mirror of
https://github.com/Drop-OSS/drop.git
synced 2025-11-13 00:02:37 +10:00
60abc03091
* #86 Adds delete user functionality in admin panel * Removes unnecessary code * Prevents current user from deleting itself
32 lines
896 B
TypeScript
32 lines
896 B
TypeScript
import { defineEventHandler, createError } from "h3";
|
|
import aclManager from "~/server/internal/acls";
|
|
import prisma from "~/server/internal/db/database";
|
|
|
|
export default defineEventHandler(async (h3) => {
|
|
const allowed = await aclManager.allowSystemACL(h3, ["user:delete"]);
|
|
if (!allowed)
|
|
throw createError({
|
|
statusCode: 403,
|
|
});
|
|
|
|
const userId = h3.context.params?.id;
|
|
if (!userId) {
|
|
throw createError({
|
|
statusCode: 400,
|
|
message: "No userId in route.",
|
|
});
|
|
}
|
|
if (userId === "system")
|
|
throw createError({
|
|
statusCode: 400,
|
|
statusMessage: "Cannot interact with system user.",
|
|
});
|
|
|
|
const user = await prisma.user.findUnique({ where: { id: userId } });
|
|
if (!user)
|
|
throw createError({ statusCode: 404, statusMessage: "User not found." });
|
|
|
|
await prisma.user.delete({ where: { id: userId } });
|
|
return { success: true };
|
|
});
|