npm - studiocms - Versions diffs - 0.3.0 → 0.4.1 - Mend

studiocms 0.3.0 → 0.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (263) hide show

package/frontend/pages/studiocms_api/dashboard/content/page.ts DELETED Viewed

@@ -1,359 +0,0 @@
-import { apiResponseLogger } from 'studiocms:logger';
-import { Notifications } from 'studiocms:notifier';
-import plugins from 'studiocms:plugins';
-import { apiEndpoints } from 'studiocms:plugins/endpoints';
-import { SDKCore } from 'studiocms:sdk';
-import type {
-	CombinedInsertContent,
-	tsPageContentSelect,
-	tsPageData,
-	tsPageDataSelect,
-} from 'studiocms:sdk/types';
-import {
-	AllResponse,
-	createEffectAPIRoutes,
-	createJsonResponse,
-	Effect,
-	genLogger,
-	OptionsResponse,
-	readAPIContextJson,
-	Schema,
-} from '@withstudiocms/effect';
-import { StudioCMSPageData } from '@withstudiocms/sdk/tables';
-import type { PluginAPIRoute } from '#plugins';
-type ApiEndpoints = {
-	onCreate?: PluginAPIRoute<'onCreate'> | null;
-	onEdit?: PluginAPIRoute<'onEdit'> | null;
-	onDelete?: PluginAPIRoute<'onDelete'> | null;
-};
-type PageTypeOutput = {
-	identifier: string;
-	label: string;
-	description?: string | undefined;
-	pageContentComponent?: string | undefined;
-	apiEndpoint?: string;
-	apiEndpoints?: ApiEndpoints | undefined;
-};
-type UpdatePageData = Partial<tsPageDataSelect>;
-type UpdatePageContent = Partial<tsPageContentSelect>;
-const pageTypeOptions = plugins.flatMap(({ pageTypes }) => {
-	const pageTypeOutput: PageTypeOutput[] = [];
-	if (!pageTypes) return pageTypeOutput;
-	for (const pageType of pageTypes) {
-		pageTypeOutput.push({
-			...pageType,
-			apiEndpoints: apiEndpoints.find((endpoint) => endpoint.identifier === pageType.identifier),
-		});
-	}
-	return pageTypeOutput;
-});
-function getPageTypeEndpoints<T extends 'onCreate' | 'onEdit' | 'onDelete'>(pkg: string, type: T) {
-	const currentPageType = pageTypeOptions.find((pageType) => pageType.identifier === pkg);
-	if (!currentPageType) return undefined;
-	return currentPageType.apiEndpoints?.[type];
-}
-export const { POST, PATCH, DELETE, OPTIONS, ALL } = createEffectAPIRoutes(
-	{
-		POST: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/content/page.POST')(function* () {
-				const [sdk, notify] = yield* Effect.all([SDKCore, Notifications]);
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isEditor;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const data = yield* readAPIContextJson<UpdatePageData>(ctx);
-				const content = {
-					id: crypto.randomUUID(),
-					// content is no longer supported during page creation due to current editor setup
-					// look into options in the future for how we can do this correctly.
-					// Requires being able to swap in editors which currently does not work.
