cal.pub0.org/pages/api/bookings/_get.ts

89 lines
2.3 KiB
TypeScript
Raw Normal View History

import { Prisma } from "@prisma/client";
2022-10-11 20:09:22 +00:00
import type { NextApiRequest } from "next";
import { HttpError } from "@calcom/lib/http-error";
import { defaultResponder } from "@calcom/lib/server";
import { schemaBookingReadPublic } from "@lib/validations/booking";
2022-10-11 20:09:22 +00:00
import { schemaQuerySingleOrMultipleUserIds } from "@lib/validations/shared/queryUserId";
/**
* @swagger
* /bookings:
* get:
* summary: Find all bookings
* operationId: listBookings
* tags:
* - bookings
* responses:
* 200:
* description: OK
* content:
* application/json:
* schema:
* $ref: "#/components/schemas/ArrayOfBookings"
* 401:
* description: Authorization information is missing or invalid.
* 404:
* description: No bookings were found
*/
2022-10-11 20:09:22 +00:00
async function handler(req: NextApiRequest) {
const { userId, isAdmin, prisma } = req;
const args: Prisma.BookingFindManyArgs = {};
2022-10-19 18:35:34 +00:00
args.include = {
attendees: true,
user: true,
};
2022-10-11 20:09:22 +00:00
/** Only admins can query other users */
if (isAdmin && req.query.userId) {
const query = schemaQuerySingleOrMultipleUserIds.parse(req.query);
const userIds = Array.isArray(query.userId) ? query.userId : [query.userId || userId];
const users = await prisma.user.findMany({
where: { id: { in: userIds } },
select: { email: true },
});
const userEmails = users.map((u) => u.email);
args.where = {
OR: [
{ userId: { in: userIds } },
{
attendees: {
some: {
email: { in: userEmails },
},
},
},
],
};
} else if (!isAdmin) {
const user = await prisma.user.findUnique({
where: { id: userId },
select: {
email: true,
},
});
if (!user) {
throw new HttpError({ message: "User not found", statusCode: 500 });
}
args.where = {
OR: [
{
userId,
},
{
attendees: {
some: {
email: user.email,
},
},
},
],
};
2022-10-11 20:09:22 +00:00
}
const data = await prisma.booking.findMany(args);
2022-10-11 20:09:22 +00:00
return { bookings: data.map((booking) => schemaBookingReadPublic.parse(booking)) };
}
export default defaultResponder(handler);