add: channels/messages scopes and api endpoints

crates/app/src/routes/api/v1/stacks.rs

@@ -1,7 +1,7 @@
 use crate::{State, get_user_from_token};
 use axum::{Extension, Json, extract::Path, response::IntoResponse};
 use axum_extra::extract::CookieJar;
-use tetratto_core::model::{stacks::UserStack, ApiReturn, Error};
+use tetratto_core::model::{oauth, stacks::UserStack, ApiReturn, Error};
 use super::{
     AddOrRemoveStackUser, CreateStack, UpdateStackMode, UpdateStackName, UpdateStackPrivacy,
     UpdateStackSort,
@@ -13,7 +13,7 @@ pub async fn create_request(
     Json(req): Json<CreateStack>,
 ) -> impl IntoResponse {
     let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserCreateStacks) {
         Some(ua) => ua,
         None => return Json(Error::NotAllowed.into()),
     };
@@ -38,7 +38,7 @@ pub async fn update_name_request(
     Json(req): Json<UpdateStackName>,
 ) -> impl IntoResponse {
     let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageStacks) {
         Some(ua) => ua,
         None => return Json(Error::NotAllowed.into()),
     };
@@ -60,7 +60,7 @@ pub async fn update_privacy_request(
     Json(req): Json<UpdateStackPrivacy>,
 ) -> impl IntoResponse {
     let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageStacks) {
         Some(ua) => ua,
         None => return Json(Error::NotAllowed.into()),
     };
@@ -82,7 +82,7 @@ pub async fn update_mode_request(
     Json(req): Json<UpdateStackMode>,
 ) -> impl IntoResponse {
     let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageStacks) {
         Some(ua) => ua,
         None => return Json(Error::NotAllowed.into()),
     };
@@ -104,7 +104,7 @@ pub async fn update_sort_request(
     Json(req): Json<UpdateStackSort>,
 ) -> impl IntoResponse {
     let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageStacks) {
         Some(ua) => ua,
         None => return Json(Error::NotAllowed.into()),
     };
@@ -126,7 +126,7 @@ pub async fn add_user_request(
     Json(req): Json<AddOrRemoveStackUser>,
 ) -> impl IntoResponse {
     let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageStacks) {
         Some(ua) => ua,
         None => return Json(Error::NotAllowed.into()),
     };
@@ -169,7 +169,7 @@ pub async fn remove_user_request(
     Json(req): Json<AddOrRemoveStackUser>,
 ) -> impl IntoResponse {
     let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageStacks) {
         Some(ua) => ua,
         None => return Json(Error::NotAllowed.into()),
     };
@@ -207,7 +207,7 @@ pub async fn delete_request(
     Path(id): Path<usize>,
 ) -> impl IntoResponse {
     let data = &(data.read().await).0;
-    let user = match get_user_from_token!(jar, data) {
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageStacks) {
         Some(ua) => ua,
         None => return Json(Error::NotAllowed.into()),
     };