-					content: '',
-				} as UpdatePageContent;
-				if (!data.title) {
-					return apiResponseLogger(400, 'Invalid form data, title is required');
-				}
-				const dataId = crypto.randomUUID();
-				// biome-ignore lint/style/noNonNullAssertion: this is a valid use case for non-null assertion
-				const apiRoute = getPageTypeEndpoints(data.package!, 'onCreate');
-				const pageContent: CombinedInsertContent = {
-					contentLang: 'default',
-					content: content.content || '',
-				};
-				const {
-					title,
-					slug,
-					description,
-					categories,
-					tags,
-					augments,
-					contributorIds,
-					updatedAt: ___updatedAt,
-					...rest
-				} = data as unknown as tsPageData['Insert']['Type'];
-				yield* Effect.logInfo('11111');
-				const newData = yield* sdk.POST.page({
-					pageData: {
-						...rest,
-						id: dataId,
-						title: title,
-						slug: slug || title.toLowerCase().replace(/\s/g, '-'),
-						description: description || '',
-						authorId: userData.user?.id || '',
-						updatedAt: new Date().toISOString(),
-						publishedAt: new Date().toISOString(),
-						categories: JSON.stringify(categories || []),
-						tags: JSON.stringify(tags || []),
-						augments: JSON.stringify(augments || []),
-						contributorIds: JSON.stringify(contributorIds || []),
-						contentLang: 'default',
-					},
-					pageContent: pageContent,
-				});
-				yield* Effect.logInfo('22222');
-				if (!newData) {
-					return apiResponseLogger(500, 'Failed to create page');
-				}
-				if (apiRoute) {
-					yield* Effect.tryPromise(() => apiRoute({ AstroCtx: ctx, pageData: newData }));
-				}
-				yield* Effect.all([sdk.CLEAR.pages, notify.sendEditorNotification('new_page', data.title)]);
-				return apiResponseLogger(200, 'Page created successfully');
-			}).pipe(Notifications.Provide),
-		PATCH: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/content/page.PATCH')(function* () {
-				const [sdk, notify] = yield* Effect.all([SDKCore, Notifications]);
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isEditor;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const combinedData = yield* readAPIContextJson<
-					UpdatePageData & {
-						contentId: string;
-						content: string;
-						pluginFields: Record<string, FormDataEntryValue | null>;
-						augments?: string[];
-					}
-				>(ctx);
-				const { contentId, content: incomingContent, pluginFields, ...data } = combinedData;
-				if (!data.id) {
-					return apiResponseLogger(400, 'Invalid form data, id is required');
-				}
-				if (!contentId) {
-					return apiResponseLogger(400, 'Invalid form data, contentId is required');
-				}
-				const content = {
-					id: contentId,
-					contentId: data.id,
-					content: incomingContent,
-					contentLang: 'default',
-				};
-				const currentPageData = yield* sdk.GET.page.byId(data.id);
-				if (!currentPageData) {
-					return apiResponseLogger(404, 'Page not found');
-				}
-				const { authorId, contributorIds, defaultContent } = currentPageData;
-				let AuthorId = authorId;
-				if (!authorId) {
-					// biome-ignore lint/style/noNonNullAssertion: this is a valid use case for non-null assertion
-					AuthorId = userData.user!.id;
-				}
-				const ContributorIds = contributorIds || [];
-				// biome-ignore lint/style/noNonNullAssertion: this is a valid use case for non-null assertion
-				if (!ContributorIds.includes(userData.user!.id)) {
-					// biome-ignore lint/style/noNonNullAssertion: this is a valid use case for non-null assertion
-					ContributorIds.push(userData.user!.id);
-				}
-				const newData: tsPageData['Update']['Type'] = {
-					...(data as tsPageDataSelect),
-					authorId: AuthorId,
-					contributorIds: JSON.stringify(ContributorIds),
-					updatedAt: new Date().toISOString(),
-					publishedAt:
-						currentPageData.draft && data.draft === false
-							? new Date().toISOString()
-							: currentPageData.publishedAt?.toISOString() || new Date().toISOString(),
