Restructure APIs to be reflection based

Author: ppebb

api/ban.go

@@ -1,54 +1,13 @@
 package api
 
 import (
-	"encoding/json"
-	"io"
 	"net/http"
-	"strconv"
 	"time"
 	"wwfc/database"
 	"wwfc/gpcm"
-	"wwfc/logging"
-
-	"github.com/logrusorgru/aurora/v3"
 )
 
-func HandleBan(w http.ResponseWriter, r *http.Request) {
-	var user *database.User
-	var statusCode int
-	var err error
-
-	if r.Method == http.MethodPost {
-		user, statusCode, err = handleBanImpl(r)
-	} else if r.Method == http.MethodOptions {
-		statusCode = http.StatusNoContent
-		w.Header().Set("Access-Control-Allow-Methods", "POST")
-		w.Header().Set("Access-Control-Allow-Headers", "Content-Type")
-	} else {
-		err = ErrPostOnly
-		statusCode = http.StatusMethodNotAllowed
-		w.Header().Set("Allow", "POST")
-	}
-
-	w.Header().Set("Access-Control-Allow-Origin", "*")
-
-	if user == nil {
-		user = &database.User{}
-	}
-
-	var jsonData []byte
-
-	if statusCode != http.StatusNoContent {
-		w.Header().Set("Content-Type", "application/json")
-		jsonData, _ = json.Marshal(UserActionResponse{*user, err == nil, resolveError(err)})
-	}
-
-	w.Header().Set("Content-Length", strconv.Itoa(len(jsonData)))
-	w.WriteHeader(statusCode)
-	w.Write(jsonData)
-}
-
-type BanRequestSpec struct {
+type BanRequest struct {
 	Secret       string `json:"secret"`
 	ProfileID    uint32 `json:"pid"`
 	Days         uint64 `json:"days"`
@@ -60,24 +19,16 @@ type BanRequestSpec struct {
 	Moderator    string `json:"moderator"`
 }
 
-func handleBanImpl(r *http.Request) (*database.User, int, error) {
-	// TODO: Actual authentication rather than a fixed secret
-
-	body, err := io.ReadAll(r.Body)
-	if err != nil {
-		return nil, http.StatusBadRequest, ErrRequestBody
-	}
-
-	var req BanRequestSpec
-	err = json.Unmarshal(body, &req)
-	if err != nil {
-		return nil, http.StatusBadRequest, err
-	}
-
-	if apiSecret == "" || req.Secret != apiSecret {
-		return nil, http.StatusUnauthorized, ErrInvalidSecret
-	}
+var BanRoute = MakeRouteSpec[BanRequest, UserActionResponse](
+	true,
+	"/api/ban",
+	func(req any, v bool, _ *http.Request) (any, int, error) {
+		return handleUserAction(req.(BanRequest), v, handleBanImpl)
+	},
+	http.MethodPost,
+)
 
+func handleBanImpl(req BanRequest, _ bool) (*database.User, int, error) {
 	if req.ProfileID == 0 {
 		return nil, http.StatusBadRequest, ErrPIDMissing
 	}
@@ -98,8 +49,6 @@ func handleBanImpl(r *http.Request) (*database.User, int, error) {
 
 	length := time.Duration(minutes) * time.Minute
 
-	logging.Notice("API:"+moderator, "Ban profile:", aurora.Cyan(req.ProfileID), "TOS:", aurora.Cyan(req.Tos), "Length:", aurora.Cyan(length), "Reason:", aurora.BrightCyan(req.Reason), "Reason (Hidden):", aurora.BrightCyan(req.ReasonHidden))
-
 	if !database.BanUser(pool, ctx, req.ProfileID, req.Tos, length, req.Reason, req.ReasonHidden, moderator) {
 		return nil, http.StatusInternalServerError, ErrTransaction
 	}

api/clear.go

@@ -1,71 +1,25 @@
 package api
 
 import (
-	"encoding/json"
-	"io"
 	"net/http"
-	"strconv"
 	"wwfc/database"
 )
 
