strapi/packages/plugins/users-permissions/server/controllers/user.js

'use strict';

/**
 * User.js controller
 *
 * @description: A set of functions called "actions" for managing `User`.
 */

const _ = require('lodash');
const { sanitizeEntity } = require('@strapi/utils');
const { getService } = require('../utils');
const adminUserController = require('./user/admin');
const apiUserController = require('./user/api');

const sanitizeUser = user =>
  sanitizeEntity(user, {
    model: strapi.getModel('plugin::users-permissions.user'),
  });

const resolveController = ctx => {
  const {
    state: { isAuthenticatedAdmin },
  } = ctx;

  return isAuthenticatedAdmin ? adminUserController : apiUserController;
};

const resolveControllerMethod = method => ctx => {
  const controller = resolveController(ctx);
  const callbackFn = controller[method];

  if (!_.isFunction(callbackFn)) {
    return ctx.notFound();
  }

  return callbackFn(ctx);
};

module.exports = {
  create: resolveControllerMethod('create'),
  update: resolveControllerMethod('update'),

  /**
   * Retrieve user records.
   * @return {Object|Array}
   */
  async find(ctx, next, { populate } = {}) {
    const users = await getService('user').fetchAll(ctx.query, populate);

    ctx.body = users.map(sanitizeUser);
  },

  /**
   * Retrieve a user record.
   * @return {Object}
   */
  async findOne(ctx) {
    const { id } = ctx.params;
    let data = await getService('user').fetch({ id });

    if (data) {
      data = sanitizeUser(data);
    }

    ctx.body = data;
  },

  /**
   * Retrieve user count.
   * @return {Number}
   */
  async count(ctx) {
    ctx.body = await getService('user').count(ctx.query);
  },

  /**
   * Destroy a/an user record.
   * @return {Object}
   */
  async destroy(ctx) {
    const { id } = ctx.params;

    const data = await getService('user').remove({ id });

    ctx.send(sanitizeUser(data));
  },

  /**
   * Retrieve authenticated user.
   * @return {Object|Array}
   */
  async me(ctx) {
    const user = ctx.state.user;

    if (!user) {
      return ctx.badRequest('Unauthenticated request');
    }

    ctx.body = sanitizeUser(user);
  },
};
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`'use strict';`

			`/**`
			`* User.js controller`
			`*`
			* @description: A set of functions called "actions" for managing `User`.
			`*/`

Fix user update encrypted password 2017-12-04 15:35:45 +01:00			`const _ = require('lodash');`
Rename import & requires, fix tests 2021-04-29 13:51:12 +02:00			`const { sanitizeEntity } = require('@strapi/utils');`
Refactor all query() calls 2021-07-08 18:15:32 +02:00			`const { getService } = require('../utils');`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`const adminUserController = require('./user/admin');`
			`const apiUserController = require('./user/api');`
sanitize user model data 2019-09-12 10:50:52 +02:00
			`const sanitizeUser = user =>`
			`sanitizeEntity(user, {`
refactor with module approach 2021-08-06 18:09:49 +02:00			`model: strapi.getModel('plugin::users-permissions.user'),`
sanitize user model data 2019-09-12 10:50:52 +02:00			`});`
Fix user update encrypted password 2017-12-04 15:35:45 +01:00
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`const resolveController = ctx => {`
			`const {`
			`state: { isAuthenticatedAdmin },`
			`} = ctx;`

			`return isAuthenticatedAdmin ? adminUserController : apiUserController;`
			`};`

			`const resolveControllerMethod = method => ctx => {`
			`const controller = resolveController(ctx);`
			`const callbackFn = controller[method];`

			`if (!_.isFunction(callbackFn)) {`
			`return ctx.notFound();`
			`}`

			`return callbackFn(ctx);`
			`};`
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`module.exports = {`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`create: resolveControllerMethod('create'),`
			`update: resolveControllerMethod('update'),`

Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`/**`
			`* Retrieve user records.`
			`* @return {Object\|Array}`
			`*/`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`async find(ctx, next, { populate } = {}) {`
Fix search 2021-07-28 21:03:32 +02:00			`const users = await getService('user').fetchAll(ctx.query, populate);`
Add _q param to GET /users 2019-05-21 16:18:18 +02:00
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`ctx.body = users.map(sanitizeUser);`
added user count Signed-off-by: Walter Cossu <walter.cossu@realt.it> 2020-04-17 17:33:21 +02:00			`},`

Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`/**`
			`* Retrieve a user record.`
			`* @return {Object}`
			`*/`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`async findOne(ctx) {`
Fix user update and boolean values in DB 2019-07-16 16:26:53 +02:00			`const { id } = ctx.params;`
Use getService 2021-07-08 22:07:52 +02:00			`let data = await getService('user').fetch({ id });`
Remove password and token from fetchable data USER API / AUTH 2017-12-06 14:15:27 +01:00
			`if (data) {`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`data = sanitizeUser(data);`
Remove password and token from fetchable data USER API / AUTH 2017-12-06 14:15:27 +01:00			`}`
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`ctx.body = data;`
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`},`

			`/**`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`* Retrieve user count.`
			`* @return {Number}`
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`*/`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`async count(ctx) {`
Refactor all query() calls 2021-07-08 18:15:32 +02:00			`ctx.body = await getService('user').count(ctx.query);`
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`},`

			`/**`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`* Destroy a/an user record.`
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`* @return {Object}`
			`*/`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`async destroy(ctx) {`
Fix user update and boolean values in DB 2019-07-16 16:26:53 +02:00			`const { id } = ctx.params;`
Refactor all query() calls 2021-07-08 18:15:32 +02:00
			`const data = await getService('user').remove({ id });`

Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`ctx.send(sanitizeUser(data));`
			`},`
Fix user update and boolean values in DB 2019-07-16 16:26:53 +02:00
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`/**`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`* Retrieve authenticated user.`
			`* @return {Object\|Array}`
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`*/`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`async me(ctx) {`
			`const user = ctx.state.user;`
Handle delete many with models from users-permissions 2018-06-06 16:20:52 +02:00
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`if (!user) {`
Cleanup u-p plugin 2021-09-07 09:45:45 +02:00			`return ctx.badRequest('Unauthenticated request');`
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`}`
Handle delete many with models from users-permissions 2018-06-06 16:20:52 +02:00
Rewrote users-permissions's controller to fit with rbac, fix various bugs in content-manager's controllers Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-06 16:25:25 +02:00			`ctx.body = sanitizeUser(user);`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`},`
Init user models and fix api prefix 2017-11-14 11:11:22 +01:00			`};`