tatorte only available via token
This commit is contained in:
@@ -1,10 +1,16 @@
|
||||
import { type ServerLoadEvent } from '@sveltejs/kit';
|
||||
import type { PageServerLoad } from '../anmeldung/$types';
|
||||
import { checkIfVorgangExists, hasValidToken } from '$lib/server/vorgangService';
|
||||
import { redirect } from '@sveltejs/kit';
|
||||
import type { PageServerLoad } from './list/[vorgang]/$types';
|
||||
|
||||
export const load: PageServerLoad = async ({params, url}) => {
|
||||
|
||||
const caseId = params.vorgang;
|
||||
const caseToken = url.searchParams.get('token');
|
||||
|
||||
const isVorgangValid = await checkIfVorgangExists(caseId);
|
||||
const isTokenValid = await hasValidToken(caseId, caseToken);
|
||||
|
||||
if(!isVorgangValid || !isTokenValid) throw redirect(303, `/anmeldung`);
|
||||
|
||||
|
||||
export const load: PageServerLoad = (event: ServerLoadEvent) => {
|
||||
if (event.locals.user) {
|
||||
return {
|
||||
user: event.locals.user
|
||||
};
|
||||
}
|
||||
};
|
||||
|
||||
@@ -1,28 +1,14 @@
|
||||
import { checkIfVorgangExists } from '$lib/server/vorgangService';
|
||||
import { hasValidToken } from '$lib/server/vorgangService';
|
||||
import { getVorgangByCaseId } from '$lib/server/vorgangService';
|
||||
import type { PageServerLoad } from '../../view/$types';
|
||||
import type { PageServerLoad } from './$types';
|
||||
|
||||
export const load: PageServerLoad = async ({ params, url }) => {
|
||||
const caseId = params.vorgang;
|
||||
const caseToken = url.searchParams.get('token');
|
||||
|
||||
const isVorgangValid = await checkIfVorgangExists(caseId);
|
||||
if (isVorgangValid !== true) {
|
||||
return {
|
||||
error: 'Vorgang wurde nicht gefunden.'
|
||||
};
|
||||
}
|
||||
const isTokenValid = await hasValidToken(caseId, caseToken);
|
||||
if (isTokenValid !== true) {
|
||||
return {
|
||||
error: 'Zugriffscode ist ungültig.'
|
||||
};
|
||||
}
|
||||
|
||||
const crimesList = await getVorgangByCaseId(caseId);
|
||||
|
||||
return {
|
||||
crimesList
|
||||
crimesList,
|
||||
caseToken
|
||||
};
|
||||
};
|
||||
|
||||
@@ -27,6 +27,7 @@
|
||||
}
|
||||
|
||||
const crimesList: ListItem[] = data.crimesList;
|
||||
const token: string = data.caseToken;
|
||||
|
||||
let open = false;
|
||||
$: open;
|
||||
@@ -138,7 +139,7 @@
|
||||
{#each crimesList as item, i}
|
||||
<li>
|
||||
<a
|
||||
href="/view/{$page.params.vorgang}/{item.name}"
|
||||
href="/view/{$page.params.vorgang}/{item.name}?token={token}"
|
||||
class=" flex justify-between gap-x-6 py-5"
|
||||
aria-label="zum 3D-modell"
|
||||
>
|
||||
@@ -206,9 +207,8 @@
|
||||
let url = new URL($page.url);
|
||||
url.pathname += `/${filename}`;
|
||||
|
||||
console.log(`--- ${vorgang} + ${filename} + ${url}`);
|
||||
try {
|
||||
const response = await fetch(url, { method: 'DELETE' });
|
||||
const response = await fetch(`api/${url}`, { method: 'DELETE' });
|
||||
if (response.status == 204) {
|
||||
setTimeout(() => {
|
||||
window.location.reload();
|
||||
@@ -264,12 +264,6 @@
|
||||
</Modal>
|
||||
</div>
|
||||
|
||||
{#if data.error}
|
||||
<div class="max-w-xl mx-auto bg-red-100 border border-red-400 text-red-700 px-4 py-3 rounded relative mt-4">
|
||||
<strong class="font-bold">Fehler: </strong>
|
||||
<span class="block sm:inline">{data.error}</span>
|
||||
</div>
|
||||
{/if}
|
||||
<style>
|
||||
ul {
|
||||
min-width: 24rem;
|
||||
|
||||
@@ -1,11 +0,0 @@
|
||||
import { BUCKET, client } from '$lib/minio';
|
||||
|
||||
export async function DELETE({ request }: { request: Request }) {
|
||||
const url_fragments = request.url.split('/');
|
||||
const item = url_fragments.at(-1);
|
||||
const vorgang = url_fragments.at(-2);
|
||||
|
||||
await client.removeObject(BUCKET, `${vorgang}/${item}`);
|
||||
|
||||
return new Response(null, { status: 204 });
|
||||
}
|
||||
@@ -1,6 +1,5 @@
|
||||
import { redirect } from '@sveltejs/kit';
|
||||
|
||||
/** @type {import('./$types').Actions} */
|
||||
export const actions = {
|
||||
default: async ({request}: {request: Request}) => {
|
||||
const data = await request.formData();
|
||||
|
||||
@@ -1,7 +1,6 @@
|
||||
import { client } from '$lib/minio';
|
||||
import type { PageServerLoad } from './$types';
|
||||
|
||||
/** @type {import('./$types').PageServerLoad} */
|
||||
export const load: PageServerLoad = async ({ params }) => {
|
||||
const { vorgang, tatort } = params;
|
||||
const url = await client.presignedUrl('GET', 'tatort', `${vorgang}/${tatort}`);
|
||||
|
||||
@@ -11,9 +11,9 @@ export const actions = {
|
||||
const caseToken = data.get('case-token');
|
||||
|
||||
const isVorgangValid = await checkIfVorgangExists(caseId);
|
||||
if (isVorgangValid !== true) return isVorgangValid;
|
||||
if (!isVorgangValid) return isVorgangValid;
|
||||
const isTokenValid = await hasValidToken(caseId, caseToken);
|
||||
if ( isTokenValid !== true) return isTokenValid;
|
||||
if (!isTokenValid) return isTokenValid;
|
||||
|
||||
throw redirect(303, `/list/${caseId}?token=${caseToken}`);
|
||||
}
|
||||
|
||||
@@ -1,7 +1,7 @@
|
||||
import { client } from '$lib/minio';
|
||||
import { BUCKET, client } from '$lib/minio';
|
||||
|
||||
export async function GET() {
|
||||
const stream = client.listObjectsV2('tatort', '', true);
|
||||
const stream = client.listObjectsV2(BUCKET, '', true);
|
||||
const result = new ReadableStream({
|
||||
start(controller) {
|
||||
stream.on('data', (data) => {
|
||||
@@ -22,3 +22,14 @@ export async function GET() {
|
||||
}
|
||||
});
|
||||
}
|
||||
|
||||
|
||||
export async function DELETE({ request }: { request: Request }) {
|
||||
const url_fragments = request.url.split('/');
|
||||
const item = url_fragments.at(-1);
|
||||
const vorgang = url_fragments.at(-2);
|
||||
|
||||
await client.removeObject(BUCKET, `${vorgang}/${item}`);
|
||||
|
||||
return new Response(null, { status: 204 });
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user