rae/mipilin
rae/mipilin
1
0
Fork 0
mirror of https://git.sr.ht/~roxwize/mipilin synced 2025-01-31 02:53:36 +00:00
Code Issues Activity
mipilin/routes/admin.ts
roxwize fa8fae4638
mipilin r9... Fimally 
Signed-off-by: roxwize <rae@roxwize.xyz>
2025-01-28 17:05:54 -05:00

123 lines
4.3 KiB
TypeScript
Raw Blame History

import { NodePgDatabase } from "drizzle-orm/node-postgres";
import { Express } from "express";
import { createInviteCode, render, render404, UserStatus } from "./util.js";
import { inviteCodes, users } from "../db/schema.js";
import { and, count, desc, eq, sql } from "drizzle-orm";
import dayjs from "dayjs";
const USER_REFERRAL_EXPIRATION = 7 * 24 * 60 * 60 * 1000;
export default function (app: Express, db: NodePgDatabase) {
app.get("/mod", async (req, res) => {
if (
!req.session["loggedIn"] ||
!(req.session["status"] & UserStatus.MODERATOR)
) {
render404(db, res, req);
return;
}
const now = dayjs();
const codes = (
await db
.select({
expires: inviteCodes.expires,
token: inviteCodes.token,
uname: users.name
})
.from(inviteCodes)
.leftJoin(users, eq(inviteCodes.user, users.id))
.orderBy(desc(inviteCodes.granted))
).map((e) => {
return {
expires: e.expires,
token: e.token,
uname: e.uname,
expiresString: now.to(dayjs(e.expires || 0))
};
});
// TODO: also add a last login field to the user schema (and paginate this area)
const userTable = await db
.select({ uname: users.name, id: users.id, status: users.status })
.from(users)
.orderBy(desc(users.registered))
.limit(10);
render(db, "admin", "admin panel", res, req, { codes, userTable });
});
app.post("/codes/delete", async (req, res) => {
if (
!req.session["loggedIn"] ||
!(req.session["status"] & UserStatus.MODERATOR)
) {
res.redirect("/");
return;
}
await db
.delete(inviteCodes)
.where(eq(inviteCodes.token, req.body.token));
req.flash("success", "Deleted.");
res.redirect("/mod");
});
app.post("/codes/create", async (req, res) => {
if (!req.session["loggedIn"]) {
res.redirect("/login");
return;
}
if (!(req.session["status"] & UserStatus.MODERATOR)) {
if (!(req.session["status"] & UserStatus.TRUSTED)) {
req.flash("error", "Only trusted users can perform this action.");
res.redirect(req.get("Referrer") || "/");
return;
}
const { codesUsed } = (
await db
.select({ codesUsed: count() })
.from(inviteCodes)
.where(
and(
eq(inviteCodes.user, req.session["uid"]),
eq(
sql`extract(month from granted)`,
sql`extract(month from current_date)`
)
)
)
)[0];
if (codesUsed >= 5) {
req.flash(
"error",
"You've generated the maximum of five codes this week. Your counter will reset next month."
);
res.redirect(req.get("Referrer") || "/");
return;
}
const code = await createInviteCode(
db,
req.session["uid"],
new Date(Date.now() + USER_REFERRAL_EXPIRATION)
);
req.flash(
"success",
`Your code has been created as <b>${code}</b>. It expires in a week so use it ASAP!!!`
);
res.redirect(req.get("Referrer") || "/");
return;
}
const expiration = new Date(req.body.expiration || 0);
if (req.body.expiration && expiration.getTime() <= Date.now()) {
req.flash("error", "Chosen expiration date is in the past.");
res.redirect(req.get("Referrer") || "/");
return;
}
const code = await createInviteCode(db, req.session["uid"], expiration);
req.flash("success", `Your code has been created as <b>${code}</b>.`);
res.redirect(req.get("Referrer") || "/");
});
}
View git blame Copy permalink