t/tetratto
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

add: audit log, reports

Browse source 
add: theme preference setting
This commit is contained in:
trisua 2025-04-02 11:39:51 -04:00
parent b2df2739a7
commit d3d0c41334
38 changed files with 925 additions and 169 deletions
Download patch file Download diff file Expand all files Collapse all files

8
crates/app/src/assets.rs
View file

@ -54,6 +54,10 @@ pub const COMMUNITIES_SETTINGS: &str = include_str!("./public/html/communities/s
pub const TIMELINES_HOME: &str = include_str!("./public/html/timelines/home.html");
pub const TIMELINES_POPULAR: &str = include_str!("./public/html/timelines/popular.html");
pub const MOD_AUDIT_LOG: &str = include_str!("./public/html/mod/audit_log.html");
pub const MOD_REPORTS: &str = include_str!("./public/html/mod/reports.html");
pub const MOD_FILE_REPORT: &str = include_str!("./public/html/mod/file_report.html");
// langs
pub const LANG_EN_US: &str = include_str!("./langs/en-US.toml");
@ -173,6 +177,10 @@ pub(crate) async fn write_assets(config: &Config) -> PathBufD {
write_template!(html_path->"timelines/home.html"(crate::assets::TIMELINES_HOME) -d "timelines" --config=config);
write_template!(html_path->"timelines/popular.html"(crate::assets::TIMELINES_POPULAR) --config=config);
write_template!(html_path->"mod/audit_log.html"(crate::assets::MOD_AUDIT_LOG) -d "mod" --config=config);
write_template!(html_path->"mod/reports.html"(crate::assets::MOD_REPORTS) --config=config);
write_template!(html_path->"mod/file_report.html"(crate::assets::MOD_FILE_REPORT) --config=config);
html_path
}

11
crates/app/src/langs/en-US.toml
View file

@ -7,9 +7,18 @@ version = "1.0.0"
"general:link.communities" = "Communities"
"general:link.next" = "Next"
"general:link.previous" = "Previous"
"general:link.source_code" = "Source code"
"general:link.audit_log" = "Audit log"
"general:link.reports" = "Reports"
"general:action.save" = "Save"
"general:action.delete" = "Delete"
"general:action.back" = "Back"
"general:action.report" = "Report"
"general:action.manage" = "Manage"
"general:label.mod" = "Mod"
"general:label.file_report" = "File report"
"general:label.account_banned" = "Account banned"
"general:label.account_banned_body" = "Your account has been banned for violating our policies."
"dialog:action.okay" = "Ok"
"dialog:action.continue" = "Continue"
@ -72,3 +81,5 @@ version = "1.0.0"
"settings:label.new_username" = "New username"
"settings:label.change_avatar" = "Change avatar"
"settings:label.change_banner" = "Change banner"
"mod_panel:label.open_reported_content" = "Open reported content"

8
crates/app/src/macros.rs
View file

@ -63,7 +63,13 @@ macro_rules! get_user_from_token {
))
.await
{
Ok(ua) => Some(ua),
Ok(ua) => {
if ua.permissions.check_banned() {
Some(tetratto_core::model::auth::User::banned())
} else {
Some(ua)
}
}
Err(_) => None,
}
} else {

44
crates/app/src/public/html/communities/base.html
View file

@ -15,14 +15,42 @@
{{ components::community_avatar(id=community.id,
community=community, size="72px") }}
<div class="flex flex-col">
<!-- prettier-ignore -->
<h3 id="title" class="title">
{% if community.context.display_name %}
{{ community.context.display_name }}
{% else %}
{{ community.title }}
{% endif %}
</h3>
<div class="flex gap-2 items-center">
<h3 id="title" class="title">
<!-- prettier-ignore -->
{% if community.context.display_name %}
{{ community.context.display_name }}
{% else %}
{{ community.title }}
{% endif %}
</h3>
{% if user %} {% if user.id != community.owner
%}
<div class="dropdown">
<button
class="camo small"
onclick="trigger('atto::hooks::dropdown', [event])"
exclude="dropdown"
>
{{ icon "ellipsis" }}
</button>
<div class="inner left">
<button
class="red"
onclick="trigger('me::report', ['{{ community.id }}', 'community'])"
>
{{ icon "flag" }}
<span
>{{ text "general:action.report"
}}</span
>
</button>
</div>
</div>
{% endif %} {% endif %}
</div>
<span class="fade">{{ community.title }}</span>
</div>

