2025-01-02 15:33:37 +11:00
|
|
|
import { TeamMemberRole } from '@prisma/client';
|
|
|
|
|
|
2023-11-24 16:13:09 +02:00
|
|
|
import { prisma } from '@documenso/prisma';
|
|
|
|
|
|
|
|
|
|
export type DeleteTokenByIdOptions = {
|
|
|
|
|
id: number;
|
|
|
|
|
userId: number;
|
2024-02-22 13:39:34 +11:00
|
|
|
teamId?: number;
|
2023-11-24 16:13:09 +02:00
|
|
|
};
|
|
|
|
|
|
2024-02-22 13:39:34 +11:00
|
|
|
export const deleteTokenById = async ({ id, userId, teamId }: DeleteTokenByIdOptions) => {
|
|
|
|
|
if (teamId) {
|
|
|
|
|
const member = await prisma.teamMember.findFirst({
|
|
|
|
|
where: {
|
|
|
|
|
userId,
|
|
|
|
|
teamId,
|
|
|
|
|
role: TeamMemberRole.ADMIN,
|
|
|
|
|
},
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
if (!member) {
|
|
|
|
|
throw new Error('You do not have permission to delete this token');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-12-08 13:28:34 +00:00
|
|
|
return await prisma.apiToken.delete({
|
2023-11-24 16:13:09 +02:00
|
|
|
where: {
|
|
|
|
|
id,
|
2024-10-22 22:53:31 +11:00
|
|
|
teamId: teamId ?? null,
|
2023-11-24 16:13:09 +02:00
|
|
|
},
|
|
|
|
|
});
|
|
|
|
|
};
|