-					categories: JSON.stringify(data.categories || []),
-					tags: JSON.stringify(data.tags || []),
-					augments: JSON.stringify(data.augments || []),
-					contentLang: 'default',
-				};
-				const getMetaData = sdk.dbService.withCodec({
-					encoder: Schema.String,
-					decoder: StudioCMSPageData.Select,
-					callbackFn: (query, input) =>
-						query((db) =>
-							db
-								.selectFrom('StudioCMSPageData')
-								.selectAll()
-								.where('id', '=', input)
-								.executeTakeFirstOrThrow()
-						),
-				});
-				const startMetaData = yield* getMetaData(data.id);
-				// biome-ignore lint/style/noNonNullAssertion: this is a valid use case for non-null assertion
-				const apiRoute = getPageTypeEndpoints(data.package!, 'onEdit');
-				const updatedPage = yield* sdk.UPDATE.page.byId(data.id, {
-					pageData: newData,
-					pageContent: content,
-				});
-				if (!updatedPage) {
-					return apiResponseLogger(500, 'Failed to update page');
-				}
-				const updatedMetaData = yield* getMetaData(data.id);
-				const { enableDiffs, diffPerPage = 10 } = ctx.locals.StudioCMS.siteConfig.data;
-				if (enableDiffs) {
-					yield* sdk.diffTracking.insert(
-						// biome-ignore lint/style/noNonNullAssertion: this is a valid use case for non-null assertion
-						userData.user!.id,
-						data.id,
-						{
-							content: {
-								start: defaultContent?.content || '',
-								end: content.content || '',
-							},
-							// biome-ignore lint/style/noNonNullAssertion: this is a valid use case for non-null assertion
-							metaData: { start: startMetaData!, end: updatedMetaData! },
-						},
-						diffPerPage
-					);
-				}
-				if (apiRoute) {
-					yield* Effect.tryPromise(() =>
-						apiRoute({ AstroCtx: ctx, pageData: updatedPage, pluginFields })
-					);
-				}
-				yield* Effect.all([
-					sdk.CLEAR.pages,
-					notify.sendEditorNotification('page_updated', data.title || startMetaData?.title || ''),
-				]);
-				return apiResponseLogger(200, 'Page updated successfully');
-			}).pipe(Notifications.Provide),
-		DELETE: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/content/page.DELETE')(function* () {
-				const [sdk, notify] = yield* Effect.all([SDKCore, Notifications]);
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isAdmin;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const { id, slug } = yield* readAPIContextJson<{ id: string; slug?: string }>(ctx);
-				const pageToDelete = yield* sdk.GET.page.byId(id);
-				if (!pageToDelete) {
-					return apiResponseLogger(404, 'Page not found');
-				}
-				if (pageToDelete.slug !== slug) {
-					return apiResponseLogger(400, 'Invalid request');
-				}
-				const apiRoute = getPageTypeEndpoints(pageToDelete.package, 'onDelete');
-				yield* sdk.DELETE.page(id);
-				if (apiRoute) {
-					yield* Effect.tryPromise(() => apiRoute({ AstroCtx: ctx, pageData: pageToDelete }));
-				}
-				yield* Effect.all([
-					sdk.CLEAR.pages,
-					notify.sendEditorNotification('page_deleted', pageToDelete.title),
-				]);
-				return apiResponseLogger(200, 'Page deleted successfully');
-			}).pipe(Notifications.Provide),
-		OPTIONS: () =>
-			Effect.try(() => OptionsResponse({ allowedMethods: ['POST', 'PATCH', 'DELETE'] })),
-		ALL: () => Effect.try(() => AllResponse()),
-	},
-	{
-		cors: { methods: ['POST', 'PATCH', 'DELETE', 'OPTIONS'] },
-		onError: (error) => {
-			console.error('API Error:', error);
-			return createJsonResponse(
-				{ error: 'Internal Server Error' },
-				{
-					status: 500,
-				}
-			);
-		},
-	}
-);

package/frontend/pages/studiocms_api/dashboard/create-reset-link.ts DELETED Viewed

@@ -1,77 +0,0 @@
-import { developerConfig } from 'studiocms:config';
-import { apiResponseLogger } from 'studiocms:logger';
-import { Notifications } from 'studiocms:notifier';
-import { SDKCore } from 'studiocms:sdk';
-import {
-	AllResponse,
-	createEffectAPIRoutes,
-	createJsonResponse,
-	Effect,
-	genLogger,
-	OptionsResponse,
-	readAPIContextJson,
