}
|