2016-04-03 17:59:27 +00:00
|
|
|
// Package v1 implements the first version of the Ripple API.
|
|
|
|
package v1
|
|
|
|
|
|
|
|
import (
|
|
|
|
"database/sql"
|
|
|
|
"strconv"
|
|
|
|
"strings"
|
2017-02-02 12:40:28 +00:00
|
|
|
"unicode"
|
2016-04-03 17:59:27 +00:00
|
|
|
|
2016-08-15 17:59:46 +00:00
|
|
|
"github.com/jmoiron/sqlx"
|
2017-01-14 17:06:16 +00:00
|
|
|
"zxq.co/ripple/ocl"
|
|
|
|
"zxq.co/ripple/rippleapi/common"
|
2016-04-03 17:59:27 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
type userData struct {
|
2016-07-06 20:32:30 +00:00
|
|
|
ID int `json:"id"`
|
|
|
|
Username string `json:"username"`
|
|
|
|
UsernameAKA string `json:"username_aka"`
|
|
|
|
RegisteredOn common.UnixTimestamp `json:"registered_on"`
|
|
|
|
Privileges uint64 `json:"privileges"`
|
|
|
|
LatestActivity common.UnixTimestamp `json:"latest_activity"`
|
|
|
|
Country string `json:"country"`
|
2016-04-03 17:59:27 +00:00
|
|
|
}
|
|
|
|
|
2016-10-19 15:10:36 +00:00
|
|
|
const userFields = `SELECT users.id, users.username, register_datetime, users.privileges,
|
2016-10-16 14:26:10 +00:00
|
|
|
latest_activity, users_stats.username_aka,
|
|
|
|
users_stats.country
|
|
|
|
FROM users
|
|
|
|
INNER JOIN users_stats
|
|
|
|
ON users.id=users_stats.id
|
|
|
|
`
|
|
|
|
|
2016-05-14 16:32:43 +00:00
|
|
|
// UsersGET is the API handler for GET /users
|
|
|
|
func UsersGET(md common.MethodData) common.CodeMessager {
|
2016-05-14 18:55:42 +00:00
|
|
|
shouldRet, whereClause, param := whereClauseUser(md, "users")
|
2016-05-14 17:51:33 +00:00
|
|
|
if shouldRet != nil {
|
2016-10-16 14:26:10 +00:00
|
|
|
return userPutsMulti(md)
|
2016-04-03 17:59:27 +00:00
|
|
|
}
|
|
|
|
|
2016-10-19 15:10:36 +00:00
|
|
|
query := userFields + `
|
2016-08-27 10:04:12 +00:00
|
|
|
WHERE ` + whereClause + ` AND ` + md.User.OnlyUserPublic(true) + `
|
2016-04-03 21:09:28 +00:00
|
|
|
LIMIT 1`
|
2016-10-16 14:26:10 +00:00
|
|
|
return userPutsSingle(md, md.DB.QueryRowx(query, param))
|
2016-04-03 21:09:28 +00:00
|
|
|
}
|
|
|
|
|
2016-10-16 14:26:10 +00:00
|
|
|
type userPutsSingleUserData struct {
|
2016-06-14 07:37:11 +00:00
|
|
|
common.ResponseBase
|
|
|
|
userData
|
|
|
|
}
|
|
|
|
|
2016-10-16 14:26:10 +00:00
|
|
|
func userPutsSingle(md common.MethodData, row *sqlx.Row) common.CodeMessager {
|
2016-04-03 21:09:28 +00:00
|
|
|
var err error
|
2016-10-16 14:26:10 +00:00
|
|
|
var user userPutsSingleUserData
|
2016-04-03 17:59:27 +00:00
|
|
|
|
2016-08-15 17:59:46 +00:00
|
|
|
err = row.StructScan(&user.userData)
|
2016-04-03 17:59:27 +00:00
|
|
|
switch {
|
|
|
|
case err == sql.ErrNoRows:
|
2016-04-16 16:05:24 +00:00
|
|
|
return common.SimpleResponse(404, "No such user was found!")
