add: user stacks

crates/app/src/routes/api/v1/mod.rs

@@ -4,6 +4,7 @@ pub mod notifications;
 pub mod reactions;
 pub mod reports;
 pub mod requests;
+pub mod stacks;
 pub mod util;
 
 #[cfg(feature = "redis")]
@@ -22,6 +23,7 @@ use tetratto_core::model::{
     communities_permissions::CommunityPermission,
     permissions::FinePermission,
     reactions::AssetType,
+    stacks::StackPrivacy,
 };
 
 pub fn routes() -> Router {
@@ -320,6 +322,13 @@ pub fn routes() -> Router {
             "/lookup_emoji",
             post(communities::emojis::get_emoji_shortcode),
         )
+        // stacks
+        .route("/stacks", post(stacks::create_request))
+        .route("/stacks/{id}/name", post(stacks::update_name_request))
+        .route("/stacks/{id}/privacy", post(stacks::update_privacy_request))
+        .route("/stacks/{id}/users", post(stacks::add_user_request))
+        .route("/stacks/{id}/users", delete(stacks::remove_user_request))
+        .route("/stacks/{id}", delete(stacks::delete_request))
 }
 
 #[derive(Deserialize)]
@@ -506,3 +515,23 @@ pub struct CreateMessage {
 pub struct KickMember {
     pub member: String,
 }
+
+#[derive(Deserialize)]
+pub struct CreateStack {
+    pub name: String,
+}
+
+#[derive(Deserialize)]
+pub struct UpdateStackName {
+    pub name: String,
+}
+
+#[derive(Deserialize)]
+pub struct UpdateStackPrivacy {
+    pub privacy: StackPrivacy,
+}
+
+#[derive(Deserialize)]
+pub struct AddOrRemoveStackUser {
+    pub username: String,
+}

crates/app/src/routes/api/v1/stacks.rs

@@ -0,0 +1,176 @@
+use crate::{State, get_user_from_token};
+use axum::{Extension, Json, extract::Path, response::IntoResponse};
+use axum_extra::extract::CookieJar;
+use tetratto_core::model::{stacks::UserStack, ApiReturn, Error};
+use super::{AddOrRemoveStackUser, CreateStack, UpdateStackName, UpdateStackPrivacy};
+
+pub async fn create_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Json(req): Json<CreateStack>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data
+        .create_stack(UserStack::new(req.name, user.id, Vec::new()))
+        .await
+    {
+        Ok(s) => Json(ApiReturn {
+            ok: true,
+            message: "Stack created".to_string(),
+            payload: s.id,
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn update_name_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+    Json(req): Json<UpdateStackName>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.update_stack_name(id, user, &req.name).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Stack updated".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn update_privacy_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+    Json(req): Json<UpdateStackPrivacy>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.update_stack_privacy(id, user, req.privacy).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Stack updated".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn add_user_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+    Json(req): Json<AddOrRemoveStackUser>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    let other_user = match data.get_user_by_username(&req.username).await {
+        Ok(c) => c,
+        Err(e) => return Json(Error::MiscError(e.to_string()).into()),
+    };
+
+    // check block status
+    if data
+        .get_userblock_by_initiator_receiver(other_user.id, user.id)
+        .await
+        .is_ok()
+    {
+        return Json(Error::NotAllowed.into());
+    }
+
+    // add user
+    let mut stack = match data.get_stack_by_id(id).await {
+        Ok(s) => s,
+        Err(e) => return Json(e.into()),
+    };
+
+    stack.users.push(other_user.id);
+    match data.update_stack_users(id, user, stack.users).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "User added".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn remove_user_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+    Json(req): Json<AddOrRemoveStackUser>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    let mut stack = match data.get_stack_by_id(id).await {
+        Ok(s) => s,
+        Err(e) => return Json(e.into()),
+    };
+
+    let other_user = match data.get_user_by_username(&req.username).await {
+        Ok(c) => c,
+        Err(e) => return Json(Error::MiscError(e.to_string()).into()),
+    };
+
+    stack
+        .users
+        .remove(match stack.users.iter().position(|x| x == &other_user.id) {
+            Some(idx) => idx,
+            None => return Json(Error::GeneralNotFound("user".to_string()).into()),
+        });
+
+    match data.update_stack_users(id, user, stack.users).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "User removed".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn delete_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.delete_stack(id, &user).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Stack deleted".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}

crates/app/src/routes/pages/mod.rs

@@ -3,6 +3,7 @@ pub mod communities;
 pub mod misc;
 pub mod mod_panel;
 pub mod profile;
+pub mod stacks;
 
