f8e0615cc8
These changes ensure that the new (SHA256) session ID is returned in the "session_id" field, so that developers have time to update their client implementations to use the new "access_token" field. Signed-off-by: Michael Mayer <michael@photoprism.app>
93 lines
2.1 KiB
Go
93 lines
2.1 KiB
Go
package api
|
|
|
|
import (
|
|
"net/http"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
|
|
"github.com/photoprism/photoprism/internal/acl"
|
|
"github.com/photoprism/photoprism/internal/get"
|
|
"github.com/photoprism/photoprism/internal/query"
|
|
"github.com/photoprism/photoprism/pkg/clean"
|
|
"github.com/photoprism/photoprism/pkg/react"
|
|
)
|
|
|
|
// LikePhoto flags a photo as favorite.
|
|
//
|
|
// POST /api/v1/photos/:uid/like
|
|
func LikePhoto(router *gin.RouterGroup) {
|
|
router.POST("/photos/:uid/like", func(c *gin.Context) {
|
|
s := AuthAny(c, acl.ResourcePhotos, acl.Permissions{acl.ActionUpdate, acl.ActionReact})
|
|
|
|
if s.Abort(c) {
|
|
return
|
|
}
|
|
|
|
id := clean.UID(c.Param("uid"))
|
|
m, err := query.PhotoByUID(id)
|
|
|
|
if err != nil {
|
|
AbortEntityNotFound(c)
|
|
return
|
|
}
|
|
|
|
if get.Config().Experimental() && acl.Resources.Allow(acl.ResourcePhotos, s.User().AclRole(), acl.ActionReact) {
|
|
logWarn("react", m.React(s.User(), react.Find("love")))
|
|
}
|
|
|
|
if acl.Resources.Allow(acl.ResourcePhotos, s.User().AclRole(), acl.ActionUpdate) {
|
|
err = m.SetFavorite(true)
|
|
|
|
if err != nil {
|
|
log.Errorf("photo: %s", err.Error())
|
|
AbortSaveFailed(c)
|
|
return
|
|
}
|
|
|
|
SavePhotoAsYaml(m)
|
|
PublishPhotoEvent(StatusUpdated, id, c)
|
|
}
|
|
|
|
c.JSON(http.StatusOK, gin.H{"photo": m})
|
|
})
|
|
}
|
|
|
|
// DislikePhoto removes the favorite flags from a photo.
|
|
//
|
|
// DELETE /api/v1/photos/:uid/like
|
|
func DislikePhoto(router *gin.RouterGroup) {
|
|
router.DELETE("/photos/:uid/like", func(c *gin.Context) {
|
|
s := AuthAny(c, acl.ResourcePhotos, acl.Permissions{acl.ActionUpdate, acl.ActionReact})
|
|
|
|
if s.Abort(c) {
|
|
return
|
|
}
|
|
|
|
id := clean.UID(c.Param("uid"))
|
|
m, err := query.PhotoByUID(id)
|
|
|
|
if err != nil {
|
|
AbortEntityNotFound(c)
|
|
return
|
|
}
|
|
|
|
if get.Config().Experimental() && acl.Resources.Allow(acl.ResourcePhotos, s.User().AclRole(), acl.ActionReact) {
|
|
logWarn("react", m.UnReact(s.User()))
|
|
}
|
|
|
|
if acl.Resources.Allow(acl.ResourcePhotos, s.User().AclRole(), acl.ActionUpdate) {
|
|
err = m.SetFavorite(false)
|
|
|
|
if err != nil {
|
|
log.Errorf("photo: %s", err.Error())
|
|
AbortSaveFailed(c)
|
|
return
|
|
}
|
|
|
|
SavePhotoAsYaml(m)
|
|
PublishPhotoEvent(StatusUpdated, id, c)
|
|
}
|
|
|
|
c.JSON(http.StatusOK, gin.H{"photo": m})
|
|
})
|
|
}
|