|
2016-04-03 17:59:27 +00:00
|
|
|
case err != nil:
|
2016-04-08 17:05:54 +00:00
|
|
|
md.Err(err)
|
2016-04-16 16:05:24 +00:00
|
|
|
return Err500
|
2016-04-03 17:59:27 +00:00
|
|
|
}
|
|
|
|
|
2016-04-16 16:05:24 +00:00
|
|
|
user.Code = 200
|
|
|
|
return user
|
2016-04-07 11:47:42 +00:00
|
|
|
}
|
|
|
|
|
2016-10-16 14:26:10 +00:00
|
|
|
type userPutsMultiUserData struct {
|
|
|
|
common.ResponseBase
|
|
|
|
Users []userData `json:"users"`
|
|
|
|
}
|
|
|
|
|
|
|
|
func userPutsMulti(md common.MethodData) common.CodeMessager {
|
2017-02-02 12:40:28 +00:00
|
|
|
pm := md.Ctx.Request.URI().QueryArgs().PeekMulti
|
2016-10-16 14:26:10 +00:00
|
|
|
// query composition
|
|
|
|
wh := common.
|
2016-10-16 16:52:34 +00:00
|
|
|
Where("users.username_safe = ?", common.SafeUsername(md.Query("nname"))).
|
2016-10-16 14:26:10 +00:00
|
|
|
Where("users.id = ?", md.Query("iid")).
|
|
|
|
Where("users.privileges = ?", md.Query("privileges")).
|
|
|
|
Where("users.privileges & ? > 0", md.Query("has_privileges")).
|
2016-10-20 16:14:30 +00:00
|
|
|
Where("users.privileges & ? = 0", md.Query("has_not_privileges")).
|
2016-10-16 14:26:10 +00:00
|
|
|
Where("users_stats.country = ?", md.Query("country")).
|
|
|
|
Where("users_stats.username_aka = ?", md.Query("name_aka")).
|
2016-10-19 15:10:36 +00:00
|
|
|
Where("privileges_groups.name = ?", md.Query("privilege_group")).
|
2017-02-02 12:40:28 +00:00
|
|
|
In("users.id", pm("ids")...).
|
|
|
|
In("users.username_safe", safeUsernameBulk(pm("names"))...).
|
|
|
|
In("users_stats.username_aka", pm("names_aka")...).
|
|
|
|
In("users_stats.country", pm("countries")...)
|
2016-10-19 15:10:36 +00:00
|
|
|
|
|
|
|
var extraJoin string
|
|
|
|
if md.Query("privilege_group") != "" {
|
|
|
|
extraJoin = " LEFT JOIN privileges_groups ON users.privileges & privileges_groups.privileges = privileges_groups.privileges "
|
|
|
|
}
|
|
|
|
|
|
|
|
query := userFields + extraJoin + wh.ClauseSafe() + " AND " + md.User.OnlyUserPublic(true) +
|
2016-10-16 14:26:10 +00:00
|
|
|
" " + common.Sort(md, common.SortConfiguration{
|
|
|
|
Allowed: []string{
|
|
|
|
"id",
|
|
|
|
"username",
|
|
|
|
"privileges",
|
|
|
|
"donor_expire",
|
|
|
|
"latest_activity",
|
|
|
|
"silence_end",
|
|
|
|
},
|
|
|
|
Default: "id ASC",
|
|
|
|
Table: "users",
|
|
|
|
}) +
|
|
|
|
" " + common.Paginate(md.Query("p"), md.Query("l"), 100)
|
|
|
|
|
|
|
|
// query execution
|
|
|
|
rows, err := md.DB.Queryx(query, wh.Params...)
