tetratto/crates/app/src/routes/api/v1/auth/profile.rs

use crate::{
    State, get_user_from_token,
    model::{ApiReturn, Error},
};
use axum::{Extension, Json, extract::Path, response::IntoResponse};
use axum_extra::extract::CookieJar;
use tetratto_core::model::{auth::UserSettings, permissions::FinePermission};

/// Update the settings of the given user.
pub async fn update_profile_settings_request(
    jar: CookieJar,
    Path(id): Path<usize>,
    Extension(data): Extension<State>,
    Json(req): Json<UserSettings>,
) -> impl IntoResponse {
    let data = &(data.read().await).0;
    let user = match get_user_from_token!(jar, data) {
        Some(ua) => ua,
        None => return Json(Error::NotAllowed.into()),
    };

    if user.id != id {
        if !user.permissions.check(FinePermission::MANAGE_USERS) {
            return Json(Error::NotAllowed.into());
        }
    }

    match data.update_user_settings(id, req).await {
        Ok(_) => Json(ApiReturn {
            ok: true,
            message: "User unfollowed".to_string(),
            payload: (),
        }),
        Err(e) => Json(e.into()),
    }
}
add: user settings fix: actually use cached stuff in auto_method macro add: profile ui base 2025-03-25 23:58:27 -04:00			`use crate::{`
			`State, get_user_from_token,`
			`model::{ApiReturn, Error},`
			`};`
			`use axum::{Extension, Json, extract::Path, response::IntoResponse};`
			`use axum_extra::extract::CookieJar;`
			`use tetratto_core::model::{auth::UserSettings, permissions::FinePermission};`

			`/// Update the settings of the given user.`
			`pub async fn update_profile_settings_request(`
			`jar: CookieJar,`
			`Path(id): Path<usize>,`
			`Extension(data): Extension<State>,`
			`Json(req): Json<UserSettings>,`
			`) -> impl IntoResponse {`
			`let data = &(data.read().await).0;`
			`let user = match get_user_from_token!(jar, data) {`
			`Some(ua) => ua,`
			`None => return Json(Error::NotAllowed.into()),`
			`};`

			`if user.id != id {`
			`if !user.permissions.check(FinePermission::MANAGE_USERS) {`
			`return Json(Error::NotAllowed.into());`
			`}`
			`}`

			`match data.update_user_settings(id, req).await {`
			`Ok(_) => Json(ApiReturn {`
			`ok: true,`
			`message: "User unfollowed".to_string(),`
			`payload: (),`
			`}),`
			`Err(e) => Json(e.into()),`
			`}`
			`}`