strapi/packages/strapi-admin/controllers/user.js

'use strict';

const _ = require('lodash');
const {
  validateUserCreationInput,
  validateUserUpdateInput,
  validateUsersDeleteInput,
} = require('../validation/user');

module.exports = {
  async create(ctx) {
    const { body } = ctx.request;

    try {
      await validateUserCreationInput(body);
    } catch (err) {
      return ctx.badRequest('ValidationError', err);
    }

    const attributes = _.pick(body, ['firstname', 'lastname', 'email', 'roles']);

    const userAlreadyExists = await strapi.admin.services.user.exists({
      email: attributes.email,
    });

    if (userAlreadyExists) {
      return ctx.badRequest('Email already taken');
    }

    const createdUser = await strapi.admin.services.user.create(attributes);

    const userInfo = strapi.admin.services.user.sanitizeUser(createdUser);

    // Send 201 created
    ctx.created({ data: userInfo });
  },

  async find(ctx) {
    const method = _.has(ctx.query, '_q') ? 'searchPage' : 'findPage';

    const { results, pagination } = await strapi.admin.services.user[method](ctx.query);

    ctx.body = {
      data: {
        results: results.map(strapi.admin.services.user.sanitizeUser),
        pagination,
      },
    };
  },

  async findOne(ctx) {
    const { id } = ctx.params;

    const user = await strapi.admin.services.user.findOne({ id });

    if (!user) {
      return ctx.notFound('User does not exist');
    }

    ctx.body = {
      data: strapi.admin.services.user.sanitizeUser(user),
    };
  },

  async update(ctx) {
    const { id } = ctx.params;
    const { body: input } = ctx.request;

    try {
      await validateUserUpdateInput(input);
    } catch (err) {
      return ctx.badRequest('ValidationError', err);
    }

    if (_.has(input, 'email')) {
      const uniqueEmailCheck = await strapi.admin.services.user.exists({
        id_ne: id,
        email: input.email,
      });

      if (uniqueEmailCheck) {
        return ctx.badRequest('A user with this email address already exists');
      }
    }

    const updatedUser = await strapi.admin.services.user.updateById(id, input);

    if (!updatedUser) {
      return ctx.notFound('User does not exist');
    }

    ctx.body = {
      data: strapi.admin.services.user.sanitizeUser(updatedUser),
    };
  },

  async deleteOne(ctx) {
    const { id } = ctx.params;

    const deletedUser = await strapi.admin.services.user.deleteById(id);

    if (!deletedUser) {
      return ctx.notFound('User not found');
    }

    return ctx.deleted({
      data: strapi.admin.services.user.sanitizeUser(deletedUser),
    });
  },

  /**
   * Delete several users
   * @param {KoaContext} ctx - koa context
   */
  async deleteMany(ctx) {
    const { body } = ctx.request;
    try {
      await validateUsersDeleteInput(body);
    } catch (err) {
      return ctx.badRequest('ValidationError', err);
    }

    const users = await strapi.admin.services.user.deleteByIds(body.ids);
    const sanitizedUsers = users.map(strapi.admin.services.user.sanitizeUser);

    return ctx.deleted({
      data: sanitizedUsers,
    });
  },
};
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00			`'use strict';`

			`const _ = require('lodash');`
add batch delete for users Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-07-15 15:46:59 +02:00			`const {`
			`validateUserCreationInput,`
			`validateUserUpdateInput,`
			`validateUsersDeleteInput,`
			`} = require('../validation/user');`
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00
			`module.exports = {`
			`async create(ctx) {`
			`const { body } = ctx.request;`

Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00			`try {`
			`await validateUserCreationInput(body);`
			`} catch (err) {`
Fix badRequest error shape Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-15 09:34:49 +02:00			`return ctx.badRequest('ValidationError', err);`
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00			`}`

Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00			`const attributes = _.pick(body, ['firstname', 'lastname', 'email', 'roles']);`
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00
			`const userAlreadyExists = await strapi.admin.services.user.exists({`
Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00			`email: attributes.email,`
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00			`});`

			`if (userAlreadyExists) {`
Add e2e tests, fix validation for mongoose, update services Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 18:54:52 +02:00			`return ctx.badRequest('Email already taken');`
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00			`}`

Add e2e tests, fix validation for mongoose, update services Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 18:54:52 +02:00			`const createdUser = await strapi.admin.services.user.create(attributes);`
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00			`const userInfo = strapi.admin.services.user.sanitizeUser(createdUser);`

Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00			`// Send 201 created`
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00			`ctx.created({ data: userInfo });`
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00			`},`
Add GET /admin/users route and new pagination system Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-19 10:55:52 +02:00
			`async find(ctx) {`
fix PR comments, move pagination logic to the database layer, handle searches Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-19 16:10:53 +02:00			`const method = _.has(ctx.query, '_q') ? 'searchPage' : 'findPage';`

			`const { results, pagination } = await strapi.admin.services.user[method](ctx.query);`
Fix response object shape for get /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-19 11:06:07 +02:00
Add tests for user controller/service/api Fix e2e tests, add default role to match .min(1) condition 2020-05-29 11:41:53 +02:00			`ctx.body = {`
fix PR comments, move pagination logic to the database layer, handle searches Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-19 16:10:53 +02:00			`data: {`
			`results: results.map(strapi.admin.services.user.sanitizeUser),`
			`pagination,`
			`},`
Fix response object shape for get /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-19 11:06:07 +02:00			`};`
Add GET /admin/users route and new pagination system Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-19 10:55:52 +02:00			`},`
Add update user route in the user api 2020-05-27 16:06:15 +02:00
Add GET /admin/users/:id route 2020-05-28 14:03:48 +02:00			`async findOne(ctx) {`
			`const { id } = ctx.params;`

			`const user = await strapi.admin.services.user.findOne({ id });`

			`if (!user) {`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`return ctx.notFound('User does not exist');`
Add GET /admin/users/:id route 2020-05-28 14:03:48 +02:00			`}`

			`ctx.body = {`
			`data: strapi.admin.services.user.sanitizeUser(user),`
			`};`
			`},`

Add update user route in the user api 2020-05-27 16:06:15 +02:00			`async update(ctx) {`
			`const { id } = ctx.params;`
			`const { body: input } = ctx.request;`

			`try {`
			`await validateUserUpdateInput(input);`
			`} catch (err) {`
			`return ctx.badRequest('ValidationError', err);`
			`}`

Add unique email check on update user 2020-06-04 12:34:22 +02:00			`if (_.has(input, 'email')) {`
			`const uniqueEmailCheck = await strapi.admin.services.user.exists({`
			`id_ne: id,`
			`email: input.email,`
			`});`

			`if (uniqueEmailCheck) {`
			`return ctx.badRequest('A user with this email address already exists');`
			`}`
			`}`

add upload permissions to default roles + second refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-18 18:10:12 +02:00			`const updatedUser = await strapi.admin.services.user.updateById(id, input);`
Add update user route in the user api 2020-05-27 16:06:15 +02:00
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`if (!updatedUser) {`
Fix user controller tests 2020-06-04 10:48:02 +02:00			`return ctx.notFound('User does not exist');`
Add update user route in the user api 2020-05-27 16:06:15 +02:00			`}`

			`ctx.body = {`
			`data: strapi.admin.services.user.sanitizeUser(updatedUser),`
			`};`
			`},`
first refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-18 11:40:50 +02:00
add batch delete for users Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-07-15 15:46:59 +02:00			`async deleteOne(ctx) {`
first refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-18 11:40:50 +02:00			`const { id } = ctx.params;`

prevent delete user route to delete last superAdmin Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-24 16:48:53 +02:00			`const deletedUser = await strapi.admin.services.user.deleteById(id);`
first refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-18 11:40:50 +02:00
			`if (!deletedUser) {`
			`return ctx.notFound('User not found');`
			`}`

			`return ctx.deleted({`
			`data: strapi.admin.services.user.sanitizeUser(deletedUser),`
			`});`
			`},`
add batch delete for users Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-07-15 15:46:59 +02:00
			`/**`
			`* Delete several users`
			`* @param {KoaContext} ctx - koa context`
			`*/`
			`async deleteMany(ctx) {`
			`const { body } = ctx.request;`
			`try {`
			`await validateUsersDeleteInput(body);`
			`} catch (err) {`
			`return ctx.badRequest('ValidationError', err);`
			`}`

			`const users = await strapi.admin.services.user.deleteByIds(body.ids);`
			`const sanitizedUsers = users.map(strapi.admin.services.user.sanitizeUser);`

			`return ctx.deleted({`
			`data: sanitizedUsers,`
			`});`
			`},`
Add new POST /admin/users route (controller + related services). Update User model: remove required constraint on password field. Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-13 12:27:46 +02:00			`};`