|
|
|
|
if err != nil {
|
|
|
|
md.Err(err)
|
|
|
|
return Err500
|
|
|
|
}
|
|
|
|
var r userPutsMultiUserData
|
|
|
|
for rows.Next() {
|
|
|
|
var u userData
|
|
|
|
err := rows.StructScan(&u)
|
|
|
|
if err != nil {
|
|
|
|
md.Err(err)
|
|
|
|
continue
|
|
|
|
}
|
|
|
|
r.Users = append(r.Users, u)
|
|
|
|
}
|
|
|
|
r.Code = 200
|
|
|
|
return r
|
|
|
|
}
|
|
|
|
|
2016-04-05 20:38:33 +00:00
|
|
|
// UserSelfGET is a shortcut for /users/id/self. (/users/self)
|
2016-04-16 16:05:24 +00:00
|
|
|
func UserSelfGET(md common.MethodData) common.CodeMessager {
|
2017-02-02 12:40:28 +00:00
|
|
|
md.Ctx.Request.URI().SetQueryString("id=self")
|
2016-05-14 16:32:43 +00:00
|
|
|
return UsersGET(md)
|
2016-04-05 20:38:33 +00:00
|
|
|
}
|
2016-04-07 09:59:38 +00:00
|
|
|
|
2017-02-02 12:40:28 +00:00
|
|
|
func safeUsernameBulk(us [][]byte) [][]byte {
|
|
|
|
for _, u := range us {
|
|
|
|
for idx, v := range u {
|
|
|
|
if v == ' ' {
|
|
|
|
u[idx] = '_'
|
|
|
|
continue
|
|
|
|
}
|
|
|
|
u[idx] = byte(unicode.ToLower(rune(v)))
|
|
|
|
}
|
2016-10-16 16:52:34 +00:00
|
|
|
}
|
|
|
|
return us
|
|
|
|
}
|
|
|
|
|
2016-04-16 16:05:24 +00:00
|
|
|
type whatIDResponse struct {
|
|
|
|
common.ResponseBase
|
|
|
|
ID int `json:"id"`
|
|
|
|
}
|
|
|
|
|
2016-04-07 09:59:38 +00:00
|
|
|
// UserWhatsTheIDGET is an API request that only returns an user's ID.
|
2016-04-16 16:05:24 +00:00
|
|
|
func UserWhatsTheIDGET(md common.MethodData) common.CodeMessager {
|
2016-04-07 09:59:38 +00:00
|
|
|
var (
|
2016-07-03 22:06:23 +00:00
|
|
|
r whatIDResponse
|
2016-08-27 10:04:12 +00:00
|
|
|
privileges uint64
|
2016-04-07 09:59:38 +00:00
|
|
|
)
|
2016-10-16 16:52:34 +00:00
|
|
|
err := md.DB.QueryRow("SELECT id, privileges FROM users WHERE username_safe = ? LIMIT 1", common.SafeUsername(md.Query("name"))).Scan(&r.ID, &privileges)
|
2016-08-27 10:04:12 +00:00
|
|
|
if err != nil || ((privileges&uint64(common.UserPrivilegePublic)) == 0 &&
|
|
|
|
(md.User.UserPrivileges&common.AdminPrivilegeManageUsers == 0)) {
|
2016-04-16 16:05:24 +00:00
|
|
|
return common.SimpleResponse(404, "That user could not be found!")
