Skip to content

feat: team matching subscription api #265

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 7 commits into
base: develop
Choose a base branch
from
Open

feat: team matching subscription api #265

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
0f20075
feat(pages/api/teammatching/subscription/create.ts): Subscribe to Post
uy-seng Mar 8, 2024
d74ae15
feat(pages/api/teammatching/subscription/delete.ts): Unsubscribe post
uy-seng Mar 8, 2024
128fad4
feat(pages/api/teammatching/subscription/get.ts): Get subscriptions
uy-seng Mar 8, 2024
1151d15
fix(pages/api/teammatching/subscription): Add async delete snapshot
uy-seng Apr 1, 2024
0d1cf34
fix(pages/api/teammatching/subscription): Update delete
uy-seng Apr 1, 2024
bd07440
chore: Rename api/teammatching to matching
uy-seng Apr 23, 2024
6824cf3
fix: Check request initiator with user id in req body
uy-seng Apr 23, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
56 changes: 56 additions & 0 deletions pages/api/matching/subscription/create.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,56 @@
import { firestore } from 'firebase-admin';
import { NextApiRequest, NextApiResponse } from 'next';
import initializeApi from '../../../../lib/admin/init';
import { userIsAuthorized } from '../../../../lib/authorization/check-authorization';

initializeApi();
const db = firestore();

// interface of subscription data that contains the user id and the post id
interface SubscriptionData {
userId: string;
postId: string;
}

// create a subscription for user that subscribe them to a post
async function createSubscription(req: NextApiRequest, res: NextApiResponse) {
try {
const subscriptionData: SubscriptionData = JSON.parse(req.body);
await db.collection('subscriptions').add(subscriptionData);
return res.status(201).json({
msg: 'Subscription created',
});
} catch (error) {
return res.status(500).json({
msg: 'Unexpected error. Please try again later',
});
}
}

async function handlePostRequest(req: NextApiRequest, res: NextApiResponse) {
const userToken = req.headers['authorization'] as string;
const isAuthorized = await userIsAuthorized(userToken, ['hacker']);

if (!isAuthorized) {
return res.status(403).json({
statusCode: 403,
msg: 'Request is not authorized to perform this functionality',
});
}

return createSubscription(req, res);
}

export default function handler(req: NextApiRequest, res: NextApiResponse) {
const { method } = req;
switch (method) {
case 'POST': {
return handlePostRequest(req, res);
}
default: {
return res.status(404).json({
msg: 'Route not found',
});
}
}
}
76 changes: 76 additions & 0 deletions pages/api/matching/subscription/delete.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,76 @@
import { firestore, auth } from 'firebase-admin';
import { NextApiRequest, NextApiResponse } from 'next';
import initializeApi from '../../../../lib/admin/init';
import { userIsAuthorized } from '../../../../lib/authorization/check-authorization';

initializeApi();
const db = firestore();

// interface of subscription data that contains the user id and the post id
interface SubscriptionData {
userId: string;
postId: string;
}

// delete one subscription for user that unsubscribe them to a post
async function deleteSubscription(req: NextApiRequest, res: NextApiResponse) {
// check if check if current logged in user matches the user id in the subscription data
const loggedInUserId = (await auth().verifyIdToken(req.headers['authorization'] as string)).uid;
if (loggedInUserId !== JSON.parse(req.body).userId) {
return res.status(403).json({
msg: 'Unauthorized to delete subscription',
});
}

try {
const subscriptionData: SubscriptionData = JSON.parse(req.body);
const snapshot = await db
.collection('subscriptions')
.where('userId', '==', subscriptionData.userId)
.where('postId', '==', subscriptionData.postId)
.get();
if (snapshot.empty) {
return res.status(404).json({
msg: 'Subscription to posting not found',
});
}

await Promise.all(snapshot.docs.map((doc) => doc.ref.delete()));

return res.status(200).json({
msg: 'Subscription to posting deleted',
});
} catch (error) {
return res.status(500).json({
msg: 'Unexpected error. Please try again later',
});
}
}

async function handleDeleteRequest(req: NextApiRequest, res: NextApiResponse) {
const userToken = req.headers['authorization'] as string;
const isAuthorized = await userIsAuthorized(userToken, ['hacker']);

if (!isAuthorized) {
return res.status(403).json({
statusCode: 403,
msg: 'Request is not authorized to perform this functionality',
});
}

return deleteSubscription(req, res);
}

export default function handler(req: NextApiRequest, res: NextApiResponse) {
const { method } = req;
switch (method) {
case 'POST': {
return handleDeleteRequest(req, res);
}
default: {
return res.status(404).json({
msg: 'Route not found',
});
}
}
}
65 changes: 65 additions & 0 deletions pages/api/matching/subscription/get.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,65 @@
import { firestore, auth } from 'firebase-admin';
import { NextApiRequest, NextApiResponse } from 'next';
import initializeApi from '../../../../lib/admin/init';
import { userIsAuthorized } from '../../../../lib/authorization/check-authorization';

initializeApi();
const db = firestore();

// get all subscriptions for user
async function getSubscriptions(req: NextApiRequest, res: NextApiResponse) {
try {
const userId = req.query.userId as string;
const loggedInUserId = (await auth().verifyIdToken(req.headers['authorization'] as string)).uid;

if (userId !== loggedInUserId) {
return res.status(403).json({
msg: 'Unauthorized to get subscriptions',
});
}

const snapshot = await db.collection('subscriptions').where('userId', '==', userId).get();
if (snapshot.empty) {
return res.status(404).json({
msg: 'Subscriptions not found',
});
}
const subscriptions = [];
snapshot.forEach((doc) => {
subscriptions.push(doc.data());
});
return res.status(200).json(subscriptions);
} catch (error) {
return res.status(500).json({
msg: 'Unexpected error. Please try again later',
});
}
}

async function handleGetRequest(req: NextApiRequest, res: NextApiResponse) {
const userToken = req.headers['authorization'] as string;
const isAuthorized = await userIsAuthorized(userToken, ['hacker']);

if (!isAuthorized) {
return res.status(403).json({
statusCode: 403,
msg: 'Request is not authorized to perform this functionality',
});
}

return getSubscriptions(req, res);
}

export default function handler(req: NextApiRequest, res: NextApiResponse) {
const { method } = req;
switch (method) {
case 'GET': {
return handleGetRequest(req, res);
}
default: {
return res.status(404).json({
msg: 'Route not found',
});
}
}
}