-} from '@withstudiocms/effect';
-export const { POST, OPTIONS, ALL } = createEffectAPIRoutes(
-	{
-		POST: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/create-reset-link.POST')(function* () {
-				const [notify, sdk] = yield* Effect.all([Notifications, SDKCore]);
-				// Check if demo mode is enabled
-				if (developerConfig.demoMode !== false) {
-					return apiResponseLogger(403, 'Demo mode is enabled, this action is not allowed.');
-				}
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isAdmin;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const { userId } = yield* readAPIContextJson<{ userId: string }>(ctx);
-				if (!userId) {
-					return apiResponseLogger(400, 'Invalid form data, userId is required');
-				}
-				const token = yield* sdk.resetTokenBucket.new(userId);
-				if (!token) {
-					return apiResponseLogger(500, 'Failed to create reset link');
-				}
-				const user = yield* sdk.GET.users.byId(userId);
-				if (!user) {
-					return apiResponseLogger(404, 'User not found');
-				}
-				yield* notify.sendAdminNotification('user_updated', user.username);
-				return createJsonResponse(token);
-			}).pipe(Notifications.Provide),
-		OPTIONS: () => Effect.try(() => OptionsResponse({ allowedMethods: ['POST'] })),
-		ALL: () => Effect.try(() => AllResponse()),
-	},
-	{
-		cors: { methods: ['POST', 'OPTIONS'] },
-		onError: (error) => {
-			console.error('API Error:', error);
-			return createJsonResponse(
-				{ error: 'Internal Server Error' },
-				{
-					status: 500,
-				}
-			);
-		},
-	}
-);

package/frontend/pages/studiocms_api/dashboard/create-user-invite.ts DELETED Viewed

@@ -1,231 +0,0 @@
-import { User } from 'studiocms:auth/lib';
-import { apiResponseLogger } from 'studiocms:logger';
-import { Mailer } from 'studiocms:mailer';
-import { Notifications } from 'studiocms:notifier';
-import { SDKCore } from 'studiocms:sdk';
-import templateEngine from 'studiocms:template-engine';
-import type { AvailablePermissionRanks } from '@withstudiocms/auth-kit/types';
-import {
-	AllResponse,
-	appendSearchParamsToUrl,
-	createEffectAPIRoutes,
-	createJsonResponse,
-	Effect,
-	genLogger,
-	OptionsResponse,
-	pipe,
-	readAPIContextJson,
-} from '@withstudiocms/effect';
-import type { APIContext } from 'astro';
-import { z } from 'astro/zod';
-type JSONData = {
-	username: string | undefined;
-	email: string | undefined;
-	displayname: string | undefined;
-	rank: AvailablePermissionRanks | undefined;
-	originalUrl: string;
-};
-type Token = {
-	id: string;
-	userId: string;
-	token: string;
-};
-const generateResetUrl = (
-	{
-		locals: {
-			StudioCMS: {
-				routeMap: {
-					mainLinks: { dashboardIndex },
-				},
-			},
-		},
-	}: APIContext,
-	baseUrl: string,
-	{ id, userId, token }: Token
-) => {
-	const resetURL = new URL(`${dashboardIndex}/password-reset`, baseUrl);
-	return pipe(
-		resetURL,
-		appendSearchParamsToUrl('userid', userId),
-		appendSearchParamsToUrl('token', token),
-		appendSearchParamsToUrl('id', id)
-	);
-};
-const noMailerError = (message: string, resetLink: URL) =>
-	`Failed to send email: ${message}. You can provide the following Reset link to your User: ${resetLink}`;
-export const { POST, OPTIONS, ALL } = createEffectAPIRoutes(
-	{
-		POST: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/create-user-invite.POST')(function* () {
-				const [userHelper, mailer, notify, sdk] = yield* Effect.all([
-					User,
-					Mailer,
-					Notifications,
-					SDKCore,
-				]);
-				const siteConfig = ctx.locals.StudioCMS.siteConfig.data;
-				if (!siteConfig) {
-					return apiResponseLogger(500, 'Failed to get site config');
-				}
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isAdmin;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const { username, email, displayname, rank, originalUrl } =
-					yield* readAPIContextJson<JSONData>(ctx);
-				// If the username, password, email, or display name is missing, return an error
-				if (!username) {
