Skip to content
Snippets Groups Projects
Normal view Permalink
listobjects.go 2.58 KiB
Newer Older
  • Learn to ignore specific revisions
    • Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    1 2 3 4 5 6 7 8 9 
    package routes

import (
	"net/http"
	"strconv"

	"owo.codes/whats-this/api/lib/apierrors"
	"owo.codes/whats-this/api/lib/db"
	"owo.codes/whats-this/api/lib/middleware"
    Dean's avatar
    version 1.6.2: add ratelimiter  
    Dean committed
    10 
    	"owo.codes/whats-this/api/lib/ratelimiter"
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    11 12 13 
    
	"github.com/go-chi/render"
	"github.com/rs/zerolog/log"
    Dean's avatar
    version 1.6.2: add ratelimiter  
    Dean committed
    14 
    	"github.com/spf13/viper"
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    15 16 
    )
    Dean's avatar
    Add type filter to list objects endpoint  
    Dean committed
    17 18 19 20 21 22 23 24 
    const (
	// Maximum objects per page
	maxLimit = 100

	// filter keys for file vs short link.
	filterFiles = "file"
	filterLinks = "link"
)
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    25 26 27 
    
// listObjectsResponse is the response format for ListObjects.
type listObjectsResponse struct {
    Spotlight Deveaux's avatar
    Add total_objects  
    Spotlight Deveaux committed
    28 29 30 
    	Success      bool        `json:"success"`
	TotalObjects int         `json:"total_objects"`
	Data         []db.Object `json:"data"`
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    31 32 33 34 35 36 37 38 39 40 
    }

// ListObjects returns a paginated list of all objects owned by a user.
func ListObjects(w http.ResponseWriter, r *http.Request) {
	// Only authorized users can use this route
	user := middleware.GetAuthorizedUser(r)
	if user.ID == "" || user.IsBlocked {
		panic(apierrors.Unauthorized)
	}
    Dean's avatar
    version 1.6.2: add ratelimiter  
    Dean committed
    41 42 43 44 45 46 47 48 49 50 
    	// Apply ratelimits
	bucket := middleware.GetBucket(r)
	err := bucket.TakeWithHeaders(w, viper.GetInt64("ratelimiter.listObjectsCost"))
	if err == ratelimiter.InsufficientTokens {
		panic(apierrors.InsufficientTokens)
	}
	if err != nil {
		panic(apierrors.InternalServerError)
	}
    Dean's avatar
    Add type filter to list objects endpoint  
    Dean committed
    51 
    	// Determine offset, limit and filter params
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    52 53 54 
    	query := r.URL.Query()
	l := query.Get("limit")
	limit, err := strconv.Atoi(l)
    Dean's avatar
    version 1.6.4: 400 on negative offset/limit  
    Dean committed
    55 
    	if err != nil || limit < 0 {
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    56 57 
    		panic(apierrors.InvalidOffsetOrLimit)
	}
    Dean's avatar
    version 1.6.4: 400 on negative offset/limit  
    Dean committed
    58 59 60 
    	if limit > maxLimit {
		panic(apierrors.LimitTooLarge)
	}
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    61 62 
    	o := query.Get("offset")
	offset, err := strconv.Atoi(o)
    Dean's avatar
    version 1.6.4: 400 on negative offset/limit  
    Dean committed
    63 
    	if err != nil || offset < 0 {
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    64 65 66 67 68 69 
    		panic(apierrors.InvalidOffsetOrLimit)
	}
	asc := false
	if query.Get("order") == "asc" {
		asc = true
	}
    Dean's avatar
    Add type filter to list objects endpoint  
    Dean committed
    70 71 72 73 74 75 76 77 78 79 80 
    	filter := query.Get("type")
	if filter != "" && filter != filterFiles && filter != filterLinks {
		panic(apierrors.InvalidObjectFilter)
	}

	f := -1
	if filter == filterFiles {
		f = 0
	} else if filter == filterLinks {
		f = 1
	}
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    81 82 
    
	// Get the data
    Spotlight Deveaux's avatar
    Add total_objects  
    Spotlight Deveaux committed
    83 84 85 86 87 88 
    	count, err := db.CountObjectsByAssociatedUser(user.ID, f)
	if err != nil {
		log.Error().Err(err).Msg("failed to count objects for user")
		panic(apierrors.InternalServerError)
	}
    Dean's avatar
    Add type filter to list objects endpoint  
    Dean committed
    89 
    	objects, err := db.ListObjectsByAssociatedUser(user.ID, f, asc, offset, limit)
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    90 91 92 93 94 95 96 97 98 99 100 101 
    	if err != nil {
		log.Error().Err(err).Msg("failed to list objects for user")
		panic(apierrors.InternalServerError)
	}
	associatedWithCurrentUser := true
	for i := 0; i < len(objects); i++ {
		objects[i].AssociatedWithCurrentUser = &associatedWithCurrentUser
	}

	// Return response
	w.Header().Set("Content-Type", "application/json")
	w.WriteHeader(http.StatusOK)
    Spotlight Deveaux's avatar
    Add total_objects  
    Spotlight Deveaux committed
    102 
    	render.JSON(w, r, listObjectsResponse{true, count, objects})
    Dean's avatar
    version 1.6.0: add /objects routes
    Dean committed
    103 
    }