63 lines
1.6 KiB
JavaScript
63 lines
1.6 KiB
JavaScript
import { d as defineEventHandler, g as getCookie, c as createError, h as getQuery } from '../../nitro/nitro.mjs';
|
|
import { b as verifyToken, e as getUserById } from '../../_/auth.mjs';
|
|
import { d as deleteNews } from '../../_/news.mjs';
|
|
import 'node:http';
|
|
import 'node:https';
|
|
import 'node:events';
|
|
import 'node:buffer';
|
|
import 'node:fs';
|
|
import 'node:path';
|
|
import 'node:crypto';
|
|
import 'node:url';
|
|
import 'bcryptjs';
|
|
import 'jsonwebtoken';
|
|
import 'fs';
|
|
import 'path';
|
|
import '../../_/encryption.mjs';
|
|
import 'crypto';
|
|
|
|
const news_delete = defineEventHandler(async (event) => {
|
|
try {
|
|
const token = getCookie(event, "auth_token");
|
|
if (!token) {
|
|
throw createError({
|
|
statusCode: 401,
|
|
message: "Nicht authentifiziert."
|
|
});
|
|
}
|
|
const decoded = verifyToken(token);
|
|
if (!decoded) {
|
|
throw createError({
|
|
statusCode: 401,
|
|
message: "Ung\xFCltiges Token."
|
|
});
|
|
}
|
|
const user = await getUserById(decoded.id);
|
|
if (!user || user.role !== "admin" && user.role !== "vorstand") {
|
|
throw createError({
|
|
statusCode: 403,
|
|
message: "Keine Berechtigung zum L\xF6schen von News."
|
|
});
|
|
}
|
|
const query = getQuery(event);
|
|
const id = query.id;
|
|
if (!id) {
|
|
throw createError({
|
|
statusCode: 400,
|
|
message: "News-ID ist erforderlich."
|
|
});
|
|
}
|
|
await deleteNews(id);
|
|
return {
|
|
success: true,
|
|
message: "News erfolgreich gel\xF6scht."
|
|
};
|
|
} catch (error) {
|
|
console.error("Fehler beim L\xF6schen der News:", error);
|
|
throw error;
|
|
}
|
|
});
|
|
|
|
export { news_delete as default };
|
|
//# sourceMappingURL=news.delete.mjs.map
|