use Pleroma.Web, :controller
+ alias Pleroma.Maps
+ alias Pleroma.User
alias Pleroma.Repo
alias Pleroma.Web.OAuth.App
alias Pleroma.Web.OAuth.Scopes
alias Pleroma.Web.OAuth.Token
- alias Pleroma.Web.Plugs.OAuthScopesPlug
+
+ require Logger
action_fallback(Pleroma.Web.MastodonAPI.FallbackController)
plug(:skip_auth when action in [:create, :verify_credentials])
- plug(OAuthScopesPlug, %{scopes: ["follow", "read"]} when action in [:index])
-
plug(Pleroma.Web.ApiSpec.CastAndValidate)
@local_mastodon_name "Mastodon-Local"
defdelegate open_api_operation(action), to: Pleroma.Web.ApiSpec.AppOperation
- @doc "GET /api/v1/apps"
- def index(%{assigns: %{user: user}} = conn, _params) do
- with apps <- App.get_user_apps(user) do
- render(conn, "index.json", %{apps: apps})
- end
- end
-
@doc "POST /api/v1/apps"
- def create(%{body_params: params} = conn, _params) do
+ def create(%{assigns: %{user: user}, body_params: params} = conn, _params) do
scopes = Scopes.fetch_scopes(params, ["read"])
+ user_id =
+ with %User{id: id} <- user do
+ id
+ else
+ _ -> nil
+ end
+
app_attrs =
params
|> Map.take([:client_name, :redirect_uris, :website])
|> Map.put(:scopes, scopes)
+ |> Maps.put_if_present(:user_id, user_id)
with cs <- App.register_changeset(%App{}, app_attrs),
false <- cs.changes[:client_name] == @local_mastodon_name,