62
crates/app/src/public/html/communities/settings.html
View file

@ -227,66 +227,6 @@
document.getElementById("uid").value = uid;
}
globalThis.ban_user = async (uid) => {
if (
!(await trigger("atto::confirm", [
"Are you sure you would like to do this?",
]))
) {
return;
}
fetch(
`/api/v1/communities/{{ community.id }}/memberships/${uid}/role`,
{
method: "POST",
headers: {
"Content-Type": "application/json",
},
body: JSON.stringify({
role: 33,
}),
},
)
.then((res) => res.json())
.then((res) => {
trigger("atto::toast", [
res.ok ? "success" : "error",
res.message,
]);
});
};
globalThis.unban_user = async (uid) => {
if (
!(await trigger("atto::confirm", [
"Are you sure you would like to do this?",
]))
) {
return;
}
fetch(
`/api/v1/communities/{{ community.id }}/memberships/${uid}/role`,
{
method: "POST",
headers: {
"Content-Type": "application/json",
},
body: JSON.stringify({
role: 5,
}),
},
)
.then((res) => res.json())
.then((res) => {
trigger("atto::toast", [
res.ok ? "success" : "error",
res.message,
]);
});
};
globalThis.update_user_role = async (uid, new_role) => {
if (
!(await trigger("atto::confirm", [
@ -356,7 +296,7 @@
element.innerHTML = `<div class="flex gap-2 flex-wrap" ui_ident="actions">
<a target="_blank" class="button" href="/api/v1/auth/profile/find/${e.target.uid.value}">Open user profile</a>
${res.payload.role !== 33 ? `<button class="red quaternary" onclick="ban_user('${e.target.uid.value}')">Ban</button>` : `<button class="quaternary" onclick="unban_user('${e.target.uid.value}')">Unban</button>`}
${res.payload.role !== 33 ? `<button class="red quaternary" onclick="update_user_role('${e.target.uid.value}', 33)">Ban</button>` : `<button class="quaternary" onclick="update_user_role('${e.target.uid.value}', 5)">Unban</button>`}
${res.payload.role !== 65 ? `<button class="red quaternary" onclick="update_user_role('${e.target.uid.value}', 65)">Send to review</button>` : `<button class="green quaternary" onclick="update_user_role('${e.target.uid.value}', 5)">Accept join request</button>`}
<button class="red quaternary" onclick="kick_user('${e.target.uid.value}')">Kick</button>
</div>`;

16
crates/app/src/public/html/components.html
View file

@ -161,7 +161,7 @@ show_community=true) -%} {% if community and show_community %}
{{ icon "external-link" }}
</a>
{% if user %} {% if (user.id == post.owner) or is_helper %}
{% if user %}
<div class="dropdown">
<button
class="camo small"
@ -172,6 +172,17 @@ show_community=true) -%} {% if community and show_community %}
</button>
<div class="inner">
{% if user.id != post.owner %}
<button
class="red"
onclick="trigger('me::report', ['{{ post.id }}', 'post'])"
>
{{ icon "flag" }}
<span>{{ text "general:action.report" }}</span>
</button>
{% endif %} {% if (user.id == post.owner) or is_helper
%}
<b class="title">{{ text "general:action.manage" }}</b>
<button
class="red"
onclick="trigger('me::remove_post', ['{{ post.id }}'])"
@ -179,9 +190,10 @@ show_community=true) -%} {% if community and show_community %}
{{ icon "trash" }}
<span>{{ text "general:action.delete" }}</span>
</button>
{% endif %}
</div>
</div>
{% endif %} {% endif %}
{% endif %}
</div>
</div>
</div>

25
crates/app/src/public/html/macros.html
View file

@ -75,17 +75,30 @@ show_lhs=true) -%}
<span>{{ text "auth:link.settings" }}</span>
</a>
<a href="https://github.com/trisuaso/tetratto">
{{ icon "code" }}
<span>{{ text "general:link.source_code" }}</span>
</a>
{% if is_helper %}
<b class="title">{{ text "general:label.mod" }}</b>
<a href="/mod_panel/audit_log">
{{ icon "scroll-text" }}
<span>{{ text "general:link.audit_log" }}</span>
</a>
<a href="/mod_panel/reports">
{{ icon "flag" }}
<span>{{ text "general:link.reports" }}</span>
</a>
{% endif %}
<div class="title"></div>
<button class="red" onclick="trigger('me::logout')">
{{ icon "log-out" }}
<span>{{ text "auth:action.logout" }}</span>
</button>
<div class="title"></div>
<a href="https://github.com/trisuaso/tetratto">
{{ icon "code" }}
<span>View source</span>
</a>
</div>
</div>
{% else %}

