41 lines
1004 B
TypeScript
41 lines
1004 B
TypeScript
import { Handlers } from 'fresh/server.ts';
|
|
|
|
import { DirectoryFile, FreshContextState } from '/lib/types.ts';
|
|
import { getFiles } from '/lib/data/files.ts';
|
|
|
|
interface Data {}
|
|
|
|
export interface RequestBody {
|
|
parentPath: string;
|
|
}
|
|
|
|
export interface ResponseBody {
|
|
success: boolean;
|
|
files: DirectoryFile[];
|
|
}
|
|
|
|
export const handler: Handlers<Data, FreshContextState> = {
|
|
async POST(request, context) {
|
|
if (!context.state.user) {
|
|
return new Response('Unauthorized', { status: 401 });
|
|
}
|
|
|
|
const requestBody = await request.clone().json() as RequestBody;
|
|
|
|
if (
|
|
!requestBody.parentPath || !requestBody.parentPath.startsWith('/') || requestBody.parentPath.includes('../')
|
|
) {
|
|
return new Response('Bad Request', { status: 400 });
|
|
}
|
|
|
|
const files = await getFiles(
|
|
context.state.user.id,
|
|
requestBody.parentPath,
|
|
);
|
|
|
|
const responseBody: ResponseBody = { success: true, files };
|
|
|
|
return new Response(JSON.stringify(responseBody));
|
|
},
|
|
};
|