From ca2dee01884ab417101bac656f01fa47346e6434 Mon Sep 17 00:00:00 2001 From: multipleof4 Date: Mon, 10 Nov 2025 13:10:25 -0800 Subject: [PATCH] Feat: Notify ntfy on link delete --- functions/api/links/delete.js | 88 +++++++++++++++++++++++++++-------- 1 file changed, 69 insertions(+), 19 deletions(-) diff --git a/functions/api/links/delete.js b/functions/api/links/delete.js index bd0357f..be02a70 100644 --- a/functions/api/links/delete.js +++ b/functions/api/links/delete.js @@ -1,27 +1,77 @@ +const notify = (env, title, message, level = 1) => + env.NTFY_TOPIC + ? fetch(`https://ntfy.sh/${env.NTFY_TOPIC}`, { + method: "POST", + headers: { + "Content-Type": "text/plain", + Title: title, + Priority: String(level), + }, + body: message, + }).catch(() => {}) + : Promise.resolve(); + export async function onRequestPost({ request, env }) { + try { + const { "cf-turnstile-response": token, ...body } = await request.json(); + + const vR = await fetch( + "https://challenges.cloudflare.com/turnstile/v0/siteverify", + { + method: "POST", + headers: { "Content-Type": "application/json" }, + body: JSON.stringify({ + secret: env.TURNSTILE_KEY, + response: token, + }), + } + ); + + if (!(await vR.json()).success) + return new Response("CAPTCHA verification failed.", { status: 403 }); + + const { slug, username, pass_hash } = body; + if (!slug || !username || !pass_hash) + return new Response("Missing fields", { status: 400 }); + + const user = await env.D1_EV.prepare( + "SELECT pass_hash, custom_slugs FROM users WHERE username = ?" + ) + .bind(username) + .first(); + + if (user?.pass_hash !== pass_hash) + return new Response("Invalid credentials", { status: 401 }); + + let slugs = []; try { - const { 'cf-turnstile-response': token, ...body } = await request.json(); - const vR = await fetch("https://challenges.cloudflare.com/turnstile/v0/siteverify", { method: "POST", headers: { "Content-Type": "application/json" }, body: JSON.stringify({ secret: env.TURNSTILE_KEY, response: token }) }); - if (!(await vR.json()).success) return new Response("CAPTCHA verification failed.", { status: 403 }); + slugs = JSON.parse(user.custom_slugs); + } catch {} - const { slug, username, pass_hash } = body; - if (!slug || !username || !pass_hash) return new Response("Missing fields", { status: 400 }); + if (!Array.isArray(slugs) || !slugs.includes(slug)) + return new Response("Unauthorized", { status: 403 }); - const user = await env.D1_EV.prepare("SELECT pass_hash, custom_slugs FROM users WHERE username = ?").bind(username).first(); - if (user?.pass_hash !== pass_hash) return new Response("Invalid credentials", { status: 401 }); + const newSlugs = slugs.filter((s) => s !== slug); - let slugs = []; - try { slugs = JSON.parse(user.custom_slugs) } catch {} - if (!Array.isArray(slugs) || !slugs.includes(slug)) return new Response("Unauthorized", { status: 403 }); + await Promise.all([ + env.KV_EV.delete(slug), + env.D1_EV.prepare( + "UPDATE users SET custom_slugs = ? WHERE username = ?" + ) + .bind(JSON.stringify(newSlugs), username) + .run(), + ]); - const newSlugs = slugs.filter(s => s !== slug); - await Promise.all([ - env.KV_EV.delete(slug), - env.D1_EV.prepare("UPDATE users SET custom_slugs = ? WHERE username = ?").bind(JSON.stringify(newSlugs), username).run() - ]); + env.NTFY_TOPIC && + notify( + env, + "4ev.link: link deleted", + `user=${username} slug=${slug}`, + 1 + ); - return Response.json({ success: true }); - } catch (e) { - return new Response(e.message, { status: 500 }); - } + return Response.json({ success: true }); + } catch (e) { + return new Response(e.message, { status: 500 }); + } }