Elgato_dark/ToolJet
1
0
Fork 0
mirror of https://github.com/ToolJet/ToolJet synced 2026-05-24 09:28:31 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
ToolJet/server/src/controllers/folders.controller.ts
kriks7iitk 0af5f94180 merged latest
2024-06-11 11:48:12 +05:30

59 lines
2.3 KiB
TypeScript
Raw Blame History

import { Controller, Get, Post, Query, Request, UseGuards, Body, Delete, Param, Put } from '@nestjs/common';
import { decamelizeKeys } from 'humps';
import { JwtAuthGuard } from '../../src/modules/auth/jwt-auth.guard';
import { FoldersService } from '../services/folders.service';
import { ForbiddenException } from '@nestjs/common';
import { FoldersAbilityFactory } from 'src/modules/casl/abilities/folders-ability.factory';
import { Folder } from 'src/entities/folder.entity';
import { CreateFolderDto } from '@dto/create-folder.dto';
import { User } from 'src/decorators/user.decorator';
import { FOLDER_RESOURCE_ACTION } from 'src/constants/global.constant';
@Controller('folders')
export class FoldersController {
constructor(private foldersService: FoldersService, private foldersAbilityFactory: FoldersAbilityFactory) {}
@UseGuards(JwtAuthGuard)
@Get()
async index(@Request() req, @Query() query) {
const folders = await this.foldersService.all(req.user, query.searchKey);
return decamelizeKeys({ folders });
}
@UseGuards(JwtAuthGuard)
@Post()
async create(@Request() req, @Body() createFolderDto: CreateFolderDto) {
const ability = await this.foldersAbilityFactory.folderActions(req.user);
if (!ability.can(FOLDER_RESOURCE_ACTION.CREATE, Folder)) {
throw new ForbiddenException('You do not have permissions to perform this action');
}
const folder = await this.foldersService.create(req.user, createFolderDto.name);
return decamelizeKeys(folder);
}
@UseGuards(JwtAuthGuard)
@Put(':id')
async update(@User() user, @Param('id') id, @Body() createFolderDto: CreateFolderDto) {
const ability = await this.foldersAbilityFactory.folderActions(user);
if (!ability.can(FOLDER_RESOURCE_ACTION.UPDATE, Folder)) {
throw new ForbiddenException('You do not have permissions to perform this action');
}
const folder = await this.foldersService.update(id, createFolderDto.name);
return decamelizeKeys(folder);
}
@UseGuards(JwtAuthGuard)
@Delete(':id')
async delete(@User() user, @Param('id') id) {
const ability = await this.foldersAbilityFactory.folderActions(user);
if (!ability.can(FOLDER_RESOURCE_ACTION.DELETE, Folder)) {
throw new ForbiddenException('You do not have permissions to perform this action');
}
return await this.foldersService.delete(user, id);
}
}
Reference in a new issue View git blame Copy permalink