36
crates/app/src/public/html/mod/audit_log.html Normal file
View file

@ -0,0 +1,36 @@
{% import "macros.html" as macros %} {% extends "root.html" %} {% block head %}
<title>Audit log - {{ config.name }}</title>
{% endblock %} {% block body %} {{ macros::nav(selected="notifications") }}
<main class="flex flex-col gap-2">
<div class="card-nest w-full">
<div class="card small flex items-center gap-2">
{{ icon "scroll" }}
<span>{{ text "general:link.audit_log" }}</span>
</div>
<div class="card flex flex-col gap-2">
<!-- prettier-ignore -->
{% for item in items %}
<div class="card-nest">
<a
class="card small flex items-center gap-2 flush"
href="/api/v1/auth/profile/find/{{ item.moderator }}"
>
<!-- prettier-ignore -->
{{ components::avatar(username=item.moderator, selector_type="id") }}
<span>{{ item.moderator }}</span>
<span class="fade date">{{ item.created }}</span>
</a>
<div class="card secondary">
<span>{{ item.content|markdown|safe }}</span>
</div>
</div>
{% endfor %}
<!-- prettier-ignore -->
{{ components::pagination(page=page, items=items|length) }}
</div>
</div>
</main>
{% endblock %}

65
crates/app/src/public/html/mod/file_report.html Normal file
View file

@ -0,0 +1,65 @@
{% import "macros.html" as macros %} {% extends "root.html" %} {% block head %}
<title>File report - {{ config.name }}</title>
{% endblock %} {% block body %} {{ macros::nav(selected="notifications") }}
<main class="flex flex-col gap-2">
<div class="card-nest w-full">
<div class="card small flex items-center gap-2">
{{ icon "flag" }}
<span>{{ text "general:label.file_report" }}</span>
</div>
<form
class="card flex flex-col gap-2"
onsubmit="create_report_from_form(event)"
>
<div class="flex flex-col gap-1">
<label for="title"
>{{ text "communities:label.content" }}</label
>
<textarea
type="text"
name="content"
id="content"
placeholder="content"
required
minlength="16"
></textarea>
</div>
<button class="primary">
{{ text "communities:action.create" }}
</button>
</form>
</div>
</main>
<script>
function create_report_from_form(e) {
e.preventDefault();
fetch("/api/v1/reports", {
method: "POST",
headers: {
"Content-Type": "application/json",
},
body: JSON.stringify({
content: e.target.content.value,
asset: "{{ asset }}",
asset_type: `{{ asset_type }}`,
}),
})
.then((res) => res.json())
.then((res) => {
trigger("atto::toast", [
res.ok ? "success" : "error",
res.message,
]);
if (res.ok) {
setTimeout(() => {
window.close();
}, 150);
}
});
}
</script>
{% endblock %}