|
2016-04-07 09:59:38 +00:00
|
|
|
}
|
2016-04-16 16:05:24 +00:00
|
|
|
r.Code = 200
|
|
|
|
return r
|
2016-04-07 09:59:38 +00:00
|
|
|
}
|
2016-04-07 11:47:42 +00:00
|
|
|
|
|
|
|
type modeData struct {
|
|
|
|
RankedScore uint64 `json:"ranked_score"`
|
|
|
|
TotalScore uint64 `json:"total_score"`
|
|
|
|
PlayCount int `json:"playcount"`
|
|
|
|
ReplaysWatched int `json:"replays_watched"`
|
|
|
|
TotalHits int `json:"total_hits"`
|
|
|
|
Level float64 `json:"level"`
|
|
|
|
Accuracy float64 `json:"accuracy"`
|
2016-05-14 19:27:42 +00:00
|
|
|
PP int `json:"pp"`
|
2016-09-02 23:31:03 +00:00
|
|
|
GlobalLeaderboardRank *int `json:"global_leaderboard_rank"`
|
2016-04-07 11:47:42 +00:00
|
|
|
}
|
2016-04-16 16:05:24 +00:00
|
|
|
type userFullResponse struct {
|
|
|
|
common.ResponseBase
|
2016-04-07 11:47:42 +00:00
|
|
|
userData
|
2016-09-01 20:50:56 +00:00
|
|
|
STD modeData `json:"std"`
|
|
|
|
Taiko modeData `json:"taiko"`
|
|
|
|
CTB modeData `json:"ctb"`
|
|
|
|
Mania modeData `json:"mania"`
|
|
|
|
PlayStyle int `json:"play_style"`
|
|
|
|
FavouriteMode int `json:"favourite_mode"`
|
|
|
|
Badges []singleBadge `json:"badges"`
|
2016-09-02 15:00:36 +00:00
|
|
|
CustomBadge *singleBadge `json:"custom_badge"`
|
2016-10-21 16:54:46 +00:00
|
|
|
SilenceInfo silenceInfo `json:"silence_info"`
|
|
|
|
}
|
|
|
|
type silenceInfo struct {
|
|
|
|
Reason string `json:"reason"`
|
|
|
|
End common.UnixTimestamp `json:"end"`
|
2016-04-07 11:47:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// UserFullGET gets all of an user's information, with one exception: their userpage.
|
2016-04-16 16:05:24 +00:00
|
|
|
func UserFullGET(md common.MethodData) common.CodeMessager {
|
2016-05-14 18:55:42 +00:00
|
|
|
shouldRet, whereClause, param := whereClauseUser(md, "users")
|
2016-05-14 17:51:33 +00:00
|
|
|
if shouldRet != nil {
|
|
|
|
return *shouldRet
|
|
|
|
}
|
|
|
|
|
2016-04-07 11:47:42 +00:00
|
|
|
// Hellest query I've ever done.
|
|
|
|
query := `
|
|
|
|
SELECT
|
2016-07-03 22:06:23 +00:00
|
|
|
users.id, users.username, users.register_datetime, users.privileges, users.latest_activity,
|
2016-07-03 19:55:03 +00:00
|
|
|
|
2016-09-01 20:50:56 +00:00
|
|
|
users_stats.username_aka, users_stats.country, users_stats.play_style, users_stats.favourite_mode,
|
2016-07-03 19:55:03 +00:00
|
|
|
|
2016-09-02 15:00:36 +00:00
|
|
|
users_stats.custom_badge_icon, users_stats.custom_badge_name, users_stats.can_custom_badge,
|
|
|
|
users_stats.show_custom_badge,
|
|
|
|
|
2016-04-07 11:47:42 +00:00
|
|
|
users_stats.ranked_score_std, users_stats.total_score_std, users_stats.playcount_std,
|
2016-05-17 15:06:15 +00:00
|
|
|
users_stats.replays_watched_std, users_stats.total_hits_std,
|
2016-05-14 19:27:42 +00:00
