krikkert/habitica
1
0
Fork 0
mirror of https://github.com/HabitRPG/habitica.git synced 2025-12-19 15:48:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
e387585d6dc2f65ed626724f0d72f3ac41f03858
habitica/website/server/controllers/api-v4/admin.js
Phillip Thelen e387585d6d search improvements
2024-08-19 16:15:14 +02:00

66 lines
2.0 KiB
JavaScript
Raw Blame History

import validator from 'validator';
import { authWithHeaders } from '../../middlewares/auth';
import { ensurePermission } from '../../middlewares/ensureAccessRight';
import { model as User } from '../../models/user';
const api = {};
/**
* @api {get} /api/v4/admin/search/:userIdentifier Search for users by username or email
* @apiParam (Path) {String} userIdentifier The username or email of the user to search for
* @apiName SearchUsers
* @apiGroup Admin
* @apiPermission Admin
*
* @apiDescription Returns a list of users that match the search criteria
*
* @apiSuccess {Object} data The User list
*
* @apiUse NoAuthHeaders
* @apiUse NoAccount
* @apiUse NoUser
* @apiUse NotAdmin
*/
api.getHero = {
method: 'GET',
url: '/admin/search/:userIdentifier',
middlewares: [authWithHeaders(), ensurePermission('userSupport')],
async handler (req, res) {
req.checkParams('userIdentifier', res.t('userIdentifierRequired')).notEmpty();
const validationErrors = req.validationErrors();
if (validationErrors) throw validationErrors;
const { userIdentifier } = req.params;
const re = new RegExp(String.raw`${userIdentifier.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}`);
let query;
if (validator.isUUID(userIdentifier)) {
query = { _id: userIdentifier };
} else if (validator.isEmail(userIdentifier)) {
query = {
$or: [
{ 'auth.local.email': { $regex: re, $options: 'i' } },
{ 'auth.google.emails.value': { $regex: re, $options: 'i' } },
{ 'auth.apple.emails.value': { $regex: re, $options: 'i' } },
{ 'auth.facebook.emails.value': { $regex: re, $options: 'i' } },
],
};
} else {
query = { 'auth.local.lowerCaseUsername': { $regex: re, $options: 'i' } };
}
const users = await User
.find(query)
.select('contributor backer profile auth')
.limit(30)
.sort({ 'auth.timestamps.loggedin': 1 })
.lean()
.exec();
res.respond(200, users);
},
};
export default api;
Reference in New Issue View Git Blame Copy Permalink