-func HandleClear(w http.ResponseWriter, r *http.Request) {
-	var user *database.User
-	var statusCode int
-	var err error
-
-	if r.Method == http.MethodPost {
-		user, statusCode, err = handleClearImpl(r)
-	} else if r.Method == http.MethodOptions {
-		statusCode = http.StatusNoContent
-		w.Header().Set("Access-Control-Allow-Methods", "POST")
-		w.Header().Set("Access-Control-Allow-Headers", "Content-Type")
-	} else {
-		err = ErrPostOnly
-		statusCode = http.StatusMethodNotAllowed
-		w.Header().Set("Allow", "POST")
-	}
-
-	w.Header().Set("Access-Control-Allow-Origin", "*")
-
-	if user == nil {
-		user = &database.User{}
-	}
-
-	var jsonData []byte
-
-	if statusCode != http.StatusNoContent {
-		w.Header().Set("Content-Type", "application/json")
-		jsonData, _ = json.Marshal(UserActionResponse{*user, err == nil, resolveError(err)})
-	}
-
-	w.Header().Set("Content-Length", strconv.Itoa(len(jsonData)))
-	w.WriteHeader(statusCode)
-	w.Write(jsonData)
-}
-
-type ClearRequestSpec struct {
+type ClearRequest struct {
 	Secret    string `json:"secret"`
 	ProfileID uint32 `json:"pid"`
 }
 
-func handleClearImpl(r *http.Request) (*database.User, int, error) {
-	// TODO: Actual authentication rather than a fixed secret
-
-	body, err := io.ReadAll(r.Body)
-	if err != nil {
-		return nil, http.StatusBadRequest, ErrRequestBody
-	}
-
-	var req ClearRequestSpec
-	err = json.Unmarshal(body, &req)
-	if err != nil {
-		return nil, http.StatusBadRequest, err
-	}
-
-	if apiSecret == "" || req.Secret != apiSecret {
-		return nil, http.StatusUnauthorized, ErrInvalidSecret
-	}
+var ClearRoute = MakeRouteSpec[ClearRequest, UserActionResponse](
+	true,
+	"/api/clear",
+	func(req any, v bool, _ *http.Request) (any, int, error) {
+		return handleUserAction(req.(ClearRequest), v, handleClearImpl)
+	},
+	http.MethodPost,
+)
 
+func handleClearImpl(req ClearRequest, _ bool) (*database.User, int, error) {
 	user, success := database.ClearProfile(pool, ctx, req.ProfileID)
 
 	if !success {

api/common.go

@@ -1,45 +1,11 @@
 package api
 
 import (
-	"encoding/json"
-	"io"
 	"net/http"
-	"strconv"
 	"wwfc/database"
 )
 
-func HandleGetHash(w http.ResponseWriter, r *http.Request) {
-	var store database.HashStore
-	var statusCode int
-	var err error
-
-	if r.Method == http.MethodPost {
-		store, statusCode, err = handleGetHashImpl(r)
-	} else if r.Method == http.MethodOptions {
-		statusCode = http.StatusNoContent
-		w.Header().Set("Access-Control-Allow-Methods", "POST")
-		w.Header().Set("Access-Control-Allow-Headers", "Content-Type")
-	} else {
-		err = ErrPostOnly
-		statusCode = http.StatusMethodNotAllowed
-		w.Header().Set("Allow", "POST")
-	}
-
-	w.Header().Set("Access-Control-Allow-Origin", "*")
-
-	var jsonData []byte
-
-	if statusCode != http.StatusNoContent {
-		w.Header().Set("Content-Type", "application/json")
-		jsonData, _ = json.Marshal(GetHashResponse{err == nil, resolveError(err), store})
-	}
-
-	w.Header().Set("Content-Length", strconv.Itoa(len(jsonData)))
-	w.WriteHeader(statusCode)
-	w.Write(jsonData)
-}
-
-type GetHashRequestSpec struct {
+type GetHashRequest struct {
 	Secret string `json:"secret"`
 }
 
