mirror of
https://github.com/Drop-OSS/drop.git
synced 2025-11-14 00:31:25 +10:00
37 lines
973 B
TypeScript
37 lines
973 B
TypeScript
import aclManager from "~/server/internal/acls";
|
|
import userLibraryManager from "~/server/internal/userlibrary";
|
|
|
|
export default defineEventHandler(async (h3) => {
|
|
const userId = await aclManager.getUserIdACL(h3, ["collections:read"]);
|
|
if (!userId)
|
|
throw createError({
|
|
statusCode: 403,
|
|
message: "Requires authentication",
|
|
});
|
|
|
|
const id = getRouterParam(h3, "id");
|
|
if (!id)
|
|
throw createError({
|
|
statusCode: 400,
|
|
message: "ID required in route params",
|
|
});
|
|
|
|
// Fetch specific collection
|
|
// Will not return the default collection
|
|
const collection = await userLibraryManager.fetchCollection(id);
|
|
if (!collection)
|
|
throw createError({
|
|
statusCode: 404,
|
|
message: "Collection not found",
|
|
});
|
|
|
|
// Verify user owns this collection
|
|
if (collection.userId !== userId)
|
|
throw createError({
|
|
statusCode: 403,
|
|
message: "Not authorized to access this collection",
|
|
});
|
|
|
|
return collection;
|
|
});
|