moved routes to sepereate files

2025-04-02 10:52:45 -04:00 · 2024-07-04 03:36:34 -04:00 · 2024-07-04 03:36:34 -04:00 · d25038c019
commit d25038c019
parent e17cf310de
1 changed files with 4 additions and 94 deletions
--- a/src/server.nim
+++ b/src/server.nim
@ -6,50 +6,11 @@ import types/[users, files]
 import checksums/sha3
 import database

-addHandler newConsoleLogger(fmtStr = "")
+# addHandler newConsoleLogger(fmtStr = "")

-import routes/[newUser]
-
-createNewUserRoute()
+import routes/[auth, delete]

 routes:
-
-  #[ 
-    request parameters:
-      token     -  string   -  required via header
-                    OR
-      username  -  string   -  required
-      password  -  string   -  required
-    returns:
-      success   -  token    -  new login token, old token will not work
-      fail      -  403      -  invalid token
-      fail      -  403      -  bad username and/or password
-  ]#
-  post "/api/v1/newSession":
-    # generates a new login token after signin
-    var user = newUser()
-    
-    if not request.headers["Authorization"].isEmptyOrWhitespace():
-      
-      if not db.validToken(user, request.headers["Authorization"]):
-        resp Http403, "Invalid token."
-      
-      db.genNewToken(user)
-
-    else:
-      try:
-        db.select(user, "username = ?", @"username")
-      except NotFoundError:
-        resp Http403, "Incorrect username or password." # fails if username is wrong but mentions password to obfuscates if a user exists or not
-      echo user.password
-      echo @"password"
-      echo $Sha3_512.secureHash(@"password")
-      if user.password == $Sha3_512.secureHash(@"password"):
-        db.genNewToken(user)
-      else:
-        resp Http403, "Incorrect username or password." # fails if password is wrong but mentions username to obfuscates if a user exists or not
-    resp Http200, user.token
-
  #[ 
    request parameters: 
      token     -  string         -  required via header
@ -134,58 +95,7 @@ routes:
    writeFile(filePath, fileData)
    resp Http200, "File uploaded."

-  #[
-    request parameters: 
-      token    -  string         -  required via header
-    returns
-      success  -  200            -  deleted user
-      fail     -  403            -  deletion failed, invalid token
-  ]#
-  delete "/api/v1/user":
-    var user = newUser()
-    if not db.validToken(user, request.headers["Authorization"]):
-      resp Http403, "Invalid token."
-    # TODO: delete all user's files
-    db.delete(user)
-    resp Http200, "User has been deleted."
-
-  #[
-    request parameters: 
-      token    -  string         -  required via header
-      name     -  string         -  required via header
-    returns
-      success  -  200            -  deleted the file
-      fail     -  403            -  deletion failed, invalid token
-  ]#
-  delete "/api/v1/file":
-    var user = newUser()
-    if not db.validToken(user, request.headers["Authorization"]):
-      resp Http403, "Invalid token."
-
-    var file = newFile()
-    try:
-      db.select(file, "File.name = ?", request.headers["name"])
-    except NotFoundError:
-      resp Http404, "File does not exist"
-  
-    db.delete(file)
-    resp Http200, "File has been deleted."
-
-  #[
-    request parameters: 
-      token    -  string         -  required via header
-    returns
-      success  -  200            -  deleted all files
-      fail     -  403            -  deletion failed, invalid token
-  ]#
-  # delete "/api/v1/AllFiles":
-  #   var user = newUser()
-  #   if not db.validToken(user, request.headers["Authorization"]):
-  #     resp Http403, "Invalid token."
-    
-  #   db.delete(user)
-  #   resp Http200, "User has been deleted."
-
 # template respJson*(node: JsonNode) =
 #   resp $node, "application/json"
-  extend newUser, ""
+  extend auth, ""
+  extend delete, ""