alvis/oO
1
0
Fork 0
Code Issues 34 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
35257b7756434fdb1b7e2c72334c4b04b49294b5
oO/services/api/src/routes/user.ts
alvis ed1705cb5d feat(db): drop users.consentGiven/consentAt (ADR-0014 step 8) 
Backfills consent_given=1 rows into user_consents as data:core before
dropping the legacy columns. auth.ts now writes user_consents on signup;
POST /consent writes user_consents; admin/user routes cleaned of the old
fields. Migration is idempotent — DROP COLUMN is wrapped in try/catch so
it no-ops on fresh DBs that never had the columns.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-05 11:50:27 +00:00

74 lines
2.5 KiB
TypeScript
Raw Blame History

import { type Router as ExpressRouter, Router, Response } from 'express';
import { db } from '../db/index.js';
import { users, integrationTokens, tipFeedback, tipViews, sessions, userConsents } from '../db/schema.js';
import { eq, and, isNull } from 'drizzle-orm';
import { requireAuth, AuthenticatedRequest } from '../middleware/session.js';
const router: ExpressRouter = Router();
/** GET /api/user/me */
router.get('/me', requireAuth, async (req: AuthenticatedRequest, res: Response) => {
const [user] = await db.select().from(users).where(eq(users.id, req.userId!)).limit(1);
if (!user || user.deletedAt) {
res.status(404).json({ error: 'User not found' });
return;
}
res.json({
id: user.id,
email: user.email,
name: user.name,
image: user.image,
role: user.role,
createdAt: user.createdAt,
});
});
/** POST /api/user/consent — record data:core consent */
router.post('/consent', requireAuth, async (req: AuthenticatedRequest, res: Response) => {
const now = new Date().toISOString();
await db
.insert(userConsents)
.values({ userId: req.userId!, consentKey: 'data:core', grantedAt: now })
.onConflictDoUpdate({
target: [userConsents.userId, userConsents.consentKey],
set: { grantedAt: now, revokedAt: null },
});
res.json({ ok: true });
});
/** DELETE /api/user/me — account deletion */
router.delete('/me', requireAuth, async (req: AuthenticatedRequest, res: Response) => {
const userId = req.userId!;
// Revoke all integration tokens
const tokens = await db
.select()
.from(integrationTokens)
.where(eq(integrationTokens.userId, userId));
for (const token of tokens) {
if (token.provider === 'todoist') {
await fetch('https://api.todoist.com/sync/v9/access_tokens/revoke', {
method: 'POST',
headers: { Authorization: `Bearer ${token.accessToken}` },
}).catch(() => {});
}
}
// Delete cascade
await db.delete(integrationTokens).where(eq(integrationTokens.userId, userId));
await db.delete(tipFeedback).where(eq(tipFeedback.userId, userId));
await db.delete(tipViews).where(eq(tipViews.userId, userId));
await db.delete(sessions).where(eq(sessions.userId, userId));
// Soft-delete user (GDPR: keep audit trail row without PII)
await db
.update(users)
.set({ deletedAt: new Date().toISOString(), email: `deleted:${userId}`, name: null, image: null, googleId: null })
.where(eq(users.id, userId));
res.clearCookie('sid').json({ ok: true });
});
export { router as userRouter };
Reference in New Issue View Git Blame Copy Permalink