npm - nodebb-plugin-calendar-onekite - Versions diffs - 11.1.1 → 11.1.2 - Mend

nodebb-plugin-calendar-onekite 11.1.1 → 11.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/library.js +43 -16
package/package.json +1 -1

package/library.js CHANGED Viewed

@@ -8,22 +8,49 @@ const scheduler = require('./lib/scheduler');
 const Plugin = {};
 Plugin.init = async function (params) {
-  const { router } = params;
-  // Page routes
-  router.get('/calendar', params.middleware.buildHeader, controllers.renderCalendar);
-  router.get('/api/calendar-onekite/events', api.getEvents);
-  router.get('/api/calendar-onekite/items', api.getItems);
-  router.post('/api/calendar-onekite/reservations', params.middleware.authenticate, api.createReservation);
-  // Admin ACP routes
-  router.get('/admin/plugins/calendar-onekite', params.middleware.admin.buildHeader, admin.renderAdmin);
-  router.get('/api/admin/plugins/calendar-onekite', params.middleware.admin.authenticate, admin.getSettings);
-  router.post('/api/admin/plugins/calendar-onekite', params.middleware.admin.authenticate, admin.saveSettings);
-  router.get('/api/admin/plugins/calendar-onekite/pending', params.middleware.admin.authenticate, admin.listPending);
-  router.put('/api/admin/plugins/calendar-onekite/reservations/:rid/approve', params.middleware.admin.authenticate, admin.approveReservation);
-  router.put('/api/admin/plugins/calendar-onekite/reservations/:rid/refuse', params.middleware.admin.authenticate, admin.refuseReservation);
-  router.post('/api/admin/plugins/calendar-onekite/purge', params.middleware.admin.authenticate, admin.purgeByYear);
+  const { router, middleware } = params;
+  const routeHelpers = require.main.require('./src/routes/helpers');
+  // Some middleware names changed across NodeBB versions.
+  // Use what exists so we don't register undefined handlers (Express throws).
+  const exposeUid = middleware.exposeUid;
+  const ensureLoggedIn = middleware.ensureLoggedIn || middleware.authenticate || function (req, res, next) {
+    if (req.uid) return next();
+    res.status(401).json({ error: 'Unauthorized' });
+  };
+  const buildHeader = middleware.buildHeader;
+  const fn = (f) => (typeof f === 'function' ? f : null);
+  const mw = (arr) => arr.map(fn).filter(Boolean);
+  // Page route (calendar UI)
+  routeHelpers.setupPageRoute(router, '/calendar', mw([buildHeader]), controllers.renderCalendar);
+  // Public API (read-only)
+  routeHelpers.setupApiRoute(router, '/calendar-onekite/events', [], api.getEvents);
+  routeHelpers.setupApiRoute(router, '/calendar-onekite/items', [], api.getItems);
+  // Authenticated API
+  // req.uid is provided by exposeUid; ensureLoggedIn blocks unauthenticated users.
+  routeHelpers.setupApiRoute(router, '/calendar-onekite/reservations', mw([exposeUid, ensureLoggedIn]), api.createReservation, 'post');
+  // Admin ACP page
+  routeHelpers.setupAdminPageRoute(router, '/admin/plugins/calendar-onekite', [], admin.renderAdmin);
+  // Admin API (under /api)
+  const adminMiddlewares = mw([
+    exposeUid,
+    ensureLoggedIn,
+    middleware.admin && middleware.admin.checkPrivileges,
+  ]);
+  // setupApiRoute automatically prefixes with /api, so don't include it here.
+  routeHelpers.setupApiRoute(router, '/admin/plugins/calendar-onekite', adminMiddlewares, admin.getSettings);
+  routeHelpers.setupApiRoute(router, '/admin/plugins/calendar-onekite', adminMiddlewares, admin.saveSettings, 'post');
+  routeHelpers.setupApiRoute(router, '/admin/plugins/calendar-onekite/pending', adminMiddlewares, admin.listPending);
+  routeHelpers.setupApiRoute(router, '/admin/plugins/calendar-onekite/reservations/:rid/approve', adminMiddlewares, admin.approveReservation, 'put');
+  routeHelpers.setupApiRoute(router, '/admin/plugins/calendar-onekite/reservations/:rid/refuse', adminMiddlewares, admin.refuseReservation, 'put');
+  routeHelpers.setupApiRoute(router, '/admin/plugins/calendar-onekite/purge', adminMiddlewares, admin.purgeByYear, 'post');
   // Background cleanup for expired "pending" reservations
   scheduler.start();

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "nodebb-plugin-calendar-onekite",
-  "version": "11.1.1",
+  "version": "11.1.2",
   "description": "FullCalendar-based equipment reservation workflow with HelloAsso payment for NodeBB",
   "main": "library.js",
   "scripts": {