79
crates/app/src/public/html/mod/reports.html Normal file
View file

@ -0,0 +1,79 @@
{% import "macros.html" as macros %} {% extends "root.html" %} {% block head %}
<title>Reports - {{ config.name }}</title>
{% endblock %} {% block body %} {{ macros::nav(selected="notifications") }}
<main class="flex flex-col gap-2">
<div class="card-nest w-full">
<div class="card small flex items-center gap-2">
{{ icon "flag" }}
<span>{{ text "general:link.reports" }}</span>
</div>
<div class="card flex flex-col gap-2">
<!-- prettier-ignore -->
{% for item in items %}
<div class="card-nest">
<a
class="card small flex items-center gap-2 flush"
href="/api/v1/auth/profile/find/{{ item.owner }}"
>
<!-- prettier-ignore -->
{{ components::avatar(username=item.owner, selector_type="id") }}
<span>{{ item.owner }}</span>
<span class="fade date">{{ item.created }}</span>
</a>
<div class="card secondary flex flex-col gap-2">
<span>{{ item.content|markdown|safe }}</span>
<div class="card w-full flex flex-wrap gap-2">
<button
onclick="open_reported_content('{{ item.asset }}', '{{ item.asset_type }}')"
>
{{ icon "external-link" }}
<span
>{{ text "mod_panel:label.open_reported_content"
}}</span
>
</button>
<button
onclick="remove_report('{{ item.id }}')"
class="red quaternary"
>
{{ icon "trash" }}
<span>{{ text "general:action.delete" }}</span>
</button>
</div>
</div>
</div>
{% endfor %}
<!-- prettier-ignore -->
{{ components::pagination(page=page, items=items|length) }}
</div>
</div>
</main>
<script>
function open_reported_content(asset, asset_type) {
if (asset_type === "Post") {
window.open(`/post/${asset}`);
} else if (asset_type === "Community") {
window.open(`/community/${asset}`);
}
}
function remove_report(id) {
fetch(`/api/v1/reports/${id}`, {
method: "DELETE",
})
.then((res) => res.json())
.then((res) => {
trigger("atto::toast", [
res.ok ? "success" : "error",
res.message,
]);
});
}
</script>
{% endblock %}

104
crates/app/src/public/html/profile/base.html
View file

@ -209,6 +209,22 @@
}}</span
>
</button>
{% if profile.permissions != 131073 %}
<button
class="red quaternary"
onclick="update_user_role(131073)"
>
Ban
</button>
{% else %}
<button
class="quaternary"
onclick="update_user_role(1)"
>
Unban
</button>
{% endif %}
</div>
</div>
@ -286,25 +302,77 @@
});
};
ui.refresh_container(element, ["actions"]);
ui.generate_settings_ui(
element,
[
[
["is_verified", "Is verified"],
"{{ profile.is_verified }}",
"checkbox",
],
],
null,
{
is_verified: (value) => {
profile_request(false, "verified", {
is_verified: value,
});
globalThis.update_user_role = async (
new_role,
) => {
if (
!(await trigger("atto::confirm", [
"Are you sure you would like to do this?",
]))
) {
return;
}
fetch(
`/api/v1/auth/profile/{{ profile.id }}/role`,
{
method: "POST",
headers: {
"Content-Type":
"application/json",
},
body: JSON.stringify({
role: Number.parseInt(new_role),
}),
},
},
);
)
.then((res) => res.json())
.then((res) => {
trigger("atto::toast", [
res.ok ? "success" : "error",
res.message,
]);
});
};
ui.refresh_container(element, ["actions"]);
setTimeout(() => {
ui.refresh_container(element, ["actions"]);
ui.generate_settings_ui(
element,
[
[
["is_verified", "Is verified"],
"{{ profile.is_verified }}",
"checkbox",
],
[
["role", "Permission level"],
"{{ profile.permissions }}",
"input",
],
],
null,
{
is_verified: (value) => {
profile_request(
false,
"verified",
{
is_verified: value,
},
);
},
role: (new_role) => {
return update_user_role(
new_role,
);
},
},
);
}, 100);
}, 150);
</script>
</div>

32
crates/app/src/public/html/profile/settings.html
View file

@ -142,6 +142,37 @@
<div class="w-full hidden flex flex-col gap-2" data-tab="profile">
<div class="card tertiary flex flex-col gap-2" id="profile_settings">
<div class="card-nest" ui_ident="theme_preference">
<div class="card small">
<b>Theme preference</b>
</div>
<div class="card">
<select
onchange="set_setting_field('theme_preference', event.target.selectedOptions[0].value)"
>
<option
value="Auto"
selected="{% if user.settings.theme_preference == 'Auto' %}true{% else %}false{% endif %}"
>
Auto
</option>
<option
value="Light"
selected="{% if user.settings.theme_preference == 'Light' %}true{% else %}false{% endif %}"
>
Light
</option>
<option
value="Dark"
selected="{% if user.settings.theme_preference == 'Dark' %}true{% else %}false{% endif %}"
>
Dark
</option>
</select>
</div>
</div>
<div class="card-nest" ui_ident="change_avatar">
<div class="card small">
<b>{{ text "settings:label.change_avatar" }}</b>
@ -421,6 +452,7 @@
"change_username",
]);
ui.refresh_container(profile_settings, [
"theme_preference",
"change_avatar",
"change_banner",
]);

