msb-public
/
tech-interview-handbook
mirror of https://github.com/yangshun/tech-interview-handbook
2
1
Code Issues Projects Releases Wiki Activity

[offers][fix] make offers api open to unauthenticated users

Browse Source
pull/390/head
Stuart Long Chay Boon 3 years ago
parent 699d563902
commit 2ad84aad91
1 changed files with 63 additions and 46 deletions
Show Stats Download Patch File Download Diff File

109
apps/portal/src/server/router/offers/offers-comments-router.ts
Unescape View File

@ -1,9 +1,9 @@
import { z } from 'zod'; import { z } from 'zod';
import * as trpc from '@trpc/server'; import * as trpc from '@trpc/server';
import { createProtectedRouter } from '../context'; import { createRouter } from '../context';
export const offersCommentsRouter = createProtectedRouter() export const offersCommentsRouter = createRouter()
.query('getComments', { .query('getComments', {
input: z.object({ input: z.object({
profileId: z.string(), profileId: z.string(),
@ -71,70 +71,87 @@ export const offersCommentsRouter = createProtectedRouter()
message: z.string(), message: z.string(),
profileId: z.string(), profileId: z.string(),
replyingToId: z.string().optional(), replyingToId: z.string().optional(),
userId: z.string().optional(), token: z.string().optional(),
userId: z.string().optional()
}), }),
async resolve({ ctx, input }) { async resolve({ ctx, input }) {
const createdReply = await ctx.prisma.offersReply.create({ const profile = await ctx.prisma.offersProfile.findFirst({
data: { where: {
message: input.message, id: input.profileId,
profile: {
connect: {
id: input.profileId,
},
},
}, },
}); });
if (input.replyingToId) { const profileEditToken = profile?.editToken;
await ctx.prisma.offersReply.update({
if (input.token === profileEditToken || input.userId) {
const createdReply = await ctx.prisma.offersReply.create({
data: { data: {
replyingTo: { message: input.message,
profile: {
connect: { connect: {
id: input.replyingToId, id: input.profileId,
}, },
}, },
}, },
where: {
id: createdReply.id,
},
}); });
}
if (input.userId) { if (input.replyingToId) {
await ctx.prisma.offersReply.update({ await ctx.prisma.offersReply.update({
data: { data: {
user: { replyingTo: {
connect: { connect: {
id: input.userId, id: input.replyingToId,
},
},
},
where: {
id: createdReply.id,
},
});
}
if (input.userId) {
await ctx.prisma.offersReply.update({
data: {
user: {
connect: {
id: input.userId,
},
},
},
where: {
id: createdReply.id,
},
});
}
// Get replies
const result = await ctx.prisma.offersProfile.findFirst({
include: {
discussion: {
include: {
replies: true,
replyingTo: true,
user: true,
}, },
}, },
}, },
where: { where: {
id: createdReply.id, id: input.profileId,
}, },
}); });
}
// Get replies
const result = await ctx.prisma.offersProfile.findFirst({
include: {
discussion: {
include: {
replies: true,
replyingTo: true,
user: true,
},
},
},
where: {
id: input.profileId,
},
});
if (result) { if (result) {
return result.discussion.filter((x) => x.replyingToId === null); return result.discussion.filter((x) => x.replyingToId === null);
} }
return result;
}
throw new trpc.TRPCError({
code: 'UNAUTHORIZED',
message: 'Missing userId or wrong token.',
});
return result;
}, },
}) })
.mutation('update', { .mutation('update', {

Write Preview
Loading…
Cancel
Save