package api import ( "net/http" "strings" "github.com/gin-gonic/gin" "github.com/photoprism/photoprism/internal/acl" "github.com/photoprism/photoprism/internal/entity" "github.com/photoprism/photoprism/internal/event" "github.com/photoprism/photoprism/internal/form" "github.com/photoprism/photoprism/internal/i18n" "github.com/photoprism/photoprism/internal/query" "github.com/photoprism/photoprism/pkg/sanitize" "github.com/photoprism/photoprism/pkg/txt" ) // PUT /api/v1/:entity/:uid/links/:link func UpdateLink(c *gin.Context) { s := Auth(SessionID(c), acl.ResourceLinks, acl.ActionUpdate) if s.Invalid() { AbortUnauthorized(c) return } var f form.Link if err := c.BindJSON(&f); err != nil { AbortBadRequest(c) return } link := entity.FindLink(sanitize.Token(c.Param("link"))) link.SetSlug(f.ShareSlug) link.MaxViews = f.MaxViews link.LinkExpires = f.LinkExpires if f.LinkToken != "" { link.LinkToken = strings.TrimSpace(strings.ToLower(f.LinkToken)) } if f.Password != "" { if err := link.SetPassword(f.Password); err != nil { c.AbortWithStatusJSON(http.StatusConflict, gin.H{"error": txt.UcFirst(err.Error())}) return } } if err := link.Save(); err != nil { c.AbortWithStatusJSON(http.StatusConflict, gin.H{"error": txt.UcFirst(err.Error())}) return } UpdateClientConfig() event.SuccessMsg(i18n.MsgAlbumSaved) PublishAlbumEvent(EntityUpdated, link.ShareUID, c) c.JSON(http.StatusOK, link) } // DELETE /api/v1/:entity/:uid/links/:link func DeleteLink(c *gin.Context) { s := Auth(SessionID(c), acl.ResourceLinks, acl.ActionDelete) if s.Invalid() { AbortUnauthorized(c) return } link := entity.FindLink(sanitize.Token(c.Param("link"))) if err := link.Delete(); err != nil { c.AbortWithStatusJSON(http.StatusConflict, gin.H{"error": txt.UcFirst(err.Error())}) return } UpdateClientConfig() event.SuccessMsg(i18n.MsgAlbumSaved) PublishAlbumEvent(EntityUpdated, link.ShareUID, c) c.JSON(http.StatusOK, link) } // CreateLink returns a new link entity initialized with request data func CreateLink(c *gin.Context) { s := Auth(SessionID(c), acl.ResourceLinks, acl.ActionCreate) if s.Invalid() { AbortUnauthorized(c) return } var f form.Link if err := c.BindJSON(&f); err != nil { AbortBadRequest(c) return } link := entity.NewLink(sanitize.IdString(c.Param("uid")), f.CanComment, f.CanEdit) link.SetSlug(f.ShareSlug) link.MaxViews = f.MaxViews link.LinkExpires = f.LinkExpires if f.Password != "" { if err := link.SetPassword(f.Password); err != nil { c.AbortWithStatusJSON(http.StatusConflict, gin.H{"error": txt.UcFirst(err.Error())}) return } } if err := link.Save(); err != nil { c.AbortWithStatusJSON(http.StatusConflict, gin.H{"error": txt.UcFirst(err.Error())}) return } UpdateClientConfig() event.SuccessMsg(i18n.MsgAlbumSaved) PublishAlbumEvent(EntityUpdated, link.ShareUID, c) c.JSON(http.StatusOK, link) } // POST /api/v1/albums/:uid/links func CreateAlbumLink(router *gin.RouterGroup) { router.POST("/albums/:uid/links", func(c *gin.Context) { if _, err := query.AlbumByUID(sanitize.IdString(c.Param("uid"))); err != nil { Abort(c, http.StatusNotFound, i18n.ErrAlbumNotFound) return } CreateLink(c) }) } // PUT /api/v1/albums/:uid/links/:link func UpdateAlbumLink(router *gin.RouterGroup) { router.PUT("/albums/:uid/links/:link", func(c *gin.Context) { UpdateLink(c) }) } // DELETE /api/v1/albums/:uid/links/:link func DeleteAlbumLink(router *gin.RouterGroup) { router.DELETE("/albums/:uid/links/:link", func(c *gin.Context) { DeleteLink(c) }) } // GET /api/v1/albums/:uid/links func GetAlbumLinks(router *gin.RouterGroup) { router.GET("/albums/:uid/links", func(c *gin.Context) { m, err := query.AlbumByUID(sanitize.IdString(c.Param("uid"))) if err != nil { Abort(c, http.StatusNotFound, i18n.ErrAlbumNotFound) return } c.JSON(http.StatusOK, m.Links()) }) } // POST /api/v1/photos/:uid/links func CreatePhotoLink(router *gin.RouterGroup) { router.POST("/photos/:uid/links", func(c *gin.Context) { if _, err := query.PhotoByUID(sanitize.IdString(c.Param("uid"))); err != nil { AbortEntityNotFound(c) return } CreateLink(c) }) } // PUT /api/v1/photos/:uid/links/:link func UpdatePhotoLink(router *gin.RouterGroup) { router.PUT("/photos/:uid/links/:link", func(c *gin.Context) { UpdateLink(c) }) } // DELETE /api/v1/photos/:uid/links/:link func DeletePhotoLink(router *gin.RouterGroup) { router.DELETE("/photos/:uid/links/:link", func(c *gin.Context) { DeleteLink(c) }) } // GET /api/v1/photos/:uid/links func GetPhotoLinks(router *gin.RouterGroup) { router.GET("/photos/:uid/links", func(c *gin.Context) { m, err := query.PhotoByUID(sanitize.IdString(c.Param("uid"))) if err != nil { Abort(c, http.StatusNotFound, i18n.ErrAlbumNotFound) return } c.JSON(http.StatusOK, m.Links()) }) } // POST /api/v1/labels/:uid/links func CreateLabelLink(router *gin.RouterGroup) { router.POST("/labels/:uid/links", func(c *gin.Context) { if _, err := query.LabelByUID(sanitize.IdString(c.Param("uid"))); err != nil { Abort(c, http.StatusNotFound, i18n.ErrLabelNotFound) return } CreateLink(c) }) } // PUT /api/v1/labels/:uid/links/:link func UpdateLabelLink(router *gin.RouterGroup) { router.PUT("/labels/:uid/links/:link", func(c *gin.Context) { UpdateLink(c) }) } // DELETE /api/v1/labels/:uid/links/:link func DeleteLabelLink(router *gin.RouterGroup) { router.DELETE("/labels/:uid/links/:link", func(c *gin.Context) { DeleteLink(c) }) } // GET /api/v1/labels/:uid/links func GetLabelLinks(router *gin.RouterGroup) { router.GET("/labels/:uid/links", func(c *gin.Context) { m, err := query.LabelByUID(sanitize.IdString(c.Param("uid"))) if err != nil { Abort(c, http.StatusNotFound, i18n.ErrAlbumNotFound) return } c.JSON(http.StatusOK, m.Links()) }) }