2024-10-30 17:59:44 +00:00
|
|
|
/*\
|
|
|
|
|
title: $:/plugins/tiddlywiki/multiwikiserver/routes/handlers/post-role.js
|
|
|
|
|
type: application/javascript
|
|
|
|
|
module-type: mws-route
|
|
|
|
|
|
|
|
|
|
POST /admin/post-role
|
|
|
|
|
|
|
|
|
|
\*/
|
|
|
|
|
(function () {
|
|
|
|
|
|
2024-11-08 10:09:42 +00:00
|
|
|
/*jslint node: true, browser: true */
|
|
|
|
|
/*global $tw: false */
|
|
|
|
|
"use strict";
|
2024-10-30 17:59:44 +00:00
|
|
|
|
2024-11-08 10:09:42 +00:00
|
|
|
exports.method = "POST";
|
2024-10-30 17:59:44 +00:00
|
|
|
|
2024-11-08 10:09:42 +00:00
|
|
|
exports.path = /^\/admin\/post-role\/?$/;
|
2024-10-30 17:59:44 +00:00
|
|
|
|
2024-11-08 10:09:42 +00:00
|
|
|
exports.bodyFormat = "www-form-urlencoded";
|
2024-10-30 17:59:44 +00:00
|
|
|
|
2024-11-08 10:09:42 +00:00
|
|
|
exports.csrfDisable = true;
|
2024-10-30 17:59:44 +00:00
|
|
|
|
2024-11-08 10:09:42 +00:00
|
|
|
exports.handler = function (request, response, state) {
|
|
|
|
|
var sqlTiddlerDatabase = state.server.sqlTiddlerDatabase;
|
|
|
|
|
var role_name = state.data.role_name;
|
|
|
|
|
var role_description = state.data.role_description;
|
2024-10-30 17:59:44 +00:00
|
|
|
|
2024-11-20 08:10:16 +00:00
|
|
|
if(!state.authenticatedUser || !state.authenticatedUser.isAdmin) {
|
|
|
|
|
$tw.mws.store.adminWiki.addTiddler(new $tw.Tiddler({
|
|
|
|
|
title: "$:/temp/mws/post-role/error",
|
|
|
|
|
text: "Unauthorized access. Admin privileges required."
|
|
|
|
|
}));
|
|
|
|
|
response.writeHead(302, { "Location": "/login" });
|
|
|
|
|
response.end();
|
|
|
|
|
return;
|
|
|
|
|
}
|
2024-10-30 17:59:44 +00:00
|
|
|
|
2024-11-20 08:10:16 +00:00
|
|
|
if(!role_name || !role_description) {
|
|
|
|
|
$tw.mws.store.adminWiki.addTiddler(new $tw.Tiddler({
|
|
|
|
|
title: "$:/temp/mws/post-role/error",
|
|
|
|
|
text: "Role name and description are required"
|
|
|
|
|
}));
|
|
|
|
|
response.writeHead(302, { "Location": "/admin/roles" });
|
|
|
|
|
response.end();
|
|
|
|
|
return;
|
|
|
|
|
}
|
2024-10-30 17:59:44 +00:00
|
|
|
|
2024-11-20 08:10:16 +00:00
|
|
|
try {
|
|
|
|
|
// Check if role already exists
|
|
|
|
|
var existingRole = sqlTiddlerDatabase.getRole(role_name);
|
|
|
|
|
if(existingRole) {
|
|
|
|
|
$tw.mws.store.adminWiki.addTiddler(new $tw.Tiddler({
|
|
|
|
|
title: "$:/temp/mws/post-role/error",
|
|
|
|
|
text: "Role already exists"
|
|
|
|
|
}));
|
|
|
|
|
response.writeHead(302, { "Location": "/admin/roles" });
|
|
|
|
|
response.end();
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sqlTiddlerDatabase.createRole(role_name, role_description);
|
|
|
|
|
|
|
|
|
|
$tw.mws.store.adminWiki.addTiddler(new $tw.Tiddler({
|
|
|
|
|
title: "$:/temp/mws/post-role/success",
|
|
|
|
|
text: "Role created successfully"
|
|
|
|
|
}));
|
|
|
|
|
response.writeHead(302, { "Location": "/admin/roles" });
|
|
|
|
|
response.end();
|
|
|
|
|
|
|
|
|
|
} catch(error) {
|
|
|
|
|
console.error("Error creating role:", error);
|
|
|
|
|
$tw.mws.store.adminWiki.addTiddler(new $tw.Tiddler({
|
|
|
|
|
title: "$:/temp/mws/post-role/error",
|
|
|
|
|
text: "Error creating role: " + error.message
|
|
|
|
|
}));
|
|
|
|
|
response.writeHead(302, { "Location": "/admin/roles" });
|
|
|
|
|
response.end();
|
|
|
|
|
return;
|
|
|
|
|
}
|
2024-11-08 10:09:42 +00:00
|
|
|
};
|
2024-10-30 17:59:44 +00:00
|
|
|
|
|
|
|
|
}());
|
