Feat: Notify ntfy on link delete

2026-01-13 16:18:05 +00:00 · 2025-11-10 13:10:25 -08:00
parent 69ca09290e
commit ca2dee0188
1 changed files with 69 additions and 19 deletions
--- a/functions/api/links/delete.js
+++ b/functions/api/links/delete.js
@@ -1,27 +1,77 @@
+const notify = (env, title, message, level = 1) =>
+  env.NTFY_TOPIC
+    ? fetch(`https://ntfy.sh/${env.NTFY_TOPIC}`, {
+        method: "POST",
+        headers: {
+          "Content-Type": "text/plain",
+          Title: title,
+          Priority: String(level),
+        },
+        body: message,
+      }).catch(() => {})
+    : Promise.resolve();
+
 export async function onRequestPost({ request, env }) {
+  try {
+    const { "cf-turnstile-response": token, ...body } = await request.json();
+
+    const vR = await fetch(
+      "https://challenges.cloudflare.com/turnstile/v0/siteverify",
+      {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({
+          secret: env.TURNSTILE_KEY,
+          response: token,
+        }),
+      }
+    );
+
+    if (!(await vR.json()).success)
+      return new Response("CAPTCHA verification failed.", { status: 403 });
+
+    const { slug, username, pass_hash } = body;
+    if (!slug || !username || !pass_hash)
+      return new Response("Missing fields", { status: 400 });
+
+    const user = await env.D1_EV.prepare(
+      "SELECT pass_hash, custom_slugs FROM users WHERE username = ?"
+    )
+      .bind(username)
+      .first();
+
+    if (user?.pass_hash !== pass_hash)
+      return new Response("Invalid credentials", { status: 401 });
+
+    let slugs = [];
    try {
-        const { 'cf-turnstile-response': token, ...body } = await request.json();
-        const vR = await fetch("https://challenges.cloudflare.com/turnstile/v0/siteverify", { method: "POST", headers: { "Content-Type": "application/json" }, body: JSON.stringify({ secret: env.TURNSTILE_KEY, response: token }) });
-        if (!(await vR.json()).success) return new Response("CAPTCHA verification failed.", { status: 403 });
+      slugs = JSON.parse(user.custom_slugs);
+    } catch {}

-        const { slug, username, pass_hash } = body;
-        if (!slug || !username || !pass_hash) return new Response("Missing fields", { status: 400 });
+    if (!Array.isArray(slugs) || !slugs.includes(slug))
+      return new Response("Unauthorized", { status: 403 });

-        const user = await env.D1_EV.prepare("SELECT pass_hash, custom_slugs FROM users WHERE username = ?").bind(username).first();
-        if (user?.pass_hash !== pass_hash) return new Response("Invalid credentials", { status: 401 });
+    const newSlugs = slugs.filter((s) => s !== slug);

-        let slugs = [];
-        try { slugs = JSON.parse(user.custom_slugs) } catch {}
-        if (!Array.isArray(slugs) || !slugs.includes(slug)) return new Response("Unauthorized", { status: 403 });
+    await Promise.all([
+      env.KV_EV.delete(slug),
+      env.D1_EV.prepare(
+        "UPDATE users SET custom_slugs = ? WHERE username = ?"
+      )
+        .bind(JSON.stringify(newSlugs), username)
+        .run(),
+    ]);

-        const newSlugs = slugs.filter(s => s !== slug);
-        await Promise.all([
-            env.KV_EV.delete(slug),
-            env.D1_EV.prepare("UPDATE users SET custom_slugs = ? WHERE username = ?").bind(JSON.stringify(newSlugs), username).run()
-        ]);
+    env.NTFY_TOPIC &&
+      notify(
+        env,
+        "4ev.link: link deleted",
+        `user=${username} slug=${slug}`,
+        1
+      );

-        return Response.json({ success: true });
-    } catch (e) {
-        return new Response(e.message, { status: 500 });
-    }
+    return Response.json({ success: true });
+  } catch (e) {
+    return new Response(e.message, { status: 500 });
+  }
 }