38 lines
923 B
TypeScript
38 lines
923 B
TypeScript
export async function onRequestPost(context: RequestContext) {
|
|
const { permissions } = context.data.current_user;
|
|
|
|
if (!(permissions & (1 << 0)) || !(permissions & (1 << 11)))
|
|
return new Response('{"error":"Forbidden"}', {
|
|
headers: {
|
|
"content-type": "application/json",
|
|
},
|
|
status: 403,
|
|
});
|
|
|
|
const { body } = context.data;
|
|
const id = context.params.id as string;
|
|
|
|
if (id.search(/^\d{16,19}$/) === -1)
|
|
return new Response('{"error":"Invalid target id"}', {
|
|
headers: {
|
|
"content-type": "application/json",
|
|
},
|
|
status: 400,
|
|
});
|
|
|
|
context.data.targetId = id;
|
|
|
|
if (
|
|
body.feedback &&
|
|
(typeof body.feedback !== "string" || body.feedback.length > 512)
|
|
)
|
|
return new Response('{"error":"Invalid feedback"}', {
|
|
headers: {
|
|
"content-type": "application/json",
|
|
},
|
|
status: 400,
|
|
});
|
|
|
|
return await context.next();
|
|
}
|