From 12f85448cde94d70d9030b757b09caa5e2f53061 Mon Sep 17 00:00:00 2001
From: crupest <crupest@outlook.com>
Date: Sun, 2 Feb 2020 22:37:47 +0800
Subject: ...

---
 Timeline/Controllers/TimelineController.cs | 131 +++++++++++++++++++++++++++++
 1 file changed, 131 insertions(+)
 create mode 100644 Timeline/Controllers/TimelineController.cs

(limited to 'Timeline/Controllers/TimelineController.cs')

diff --git a/Timeline/Controllers/TimelineController.cs b/Timeline/Controllers/TimelineController.cs
new file mode 100644
index 00000000..be271de7
--- /dev/null
+++ b/Timeline/Controllers/TimelineController.cs
@@ -0,0 +1,131 @@
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.Extensions.Logging;
+using System.Collections.Generic;
+using System.Threading.Tasks;
+using Timeline.Models.Http;
+using Timeline.Models.Validation;
+using Timeline.Services;
+
+namespace Timeline.Controllers
+{
+    [ApiController]
+    public class TimelineController : Controller
+    {
+        private readonly ILogger<TimelineController> _logger;
+
+        private readonly ITimelineService _service;
+
+        public TimelineController(ILogger<TimelineController> logger, ITimelineService service)
+        {
+            _logger = logger;
+            _service = service;
+        }
+
+        [HttpGet("timelines/{name}")]
+        public async Task<ActionResult<TimelineInfo>> TimelineGet([FromRoute][TimelineName] string name)
+        {
+            return (await _service.GetTimeline(name)).FillLinksForNormalTimeline(Url);
+        }
+
+        [HttpGet("timelines/{name}/posts")]
+        public async Task<ActionResult<IList<TimelinePostInfo>>> PostListGet([FromRoute][TimelineName] string name)
+        {
+            if (!this.IsAdministrator() && !await _service.HasReadPermission(name, this.GetOptionalUserId()))
+            {
+                return StatusCode(StatusCodes.Status403Forbidden, ErrorResponse.Common.Forbid());
+            }
+
+            return await _service.GetPosts(name);
+        }
+
+        [HttpPost("timelines/{name}/posts")]
+        [Authorize]
+        public async Task<ActionResult<TimelinePostInfo>> PostPost([FromRoute][TimelineName] string name, [FromBody] TimelinePostCreateRequest body)
+        {
+            var id = this.GetUserId();
+            if (!this.IsAdministrator() && !await _service.IsMemberOf(name, id))
+            {
+                return StatusCode(StatusCodes.Status403Forbidden, ErrorResponse.Common.Forbid());
+            }
+
+            var res = await _service.CreatePost(name, id, body.Content, body.Time);
+            return res;
+        }
+
+        [HttpDelete("timelines/{name}/posts/{id}")]
+        [Authorize]
+        public async Task<ActionResult> PostDelete([FromRoute][TimelineName] string name, [FromRoute] long id)
+        {
+            try
+            {
+                if (!this.IsAdministrator() && !await _service.HasPostModifyPermission(name, id, this.GetUserId()))
+                {
+                    return StatusCode(StatusCodes.Status403Forbidden, ErrorResponse.Common.Forbid());
+                }
+                await _service.DeletePost(name, id);
+                return Ok(CommonDeleteResponse.Delete());
+            }
+            catch (TimelinePostNotExistException)
+            {
+                return Ok(CommonDeleteResponse.NotExist());
+            }
+        }
+
+        [HttpPatch("timelines/{name}")]
+        [Authorize]
+        public async Task<ActionResult<TimelineInfo>> TimelinePatch([FromRoute][TimelineName] string name, [FromBody] TimelinePatchRequest body)
+        {
+            if (!this.IsAdministrator() && !(await _service.HasManagePermission(name, this.GetUserId())))
+            {
+                return StatusCode(StatusCodes.Status403Forbidden, ErrorResponse.Common.Forbid());
+            }
+            await _service.ChangeProperty(name, body);
+            var timeline = (await _service.GetTimeline(name)).FillLinksForNormalTimeline(Url);
+            return Ok(timeline);
+        }
+
+        [HttpPut("timelines/{name}/members/{member}")]
+        [Authorize]
+        public async Task<ActionResult> TimelineMemberPut([FromRoute][TimelineName] string name, [FromRoute][Username] string member)
+        {
+            if (!this.IsAdministrator() && !(await _service.HasManagePermission(name, this.GetUserId())))
+            {
+                return StatusCode(StatusCodes.Status403Forbidden, ErrorResponse.Common.Forbid());
+            }
+
+            try
+            {
+                await _service.ChangeMember(name, new List<string> { member }, null);
+                return Ok();
+            }
+            catch (UserNotExistException)
+            {
+                return BadRequest(ErrorResponse.TimelineController.MemberPut_NotExist());
+            }
+        }
+
+        [HttpDelete("timelines/{name}/members/{member}")]
+        [Authorize]
+        public async Task<ActionResult> TimelineMemberDelete([FromRoute][TimelineName] string name, [FromRoute][Username] string member)
+        {
+            if (!this.IsAdministrator() && !(await _service.HasManagePermission(name, this.GetUserId())))
+            {
+                return StatusCode(StatusCodes.Status403Forbidden, ErrorResponse.Common.Forbid());
+            }
+
+            try
+            {
+                await _service.ChangeMember(name, null, new List<string> { member });
+                return Ok(CommonDeleteResponse.Delete());
+            }
+            catch (UserNotExistException)
+            {
+                return Ok(CommonDeleteResponse.NotExist());
+            }
+        }
+
+        // TODO: Create API .
+    }
+}
-- 
cgit v1.2.3