add: implement 9 new scopes, 21 new api endpoints

2025-06-13 17:47:00 -04:00 · 2025-06-13 17:47:00 -04:00 · 8f16068a34
commit 8f16068a34
parent c3139ef1d2
14 changed files with 973 additions and 35 deletions
--- a/crates/app/src/routes/api/v1/notifications.rs
+++ b/crates/app/src/routes/api/v1/notifications.rs
@ -1,8 +1,12 @@
 use super::UpdateNotificationRead;
-use crate::{State, get_user_from_token};
-use axum::{Extension, Json, extract::Path, response::IntoResponse};
+use crate::{get_user_from_token, routes::pages::PaginatedQuery, State};
+use axum::{
+    extract::{Path, Query},
+    response::IntoResponse,
+    Extension, Json,
+};
 use axum_extra::extract::CookieJar;
-use tetratto_core::model::{ApiReturn, Error};
+use tetratto_core::model::{oauth, ApiReturn, Error};

 pub async fn delete_request(
    jar: CookieJar,
@ -10,7 +14,7 @@ pub async fn delete_request(
    Path(id): Path<usize>,
 ) -> impl IntoResponse {
    let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageNotifications) {
        Some(ua) => ua,
        None => return Json(Error::NotAllowed.into()),
    };
@ -30,7 +34,7 @@ pub async fn delete_all_request(
    Extension(data): Extension<State>,
 ) -> impl IntoResponse {
    let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageNotifications) {
        Some(ua) => ua,
        None => return Json(Error::NotAllowed.into()),
    };
@ -51,7 +55,7 @@ pub async fn delete_all_by_tag_request(
    Path(tag): Path<String>,
 ) -> impl IntoResponse {
    let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageNotifications) {
        Some(ua) => ua,
        None => return Json(Error::NotAllowed.into()),
    };
@ -73,7 +77,7 @@ pub async fn update_read_status_request(
    Json(req): Json<UpdateNotificationRead>,
 ) -> impl IntoResponse {
    let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageNotifications) {
        Some(ua) => ua,
        None => return Json(Error::NotAllowed.into()),
    };
@ -94,7 +98,7 @@ pub async fn update_all_read_status_request(
    Json(req): Json<UpdateNotificationRead>,
 ) -> impl IntoResponse {
    let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageNotifications) {
        Some(ua) => ua,
        None => return Json(Error::NotAllowed.into()),
    };
@ -108,3 +112,27 @@ pub async fn update_all_read_status_request(
        Err(e) => Json(e.into()),
    }
 }
+
+pub async fn get_list_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Query(props): Query<PaginatedQuery>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserReadNotifications) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data
+        .get_notifications_by_owner_paginated(user.id, 12, props.page)
+        .await
+    {
+        Ok(l) => Json(ApiReturn {
+            ok: true,
+            message: "Success".to_string(),
+            payload: Some(l),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}