 #[cfg(feature = "redis")]
 pub mod chats;
@@ -104,6 +105,10 @@ pub fn routes() -> Router {
             "/chats/{community}/{channel}/_channels",
             get(chats::channels_request),
         )
+        // stacks
+        .route("/stacks", get(stacks::list_request))
+        .route("/stacks/{id}", get(stacks::posts_request))
+        .route("/stacks/{id}/manage", get(stacks::manage_request))
 }
 
 pub async fn render_error(

crates/app/src/routes/pages/stacks.rs

@@ -0,0 +1,136 @@
+use axum::{
+    extract::{Path, Query},
+    response::{Html, IntoResponse},
+    Extension,
+};
+use axum_extra::extract::CookieJar;
+use tetratto_core::model::{permissions::FinePermission, stacks::StackPrivacy, Error, auth::User};
+use crate::{assets::initial_context, get_lang, get_user_from_token, State};
+use super::{render_error, PaginatedQuery};
+
+/// `/stacks`
+pub async fn list_request(jar: CookieJar, Extension(data): Extension<State>) -> impl IntoResponse {
+    let data = data.read().await;
+    let user = match get_user_from_token!(jar, data.0) {
+        Some(ua) => ua,
+        None => {
+            return Err(Html(
+                render_error(Error::NotAllowed, &jar, &data, &None).await,
+            ));
+        }
+    };
+
+    let list = match data.0.get_stacks_by_owner(user.id).await {
+        Ok(p) => p,
+        Err(e) => return Err(Html(render_error(e, &jar, &data, &Some(user)).await)),
+    };
+
+    let lang = get_lang!(jar, data.0);
+    let mut context = initial_context(&data.0.0, lang, &Some(user)).await;
+
+    context.insert("list", &list);
+
+    // return
+    Ok(Html(data.1.render("stacks/list.html", &context).unwrap()))
+}
+
+/// `/stacks/{id}`
+pub async fn posts_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+    Query(req): Query<PaginatedQuery>,
+) -> impl IntoResponse {
+    let data = data.read().await;
+    let user = match get_user_from_token!(jar, data.0) {
+        Some(ua) => ua,
+        None => {
+            return Err(Html(
+                render_error(Error::NotAllowed, &jar, &data, &None).await,
+            ));
+        }
+    };
+
+    let stack = match data.0.get_stack_by_id(id).await {
+        Ok(s) => s,
+        Err(e) => return Err(Html(render_error(e, &jar, &data, &Some(user)).await)),
+    };
+
+    if stack.privacy == StackPrivacy::Private
+        && user.id != stack.owner
+        && !user.permissions.check(FinePermission::MANAGE_STACKS)
+    {
+        return Err(Html(
+            render_error(Error::NotAllowed, &jar, &data, &None).await,
+        ));
+    }
+
+    let ignore_users = data.0.get_userblocks_receivers(user.id).await;
+    let list = match data.0.get_posts_from_stack(stack.id, 12, req.page).await {
+        Ok(l) => match data
+            .0
+            .fill_posts_with_community(l, user.id, &ignore_users)
+            .await
+        {
+            Ok(l) => l,
+            Err(e) => return Err(Html(render_error(e, &jar, &data, &Some(user)).await)),
+        },
+        Err(e) => return Err(Html(render_error(e, &jar, &data, &Some(user)).await)),
+    };
+
+    let lang = get_lang!(jar, data.0);
+    let mut context = initial_context(&data.0.0, lang, &Some(user)).await;
+
+    context.insert("page", &req.page);
+    context.insert("stack", &stack);
+    context.insert("list", &list);
+
+    // return
+    Ok(Html(data.1.render("stacks/posts.html", &context).unwrap()))
+}
+
+/// `/stacks/{id}/manage`
+pub async fn manage_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+) -> impl IntoResponse {
+    let data = data.read().await;
+    let user = match get_user_from_token!(jar, data.0) {
+        Some(ua) => ua,
+        None => {
+            return Err(Html(
+                render_error(Error::NotAllowed, &jar, &data, &None).await,
+            ));
+        }
+    };
+
+    let stack = match data.0.get_stack_by_id(id).await {
+        Ok(s) => s,
+        Err(e) => return Err(Html(render_error(e, &jar, &data, &Some(user)).await)),
+    };
+
+    if user.id != stack.owner && !user.permissions.check(FinePermission::MANAGE_STACKS) {
+        return Err(Html(
+            render_error(Error::NotAllowed, &jar, &data, &None).await,
+        ));
+    }
+
+    let mut users: Vec<User> = Vec::new();
+
+    for uid in &stack.users {
+        users.push(match data.0.get_user_by_id(uid.to_owned()).await {
+            Ok(ua) => ua,
+            Err(e) => return Err(Html(render_error(e, &jar, &data, &Some(user)).await)),
+        });
+    }
+
+    let lang = get_lang!(jar, data.0);
+    let mut context = initial_context(&data.0.0, lang, &Some(user)).await;
+
+    context.insert("stack", &stack);
+    context.insert("users", &users);
+
+    // return
+    Ok(Html(data.1.render("stacks/manage.html", &context).unwrap()))
+}