aboutsummaryrefslogtreecommitdiffstats
path: root/packages/trpc/routers/feeds.ts
diff options
context:
space:
mode:
Diffstat (limited to 'packages/trpc/routers/feeds.ts')
-rw-r--r--packages/trpc/routers/feeds.ts121
1 files changed, 121 insertions, 0 deletions
diff --git a/packages/trpc/routers/feeds.ts b/packages/trpc/routers/feeds.ts
new file mode 100644
index 00000000..a8025dfb
--- /dev/null
+++ b/packages/trpc/routers/feeds.ts
@@ -0,0 +1,121 @@
+import { experimental_trpcMiddleware, TRPCError } from "@trpc/server";
+import { and, eq } from "drizzle-orm";
+import { z } from "zod";
+
+import { rssFeedsTable } from "@hoarder/db/schema";
+import { FeedQueue } from "@hoarder/shared/queues";
+import {
+ zFeedSchema,
+ zNewFeedSchema,
+ zUpdateFeedSchema,
+} from "@hoarder/shared/types/feeds";
+
+import { authedProcedure, Context, router } from "../index";
+
+export const ensureFeedOwnership = experimental_trpcMiddleware<{
+ ctx: Context;
+ input: { feedId: string };
+}>().create(async (opts) => {
+ const feed = await opts.ctx.db.query.rssFeedsTable.findFirst({
+ where: eq(rssFeedsTable.id, opts.input.feedId),
+ columns: {
+ userId: true,
+ },
+ });
+ if (!opts.ctx.user) {
+ throw new TRPCError({
+ code: "UNAUTHORIZED",
+ message: "User is not authorized",
+ });
+ }
+ if (!feed) {
+ throw new TRPCError({
+ code: "NOT_FOUND",
+ message: "Feed not found",
+ });
+ }
+ if (feed.userId != opts.ctx.user.id) {
+ throw new TRPCError({
+ code: "FORBIDDEN",
+ message: "User is not allowed to access resource",
+ });
+ }
+
+ return opts.next();
+});
+
+export const feedsAppRouter = router({
+ create: authedProcedure
+ .input(zNewFeedSchema)
+ .output(zFeedSchema)
+ .mutation(async ({ input, ctx }) => {
+ const [feed] = await ctx.db
+ .insert(rssFeedsTable)
+ .values({
+ name: input.name,
+ url: input.url,
+ userId: ctx.user.id,
+ })
+ .returning();
+ return feed;
+ }),
+ update: authedProcedure
+ .input(zUpdateFeedSchema)
+ .output(zFeedSchema)
+ .use(ensureFeedOwnership)
+ .mutation(async ({ input, ctx }) => {
+ const feed = await ctx.db
+ .update(rssFeedsTable)
+ .set({
+ name: input.name,
+ url: input.url,
+ })
+ .where(
+ and(
+ eq(rssFeedsTable.userId, ctx.user.id),
+ eq(rssFeedsTable.id, input.feedId),
+ ),
+ )
+ .returning();
+ if (feed.length == 0) {
+ throw new TRPCError({ code: "NOT_FOUND" });
+ }
+ return feed[0];
+ }),
+ list: authedProcedure
+ .output(z.object({ feeds: z.array(zFeedSchema) }))
+ .query(async ({ ctx }) => {
+ const feeds = await ctx.db.query.rssFeedsTable.findMany({
+ where: eq(rssFeedsTable.userId, ctx.user.id),
+ });
+ return { feeds };
+ }),
+ delete: authedProcedure
+ .input(
+ z.object({
+ feedId: z.string(),
+ }),
+ )
+ .use(ensureFeedOwnership)
+ .mutation(async ({ input, ctx }) => {
+ const res = await ctx.db
+ .delete(rssFeedsTable)
+ .where(
+ and(
+ eq(rssFeedsTable.userId, ctx.user.id),
+ eq(rssFeedsTable.id, input.feedId),
+ ),
+ );
+ if (res.changes == 0) {
+ throw new TRPCError({ code: "NOT_FOUND" });
+ }
+ }),
+ fetchNow: authedProcedure
+ .input(z.object({ feedId: z.string() }))
+ .use(ensureFeedOwnership)
+ .mutation(async ({ input }) => {
+ await FeedQueue.enqueue({
+ feedId: input.feedId,
+ });
+ }),
+});
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2026-01-29 11:47:50 +0000