feat(editor): ✨ Team workspaces

apps/builder/pages/api/workspaces/[workspaceId]/invitations.ts

@@ -0,0 +1,47 @@
+import { withSentry } from '@sentry/nextjs'
+import { WorkspaceInvitation, WorkspaceRole } from 'db'
+import prisma from 'libs/prisma'
+import { NextApiRequest, NextApiResponse } from 'next'
+import { getAuthenticatedUser } from 'services/api/utils'
+import { forbidden, methodNotAllowed, notAuthenticated } from 'utils'
+
+const handler = async (req: NextApiRequest, res: NextApiResponse) => {
+  const user = await getAuthenticatedUser(req)
+  if (!user) return notAuthenticated(res)
+  if (req.method === 'POST') {
+    const data = req.body as Omit<WorkspaceInvitation, 'id' | 'createdAt'>
+    const existingUser = await prisma.user.findUnique({
+      where: { email: data.email },
+    })
+    const workspace = await prisma.workspace.findFirst({
+      where: {
+        id: data.workspaceId,
+        members: { some: { userId: user.id, role: WorkspaceRole.ADMIN } },
+      },
+    })
+    if (!workspace) return forbidden(res)
+    if (existingUser) {
+      await prisma.memberInWorkspace.create({
+        data: {
+          role: data.type,
+          workspaceId: data.workspaceId,
+          userId: existingUser.id,
+        },
+      })
+      return res.send({
+        member: {
+          userId: existingUser.id,
+          name: existingUser.name,
+          email: existingUser.email,
+          role: data.type,
+          workspaceId: data.workspaceId,
+        },
+      })
+    }
+    const invitation = await prisma.workspaceInvitation.create({ data })
+    return res.send({ invitation })
+  }
+  methodNotAllowed(res)
+}
+
+export default withSentry(handler)

apps/builder/pages/api/workspaces/[workspaceId]/invitations/[id].ts

@@ -0,0 +1,39 @@
+import { withSentry } from '@sentry/nextjs'
+import { WorkspaceInvitation, WorkspaceRole } from 'db'
+import prisma from 'libs/prisma'
+import { NextApiRequest, NextApiResponse } from 'next'
+import { getAuthenticatedUser } from 'services/api/utils'
+import { methodNotAllowed, notAuthenticated } from 'utils'
+
+const handler = async (req: NextApiRequest, res: NextApiResponse) => {
+  const user = await getAuthenticatedUser(req)
+  if (!user) return notAuthenticated(res)
+  if (req.method === 'PATCH') {
+    const data = req.body as Omit<WorkspaceInvitation, 'createdAt'>
+    const invitation = await prisma.workspaceInvitation.updateMany({
+      where: {
+        id: data.id,
+        workspace: {
+          members: { some: { userId: user.id, role: WorkspaceRole.ADMIN } },
+        },
+      },
+      data,
+    })
+    return res.send({ invitation })
+  }
+  if (req.method === 'DELETE') {
+    const id = req.query.id as string
+    await prisma.workspaceInvitation.deleteMany({
+      where: {
+        id,
+        workspace: {
+          members: { some: { userId: user.id, role: WorkspaceRole.ADMIN } },
+        },
+      },
+    })
+    return res.send({ message: 'success' })
+  }
+  methodNotAllowed(res)
+}
+
+export default withSentry(handler)

apps/builder/pages/api/workspaces/[workspaceId]/members.ts

@@ -0,0 +1,42 @@
+import { withSentry } from '@sentry/nextjs'
+import prisma from 'libs/prisma'
+import { NextApiRequest, NextApiResponse } from 'next'
+import { getAuthenticatedUser } from 'services/api/utils'
+import { methodNotAllowed, notAuthenticated, notFound } from 'utils'
+
+const handler = async (req: NextApiRequest, res: NextApiResponse) => {
+  const user = await getAuthenticatedUser(req)
+  if (!user) return notAuthenticated(res)
+  if (req.method === 'GET') {
+    const id = req.query.workspaceId as string
+    const workspace = await prisma.workspace.findFirst({
+      where: {
+        id,
+        members: { some: { userId: user.id } },
+      },
+      include: {
+        members: {
+          include: {
+            user: true,
+          },
+        },
+        invitations: true,
+      },
+    })
+    if (!workspace) return notFound(res)
+    return res.send({
+      members: workspace.members.map((member) => ({
+        userId: member.userId,
+        role: member.role,
+        workspaceId: member.workspaceId,
+        email: member.user.email,
+        image: member.user.image,
+        name: member.user.name,
+      })),
+      invitations: workspace.invitations,
+    })
+  }
+  methodNotAllowed(res)
+}
+
+export default withSentry(handler)

apps/builder/pages/api/workspaces/[workspaceId]/members/[id].ts

@@ -0,0 +1,48 @@
+import { withSentry } from '@sentry/nextjs'
+import { MemberInWorkspace, WorkspaceRole } from 'db'
+import prisma from 'libs/prisma'
+import { NextApiRequest, NextApiResponse } from 'next'
+import { getAuthenticatedUser } from 'services/api/utils'
+import { methodNotAllowed, notAuthenticated } from 'utils'
+
+const handler = async (req: NextApiRequest, res: NextApiResponse) => {
+  const user = await getAuthenticatedUser(req)
+  if (!user) return notAuthenticated(res)
+  if (req.method === 'PATCH') {
+    const workspaceId = req.query.workspaceId as string
+    const memberId = req.query.id as string
+    const updates = req.body as Partial<MemberInWorkspace>
+    const member = await prisma.memberInWorkspace.updateMany({
+      where: {
+        userId: memberId,
+        workspace: {
+          id: workspaceId,
+          members: { some: { userId: user.id, role: WorkspaceRole.ADMIN } },
+        },
+      },
+      data: { role: updates.role },
+    })
+    return res.status(200).json({
+      member,
+    })
+  }
+  if (req.method === 'DELETE') {
+    const workspaceId = req.query.workspaceId as string
+    const memberId = req.query.id as string
+    const member = await prisma.memberInWorkspace.deleteMany({
+      where: {
+        userId: memberId,
+        workspace: {
+          id: workspaceId,
+          members: { some: { userId: user.id, role: WorkspaceRole.ADMIN } },
+        },
+      },
+    })
+    return res.status(200).json({
+      member,
+    })
+  }
+  methodNotAllowed(res)
+}
+
+export default withSentry(handler)