cal.pub0.org/pages/api/schedules/index.ts

import type { NextApiRequest, NextApiResponse } from "next";

import { getAvailabilityFromSchedule, DEFAULT_SCHEDULE } from "@calcom/lib/availability";

import safeParseJSON from "@lib/helpers/safeParseJSON";
import { withMiddleware } from "@lib/helpers/withMiddleware";
import { ScheduleResponse, SchedulesResponse } from "@lib/types";
import {
  schemaScheduleBodyParams,
  schemaSchedulePublic,
  schemaCreateScheduleBodyParams,
} from "@lib/validations/schedule";

async function createOrlistAllSchedules(
  { method, body, userId, isAdmin, prisma }: NextApiRequest,
  res: NextApiResponse<SchedulesResponse | ScheduleResponse>
) {
  body = safeParseJSON(body);
  if (body.success !== undefined && !body.success) {
    res.status(400).json({ message: body.message });
    return;
  }

  const safe = schemaScheduleBodyParams.safeParse(body);

  if (!safe.success) {
    res.status(400).json({ message: "Bad request" });
    return;
  }

  const safeBody = safe.data;

  if (safeBody.userId && !isAdmin) {
    res.status(401).json({ message: "Unauthorized" });
    return;
  } else {
    if (method === "GET") {
      /**
       * @swagger
       * /schedules:
       *   get:
       *     operationId: listSchedules
       *     summary: Find all schedules
       *     tags:
       *     - schedules
       *     responses:
       *       200:
       *         description: OK
       *       401:
       *        description: Authorization information is missing or invalid.
       *       404:
       *         description: No schedules were found
       */

      const userIds = Array.isArray(safeBody.userId) ? safeBody.userId : [safeBody.userId || userId];

      const data = await prisma.schedule.findMany({
        where: {
          userId: { in: userIds },
        },
        include: { availability: true },
        ...(Array.isArray(body.userId) && { orderBy: { userId: "asc" } }),
      });
      const schedules = data.map((schedule) => schemaSchedulePublic.parse(schedule));
      if (schedules) res.status(200).json({ schedules });
      else
        (error: Error) =>
          res.status(404).json({
            message: "No Schedules were found",
            error,
          });
    } else if (method === "POST") {
      /**
       * @swagger
       * /schedules:
       *   post:
       *     operationId: addSchedule
       *     summary: Creates a new schedule
       *     tags:
       *     - schedules
       *     responses:
       *       201:
       *         description: OK, schedule created
       *       400:
       *        description: Bad request. Schedule body is invalid.
       *       401:
       *        description: Authorization information is missing or invalid.
       */
      const safe = schemaCreateScheduleBodyParams.safeParse(body);
      if (body.userId && !isAdmin) {
        res.status(401).json({ message: "Unauthorized" });
        return;
      }

      if (!safe.success) {
        res.status(400).json({ message: "Invalid request body" });
        return;
      }

      const data = await prisma.schedule.create({
        data: {
          ...safe.data,
          userId: safe.data.userId || userId,
          availability: {
            createMany: {
              data: getAvailabilityFromSchedule(DEFAULT_SCHEDULE).map((schedule) => ({
                days: schedule.days,
                startTime: schedule.startTime,
                endTime: schedule.endTime,
              })),
            },
          },
        },
      });
      const schedule = schemaSchedulePublic.parse(data);

      if (schedule) res.status(201).json({ schedule, message: "Schedule created successfully" });
      else
        (error: Error) =>
          res.status(400).json({
            message: "Could not create new schedule",
            error,
          });
    } else res.status(405).json({ message: `Method ${method} not allowed` });
  }
}

export default withMiddleware("HTTP_GET_OR_POST")(createOrlistAllSchedules);
prettier 2022-03-30 12:17:55 +00:00			`import type { NextApiRequest, NextApiResponse } from "next";`
Adds basic CRUD endpoints for bookingReferences, Crendentials, DailyEventReferences, DestinationCalendars, EventTypeCustomInputs, Memberships, Schedules, and SelectedCalendars 2022-03-28 22:27:14 +00:00
Create new availability on new schedule 2022-10-05 13:56:27 +00:00			`import { getAvailabilityFromSchedule, DEFAULT_SCHEDULE } from "@calcom/lib/availability";`

Adds safe json parse of the body It ensures that the body complies with the safe parsing of the JSON so that if the body sent is not a valid JSON, we convert it into an empty JSON. Would improve in handling the response of such cases as a follow up for improved UX 2022-10-07 07:16:35 +00:00			`import safeParseJSON from "@lib/helpers/safeParseJSON";`
swagger docs add params, memberships handle compoundId 2022-03-31 20:14:37 +00:00			`import { withMiddleware } from "@lib/helpers/withMiddleware";`
payments safe, unify endpoints for remindermails schedules 2022-04-10 00:10:34 +00:00			`import { ScheduleResponse, SchedulesResponse } from "@lib/types";`
Fix type errors 2022-10-06 19:06:07 +00:00			`import {`
			`schemaScheduleBodyParams,`
			`schemaSchedulePublic,`
			`schemaCreateScheduleBodyParams,`
			`} from "@lib/validations/schedule";`
swagger docs add params, memberships handle compoundId 2022-03-31 20:14:37 +00:00
payments safe, unify endpoints for remindermails schedules 2022-04-10 00:10:34 +00:00			`async function createOrlistAllSchedules(`
Create new availability on new schedule 2022-10-05 13:56:27 +00:00			`{ method, body, userId, isAdmin, prisma }: NextApiRequest,`
payments safe, unify endpoints for remindermails schedules 2022-04-10 00:10:34 +00:00			`res: NextApiResponse<SchedulesResponse \| ScheduleResponse>`
			`) {`
Adds meaningful response for API caller 2022-10-07 07:43:56 +00:00			`body = safeParseJSON(body);`
Hotfix/schedule (#174) * Allows empty call An authorized API call by a non-admin user with empty body will still fetch his data now * Adds missing return 2022-10-07 10:03:04 +00:00			`if (body.success !== undefined && !body.success) {`
Adds meaningful response for API caller 2022-10-07 07:43:56 +00:00			`res.status(400).json({ message: body.message });`
Adds missing return after res 2022-10-07 07:54:55 +00:00			`return;`
Adds meaningful response for API caller 2022-10-07 07:43:56 +00:00			`}`