32
crates/app/src/public/html/root.html
View file

@ -14,6 +14,15 @@
<link rel="stylesheet" href="/css/style.css" />
{% if user %}
<script>
window.localStorage.setItem(
"tetratto:theme",
"{{ user.settings.theme_preference }}",
);
</script>
{% endif %}
<script src="/js/loader.js"></script>
<script defer async src="/js/atto.js"></script>
@ -57,7 +66,28 @@
<div id="toast_zone"></div>
<div id="page" style="display: contents">
{% block body %}{% endblock %}
<!-- prettier-ignore -->
{% if user and user.id == 0 %}
<article>
<main>
<div class="card-nest">
<div class="card small flex items-center gap-2 red">
{{ icon "frown" }}
<span
>{{ text "general:label.account_banned" }}</span
>
</div>
<div class="card">
<span
>{{ text "general:label.account_banned_body"
}}</span
>
</div>
</div>
</main>
</article>
{% else %} {% block body %}{% endblock %} {% endif %}
</div>
<script data-turbo-permanent="true" id="init-script">

8
crates/app/src/public/js/atto.js
View file

@ -6,20 +6,22 @@ function media_theme_pref() {
if (
window.matchMedia("(prefers-color-scheme: dark)").matches &&
!window.localStorage.getItem("tetratto:theme")
(!window.localStorage.getItem("tetratto:theme") ||
window.localStorage.getItem("tetratto:theme") === "Auto")
) {
document.documentElement.classList.add("dark");
// window.localStorage.setItem("theme", "dark");
} else if (
window.matchMedia("(prefers-color-scheme: light)").matches &&
!window.localStorage.getItem("tetratto:theme")
(!window.localStorage.getItem("tetratto:theme") ||
window.localStorage.getItem("tetratto:theme") === "Auto")
) {
document.documentElement.classList.remove("dark");
// window.localStorage.setItem("theme", "light");
} else if (window.localStorage.getItem("tetratto:theme")) {
/* restore theme */
const current = window.localStorage.getItem("tetratto:theme");
document.documentElement.className = current;
document.documentElement.className = current.toLowerCase();
}
}

6
crates/app/src/public/js/me.js
View file

@ -144,4 +144,10 @@
]);
});
});
self.define("report", (_, asset, asset_type) => {
window.open(
`/mod_panel/file_report?asset=${asset}&asset_type=${asset_type}`,
);
});
})();

4
crates/app/src/routes/api/v1/auth/ipbans.rs
View file

@ -37,7 +37,7 @@ pub async fn create_request(
/// Delete the given IP ban.
pub async fn delete_request(
jar: CookieJar,
Path(id): Path<usize>,
Path(ip): Path<String>,
Extension(data): Extension<State>,
) -> impl IntoResponse {
let data = &(data.read().await).0;
@ -50,7 +50,7 @@ pub async fn delete_request(
return Json(Error::NotAllowed.into());
}
match data.delete_ipban(id, user).await {
match data.delete_ipban(&ip, user).await {
Ok(_) => Json(ApiReturn {
ok: true,
message: "IP ban deleted".to_string(),

27
crates/app/src/routes/api/v1/auth/profile.rs
View file

@ -1,7 +1,9 @@
use crate::{
State, get_user_from_token,
model::{ApiReturn, Error},
routes::api::v1::{DeleteUser, UpdateUserIsVerified, UpdateUserPassword, UpdateUserUsername},
routes::api::v1::{
DeleteUser, UpdateUserIsVerified, UpdateUserPassword, UpdateUserRole, UpdateUserUsername,
},
};
use axum::{
Extension, Json,
@ -171,6 +173,29 @@ pub async fn update_user_is_verified_request(
}
}
/// Update the role of the given user.
pub async fn update_user_role_request(
jar: CookieJar,
Path(id): Path<usize>,
Extension(data): Extension<State>,
Json(req): Json<UpdateUserRole>,
) -> impl IntoResponse {
let data = &(data.read().await).0;
let user = match get_user_from_token!(jar, data) {
Some(ua) => ua,
None => return Json(Error::NotAllowed.into()),
};
match data.update_user_role(id, req.role, user).await {
Ok(_) => Json(ApiReturn {
ok: true,
message: "User updated".to_string(),
payload: (),
}),
Err(e) => Json(e.into()),
}
}
/// Delete the given user.
pub async fn delete_user_request(
jar: CookieJar,

