public-offering
/
cal.pub0.org
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: admin endpoints for bookings

pull/9078/head
Agusti Fernandez Pardo 2022-06-15 21:10:19 +02:00
parent ed1bc8015a
commit 1d2e5f07ef
3 changed files with 31 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
lib/validations/booking.ts
View File

@ -3,7 +3,6 @@ import { z } from "zod";
import { _BookingModel as Booking } from "@calcom/prisma/zod"; import { _BookingModel as Booking } from "@calcom/prisma/zod";
const schemaBookingBaseBodyParams = Booking.pick({ const schemaBookingBaseBodyParams = Booking.pick({
uid: true,
userId: true, userId: true,
eventTypeId: true, eventTypeId: true,
title: true, title: true,

8
pages/api/bookings/[id].ts
View File

@ -11,7 +11,7 @@ import {
} from "@lib/validations/shared/queryIdTransformParseInt"; } from "@lib/validations/shared/queryIdTransformParseInt";
export async function bookingById( export async function bookingById(
{ method, query, body, userId }: NextApiRequest, { method, query, body, userId, isAdmin }: NextApiRequest,
res: NextApiResponse<BookingResponse> res: NextApiResponse<BookingResponse>
) { ) {
const safeQuery = schemaQueryIdParseInt.safeParse(query); const safeQuery = schemaQueryIdParseInt.safeParse(query);
@ -25,8 +25,10 @@ export async function bookingById(
}); });
if (!userWithBookings) throw new Error("User not found"); if (!userWithBookings) throw new Error("User not found");
const userBookingIds = userWithBookings.bookings.map((booking: { id: number }) => booking.id).flat(); const userBookingIds = userWithBookings.bookings.map((booking: { id: number }) => booking.id).flat();
if (!userBookingIds.includes(safeQuery.data.id)) res.status(401).json({ message: "Unauthorized" });
else { if (!isAdmin) {
if (!userBookingIds.includes(safeQuery.data.id)) res.status(401).json({ message: "Unauthorized" });
} else {
switch (method) { switch (method) {
/** /**
* @swagger * @swagger

37
pages/api/bookings/index.ts
View File

@ -33,16 +33,29 @@ async function createOrlistAllBookings(
* 404: * 404:
* description: No bookings were found * description: No bookings were found
*/ */
const data = await prisma.booking.findMany({ where: { userId } }); if (!isAdmin) {
const bookings = data.map((booking) => schemaBookingReadPublic.parse(booking)); const data = await prisma.booking.findMany({ where: { userId } });
console.log(`Bookings requested by ${userId}`); const bookings = data.map((booking) => schemaBookingReadPublic.parse(booking));
if (bookings) res.status(200).json({ bookings }); if (bookings) res.status(200).json({ bookings });
else else {
(error: Error) => (error: Error) =>
res.status(404).json({ res.status(404).json({
message: "No Bookings were found", message: "No Bookings were found",
error, error,
}); });
}
} else {
const data = await prisma.booking.findMany();
const bookings = data.map((booking) => schemaBookingReadPublic.parse(booking));
if (bookings) res.status(200).json({ bookings });
else {
(error: Error) =>
res.status(404).json({
message: "No Bookings were found",
error,
});
}
}
} else if (method === "POST") { } else if (method === "POST") {
/** /**
* @swagger * @swagger
@ -83,7 +96,9 @@ async function createOrlistAllBookings(
res.status(400).json({ message: "Bad request. Booking body is invalid." }); res.status(400).json({ message: "Bad request. Booking body is invalid." });
return; return;
} }
safe.data.userId = userId; if (!isAdmin) {
safe.data.userId = userId;
}
const data = await prisma.booking.create({ data: { uid: uuidv4(), ...safe.data } }); const data = await prisma.booking.create({ data: { uid: uuidv4(), ...safe.data } });
const booking = schemaBookingReadPublic.parse(data); const booking = schemaBookingReadPublic.parse(data);