26 lines
785 B
TypeScript
26 lines
785 B
TypeScript
import { User } from 'db'
|
|
import prisma from 'libs/prisma'
|
|
import { NextApiRequest, NextApiResponse } from 'next'
|
|
import { getSession } from 'next-auth/react'
|
|
import { methodNotAllowed } from 'utils'
|
|
|
|
const handler = async (req: NextApiRequest, res: NextApiResponse) => {
|
|
const session = await getSession({ req })
|
|
|
|
if (!session?.user)
|
|
return res.status(401).json({ message: 'Not authenticated' })
|
|
|
|
const user = session.user as User
|
|
const id = req.query.id.toString()
|
|
if (user.id !== id) return res.status(401).send({ message: 'Forbidden' })
|
|
if (req.method === 'GET') {
|
|
const credentials = await prisma.credentials.findMany({
|
|
where: { ownerId: user.id },
|
|
})
|
|
return res.send({ credentials })
|
|
}
|
|
return methodNotAllowed(res)
|
|
}
|
|
|
|
export default handler
|