21
crates/app/src/routes/api/v1/mod.rs
View file

@ -2,6 +2,7 @@ pub mod auth;
pub mod communities;
pub mod notifications;
pub mod reactions;
pub mod reports;
pub mod util;
use axum::{
@ -15,6 +16,7 @@ use tetratto_core::model::{
PostContext,
},
communities_permissions::CommunityPermission,
permissions::FinePermission,
reactions::AssetType,
};
@ -121,6 +123,10 @@ pub fn routes() -> Router {
"/auth/profile/{id}/settings",
post(auth::profile::update_user_settings_request),
)
.route(
"/auth/profile/{id}/role",
post(auth::profile::update_user_role_request),
)
.route(
"/auth/profile/{id}",
delete(auth::profile::delete_user_request),
@ -175,6 +181,9 @@ pub fn routes() -> Router {
// ipbans
.route("/bans/{ip}", post(auth::ipbans::create_request))
.route("/bans/id/{id}", delete(auth::ipbans::delete_request))
// reports
.route("/reports", post(reports::create_request))
.route("/reports/{id}", delete(reports::delete_request))
}
#[derive(Deserialize)]
@ -238,6 +247,13 @@ pub struct CreateReaction {
pub is_like: bool,
}
#[derive(Deserialize)]
pub struct CreateReport {
pub content: String,
pub asset: String,
pub asset_type: AssetType,
}
#[derive(Deserialize)]
pub struct UpdateUserPassword {
pub from: String,
@ -264,6 +280,11 @@ pub struct UpdateMembershipRole {
pub role: CommunityPermission,
}
#[derive(Deserialize)]
pub struct UpdateUserRole {
pub role: FinePermission,
}
#[derive(Deserialize)]
pub struct DeleteUser {
pub password: String,

6
crates/app/src/routes/api/v1/notifications.rs
View file

@ -1,11 +1,9 @@
use super::UpdateNotificationRead;
use crate::{State, get_user_from_token};
use axum::{Extension, Json, extract::Path, response::IntoResponse};
use axum_extra::extract::CookieJar;
use tetratto_core::model::{ApiReturn, Error};
use crate::{State, get_user_from_token};
use super::UpdateNotificationRead;
pub async fn delete_request(
jar: CookieJar,
Extension(data): Extension<State>,

3
crates/app/src/routes/api/v1/reactions.rs
View file

@ -1,9 +1,8 @@
use crate::{State, get_user_from_token, routes::api::v1::CreateReaction};
use axum::{Extension, Json, extract::Path, response::IntoResponse};
use axum_extra::extract::CookieJar;
use tetratto_core::model::{ApiReturn, Error, reactions::Reaction};
use crate::{State, get_user_from_token, routes::api::v1::CreateReaction};
pub async fn get_request(
jar: CookieJar,
Extension(data): Extension<State>,

55
crates/app/src/routes/api/v1/reports.rs Normal file
View file

@ -0,0 +1,55 @@
use super::CreateReport;
use crate::{State, get_user_from_token};
use axum::{Extension, Json, extract::Path, response::IntoResponse};
use axum_extra::extract::CookieJar;
use tetratto_core::model::{ApiReturn, Error, moderation::Report};
pub async fn create_request(
jar: CookieJar,
Extension(data): Extension<State>,
Json(req): Json<CreateReport>,
) -> impl IntoResponse {
let data = &(data.read().await).0;
let user = match get_user_from_token!(jar, data) {
Some(ua) => ua,
None => return Json(Error::NotAllowed.into()),
};
let asset_id = match req.asset.parse::<usize>() {
Ok(n) => n,
Err(e) => return Json(Error::MiscError(e.to_string()).into()),
};
match data
.create_report(Report::new(user.id, req.content, asset_id, req.asset_type))
.await
{
Ok(_) => Json(ApiReturn {
ok: true,
message: "Report created".to_string(),
payload: (),
}),
Err(e) => Json(e.into()),
}
}
pub async fn delete_request(
jar: CookieJar,
Extension(data): Extension<State>,
Path(id): Path<usize>,
) -> impl IntoResponse {
let data = &(data.read().await).0;
let user = match get_user_from_token!(jar, data) {
Some(ua) => ua,
None => return Json(Error::NotAllowed.into()),
};
match data.delete_report(id, user).await {
Ok(_) => Json(ApiReturn {
ok: true,
message: "Report deleted".to_string(),
payload: (),
}),
Err(e) => Json(e.into()),
}
}

