hermes-web/app/api/settings/groups/route.ts

import { db } from "@/lib/db"
import { NextResponse } from "next/server";
import fetchUserWithImpersonation from "@/lib/fetch-user-impersonation";
import { z } from "zod";

export async function GET(req: Request) {
    try {
        const user = await fetchUserWithImpersonation(req)
        if (!user) {
            return NextResponse.json({ message: 'Unauthorized.', error: null, value: null }, { status: 401 });
        }

        const actions = await db.group.findMany({
            where: {
                userId: user.id
            }
        })

        return NextResponse.json(actions.map(({ userId, ...attrs }) => attrs));
    } catch (error) {
        return NextResponse.json({ message: 'Something went wrong', error: error, value: null }, { status: 500 })
    }
}

const groupNameSchema = z.string({
    required_error: "Group name is required.",
    invalid_type_error: "Group name must be a string"
}).regex(/^[\w\-\s]{1,20}$/, "Group name must contain only letters, numbers, spaces, dashes, and underscores.")

export async function POST(req: Request) {
    try {
        const user = await fetchUserWithImpersonation(req)
        if (!user) {
            return NextResponse.json({ message: 'Unauthorized.', error: null, value: null }, { status: 401 });
        }

        const { name, priority }: { name: string, priority: number } = await req.json();
        if (!name)
            return NextResponse.json({ message: 'name does not exist.', error: null, value: null }, { status: 400 });
        const groupNameValidation = await groupNameSchema.safeParseAsync(name)
        if (!groupNameValidation.success)
            return NextResponse.json({ message: 'name does not meet requirements.', error: JSON.parse(groupNameValidation.error['message'])[0], value: null }, { status: 400 })

        const group = await db.group.create({
            data: {
                userId: user.id,
                name: name.toLowerCase(),
                priority
            }
        });

        return NextResponse.json(group, { status: 200 });
    } catch (error) {
        return NextResponse.json({ message: 'Something went wrong', error: error, value: null }, { status: 500 })
    }
}

export async function PUT(req: Request) {
    try {
        const user = await fetchUserWithImpersonation(req)
        if (!user) {
            return NextResponse.json({ message: 'Unauthorized.', error: null, value: null }, { status: 401 });
        }

        const { id, name, priority }: { id: string, name: string, priority: number } = await req.json();
        if (!id)
            return NextResponse.json({ message: 'id does not exist.', error: null, value: null }, { status: 400 });
        if (!name && !priority)
            return NextResponse.json({ message: 'Either name or priority must not be null.', error: null, value: null }, { status: 400 });
        if (name) {
            const groupNameValidation = await groupNameSchema.safeParseAsync(name)
            if (!groupNameValidation.success)
                return NextResponse.json({ message: 'name does not meet requirements.', error: JSON.parse(groupNameValidation.error['message'])[0], value: null }, { status: 400 })
        }

        let data: any = {}
        if (name)
            data = { ...data, name: name.toLowerCase() }
        if (priority)
            data = { ...data, priority }

        const group = await db.group.update({
            where: {
                id
            },
            data: data
        });

        return NextResponse.json(group, { status: 200 });
    } catch (error) {
        return NextResponse.json({ message: 'Something went wrong', error: error, value: null }, { status: 500 })
    }
}

export async function DELETE(req: Request) {
    try {
        const user = await fetchUserWithImpersonation(req)
        if (!user) {
            return NextResponse.json({ message: 'Unauthorized.', error: null, value: null }, { status: 401 });
        }

        const { searchParams } = new URL(req.url)
        const id = searchParams.get('id') as string
        const group = await db.group.delete({
            where: {
                id
            }
        })

        return NextResponse.json(group);
    } catch (error) {
        return NextResponse.json({ message: 'Something went wrong', error: error, value: null }, { status: 500 })
    }
}
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`import { db } from "@/lib/db"`
			`import { NextResponse } from "next/server";`
			`import fetchUserWithImpersonation from "@/lib/fetch-user-impersonation";`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`import { z } from "zod";`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00
			`export async function GET(req: Request) {`
			`try {`
			`const user = await fetchUserWithImpersonation(req)`
			`if (!user) {`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Unauthorized.', error: null, value: null }, { status: 401 });`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`}`