|
|
|
users_stats.avg_accuracy_std, users_stats.pp_std, leaderboard_std.position as std_position,
|
2016-07-03 19:55:03 +00:00
|
|
|
|
2016-04-07 11:47:42 +00:00
|
|
|
users_stats.ranked_score_taiko, users_stats.total_score_taiko, users_stats.playcount_taiko,
|
2016-05-17 15:06:15 +00:00
|
|
|
users_stats.replays_watched_taiko, users_stats.total_hits_taiko,
|
2016-05-14 19:27:42 +00:00
|
|
|
users_stats.avg_accuracy_taiko, users_stats.pp_taiko, leaderboard_taiko.position as taiko_position,
|
2016-04-07 11:47:42 +00:00
|
|
|
|
|
|
|
users_stats.ranked_score_ctb, users_stats.total_score_ctb, users_stats.playcount_ctb,
|
2016-05-17 15:06:15 +00:00
|
|
|
users_stats.replays_watched_ctb, users_stats.total_hits_ctb,
|
2016-05-14 19:27:42 +00:00
|
|
|
users_stats.avg_accuracy_ctb, users_stats.pp_ctb, leaderboard_ctb.position as ctb_position,
|
2016-04-07 11:47:42 +00:00
|
|
|
|
|
|
|
users_stats.ranked_score_mania, users_stats.total_score_mania, users_stats.playcount_mania,
|
2016-05-17 15:06:15 +00:00
|
|
|
users_stats.replays_watched_mania, users_stats.total_hits_mania,
|
2016-10-21 16:54:46 +00:00
|
|
|
users_stats.avg_accuracy_mania, users_stats.pp_mania, leaderboard_mania.position as mania_position,
|
|
|
|
|
|
|
|
users.silence_reason, users.silence_end
|
2016-04-07 11:47:42 +00:00
|
|
|
|
|
|
|
FROM users
|
|
|
|
LEFT JOIN users_stats
|
|
|
|
ON users.id=users_stats.id
|
|
|
|
LEFT JOIN leaderboard_std
|
|
|
|
ON users.id=leaderboard_std.user
|
|
|
|
LEFT JOIN leaderboard_taiko
|
|
|
|
ON users.id=leaderboard_taiko.user
|
|
|
|
LEFT JOIN leaderboard_ctb
|
|
|
|
ON users.id=leaderboard_ctb.user
|
|
|
|
LEFT JOIN leaderboard_mania
|
|
|
|
ON users.id=leaderboard_mania.user
|
2016-08-27 10:04:12 +00:00
|
|
|
WHERE ` + whereClause + ` AND ` + md.User.OnlyUserPublic(true) + `
|
2016-04-07 11:47:42 +00:00
|
|
|
LIMIT 1
|
|
|
|
`
|
|
|
|
// Fuck.
|
2016-04-16 16:05:24 +00:00
|
|
|
r := userFullResponse{}
|
2016-09-02 15:00:36 +00:00
|
|
|
var (
|
|
|
|
b singleBadge
|
|
|
|
can bool
|
|
|
|
show bool
|
|
|
|
)
|
2016-05-14 17:51:33 +00:00
|
|
|
err := md.DB.QueryRow(query, param).Scan(
|
2016-07-06 20:32:30 +00:00
|
|
|
&r.ID, &r.Username, &r.RegisteredOn, &r.Privileges, &r.LatestActivity,
|
2016-04-07 11:47:42 +00:00
|
|
|
|
2016-09-01 20:50:56 +00:00
|
|
|
&r.UsernameAKA, &r.Country,
|
2016-04-16 16:05:24 +00:00
|
|
|
&r.PlayStyle, &r.FavouriteMode,
|
2016-04-07 11:47:42 +00:00
|
|
|
|
2016-09-02 15:00:36 +00:00
|
|
|
&b.Icon, &b.Name, &can, &show,
|
|
|
|
|
2016-04-16 16:05:24 +00:00
|
|
|
&r.STD.RankedScore, &r.STD.TotalScore, &r.STD.PlayCount,
|
2016-05-17 15:06:15 +00:00
|
|
|
&r.STD.ReplaysWatched, &r.STD.TotalHits,
|
2016-05-14 19:27:42 +00:00
|
|
|
&r.STD.Accuracy, &r.STD.PP, &r.STD.GlobalLeaderboardRank,