8
crates/app/src/routes/pages/mod.rs
View file

@ -1,6 +1,7 @@
pub mod auth;
pub mod communities;
pub mod misc;
pub mod mod_panel;
pub mod profile;
use axum::{Router, routing::get};
@ -20,6 +21,13 @@ pub fn routes() -> Router {
.route("/popular", get(misc::popular_request))
.route("/notifs", get(misc::notifications_request))
.fallback_service(get(misc::not_found))
// mod
.route("/mod_panel/audit_log", get(mod_panel::audit_log_request))
.route("/mod_panel/reports", get(mod_panel::reports_request))
.route(
"/mod_panel/file_report",
get(mod_panel::file_report_request),
)
// auth
.route("/auth/register", get(auth::register_request))
.route("/auth/login", get(auth::login_request))

115
crates/app/src/routes/pages/mod_panel.rs Normal file
View file

@ -0,0 +1,115 @@
use super::{PaginatedQuery, render_error};
use crate::{State, assets::initial_context, get_lang, get_user_from_token};
use axum::{
Extension,
extract::Query,
response::{Html, IntoResponse},
};
use axum_extra::extract::CookieJar;
use serde::Deserialize;
use tetratto_core::model::{Error, permissions::FinePermission, reactions::AssetType};
/// `/mod_panel/audit_log`
pub async fn audit_log_request(
jar: CookieJar,
Extension(data): Extension<State>,
Query(req): Query<PaginatedQuery>,
) -> impl IntoResponse {
let data = data.read().await;
let user = match get_user_from_token!(jar, data.0) {
Some(ua) => ua,
None => {
return Err(Html(
render_error(Error::NotAllowed, &jar, &data, &None).await,
));
}
};
if !user.permissions.check(FinePermission::VIEW_AUDIT_LOG) {
return Err(Html(
render_error(Error::NotAllowed, &jar, &data, &None).await,
));
}
let items = match data.0.get_audit_log_entries(12, req.page).await {
Ok(p) => p,
Err(e) => return Err(Html(render_error(e, &jar, &data, &Some(user)).await)),
};
let lang = get_lang!(jar, data.0);
let mut context = initial_context(&data.0.0, lang, &Some(user)).await;
context.insert("items", &items);
context.insert("page", &req.page);
// return
Ok(Html(data.1.render("mod/audit_log.html", &context).unwrap()))
}
/// `/mod_panel/reports`
pub async fn reports_request(
jar: CookieJar,
Extension(data): Extension<State>,
Query(req): Query<PaginatedQuery>,
) -> impl IntoResponse {
let data = data.read().await;
let user = match get_user_from_token!(jar, data.0) {
Some(ua) => ua,
None => {
return Err(Html(
render_error(Error::NotAllowed, &jar, &data, &None).await,
));
}
};
if !user.permissions.check(FinePermission::VIEW_REPORTS) {
return Err(Html(
render_error(Error::NotAllowed, &jar, &data, &None).await,
));
}
let items = match data.0.get_reports(12, req.page).await {
Ok(p) => p,
Err(e) => return Err(Html(render_error(e, &jar, &data, &Some(user)).await)),
};
let lang = get_lang!(jar, data.0);
let mut context = initial_context(&data.0.0, lang, &Some(user)).await;
context.insert("items", &items);
context.insert("page", &req.page);
// return
Ok(Html(data.1.render("mod/reports.html", &context).unwrap()))
}
#[derive(Deserialize)]
pub struct FileReportQuery {
pub asset: String,
pub asset_type: AssetType,
}
/// `/mod_panel/file_report`
pub async fn file_report_request(
jar: CookieJar,
Extension(data): Extension<State>,
Query(req): Query<FileReportQuery>,
) -> impl IntoResponse {
let data = data.read().await;
let user = match get_user_from_token!(jar, data.0) {
Some(ua) => ua,
None => {
return Err(Html(
render_error(Error::NotAllowed, &jar, &data, &None).await,
));
}
};
let lang = get_lang!(jar, data.0);
let mut context = initial_context(&data.0.0, lang, &Some(user)).await;
context.insert("asset", &req.asset);
context.insert("asset_type", &req.asset_type);
// return
Ok(Html(
data.1.render("mod/file_report.html", &context).unwrap(),
))
}