-					return apiResponseLogger(400, 'Missing field: Username is required');
-				}
-				if (!email) {
-					return apiResponseLogger(400, 'Missing field: Email is required');
-				}
-				if (!displayname) {
-					return apiResponseLogger(400, 'Missing field: Display name is required');
-				}
-				if (!rank) {
-					return apiResponseLogger(400, 'Missing field: Rank is required');
-				}
-				const userPerms = ctx.locals.StudioCMS.security?.userPermissionLevel;
-				if (rank === 'owner' && !userPerms?.isOwner) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// If the email is invalid, return an error
-				const checkEmail = z.coerce
-					.string()
-					.email({ message: 'Email address is invalid' })
-					.safeParse(email);
-				if (!checkEmail.success) {
-					return apiResponseLogger(400, `Invalid email: ${checkEmail.error.message}`);
-				}
-				const [verifyUsernameResponse, { usernameSearch, emailSearch }] = yield* Effect.all([
-					userHelper.verifyUsernameInput(username),
-					sdk.AUTH.user.searchUsersForUsernameOrEmail(username, checkEmail.data),
-				]);
-				if (verifyUsernameResponse !== true) {
-					return apiResponseLogger(400, verifyUsernameResponse);
-				}
-				if (usernameSearch.length > 0) {
-					return apiResponseLogger(400, 'Invalid username: Username is already in use');
-				}
-				if (emailSearch.length > 0) {
-					return apiResponseLogger(400, 'Invalid email: Email is already in use');
-				}
-				// Creates a new user invite
-				const token = yield* sdk.AUTH.user
-					.create(
-						{
-							username,
-							email: checkEmail.data,
-							name: displayname,
-							createdAt: new Date().toISOString(),
-							id: crypto.randomUUID(),
-							avatar: undefined,
-							emailVerified: false,
-							notifications: undefined,
-							password: undefined,
-							updatedAt: new Date().toISOString(),
-							url: undefined,
-						},
-						rank
-					)
-					.pipe(Effect.flatMap((newUser) => sdk.resetTokenBucket.new(newUser.id)));
-				if (!token) {
-					return apiResponseLogger(500, 'Failed to create reset token');
-				}
-				const resetLink = generateResetUrl(ctx, originalUrl, token);
-				yield* notify.sendAdminNotification('new_user', username);
-				if (siteConfig.enableMailer) {
-					const checkMailConnection = yield* mailer.verifyMailConnection;
-					if (!checkMailConnection) {
-						return apiResponseLogger(
-							500,
-							noMailerError('Failed to connect to mail server', resetLink)
-						);
-					}
-					if ('error' in checkMailConnection) {
-						return apiResponseLogger(
-							500,
-							noMailerError('Failed to connect to mail server', resetLink)
-						);
-					}
-					const engine = yield* templateEngine;
-					const { title: siteTitle, description, siteIcon } = siteConfig;
-					const userInviteTemplate = yield* engine.render('userInvite', {
-						site: { title: siteTitle, description, icon: siteIcon ?? undefined },
-						data: { link: resetLink.toString() },
-					});
-					const mailResponse = yield* mailer.sendMail({
-						to: checkEmail.data,
-						subject: `You have been invited to join ${siteConfig.title}!`,
-						html: userInviteTemplate,
-					});
-					if (!mailResponse) {
-						return apiResponseLogger(500, noMailerError('Failed to send email', resetLink));
-					}
-					if ('error' in mailResponse) {
-						return apiResponseLogger(500, noMailerError(mailResponse.error, resetLink));
-					}
-					return apiResponseLogger(200, 'User invite created and email sent');
-				}
-				return apiResponseLogger(200, resetLink.toString());
-			}).pipe(Mailer.Provide, Notifications.Provide),
-		OPTIONS: () => Effect.try(() => OptionsResponse({ allowedMethods: ['POST'] })),
-		ALL: () => Effect.try(() => AllResponse()),
-	},
-	{
-		cors: { methods: ['POST', 'OPTIONS'] },
-		onError: (error) => {
-			console.error('API Error:', error);
-			return createJsonResponse(
-				{ error: 'Internal Server Error' },
-				{
-					status: 500,
-				}
-			);
-		},
-	}
-);