78 lines
1.9 KiB
TypeScript
78 lines
1.9 KiB
TypeScript
import type { NextApiRequest, NextApiResponse } from "next";
|
|
import prisma from "@lib/prisma";
|
|
import { getSession } from "@lib/auth";
|
|
import { pick } from "lodash";
|
|
|
|
export default async function handler(req: NextApiRequest, res: NextApiResponse) {
|
|
const session = await getSession({ req: req });
|
|
|
|
if (!session) {
|
|
return res.status(401).json({ message: "Not authenticated" });
|
|
}
|
|
|
|
const userIdQuery = req.query?.id ?? null;
|
|
const userId = Array.isArray(userIdQuery) ? parseInt(userIdQuery.pop()) : parseInt(userIdQuery);
|
|
|
|
const authenticatedUser = await prisma.user.findFirst({
|
|
where: {
|
|
email: session.user.email,
|
|
},
|
|
select: {
|
|
id: true,
|
|
},
|
|
});
|
|
|
|
if (userId !== authenticatedUser.id) {
|
|
return res.status(401).json({ message: "Unauthorized" });
|
|
}
|
|
|
|
if (req.method === "GET") {
|
|
return res.status(405).json({ message: "Method Not Allowed" });
|
|
}
|
|
|
|
if (req.method === "DELETE") {
|
|
return res.status(405).json({ message: "Method Not Allowed" });
|
|
}
|
|
|
|
if (req.method === "PATCH") {
|
|
const updatedUser = await prisma.user.update({
|
|
where: {
|
|
id: authenticatedUser.id,
|
|
},
|
|
data: {
|
|
...pick(req.body.data, [
|
|
"username",
|
|
"name",
|
|
"avatar",
|
|
"timeZone",
|
|
"weekStart",
|
|
"hideBranding",
|
|
"theme",
|
|
"completedOnboarding",
|
|
]),
|
|
bio: req.body.description,
|
|
},
|
|
select: {
|
|
id: true,
|
|
username: true,
|
|
name: true,
|
|
email: true,
|
|
emailVerified: true,
|
|
bio: true,
|
|
avatar: true,
|
|
timeZone: true,
|
|
weekStart: true,
|
|
startTime: true,
|
|
endTime: true,
|
|
bufferTime: true,
|
|
hideBranding: true,
|
|
theme: true,
|
|
createdDate: true,
|
|
plan: true,
|
|
completedOnboarding: true,
|
|
},
|
|
});
|
|
return res.status(200).json({ message: "User Updated", data: updatedUser });
|
|
}
|
|
}
|