|
2016-04-07 11:47:42 +00:00
|
|
|
|
2016-04-16 16:05:24 +00:00
|
|
|
&r.Taiko.RankedScore, &r.Taiko.TotalScore, &r.Taiko.PlayCount,
|
2016-05-17 15:06:15 +00:00
|
|
|
&r.Taiko.ReplaysWatched, &r.Taiko.TotalHits,
|
2016-05-14 19:27:42 +00:00
|
|
|
&r.Taiko.Accuracy, &r.Taiko.PP, &r.Taiko.GlobalLeaderboardRank,
|
2016-04-07 11:47:42 +00:00
|
|
|
|
2016-04-16 16:05:24 +00:00
|
|
|
&r.CTB.RankedScore, &r.CTB.TotalScore, &r.CTB.PlayCount,
|
2016-05-17 15:06:15 +00:00
|
|
|
&r.CTB.ReplaysWatched, &r.CTB.TotalHits,
|
2016-05-14 19:27:42 +00:00
|
|
|
&r.CTB.Accuracy, &r.CTB.PP, &r.CTB.GlobalLeaderboardRank,
|
2016-04-07 11:47:42 +00:00
|
|
|
|
2016-04-16 16:05:24 +00:00
|
|
|
&r.Mania.RankedScore, &r.Mania.TotalScore, &r.Mania.PlayCount,
|
2016-05-17 15:06:15 +00:00
|
|
|
&r.Mania.ReplaysWatched, &r.Mania.TotalHits,
|
2016-05-14 19:27:42 +00:00
|
|
|
&r.Mania.Accuracy, &r.Mania.PP, &r.Mania.GlobalLeaderboardRank,
|
2016-10-21 16:54:46 +00:00
|
|
|
|
|
|
|
&r.SilenceInfo.Reason, &r.SilenceInfo.End,
|
2016-04-07 11:47:42 +00:00
|
|
|
)
|
|
|
|
switch {
|
|
|
|
case err == sql.ErrNoRows:
|
2016-04-16 16:05:24 +00:00
|
|
|
return common.SimpleResponse(404, "That user could not be found!")
|
2016-04-07 11:47:42 +00:00
|
|
|
case err != nil:
|
2016-04-08 17:05:54 +00:00
|
|
|
md.Err(err)
|
2016-04-16 16:05:24 +00:00
|
|
|
return Err500
|
2016-04-07 11:47:42 +00:00
|
|
|
}
|
|
|
|
|
2016-09-30 19:11:45 +00:00
|
|
|
can = can && show && common.UserPrivileges(r.Privileges)&common.UserPrivilegeDonor > 0
|
|
|
|
if can && (b.Name != "" || b.Icon != "") {
|
2016-09-02 15:00:36 +00:00
|
|
|
r.CustomBadge = &b
|
|
|
|
}
|
|
|
|
|
2016-05-17 15:06:15 +00:00
|
|
|
for _, m := range []*modeData{&r.STD, &r.Taiko, &r.CTB, &r.Mania} {
|
|
|
|
m.Level = ocl.GetLevelPrecise(int64(m.TotalScore))
|
|
|
|
}
|
|
|
|
|
2016-09-01 20:50:56 +00:00
|
|
|
rows, err := md.DB.Query("SELECT b.id, b.name, b.icon FROM user_badges ub "+
|
|
|
|
"LEFT JOIN badges b ON ub.badge = b.id WHERE user = ?", r.ID)
|
|
|
|
if err != nil {
|
|
|
|
md.Err(err)
|
|
|
|
}
|
|
|
|
|
|
|
|
for rows.Next() {
|
|
|
|
var badge singleBadge
|
|
|
|
err := rows.Scan(&badge.ID, &badge.Name, &badge.Icon)
|
|
|
|
if err != nil {
|
|
|
|
md.Err(err)
|
|
|
|
continue
|
|
|
|
}
|
|
|
|
r.Badges = append(r.Badges, badge)
|
|
|
|
}
|
|
|
|
|
2016-04-07 11:47:42 +00:00
|
|
|
r.Code = 200
|
2016-04-16 16:05:24 +00:00
|
|
|
return r
|
|
|
|
}
|
|
|
|
|
|
|
|
type userpageResponse struct {
|
|
|
|
common.ResponseBase
|
2016-09-05 21:45:11 +00:00
|
|
|
Userpage *string `json:"userpage"`
|
2016-04-07 11:47:42 +00:00
|
|
|
}
|
2016-04-07 12:42:17 +00:00
|
|
|
|
|
|
|
// UserUserpageGET gets an user's userpage, as in the customisable thing.
