1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
|
import {
extendZodWithOpenApi,
OpenAPIRegistry,
} from "@asteasolutions/zod-to-openapi";
import { z } from "zod";
import { updateUserSchema } from "@karakeep/shared/types/admin";
import { BearerAuth } from "./common";
export const registry = new OpenAPIRegistry();
extendZodWithOpenApi(z);
const updateUserRequestSchema = updateUserSchema.omit({ userId: true });
const updateUserResponseSchema = z.object({
success: z.boolean(),
});
registry.registerPath({
method: "put",
path: "/admin/users/{userId}",
description:
"Update a user's role, bookmark quota, or storage quota. Admin access required.",
summary: "Update user",
tags: ["Admin"],
security: [{ [BearerAuth.name]: [] }],
request: {
params: z.object({
userId: z.string().openapi({
description: "The ID of the user to update",
example: "user_123",
}),
}),
body: {
content: {
"application/json": {
schema: updateUserRequestSchema.openapi({
description: "User update data",
example: {
role: "admin",
bookmarkQuota: 1000,
storageQuota: 5000000000,
},
}),
},
},
},
},
responses: {
200: {
description: "User updated successfully",
content: {
"application/json": {
schema: updateUserResponseSchema,
},
},
},
400: {
description: "Bad request - Invalid input data or cannot update own user",
content: {
"application/json": {
schema: z.object({
error: z.string(),
}),
},
},
},
401: {
description: "Unauthorized - Authentication required",
content: {
"application/json": {
schema: z.object({
error: z.string(),
}),
},
},
},
403: {
description: "Forbidden - Admin access required",
content: {
"application/json": {
schema: z.object({
error: z.string(),
}),
},
},
},
404: {
description: "User not found",
content: {
"application/json": {
schema: z.object({
error: z.string(),
}),
},
},
},
},
});
|
