diff --git a/server/api/admin/board-channels.post.js b/server/api/admin/board-channels.post.js new file mode 100644 index 0000000..ef09370 --- /dev/null +++ b/server/api/admin/board-channels.post.js @@ -0,0 +1,29 @@ +import BoardChannel from '../../models/boardChannel.js' +import { requireAdmin } from '../../utils/auth.js' +import { validateBody } from '../../utils/validateBody.js' +import { boardChannelCreateSchema } from '../../utils/schemas.js' + +export default defineEventHandler(async (event) => { + await requireAdmin(event) + + const body = await validateBody(event, boardChannelCreateSchema) + + try { + const channel = await BoardChannel.create({ + name: body.name, + slackChannelId: body.slackChannelId, + tagSlugs: body.tagSlugs || [] + }) + + setResponseStatus(event, 201) + return { channel: channel.toObject() } + } catch (err) { + if (err.code === 11000) { + throw createError({ + statusCode: 409, + statusMessage: 'A channel with that Slack channel ID already exists' + }) + } + throw err + } +}) diff --git a/server/api/admin/board-channels/[id].delete.js b/server/api/admin/board-channels/[id].delete.js new file mode 100644 index 0000000..cae3bca --- /dev/null +++ b/server/api/admin/board-channels/[id].delete.js @@ -0,0 +1,14 @@ +import BoardChannel from '../../../models/boardChannel.js' +import { requireAdmin } from '../../../utils/auth.js' + +export default defineEventHandler(async (event) => { + await requireAdmin(event) + const id = getRouterParam(event, 'id') + + const channel = await BoardChannel.findByIdAndDelete(id) + if (!channel) { + throw createError({ statusCode: 404, statusMessage: 'Channel not found' }) + } + + return { success: true } +}) diff --git a/server/api/admin/board-channels/[id].patch.js b/server/api/admin/board-channels/[id].patch.js new file mode 100644 index 0000000..b90644d --- /dev/null +++ b/server/api/admin/board-channels/[id].patch.js @@ -0,0 +1,39 @@ +import BoardChannel from '../../../models/boardChannel.js' +import { requireAdmin } from '../../../utils/auth.js' +import { validateBody } from '../../../utils/validateBody.js' +import { boardChannelUpdateSchema } from '../../../utils/schemas.js' + +export default defineEventHandler(async (event) => { + await requireAdmin(event) + const id = getRouterParam(event, 'id') + + const body = await validateBody(event, boardChannelUpdateSchema) + + const updateData = {} + if (body.name !== undefined) updateData.name = body.name + if (body.slackChannelId !== undefined) updateData.slackChannelId = body.slackChannelId + if (body.tagSlugs !== undefined) updateData.tagSlugs = body.tagSlugs + + try { + const channel = await BoardChannel.findByIdAndUpdate( + id, + { $set: updateData }, + { new: true, runValidators: true } + ) + + if (!channel) { + throw createError({ statusCode: 404, statusMessage: 'Channel not found' }) + } + + return { channel: channel.toObject() } + } catch (err) { + if (err.statusCode) throw err + if (err.code === 11000) { + throw createError({ + statusCode: 409, + statusMessage: 'A channel with that Slack channel ID already exists' + }) + } + throw err + } +}) diff --git a/server/api/board/channels.get.js b/server/api/board/channels.get.js new file mode 100644 index 0000000..98852cf --- /dev/null +++ b/server/api/board/channels.get.js @@ -0,0 +1,10 @@ +import BoardChannel from '../../models/boardChannel.js' +import { requireAuth } from '../../utils/auth.js' + +export default defineEventHandler(async (event) => { + await requireAuth(event) + + const channels = await BoardChannel.find({}).sort({ name: 1 }).lean() + + return { channels } +}) diff --git a/server/api/board/posts.get.js b/server/api/board/posts.get.js new file mode 100644 index 0000000..f170df4 --- /dev/null +++ b/server/api/board/posts.get.js @@ -0,0 +1,24 @@ +import BoardPost from '../../models/boardPost.js' +import { requireAuth } from '../../utils/auth.js' + +export default defineEventHandler(async (event) => { + const member = await requireAuth(event) + + const query = getQuery(event) + const dbQuery = {} + + if (query.tag) { + dbQuery.tags = query.tag + } + + if (query.author) { + dbQuery.author = query.author === 'me' ? member._id : query.author + } + + const posts = await BoardPost.find(dbQuery) + .sort({ createdAt: -1 }) + .populate('author', 'name avatar circle board.slackHandle') + .lean() + + return { posts } +}) diff --git a/server/api/board/posts.post.js b/server/api/board/posts.post.js