|
2016-04-16 16:05:24 +00:00
|
|
|
func UserUserpageGET(md common.MethodData) common.CodeMessager {
|
2016-05-14 18:55:42 +00:00
|
|
|
shouldRet, whereClause, param := whereClauseUser(md, "users_stats")
|
|
|
|
if shouldRet != nil {
|
|
|
|
return *shouldRet
|
|
|
|
}
|
2016-04-16 16:05:24 +00:00
|
|
|
var r userpageResponse
|
2016-05-14 18:55:42 +00:00
|
|
|
err := md.DB.QueryRow("SELECT userpage_content FROM users_stats WHERE "+whereClause+" LIMIT 1", param).Scan(&r.Userpage)
|
2016-04-07 12:42:17 +00:00
|
|
|
switch {
|
|
|
|
case err == sql.ErrNoRows:
|
2016-05-14 18:55:42 +00:00
|
|
|
return common.SimpleResponse(404, "No such user!")
|
2016-04-07 12:42:17 +00:00
|
|
|
case err != nil:
|
2016-04-08 17:05:54 +00:00
|
|
|
md.Err(err)
|
2016-04-16 16:05:24 +00:00
|
|
|
return Err500
|
2016-04-07 12:42:17 +00:00
|
|
|
}
|
2016-11-16 16:36:01 +00:00
|
|
|
if r.Userpage == nil {
|
|
|
|
r.Userpage = new(string)
|
|
|
|
}
|
2016-04-07 12:42:17 +00:00
|
|
|
r.Code = 200
|
2016-04-16 16:05:24 +00:00
|
|
|
return r
|
2016-04-07 12:42:17 +00:00
|
|
|
}
|
2016-05-14 17:51:33 +00:00
|
|
|
|
2016-11-07 17:34:53 +00:00
|
|
|
// UserSelfUserpagePOST allows to change the current user's userpage.
|
|
|
|
func UserSelfUserpagePOST(md common.MethodData) common.CodeMessager {
|
|
|
|
var d struct {
|
|
|
|
Data *string `json:"data"`
|
|
|
|
}
|
2017-02-02 12:40:28 +00:00
|
|
|
md.Unmarshal(&d)
|
2016-11-07 17:34:53 +00:00
|
|
|
if d.Data == nil {
|
|
|
|
return ErrMissingField("data")
|
|
|
|
}
|
2016-11-21 15:59:17 +00:00
|
|
|
cont := common.SanitiseString(*d.Data)
|
|
|
|
_, err := md.DB.Exec("UPDATE users_stats SET userpage_content = ? WHERE id = ? LIMIT 1", cont, md.ID())
|
2016-11-07 17:34:53 +00:00
|
|
|
if err != nil {
|
|
|
|
md.Err(err)
|
|
|
|
}
|
2017-02-02 12:40:28 +00:00
|
|
|
md.Ctx.URI().SetQueryString("id=self")
|
2016-11-07 17:34:53 +00:00
|
|
|
return UserUserpageGET(md)
|
|
|
|
}
|
|
|
|
|
2016-05-14 18:55:42 +00:00
|
|
|
func whereClauseUser(md common.MethodData, tableName string) (*common.CodeMessager, string, interface{}) {
|
2016-05-14 17:51:33 +00:00
|
|
|
switch {
|
2016-08-15 17:59:46 +00:00
|
|
|
case md.Query("id") == "self":
|
2016-05-14 18:55:42 +00:00
|
|
|
return nil, tableName + ".id = ?", md.ID()
|
2016-08-15 17:59:46 +00:00
|
|
|
case md.Query("id") != "":
|
|
|
|
id, err := strconv.Atoi(md.Query("id"))
|
2016-05-14 17:51:33 +00:00
|
|
|
if err != nil {
