klbr/dockhand
1
0
Fork 0
mirror of https://github.com/khoaliber/dockhand.git synced 2026-03-03 21:19:06 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
53d60fdddd0f27d8fe6cfeb22499c0fc90b85c21
dockhand/routes/api/profile/avatar/+server.ts
Jarek Krochmalski 62e3c6439e Initial commit
2025-12-28 21:16:03 +01:00

71 lines
2.2 KiB
TypeScript
Raw Blame History

import { json } from '@sveltejs/kit';
import type { RequestHandler } from '@sveltejs/kit';
import { updateUser as dbUpdateUser, getUser } from '$lib/server/db';
import { validateSession, isAuthEnabled } from '$lib/server/auth';
// POST /api/profile/avatar - Upload avatar (base64 data URL)
export const POST: RequestHandler = async ({ request, cookies }) => {
if (!(await isAuthEnabled())) {
return json({ error: 'Authentication is not enabled' }, { status: 400 });
}
const currentUser = await validateSession(cookies);
if (!currentUser) {
return json({ error: 'Not authenticated' }, { status: 401 });
}
try {
const data = await request.json();
if (!data.avatar) {
return json({ error: 'Avatar data is required' }, { status: 400 });
}
// Validate it's a valid base64 data URL
if (!data.avatar.startsWith('data:image/')) {
return json({ error: 'Invalid image format' }, { status: 400 });
}
// Check size (limit to ~500KB base64 which is roughly 375KB image)
if (data.avatar.length > 500000) {
return json({ error: 'Image too large. Maximum size is 500KB.' }, { status: 400 });
}
const user = await dbUpdateUser(currentUser.id, { avatar: data.avatar });
if (!user) {
return json({ error: 'Failed to update avatar' }, { status: 500 });
}
return json({ success: true, avatar: user.avatar });
} catch (error) {
console.error('Failed to upload avatar:', error);
return json({ error: 'Failed to upload avatar' }, { status: 500 });
}
};
// DELETE /api/profile/avatar - Remove avatar
export const DELETE: RequestHandler = async ({ cookies }) => {
if (!(await isAuthEnabled())) {
return json({ error: 'Authentication is not enabled' }, { status: 400 });
}
const currentUser = await validateSession(cookies);
if (!currentUser) {
return json({ error: 'Not authenticated' }, { status: 401 });
}
try {
const user = await dbUpdateUser(currentUser.id, { avatar: null });
if (!user) {
return json({ error: 'Failed to remove avatar' }, { status: 500 });
}
return json({ success: true });
} catch (error) {
console.error('Failed to remove avatar:', error);
return json({ error: 'Failed to remove avatar' }, { status: 500 });
}
};
Reference in New Issue View Git Blame Copy Permalink