Code-Schnipsel: neue Funktion unter Werkzeuge
This commit is contained in:
126
backend/src/tools/snippets/routes.js
Normal file
126
backend/src/tools/snippets/routes.js
Normal file
@@ -0,0 +1,126 @@
|
||||
const express = require('express');
|
||||
const db = require('../../db');
|
||||
const { authenticate } = require('../../middleware/auth');
|
||||
const router = express.Router();
|
||||
|
||||
const uid = req => req.user.id;
|
||||
|
||||
const getTags = id => db.prepare('SELECT tag FROM snippet_tags WHERE snippet_id=?').all(id).map(r=>r.tag);
|
||||
|
||||
const enrich = (s) => ({ ...s, tags: getTags(s.id) });
|
||||
|
||||
// ── Alle Snippets (eigene + geteilt) ────────────────────────────────────────
|
||||
router.get('/', authenticate, (req, res) => {
|
||||
const me = uid(req);
|
||||
const own = db.prepare(`
|
||||
SELECT s.*, u.username as owner
|
||||
FROM snippets s JOIN users u ON u.id=s.user_id
|
||||
WHERE s.user_id=? ORDER BY s.updated_at DESC, s.created_at DESC
|
||||
`).all(me).map(enrich);
|
||||
|
||||
const shared = db.prepare(`
|
||||
SELECT s.*, u.username as owner, 1 as is_shared
|
||||
FROM snippets s
|
||||
JOIN snippet_shares sh ON sh.snippet_id=s.id
|
||||
JOIN users u ON u.id=s.user_id
|
||||
WHERE sh.shared_with=?
|
||||
ORDER BY s.updated_at DESC
|
||||
`).all(me).map(enrich);
|
||||
|
||||
res.json({ own, shared });
|
||||
});
|
||||
|
||||
// ── Einzelnes Snippet ────────────────────────────────────────────────────────
|
||||
router.get('/:id', authenticate, (req, res) => {
|
||||
const s = db.prepare('SELECT s.*, u.username as owner FROM snippets s JOIN users u ON u.id=s.user_id WHERE s.id=?').get(req.params.id);
|
||||
if (!s) return res.status(404).json({ error: 'Nicht gefunden' });
|
||||
const isOwner = s.user_id === uid(req);
|
||||
const isShared = db.prepare('SELECT id FROM snippet_shares WHERE snippet_id=? AND shared_with=?').get(s.id, uid(req));
|
||||
if (!isOwner && !isShared) return res.status(403).json({ error: 'Kein Zugriff' });
|
||||
res.json(enrich(s));
|
||||
});
|
||||
|
||||
// ── History ──────────────────────────────────────────────────────────────────
|
||||
router.get('/:id/history', authenticate, (req, res) => {
|
||||
const s = db.prepare('SELECT * FROM snippets WHERE id=?').get(req.params.id);
|
||||
if (!s) return res.status(404).json({ error: 'Nicht gefunden' });
|
||||
const isOwner = s.user_id === uid(req);
|
||||
const isShared = db.prepare('SELECT id FROM snippet_shares WHERE snippet_id=? AND shared_with=?').get(s.id, uid(req));
|
||||
if (!isOwner && !isShared) return res.status(403).json({ error: 'Kein Zugriff' });
|
||||
res.json(db.prepare('SELECT * FROM snippet_history WHERE snippet_id=? ORDER BY saved_at DESC').all(s.id));
|
||||
});
|
||||
|
||||
// ── Erstellen ────────────────────────────────────────────────────────────────
|
||||
router.post('/', authenticate, (req, res) => {
|
||||
const { title, code='', language='text', description='', tags=[] } = req.body;
|
||||
if (!title?.trim()) return res.status(400).json({ error: 'Titel erforderlich' });
|
||||
const r = db.prepare(`
|
||||
INSERT INTO snippets (user_id, title, code, language, description, created_at, updated_at)
|
||||
VALUES (?,?,?,?,?,datetime('now','localtime'),datetime('now','localtime'))
|
||||
`).run(uid(req), title.trim(), code, language, description);
|
||||
const id = r.lastInsertRowid;
|
||||
const insertTag = db.prepare('INSERT OR IGNORE INTO snippet_tags (snippet_id, tag) VALUES (?,?)');
|
||||
db.transaction(()=>{ tags.forEach(t => insertTag.run(id, t)); })();
|
||||
res.json(enrich(db.prepare('SELECT s.*, u.username as owner FROM snippets s JOIN users u ON u.id=s.user_id WHERE s.id=?').get(id)));
