2022-06-14 11:01:23 +02:00
|
|
|
import ms from 'ms';
|
2022-09-17 20:27:08 +02:00
|
|
|
import { Inject, Injectable } from '@nestjs/common';
|
|
|
|
import { UsersRepository } from '@/models/index.js';
|
|
|
|
import { Endpoint } from '@/server/api/endpoint-base.js';
|
|
|
|
import { NoteDeleteService } from '@/core/NoteDeleteService.js';
|
|
|
|
import { DI } from '@/di-symbols.js';
|
2022-02-27 03:07:39 +01:00
|
|
|
import { ApiError } from '../../error.js';
|
2022-09-17 20:27:08 +02:00
|
|
|
import { GetterService } from '../../common/GetterService.js';
|
2018-05-28 07:39:46 +02:00
|
|
|
|
2018-07-16 21:36:44 +02:00
|
|
|
export const meta = {
|
2019-02-23 03:20:58 +01:00
|
|
|
tags: ['notes'],
|
|
|
|
|
2022-01-18 14:27:10 +01:00
|
|
|
requireCredential: true,
|
2018-07-16 21:36:44 +02:00
|
|
|
|
2019-04-07 14:50:36 +02:00
|
|
|
kind: 'write:notes',
|
2018-10-21 22:16:27 +02:00
|
|
|
|
2018-12-16 17:43:34 +01:00
|
|
|
limit: {
|
|
|
|
duration: ms('1hour'),
|
|
|
|
max: 300,
|
2021-12-09 15:58:30 +01:00
|
|
|
minInterval: ms('1sec'),
|
2018-12-16 17:43:34 +01:00
|
|
|
},
|
|
|
|
|
2019-02-22 03:46:58 +01:00
|
|
|
errors: {
|
|
|
|
noSuchNote: {
|
|
|
|
message: 'No such note.',
|
|
|
|
code: 'NO_SUCH_NOTE',
|
2021-12-09 15:58:30 +01:00
|
|
|
id: '490be23f-8c1f-4796-819f-94cb4f9d1630',
|
2019-02-22 03:46:58 +01:00
|
|
|
},
|
|
|
|
|
|
|
|
accessDenied: {
|
|
|
|
message: 'Access denied.',
|
|
|
|
code: 'ACCESS_DENIED',
|
2021-12-09 15:58:30 +01:00
|
|
|
id: 'fe8d7103-0ea8-4ec3-814d-f8b401dc69e9',
|
|
|
|
},
|
|
|
|
},
|
2022-01-18 14:27:10 +01:00
|
|
|
} as const;
|
2018-07-16 21:36:44 +02:00
|
|
|
|
2022-02-20 05:15:40 +01:00
|
|
|
export const paramDef = {
|
2022-02-19 06:05:32 +01:00
|
|
|
type: 'object',
|
|
|
|
properties: {
|
|
|
|
noteId: { type: 'string', format: 'misskey:id' },
|
|
|
|
},
|
|
|
|
required: ['noteId'],
|
|
|
|
} as const;
|
|
|
|
|
2022-01-02 18:12:50 +01:00
|
|
|
// eslint-disable-next-line import/no-default-export
|
2022-09-17 20:27:08 +02:00
|
|
|
@Injectable()
|
|
|
|
export default class extends Endpoint<typeof meta, typeof paramDef> {
|
|
|
|
constructor(
|
|
|
|
@Inject(DI.usersRepository)
|
|
|
|
private usersRepository: UsersRepository,
|
|
|
|
|
|
|
|
private getterService: GetterService,
|
|
|
|
private noteDeleteService: NoteDeleteService,
|
|
|
|
) {
|
|
|
|
super(meta, paramDef, async (ps, me) => {
|
|
|
|
const note = await this.getterService.getNote(ps.noteId).catch(err => {
|
|
|
|
if (err.id === '9725d0ce-ba28-4dde-95a7-2cbb2c15de24') throw new ApiError(meta.errors.noSuchNote);
|
|
|
|
throw err;
|
|
|
|
});
|
2018-09-19 10:29:03 +02:00
|
|
|
|
2022-09-17 20:27:08 +02:00
|
|
|
if ((!me.isAdmin && !me.isModerator) && (note.userId !== me.id)) {
|
|
|
|
throw new ApiError(meta.errors.accessDenied);
|
|
|
|
}
|
|
|
|
|
|
|
|
// この操作を行うのが投稿者とは限らない(例えばモデレーター)ため
|
|
|
|
await this.noteDeleteService.delete(await this.usersRepository.findOneByOrFail({ id: note.userId }), note);
|
|
|
|
});
|
|
|
|
}
|
|
|
|
}
|