			`const safe = schemaScheduleBodyParams.safeParse(body);`
Simplify get /schedules 2022-10-06 18:41:50 +00:00
Fix type errors 2022-10-06 19:06:07 +00:00			`if (!safe.success) {`
			`res.status(400).json({ message: "Bad request" });`
			`return;`
			`}`

			`const safeBody = safe.data;`

			`if (safeBody.userId && !isAdmin) {`
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`res.status(401).json({ message: "Unauthorized" });`
Add return statements 2022-10-05 20:02:34 +00:00			`return;`
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`} else {`
			`if (method === "GET") {`
			`/**`
			`* @swagger`
			`* /schedules:`
			`* get:`
			`* operationId: listSchedules`
			`* summary: Find all schedules`
			`* tags:`
			`* - schedules`
			`* responses:`
			`* 200:`
			`* description: OK`
			`* 401:`
			`* description: Authorization information is missing or invalid.`
			`* 404:`
			`* description: No schedules were found`
			`*/`
Simplify get /schedules 2022-10-06 18:41:50 +00:00
Fix type errors 2022-10-06 19:06:07 +00:00			`const userIds = Array.isArray(safeBody.userId) ? safeBody.userId : [safeBody.userId \|\| userId];`
Simplify get /schedules 2022-10-06 18:41:50 +00:00
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`const data = await prisma.schedule.findMany({`
Pass userId as a single value or an array 2022-10-06 13:55:34 +00:00			`where: {`
Simplify get /schedules 2022-10-06 18:41:50 +00:00			`userId: { in: userIds },`
Pass userId as a single value or an array 2022-10-06 13:55:34 +00:00			`},`
Fix type errors 2022-10-06 19:06:07 +00:00			`include: { availability: true },`
Pass userId as a single value or an array 2022-10-06 13:55:34 +00:00			`...(Array.isArray(body.userId) && { orderBy: { userId: "asc" } }),`
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`});`
			`const schedules = data.map((schedule) => schemaSchedulePublic.parse(schedule));`
			`if (schedules) res.status(200).json({ schedules });`
			`else`
			`(error: Error) =>`
			`res.status(404).json({`
			`message: "No Schedules were found",`
			`error,`
			`});`
			`} else if (method === "POST") {`
			`/**`
			`* @swagger`
			`* /schedules:`
			`* post:`
			`* operationId: addSchedule`
			`* summary: Creates a new schedule`
			`* tags:`
			`* - schedules`
			`* responses:`
			`* 201:`
			`* description: OK, schedule created`
			`* 400:`
			`* description: Bad request. Schedule body is invalid.`
			`* 401:`
			`* description: Authorization information is missing or invalid.`
			`*/`
Fix type errors 2022-10-06 19:06:07 +00:00			`const safe = schemaCreateScheduleBodyParams.safeParse(body);`
Add return statements 2022-10-05 20:02:34 +00:00			`if (body.userId && !isAdmin) {`
			`res.status(401).json({ message: "Unauthorized" });`
			`return;`
			`}`
Create new availability on new schedule 2022-10-05 13:56:27 +00:00
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`if (!safe.success) {`
			`res.status(400).json({ message: "Invalid request body" });`
			`return;`
			`}`
Fix type errors 2022-10-06 19:06:07 +00:00
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`const data = await prisma.schedule.create({`
			`data: {`
			`...safe.data,`
Fix type errors 2022-10-06 19:06:07 +00:00			`userId: safe.data.userId \|\| userId,`
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`availability: {`
			`createMany: {`
			`data: getAvailabilityFromSchedule(DEFAULT_SCHEDULE).map((schedule) => ({`
			`days: schedule.days,`
			`startTime: schedule.startTime,`
			`endTime: schedule.endTime,`
			`})),`
			`},`
Create new availability on new schedule 2022-10-05 13:56:27 +00:00			`},`
			`},`
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`});`
			`const schedule = schemaSchedulePublic.parse(data);`
Adds basic CRUD endpoints for bookingReferences, Crendentials, DailyEventReferences, DestinationCalendars, EventTypeCustomInputs, Memberships, Schedules, and SelectedCalendars 2022-03-28 22:27:14 +00:00
Add check for userId and admin to top 2022-10-05 14:05:04 +00:00			`if (schedule) res.status(201).json({ schedule, message: "Schedule created successfully" });`
			`else`
			`(error: Error) =>`
			`res.status(400).json({`
			`message: "Could not create new schedule",`
			`error,`
			`});`
			} else res.status(405).json({ message: `Method ${method} not allowed` });
			`}`
Adds basic CRUD endpoints for bookingReferences, Crendentials, DailyEventReferences, DestinationCalendars, EventTypeCustomInputs, Memberships, Schedules, and SelectedCalendars 2022-03-28 22:27:14 +00:00			`}`
swagger docs add params, memberships handle compoundId 2022-03-31 20:14:37 +00:00
fix: remove withValidSchedule from get/patch/delete shared endpoint 2022-04-24 21:57:17 +00:00			`export default withMiddleware("HTTP_GET_OR_POST")(createOrlistAllSchedules);`