mirror of
https://github.com/optim-enterprises-bv/databunker.git
synced 2025-11-20 16:15:09 +00:00
admin can view user-requests
This commit is contained in:
stremovsky
101
src/requests_api.go
Normal file
101
src/requests_api.go
Normal file
@@ -0,0 +1,101 @@
|
||||
package main
|
||||
|
||||
import (
|
||||
"fmt"
|
||||
"net/http"
|
||||
|
||||
"github.com/julienschmidt/httprouter"
|
||||
)
|
||||
|
||||
func (e mainEnv) getUserRequests(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
|
||||
if e.enforceAuth(w, r, nil) == "" {
|
||||
return
|
||||
}
|
||||
var offset int32
|
||||
var limit int32 = 10
|
||||
status := "open"
|
||||
args := r.URL.Query()
|
||||
if value, ok := args["offset"]; ok {
|
||||
offset = atoi(value[0])
|
||||
}
|
||||
if value, ok := args["limit"]; ok {
|
||||
limit = atoi(value[0])
|
||||
}
|
||||
if value, ok := args["status"]; ok {
|
||||
status = value[0]
|
||||
}
|
||||
resultJSON, counter, err := e.db.getRequests(status, offset, limit)
|
||||
if err != nil {
|
||||
returnError(w, r, "internal error", 405, err, nil)
|
||||
return
|
||||
}
|
||||
fmt.Printf("Total count of user requests: %d\n", counter)
|
||||
//fmt.Fprintf(w, "<html><head><title>title</title></head>")
|
||||
w.Header().Set("Access-Control-Allow-Origin", "*")
|
||||
w.Header().Set("Content-Type", "application/json; charset=utf-8")
|
||||
w.WriteHeader(200)
|
||||
str := fmt.Sprintf(`{"status":"ok","total":%d,"rows":%s}`, counter, resultJSON)
|
||||
w.Write([]byte(str))
|
||||
}
|
||||
|
||||
func (e mainEnv) getUserRequest(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
|
||||
request := ps.ByName("request")
|
||||
event := audit("get request by request token", request, "request", request)
|
||||
defer func() { event.submit(e.db) }()
|
||||
|
||||
if enforceUUID(w, request, event) == false {
|
||||
return
|
||||
}
|
||||
requestInfo, err := e.db.getRequest(request)
|
||||
if err != nil {
|
||||
fmt.Printf("%d access denied for: %s\n", http.StatusForbidden, request)
|
||||
w.WriteHeader(http.StatusForbidden)
|
||||
w.Write([]byte("Access denied"))
|
||||
return
|
||||
}
|
||||
var resultJSON []byte
|
||||
userTOKEN := ""
|
||||
appName := ""
|
||||
change := ""
|
||||
if value, ok := requestInfo["token"]; ok {
|
||||
userTOKEN = value.(string)
|
||||
}
|
||||
if value, ok := requestInfo["change"]; ok {
|
||||
change = value.(string)
|
||||
}
|
||||
if value, ok := requestInfo["app"]; ok {
|
||||
appName = value.(string)
|
||||
}
|
||||
if len(appName) > 0 {
|
||||
resultJSON, err = e.db.getUserApp(userTOKEN, appName)
|
||||
} else {
|
||||
resultJSON, err = e.db.getUser(userTOKEN)
|
||||
}
|
||||
if err != nil {
|
||||
returnError(w, r, "internal error", 405, err, event)
|
||||
return
|
||||
}
|
||||
if resultJSON == nil {
|
||||
returnError(w, r, "not found", 405, err, event)
|
||||
return
|
||||
}
|
||||
fmt.Printf("Full json: %s\n", resultJSON)
|
||||
w.Header().Set("Content-Type", "application/json; charset=utf-8")
|
||||
w.WriteHeader(200)
|
||||
var str string
|
||||
|
||||
if len(appName) > 0 {
|
||||
str = fmt.Sprintf(`"status":"ok","app":"%s"`, appName)
|
||||
} else {
|
||||
str = fmt.Sprintf(`"status":"ok"`)
|
||||
}
|
||||
if len(resultJSON) > 0 {
|
||||
str = fmt.Sprintf(`%s,"original":%s`, str, resultJSON)
|
||||
}
|
||||
if len(change) > 0 {
|
||||
str = fmt.Sprintf(`%s,"change":%s`, str, change)
|
||||
}
|
||||
str = fmt.Sprintf(`{%s}`, str)
|
||||
fmt.Printf("result: %s\n", str)
|
||||
w.Write([]byte(str))
|
||||
}
|
||||
Reference in New Issue
Block a user