new file mode 100644 index 0000000..d14c5ee --- /dev/null +++ b/server/api/board/posts.post.js @@ -0,0 +1,28 @@ +import BoardPost from '../../models/boardPost.js' +import { requireAuth } from '../../utils/auth.js' +import { validateBody } from '../../utils/validateBody.js' +import { boardPostCreateSchema } from '../../utils/schemas.js' +import { logActivity, ACTIVITY_TYPES } from '../../utils/activityLog.js' + +export default defineEventHandler(async (event) => { + const member = await requireAuth(event) + + const body = await validateBody(event, boardPostCreateSchema) + + const post = new BoardPost({ + author: member._id, + title: body.title, + seeking: body.seeking, + offering: body.offering, + note: body.note, + tags: body.tags || [] + }) + + await post.save() + await post.populate('author', 'name avatar circle board.slackHandle') + + logActivity(member._id, ACTIVITY_TYPES.BOARD_POST_CREATED, { postId: post._id, title: post.title }) + + setResponseStatus(event, 201) + return { post: post.toObject() } +}) diff --git a/server/api/board/posts/[id].delete.js b/server/api/board/posts/[id].delete.js new file mode 100644 index 0000000..cb810ef --- /dev/null +++ b/server/api/board/posts/[id].delete.js @@ -0,0 +1,20 @@ +import BoardPost from '../../../models/boardPost.js' +import { requireAuth } from '../../../utils/auth.js' + +export default defineEventHandler(async (event) => { + const member = await requireAuth(event) + const id = getRouterParam(event, 'id') + + const post = await BoardPost.findById(id) + if (!post) { + throw createError({ statusCode: 404, statusMessage: 'Post not found' }) + } + + if (post.author.toString() !== member._id.toString()) { + throw createError({ statusCode: 403, statusMessage: 'Not authorized to delete this post' }) + } + + await post.deleteOne() + + return { success: true } +}) diff --git a/server/api/board/posts/[id].patch.js b/server/api/board/posts/[id].patch.js new file mode 100644 index 0000000..4b04fa9 --- /dev/null +++ b/server/api/board/posts/[id].patch.js @@ -0,0 +1,52 @@ +import BoardPost from '../../../models/boardPost.js' +import { requireAuth } from '../../../utils/auth.js' +import { validateBody } from '../../../utils/validateBody.js' +import { boardPostUpdateSchema } from '../../../utils/schemas.js' + +export default defineEventHandler(async (event) => { + const member = await requireAuth(event) + const id = getRouterParam(event, 'id') + + const body = await validateBody(event, boardPostUpdateSchema) + + const post = await BoardPost.findById(id) + if (!post) { + throw createError({ statusCode: 404, statusMessage: 'Post not found' }) + } + + if (post.author.toString() !== member._id.toString()) { + throw createError({ statusCode: 403, statusMessage: 'Not authorized to edit this post' }) + } + + if (body.title !== undefined) post.title = body.title + if (body.seeking !== undefined) post.seeking = body.seeking + if (body.offering !== undefined) post.offering = body.offering + if (body.note !== undefined) post.note = body.note + if (body.tags !== undefined) post.tags = body.tags + + const seeking = (post.seeking || '').trim() + const offering = (post.offering || '').trim() + if (!seeking && !offering) { + throw createError({ + statusCode: 400, + statusMessage: 'At least one of seeking or offering must be provided' + }) + } + + try { + await post.save() + } catch (err) { + if (err.name === 'ValidationError') { + throw createError({ + statusCode: 400, + statusMessage: 'Validation failed', + data: err.errors + }) + } + throw err + } + + await post.populate('author', 'name avatar circle board.slackHandle') + + return { post: post.toObject() } +}) diff --git a/server/utils/activityLog.js b/server/utils/activityLog.js index 05bfc08..afbe5a2 100644 --- a/server/utils/activityLog.js +++ b/server/utils/activityLog.js @@ -18,6 +18,7 @@ export const ACTIVITY_TYPES = { EMAIL_SENT: 'email_sent', COMMUNITY_CONNECTIONS_UPDATED: 'community_connections_updated', BOARD_UPDATED: 'board_updated', + BOARD_POST_CREATED: 'board_post_created', CONNECTION_REQUESTED: 'connection_requested', CONNECTION_CONFIRMED: 'connection_confirmed', TAG_SUGGESTED: 'tag_suggested' @@ -41,6 +42,7 @@ export const ACTIVITY_TYPE_DEFAULTS = { email_sent: 'member', community_connections_updated: 'member', board_updated: 'member', + board_post_created: 'member', connection_requested: 'member', connection_confirmed: 'member', tag_suggested: 'member'