			`const actions = await db.group.findMany({`
			`where: {`
			`userId: user.id`
			`}`
			`})`

Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json(actions.map(({ userId, ...attrs }) => attrs));`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`} catch (error) {`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Something went wrong', error: error, value: null }, { status: 500 })`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`}`
			`}`

Added basic validation for requests 2024-08-25 17:35:46 -04:00			`const groupNameSchema = z.string({`
			`required_error: "Group name is required.",`
			`invalid_type_error: "Group name must be a string"`
			`}).regex(/^[\w\-\s]{1,20}$/, "Group name must contain only letters, numbers, spaces, dashes, and underscores.")`

Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`export async function POST(req: Request) {`
			`try {`
			`const user = await fetchUserWithImpersonation(req)`
			`if (!user) {`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Unauthorized.', error: null, value: null }, { status: 401 });`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`}`

			`const { name, priority }: { name: string, priority: number } = await req.json();`
			`if (!name)`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'name does not exist.', error: null, value: null }, { status: 400 });`
			`const groupNameValidation = await groupNameSchema.safeParseAsync(name)`
			`if (!groupNameValidation.success)`
			`return NextResponse.json({ message: 'name does not meet requirements.', error: JSON.parse(groupNameValidation.error['message'])[0], value: null }, { status: 400 })`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00
			`const group = await db.group.create({`
			`data: {`
			`userId: user.id,`
			`name: name.toLowerCase(),`
			`priority`
			`}`
			`});`

			`return NextResponse.json(group, { status: 200 });`
			`} catch (error) {`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Something went wrong', error: error, value: null }, { status: 500 })`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`}`
			`}`

			`export async function PUT(req: Request) {`
			`try {`
			`const user = await fetchUserWithImpersonation(req)`
			`if (!user) {`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Unauthorized.', error: null, value: null }, { status: 401 });`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`}`

			`const { id, name, priority }: { id: string, name: string, priority: number } = await req.json();`
			`if (!id)`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'id does not exist.', error: null, value: null }, { status: 400 });`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`if (!name && !priority)`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Either name or priority must not be null.', error: null, value: null }, { status: 400 });`
			`if (name) {`
			`const groupNameValidation = await groupNameSchema.safeParseAsync(name)`
			`if (!groupNameValidation.success)`
			`return NextResponse.json({ message: 'name does not meet requirements.', error: JSON.parse(groupNameValidation.error['message'])[0], value: null }, { status: 400 })`
			`}`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00
			`let data: any = {}`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`if (name)`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`data = { ...data, name: name.toLowerCase() }`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`if (priority)`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`data = { ...data, priority }`

			`const group = await db.group.update({`
			`where: {`
			`id`
			`},`
			`data: data`
			`});`

			`return NextResponse.json(group, { status: 200 });`
			`} catch (error) {`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Something went wrong', error: error, value: null }, { status: 500 })`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`}`
			`}`

			`export async function DELETE(req: Request) {`
			`try {`
			`const user = await fetchUserWithImpersonation(req)`
			`if (!user) {`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Unauthorized.', error: null, value: null }, { status: 401 });`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`}`

			`const { searchParams } = new URL(req.url)`
			`const id = searchParams.get('id') as string`
			`const group = await db.group.delete({`
			`where: {`
			`id`
			`}`
			`})`

			`return NextResponse.json(group);`
			`} catch (error) {`
Added basic validation for requests 2024-08-25 17:35:46 -04:00			`return NextResponse.json({ message: 'Something went wrong', error: error, value: null }, { status: 500 })`
Updated list of commands to v4.3. Added groups & permissions. Added connections. Updated redemptions and actions to v4.3. 2024-08-14 16:33:40 -04:00			`}`
			`}`