add: block list stacks

2025-06-15 11:52:44 -04:00 · 2025-06-15 11:52:44 -04:00 · b71ae1f5a4
commit b71ae1f5a4
parent 9bb5f38f76
28 changed files with 700 additions and 219 deletions
--- a/crates/app/src/routes/api/v1/stacks.rs
+++ b/crates/app/src/routes/api/v1/stacks.rs
@ -1,7 +1,16 @@
-use crate::{State, get_user_from_token};
-use axum::{Extension, Json, extract::Path, response::IntoResponse};
+use crate::{get_user_from_token, routes::pages::PaginatedQuery, State};
+use axum::{
+    extract::{Path, Query},
+    response::IntoResponse,
+    Extension, Json,
+};
 use axum_extra::extract::CookieJar;
-use tetratto_core::model::{oauth, stacks::UserStack, ApiReturn, Error};
+use tetratto_core::model::{
+    oauth,
+    permissions::FinePermission,
+    stacks::{StackBlock, StackPrivacy, UserStack},
+    ApiReturn, Error,
+};
 use super::{
    AddOrRemoveStackUser, CreateStack, UpdateStackMode, UpdateStackName, UpdateStackPrivacy,
    UpdateStackSort,
@ -221,3 +230,93 @@ pub async fn delete_request(
        Err(e) => Json(e.into()),
    }
 }
+
+pub async fn get_users_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+    Query(props): Query<PaginatedQuery>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserReadProfiles) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    let stack = match data.get_stack_by_id(id).await {
+        Ok(s) => s,
+        Err(e) => return Json(e.into()),
+    };
+
+    if stack.privacy == StackPrivacy::Private
+        && user.id != stack.owner
+        && !user.permissions.check(FinePermission::MANAGE_STACKS)
+    {
+        return Json(Error::NotAllowed.into());
+    }
+
+    match data.get_stack_users(id, 12, props.page).await {
+        Ok(users) => Json(ApiReturn {
+            ok: true,
+            message: "Success".to_string(),
+            payload: Some({
+                let mut out = Vec::new();
+
+                for mut u in users.clone() {
+                    u.clean();
+                    out.push(u)
+                }
+
+                out
+            }),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn block_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserReadProfiles) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.create_stackblock(StackBlock::new(user.id, id)).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Success".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn unblock_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserReadProfiles) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    let block = match data.get_stackblock_by_initiator_stack(user.id, id).await {
+        Ok(b) => b,
+        Err(e) => return Json(e.into()),
+    };
+
+    match data.delete_stackblock(block.id, user).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Success".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}