feature: Implement user lookups.

routes/NextNet API/Lookup User.bru

@@ -0,0 +1,18 @@
+meta {
+  name: Lookup User
+  type: http
+  seq: 7
+}
+
+post {
+  url: http://127.0.0.1:3000/api/v1/users/lookup
+  body: json
+  auth: none
+}
+
+body:json {
+  {
+    "token": "5e2cb92a338a832d385790861312eb85d69f46f82317bfa984ac5e3517368ab5a827897b0f9775a9181b02fa3b9cffed7e59e5b3111d5bdc37f729156caf5f",
+    "name": "Greyson Hofer"
+  }
+}

src/index.ts

@@ -11,8 +11,9 @@ import { route as backendCreate } from "./routes/backends/create.js";
 
 import { route as forwardCreate } from "./routes/forward/create.js";
 
-import { route as userRemove } from "./routes/user/remove.js";
 import { route as userCreate } from "./routes/user/create.js";
+import { route as userRemove } from "./routes/user/remove.js";
+import { route as userLookup } from "./routes/user/lookup.js";
 import { route as userLogin } from "./routes/user/login.js";
 
 const prisma = new PrismaClient();
@@ -45,8 +46,9 @@ backendCreate(fastify, prisma, sessionTokens, serverOptions);
 
 forwardCreate(fastify, prisma, sessionTokens, serverOptions);
 
-userRemove(fastify, prisma, sessionTokens, serverOptions);
 userCreate(fastify, prisma, sessionTokens, serverOptions);
+userRemove(fastify, prisma, sessionTokens, serverOptions);
+userLookup(fastify, prisma, sessionTokens, serverOptions);
 userLogin(fastify, prisma, sessionTokens, serverOptions);
 
 // Run the server!

src/libs/permissions.ts

@@ -20,7 +20,9 @@ export const permissionListDisabled: Record<string, boolean> = {
   "permissions.see":    false,
 
   "users.add":          false,
-  "users.remove":       false
+  "users.remove":       false,
+  "users.lookup":       false,
+  "users.edit":         false,
 };
 
 // FIXME: This solution fucking sucks.

src/routes/user/lookup.ts

@@ -0,0 +1,60 @@
+import type { PrismaClient } from "@prisma/client";
+import type { FastifyInstance } from "fastify";
+
+import { ServerOptions, SessionToken } from "../../libs/types.js";
+import { hasPermissionByToken } from "../../libs/permissions.js";
+
+export function route(fastify: FastifyInstance, prisma: PrismaClient, tokens: Record<number, SessionToken[]>, options: ServerOptions) {
+  function hasPermission(token: string, permissionList: string[]): Promise<boolean> {
+    return hasPermissionByToken(permissionList, token, tokens, prisma);
+  };
+
+  fastify.post("/api/v1/users/lookup", {
+    schema: {
+      body: {
+        type: "object",
+        required: ["token"],
+
+        properties: {
+          token:            { type: "string" },
+          name:             { type: "string" },
+          email:            { type: "string" },
+          isServiceAccount: { type: "boolean" }
+        }
+      }
+    }
+  }, async(req, res) => {
+    // @ts-ignore
+    const body: {
+      token: string,
+      name?: string,
+      email?: string,
+      isServiceAccount?: boolean
+    } = req.body;
+
+    if (!await hasPermission(body.token, [
+      "users.lookup"
+    ])) {
+      return res.status(403).send({
+        error: "Unauthorized"
+      });
+    };
+
+    const users = await prisma.user.findMany({
+      where: {
+        name: body.name,
+        email: body.email,
+        isRootServiceAccount: body.isServiceAccount
+      }
+    });
+
+    return {
+      success: true,
+      data: users.map((i) => ({
+        name: i.name,
+        email: i.email,
+        isServiceAccount: i.isRootServiceAccount
+      }))
+    }
+  });
+}