forked from AkkomaGang/akkoma
2ab9499258
Transforming scopes is no longer necessary since we are dropping support for accessing admin api without `admin:` prefix in scopes.
41 lines
1.3 KiB
Elixir
41 lines
1.3 KiB
Elixir
# Pleroma: A lightweight social networking server
|
|
# Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/>
|
|
# SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
defmodule Pleroma.Web.AdminAPI.InstanceDocumentController do
|
|
use Pleroma.Web, :controller
|
|
|
|
alias Pleroma.Web.InstanceDocument
|
|
alias Pleroma.Web.Plugs.InstanceStatic
|
|
alias Pleroma.Web.Plugs.OAuthScopesPlug
|
|
|
|
plug(Pleroma.Web.ApiSpec.CastAndValidate)
|
|
|
|
action_fallback(Pleroma.Web.AdminAPI.FallbackController)
|
|
|
|
defdelegate open_api_operation(action), to: Pleroma.Web.ApiSpec.Admin.InstanceDocumentOperation
|
|
|
|
plug(OAuthScopesPlug, %{scopes: ["admin:read"]} when action == :show)
|
|
plug(OAuthScopesPlug, %{scopes: ["admin:write"]} when action in [:update, :delete])
|
|
|
|
def show(conn, %{name: document_name}) do
|
|
with {:ok, url} <- InstanceDocument.get(document_name),
|
|
{:ok, content} <- File.read(InstanceStatic.file_path(url)) do
|
|
conn
|
|
|> put_resp_content_type("text/html")
|
|
|> send_resp(200, content)
|
|
end
|
|
end
|
|
|
|
def update(%{body_params: %{file: file}} = conn, %{name: document_name}) do
|
|
with {:ok, url} <- InstanceDocument.put(document_name, file.path) do
|
|
json(conn, %{"url" => url})
|
|
end
|
|
end
|
|
|
|
def delete(conn, %{name: document_name}) do
|
|
with :ok <- InstanceDocument.delete(document_name) do
|
|
json(conn, %{})
|
|
end
|
|
end
|
|
end
|