|
|
|
|
a := common.SimpleResponse(400, "please pass a valid user ID")
|
|
|
|
return &a, "", nil
|
|
|
|
}
|
2016-05-14 18:55:42 +00:00
|
|
|
return nil, tableName + ".id = ?", id
|
2016-08-15 17:59:46 +00:00
|
|
|
case md.Query("name") != "":
|
2016-10-16 16:52:34 +00:00
|
|
|
return nil, tableName + ".username_safe = ?", common.SafeUsername(md.Query("name"))
|
2016-05-14 17:51:33 +00:00
|
|
|
}
|
|
|
|
a := common.SimpleResponse(400, "you need to pass either querystring parameters name or id")
|
|
|
|
return &a, "", nil
|
|
|
|
}
|
2016-05-14 20:43:47 +00:00
|
|
|
|
|
|
|
type userLookupResponse struct {
|
|
|
|
common.ResponseBase
|
|
|
|
Users []lookupUser `json:"users"`
|
|
|
|
}
|
|
|
|
type lookupUser struct {
|
|
|
|
ID int `json:"id"`
|
|
|
|
Username string `json:"username"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// UserLookupGET does a quick lookup of users beginning with the passed
|
|
|
|
// querystring value name.
|
|
|
|
func UserLookupGET(md common.MethodData) common.CodeMessager {
|
2016-10-16 16:52:34 +00:00
|
|
|
name := common.SafeUsername(md.Query("name"))
|
|
|
|
name = strings.NewReplacer(
|
2016-05-14 20:43:47 +00:00
|
|
|
"%", "\\%",
|
|
|
|
"_", "\\_",
|
2016-05-17 13:35:18 +00:00
|
|
|
"\\", "\\\\",
|
2016-10-16 16:52:34 +00:00
|
|
|
).Replace(name)
|
2016-05-14 20:43:47 +00:00
|
|
|
if name == "" {
|
|
|
|
return common.SimpleResponse(400, "please provide an username to start searching")
|
|
|
|
}
|
2016-05-17 15:40:30 +00:00
|
|
|
name = "%" + name + "%"
|
2016-10-16 16:52:34 +00:00
|
|
|
|
2016-12-12 20:35:18 +00:00
|
|
|
var email string
|
|
|
|
if md.User.TokenPrivileges&common.PrivilegeManageUser != 0 &&
|
|
|
|
strings.Contains(md.Query("name"), "@") {
|
|
|
|
email = md.Query("name")
|
|
|
|
}
|
|
|
|
|
|
|
|
rows, err := md.DB.Query("SELECT users.id, users.username FROM users WHERE "+
|
|
|
|
"(username_safe LIKE ? OR email = ?) AND "+
|
|
|
|
md.User.OnlyUserPublic(true)+" LIMIT 25", name, email)
|
2016-05-14 20:43:47 +00:00
|
|
|
if err != nil {
|
|
|
|
md.Err(err)
|
|
|
|
return Err500
|
|
|
|
}
|
|
|
|
|
|
|
|
var r userLookupResponse
|
|
|
|
for rows.Next() {
|
|
|
|
var l lookupUser
|
|
|
|
err := rows.Scan(&l.ID, &l.Username)
|
|
|
|
if err != nil {
|
|
|
|
continue // can't be bothered to handle properly
|
|
|
|
}
|
|
|
|
r.Users = append(r.Users, l)
|
|
|
|
}
|
|
|
|
|
|
|
|
r.Code = 200
|
|
|
|
return r
|
|
|
|
}
|