feat(server,web): remove external path nonsense and make libraries admin-only (#7237)

* remove external path * open-api * make sql * move library settings to admin panel * Add documentation * show external libraries only * fix library list * make user library settings look good * fix test * fix tests * fix tests * can pick user for library * fix tests * fix e2e * chore: make sql * Use unauth exception * delete user library list * cleanup * fix e2e * fix await lint * chore: remove unused code * chore: cleanup * revert docs * fix: is admin stuff * table alignment --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> Co-authored-by: Alex Tran <alex.tran1502@gmail.com>
2025-11-07 17:27:20 +00:00 · 2024-02-29 19:35:37 +01:00 · 2024-02-29 19:35:37 +01:00 · efa6efd200
commit efa6efd200
parent 369acc7bea
63 changed files with 783 additions and 1111 deletions
--- a/server/e2e/api/specs/asset.e2e-spec.ts
+++ b/server/e2e/api/specs/asset.e2e-spec.ts
@ -41,6 +41,7 @@ describe(`${AssetController.name} (e2e)`, () => {
  let app: INestApplication;
  let server: any;
  let assetRepository: IAssetRepository;
+  let admin: LoginResponseDto;
  let user1: LoginResponseDto;
  let user2: LoginResponseDto;
  let userWithQuota: LoginResponseDto;
@ -72,7 +73,7 @@ describe(`${AssetController.name} (e2e)`, () => {
    await testApp.reset();

    await api.authApi.adminSignUp(server);
-    const admin = await api.authApi.adminLogin(server);
+    admin = await api.authApi.adminLogin(server);

    await Promise.all([
      api.userApi.create(server, admin.accessToken, userDto.user1),
@ -86,12 +87,7 @@ describe(`${AssetController.name} (e2e)`, () => {
      api.authApi.login(server, userDto.userWithQuota),
    ]);

-    const [user1Libraries, user2Libraries] = await Promise.all([
-      api.libraryApi.getAll(server, user1.accessToken),
-      api.libraryApi.getAll(server, user2.accessToken),
-    ]);
-
-    libraries = [...user1Libraries, ...user2Libraries];
+    libraries = await api.libraryApi.getAll(server, admin.accessToken);
  });

  beforeEach(async () => {
@ -615,7 +611,7 @@ describe(`${AssetController.name} (e2e)`, () => {

    it("should not upload to another user's library", async () => {
      const content = randomBytes(32);
-      const [library] = await api.libraryApi.getAll(server, user2.accessToken);
+      const [library] = await api.libraryApi.getAll(server, admin.accessToken);
      await api.assetApi.upload(server, user1.accessToken, 'example-image', { content });

      const { body, status } = await request(server)