@@ -49,21 +15,14 @@ type GetHashResponse struct {
 	Hashes  database.HashStore
 }
 
-func handleGetHashImpl(r *http.Request) (database.HashStore, int, error) {
-	body, err := io.ReadAll(r.Body)
-	if err != nil {
-		return nil, http.StatusBadRequest, ErrRequestBody
-	}
-
-	var req GetHashRequestSpec
-	err = json.Unmarshal(body, &req)
-	if err != nil {
-		return nil, http.StatusBadRequest, err
-	}
-
-	if apiSecret == "" || req.Secret != apiSecret {
-		return nil, http.StatusUnauthorized, ErrInvalidSecret
-	}
+var GetHashRoute = MakeRouteSpec[GetHashRequest, GetHashResponse](
+	true,
+	"/api/get_hash",
+	func(_ any, _ bool, _ *http.Request) (any, int, error) {
+		res := GetHashResponse{}
+		res.Hashes = database.GetHashes()
 
-	return database.GetHashes(), http.StatusOK, nil
-}
+		return res, http.StatusOK, nil
+	},
+	http.MethodPost,
+)

api/get_hash.go

@@ -1,73 +1,27 @@
 package api
 
 import (
-	"encoding/json"
-	"io"
 	"net/http"
-	"strconv"
 	"wwfc/database"
 	"wwfc/gpcm"
 )
 
-func HandleKick(w http.ResponseWriter, r *http.Request) {
-	var user *database.User
-	var statusCode int
-	var err error
-
-	if r.Method == http.MethodPost {
-		user, statusCode, err = handleKickImpl(r)
-	} else if r.Method == http.MethodOptions {
-		statusCode = http.StatusNoContent
-		w.Header().Set("Access-Control-Allow-Methods", "POST")
-		w.Header().Set("Access-Control-Allow-Headers", "Content-Type")
-	} else {
-		err = ErrPostOnly
-		statusCode = http.StatusMethodNotAllowed
-		w.Header().Set("Allow", "POST")
-	}
-
-	w.Header().Set("Access-Control-Allow-Origin", "*")
-
-	if user == nil {
-		user = &database.User{}
-	}
-
-	var jsonData []byte
-
-	if statusCode != http.StatusNoContent {
-		w.Header().Set("Content-Type", "application/json")
-		jsonData, _ = json.Marshal(UserActionResponse{*user, err == nil, resolveError(err)})
-	}
-
-	w.Header().Set("Content-Length", strconv.Itoa(len(jsonData)))
-	w.WriteHeader(statusCode)
-	w.Write(jsonData)
-}
-
-type KickRequestSpec struct {
+type KickRequest struct {
 	Secret    string `json:"secret"`
 	Reason    string `json:"reason"`
 	ProfileID uint32 `json:"pid"`
 }
 
-func handleKickImpl(r *http.Request) (*database.User, int, error) {
-	// TODO: Actual authentication rather than a fixed secret
-
-	body, err := io.ReadAll(r.Body)
-	if err != nil {
-		return nil, http.StatusBadRequest, ErrRequestBody
-	}
-
-	var req KickRequestSpec
-	err = json.Unmarshal(body, &req)
-	if err != nil {
-		return nil, http.StatusBadRequest, err
-	}
-
-	if apiSecret == "" || req.Secret != apiSecret {
-		return nil, http.StatusUnauthorized, ErrInvalidSecret
-	}
+var KickRoute = MakeRouteSpec[KickRequest, UserActionResponse](
+	true,
+	"/api/kick",
+	func(req any, v bool, _ *http.Request) (any, int, error) {
+		return handleUserAction(req.(KickRequest), v, handleKickImpl)
+	},
+	http.MethodPost,
+)
 
+func handleKickImpl(req KickRequest, _ bool) (*database.User, int, error) {
 	if req.ProfileID == 0 {
 		return nil, http.StatusBadRequest, ErrPIDMissing
 	}