2021-04-01 18:46:45 +00:00
|
|
|
/*
|
|
|
|
GoToSocial
|
|
|
|
Copyright (C) 2021 GoToSocial Authors admin@gotosocial.org
|
|
|
|
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
|
|
it under the terms of the GNU Affero General Public License as published by
|
|
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
|
|
(at your option) any later version.
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
GNU Affero General Public License for more details.
|
|
|
|
|
|
|
|
You should have received a copy of the GNU Affero General Public License
|
|
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
*/
|
|
|
|
|
|
|
|
package account
|
|
|
|
|
|
|
|
import (
|
|
|
|
"net/http"
|
|
|
|
|
|
|
|
"github.com/gin-gonic/gin"
|
|
|
|
"github.com/superseriousbusiness/gotosocial/internal/oauth"
|
|
|
|
)
|
|
|
|
|
2021-04-20 16:14:23 +00:00
|
|
|
// AccountVerifyGETHandler serves a user's account details to them IF they reached this
|
2021-04-01 18:46:45 +00:00
|
|
|
// handler while in possession of a valid token, according to the oauth middleware.
|
2021-07-31 15:49:59 +00:00
|
|
|
// It should be served as a GET at /api/v1/accounts/verify_credentials.
|
|
|
|
//
|
|
|
|
// swagger:operation GET /api/v1/accounts/verify_credentials accountVerify
|
|
|
|
//
|
|
|
|
// Verify a token by returning account details pertaining to it.
|
|
|
|
//
|
|
|
|
// ---
|
|
|
|
// tags:
|
|
|
|
// - accounts
|
|
|
|
//
|
|
|
|
// produces:
|
|
|
|
// - application/json
|
|
|
|
//
|
|
|
|
// security:
|
|
|
|
// - OAuth2 Bearer:
|
|
|
|
// - read:accounts
|
|
|
|
//
|
|
|
|
// responses:
|
|
|
|
// '200':
|
|
|
|
// schema:
|
|
|
|
// "$ref": "#/definitions/account"
|
|
|
|
// '401':
|
|
|
|
// description: unauthorized
|
|
|
|
// '400':
|
|
|
|
// description: bad request
|
|
|
|
// '404':
|
|
|
|
// description: not found
|
2021-04-20 16:14:23 +00:00
|
|
|
func (m *Module) AccountVerifyGETHandler(c *gin.Context) {
|
2021-04-01 18:46:45 +00:00
|
|
|
l := m.log.WithField("func", "accountVerifyGETHandler")
|
2021-05-08 12:25:55 +00:00
|
|
|
authed, err := oauth.Authed(c, true, false, false, true)
|
2021-04-01 18:46:45 +00:00
|
|
|
if err != nil {
|
|
|
|
l.Debugf("couldn't auth: %s", err)
|
|
|
|
c.JSON(http.StatusForbidden, gin.H{"error": err.Error()})
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2021-05-08 12:25:55 +00:00
|
|
|
acctSensitive, err := m.processor.AccountGet(authed, authed.Account.ID)
|
2021-04-01 18:46:45 +00:00
|
|
|
if err != nil {
|
2021-05-08 12:25:55 +00:00
|
|
|
l.Debugf("error getting account from processor: %s", err)
|
|
|
|
c.JSON(http.StatusInternalServerError, gin.H{"error": "internal server error"})
|
2021-04-01 18:46:45 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
c.JSON(http.StatusOK, acctSensitive)
|
|
|
|
}
|