miniflux/internal/ui/user_remove.go

// SPDX-FileCopyrightText: Copyright The Miniflux Authors. All rights reserved.
// SPDX-License-Identifier: Apache-2.0

package ui // import "miniflux.app/v2/internal/ui"

import (
	"errors"
	"net/http"

	"miniflux.app/v2/internal/http/request"
	"miniflux.app/v2/internal/http/response/html"
	"miniflux.app/v2/internal/http/route"
)

func (h *handler) removeUser(w http.ResponseWriter, r *http.Request) {
	loggedUser, err := h.store.UserByID(request.UserID(r))
	if err != nil {
		html.ServerError(w, r, err)
		return
	}

	if !loggedUser.IsAdmin {
		html.Forbidden(w, r)
		return
	}

	selectedUserID := request.RouteInt64Param(r, "userID")
	selectedUser, err := h.store.UserByID(selectedUserID)
	if err != nil {
		html.ServerError(w, r, err)
		return
	}

	if selectedUser == nil {
		html.NotFound(w, r)
		return
	}

	if selectedUser.ID == loggedUser.ID {
		html.BadRequest(w, r, errors.New("You cannot remove yourself"))
		return
	}

	if err := h.store.RemoveUser(selectedUser.ID); err != nil {
		html.ServerError(w, r, err)
		return
	}

	html.Redirect(w, r, route.Path(h.router, "users"))
}
Replace copyright header with SPDX identifier 2023-06-19 23:42:47 +02:00			`// SPDX-FileCopyrightText: Copyright The Miniflux Authors. All rights reserved.`
			`// SPDX-License-Identifier: Apache-2.0`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00
Move internal packages to an internal folder For reference: https://go.dev/doc/go1.4#internalpackages 2023-08-11 04:46:45 +02:00			`package ui // import "miniflux.app/v2/internal/ui"`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00
			`import (`
API: Delete users asynchronously Deleting large users might lock the tables in the hosted offering 2020-07-29 05:28:02 +02:00			`"errors"`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`"net/http"`

Move internal packages to an internal folder For reference: https://go.dev/doc/go1.4#internalpackages 2023-08-11 04:46:45 +02:00			`"miniflux.app/v2/internal/http/request"`
			`"miniflux.app/v2/internal/http/response/html"`
			`"miniflux.app/v2/internal/http/route"`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`)`

Move UI middlewares and routes to ui package 2018-11-11 20:28:29 +01:00			`func (h handler) removeUser(w http.ResponseWriter, r http.Request) {`
API: Delete users asynchronously Deleting large users might lock the tables in the hosted offering 2020-07-29 05:28:02 +02:00			`loggedUser, err := h.store.UserByID(request.UserID(r))`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`if err != nil {`
Refactor HTTP response builder 2018-10-08 03:42:43 +02:00			`html.ServerError(w, r, err)`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`return`
			`}`

API: Delete users asynchronously Deleting large users might lock the tables in the hosted offering 2020-07-29 05:28:02 +02:00			`if !loggedUser.IsAdmin {`
Refactor HTTP response builder 2018-10-08 03:42:43 +02:00			`html.Forbidden(w, r)`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`return`
			`}`

API: Delete users asynchronously Deleting large users might lock the tables in the hosted offering 2020-07-29 05:28:02 +02:00			`selectedUserID := request.RouteInt64Param(r, "userID")`
			`selectedUser, err := h.store.UserByID(selectedUserID)`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`if err != nil {`
Refactor HTTP response builder 2018-10-08 03:42:43 +02:00			`html.ServerError(w, r, err)`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`return`
			`}`

			`if selectedUser == nil {`
Refactor HTTP response builder 2018-10-08 03:42:43 +02:00			`html.NotFound(w, r)`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`return`
			`}`

API: Delete users asynchronously Deleting large users might lock the tables in the hosted offering 2020-07-29 05:28:02 +02:00			`if selectedUser.ID == loggedUser.ID {`
			`html.BadRequest(w, r, errors.New("You cannot remove yourself"))`
			`return`
			`}`

Move UI middlewares and routes to ui package 2018-11-11 20:28:29 +01:00			`if err := h.store.RemoveUser(selectedUser.ID); err != nil {`
Refactor HTTP response builder 2018-10-08 03:42:43 +02:00			`html.ServerError(w, r, err)`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`return`
			`}`

Move UI middlewares and routes to ui package 2018-11-11 20:28:29 +01:00			`html.Redirect(w, r, route.Path(h.router, "users"))`
Use vanilla HTTP handlers (refactoring) 2018-04-30 01:35:04 +02:00			`}`