ambiser
/
umami
9
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
umami/pages/api/websites/index.js

27 lines
716 B
JavaScript
Raw Normal View History

Add owner column to admin website settings table
2021-12-02 01:03:18 +01:00
import { getAllWebsites, getUserWebsites } from 'lib/queries';
Refactor database queries.
2020-08-12 07:24:41 +02:00
import { useAuth } from 'lib/middleware';
Allow admins to view account websites.
2020-09-11 08:55:29 +02:00
import { ok, methodNotAllowed, unauthorized } from 'lib/response';
Refactor database queries.
2020-08-12 07:24:41 +02:00
export default async (req, res) => {
await useAuth(req, res);
Update security for dashboard and details pages.
2020-09-17 20:40:04 +02:00
const { user_id: current_user_id, is_admin } = req.auth;
Add owner column to admin website settings table
2021-12-02 01:03:18 +01:00
const { user_id, include_all } = req.query;
Use token authentication for API requests.
2020-09-18 07:52:20 +02:00
const userId = +user_id;
Refactor database queries.
2020-08-12 07:24:41 +02:00
if (req.method === 'GET') {
Fix non-admin dashboard.
2020-09-18 09:34:22 +02:00
if (userId && userId !== current_user_id && !is_admin) {
Allow admins to view account websites.
2020-09-11 08:55:29 +02:00
return unauthorized(res);
}
Add owner column to admin website settings table
2021-12-02 01:03:18 +01:00
const websites =
is_admin && include_all
? await getAllWebsites()
: await getUserWebsites(userId || current_user_id);
Refactor database queries.
2020-08-12 07:24:41 +02:00
return ok(res, websites);
}
return methodNotAllowed(res);
};