johanels/photoprism
1
0
Fork 0
mirror of https://github.com/photoprism/photoprism.git synced 2025-12-12 08:44:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
1912cd54cafb4ac2213f0c2fa8ef72644e526fd9
photoprism/internal/api/users_sessions.go
Michael Mayer 1912cd54ca Account: Add GET /api/v1/users/:uid/sessions endpoint #808 #4114 
Signed-off-by: Michael Mayer <michael@photoprism.app>
2024-03-28 13:24:12 +01:00

68 lines
1.5 KiB
Go
Raw Blame History

package api
import (
"net/http"
"github.com/gin-gonic/gin"
"github.com/gin-gonic/gin/binding"
"github.com/photoprism/photoprism/internal/acl"
"github.com/photoprism/photoprism/internal/entity"
"github.com/photoprism/photoprism/internal/form"
"github.com/photoprism/photoprism/internal/get"
"github.com/photoprism/photoprism/internal/search"
"github.com/photoprism/photoprism/pkg/rnd"
)
// FindUserSessions finds user sessions and returns them as JSON.
//
// GET /api/v1/users/:uid/sessions
func FindUserSessions(router *gin.RouterGroup) {
router.GET("/users/:uid/sessions", func(c *gin.Context) {
// Check if the session user is has user management privileges.
s := Auth(c, acl.ResourceSessions, acl.ActionManageOwn)
if s.Abort(c) {
return
}
// Get global config.
conf := get.Config()
// Check feature flags and authorization.
if conf.Public() || conf.Demo() || !s.HasRegisteredUser() || conf.DisableSettings() {
c.JSON(http.StatusNotFound, entity.Users{})
return
} else if !rnd.IsUID(s.UserUID, entity.UserUID) || s.UserUID != c.Param("uid") {
c.JSON(http.StatusForbidden, entity.Users{})
return
}
var f form.SearchSessions
// Init search form.
err := c.MustBindWith(&f, binding.Form)
if err != nil {
AbortBadRequest(c)
return
}
// Filter by user.
f.UID = s.UserUID
// Perform search.
result, err := search.Sessions(f)
if err != nil {
AbortBadRequest(c)
return
}
AddLimitHeader(c, f.Count)
AddOffsetHeader(c, f.Offset)
c.JSON(http.StatusOK, result)
})
}
Reference in New Issue View Git Blame Copy Permalink