|
||||
});
|
||||
|
||||
// ── Aktualisieren ────────────────────────────────────────────────────────────
|
||||
router.put('/:id', authenticate, (req, res) => {
|
||||
const s = db.prepare('SELECT * FROM snippets WHERE id=? AND user_id=?').get(req.params.id, uid(req));
|
||||
if (!s) return res.status(404).json({ error: 'Nicht gefunden' });
|
||||
const { title, code, language, description, tags } = req.body;
|
||||
|
||||
// History-Eintrag wenn Code geändert
|
||||
if (code !== undefined && code !== s.code) {
|
||||
db.prepare(`INSERT INTO snippet_history (snippet_id, code, language, saved_at) VALUES (?,?,?,datetime('now','localtime'))`)
|
||||
.run(s.id, s.code, s.language);
|
||||
}
|
||||
|
||||
db.prepare(`UPDATE snippets SET title=?,code=?,language=?,description=?,updated_at=datetime('now','localtime') WHERE id=?`)
|
||||
.run(title??s.title, code??s.code, language??s.language, description??s.description, s.id);
|
||||
|
||||
if (Array.isArray(tags)) {
|
||||
db.prepare('DELETE FROM snippet_tags WHERE snippet_id=?').run(s.id);
|
||||
const ins = db.prepare('INSERT OR IGNORE INTO snippet_tags (snippet_id, tag) VALUES (?,?)');
|
||||
db.transaction(()=>{ tags.forEach(t => ins.run(s.id, t)); })();
|
||||
}
|
||||
|
||||
res.json(enrich(db.prepare('SELECT s.*, u.username as owner FROM snippets s JOIN users u ON u.id=s.user_id WHERE s.id=?').get(s.id)));
|
||||
});
|
||||
|
||||
// ── Löschen ──────────────────────────────────────────────────────────────────
|
||||
router.delete('/:id', authenticate, (req, res) => {
|
||||
const r = db.prepare('DELETE FROM snippets WHERE id=? AND user_id=?').run(req.params.id, uid(req));
|
||||
if (!r.changes) return res.status(404).json({ error: 'Nicht gefunden' });
|
||||
res.json({ ok: true });
|
||||
});
|
||||
|
||||
// ── Shares ───────────────────────────────────────────────────────────────────
|
||||
router.get('/:id/shares', authenticate, (req, res) => {
|
||||
const s = db.prepare('SELECT * FROM snippets WHERE id=? AND user_id=?').get(req.params.id, uid(req));
|
||||
if (!s) return res.status(404).json({ error: 'Nicht gefunden' });
|
||||
res.json(db.prepare(`
|
||||
SELECT u.id, u.username, sh.created_at as shared_at
|
||||
FROM snippet_shares sh JOIN users u ON u.id=sh.shared_with WHERE sh.snippet_id=?
|
||||
`).all(s.id));
|
||||
});
|
||||
|
||||
router.post('/:id/share', authenticate, (req, res) => {
|
||||
const s = db.prepare('SELECT * FROM snippets WHERE id=? AND user_id=?').get(req.params.id, uid(req));
|
||||
if (!s) return res.status(404).json({ error: 'Nicht gefunden' });
|
||||
const target = db.prepare('SELECT * FROM users WHERE username=?').get(req.body.username);
|
||||
if (!target) return res.status(404).json({ error: 'Benutzer nicht gefunden' });
|
||||
if (target.id === uid(req)) return res.status(400).json({ error: 'Kann nicht mit dir selbst teilen' });
|
||||
db.prepare(`INSERT OR IGNORE INTO snippet_shares (snippet_id,shared_by,shared_with,created_at) VALUES (?,?,?,datetime('now','localtime'))`)
|
||||
.run(s.id, uid(req), target.id);
|
||||
res.json({ ok: true });
|
||||
});
|
||||
|
||||
router.delete('/:id/share/:userId', authenticate, (req, res) => {
|
||||
const s = db.prepare('SELECT * FROM snippets WHERE id=? AND user_id=?').get(req.params.id, uid(req));
|
||||
if (!s) return res.status(404).json({ error: 'Nicht gefunden' });
|
||||
db.prepare('DELETE FROM snippet_shares WHERE snippet_id=? AND shared_with=?').run(s.id, req.params.userId);
|
||||
res.json({ ok: true });
|
||||
});
|
||||
|
||||
module.exports = router;
|
||||
Reference in New Issue
Block a user