/*! * Copyright (c) 2024 PLANKA Software GmbH * Licensed under the Fair Use License: https://github.com/plankanban/planka/blob/master/LICENSE.md */ /** * @swagger * /api/users/{id}: * delete: * summary: Delete user * description: Deletes a user account. Cannot delete the default admin user. Requires admin privileges. * tags: * - Users * parameters: * - name: id * in: path * required: true * description: ID of the user to delete * schema: * type: string * example: 1357158568008091264 * responses: * 200: * description: User deleted successfully * content: * application/json: * schema: * type: object * required: * - item * properties: * item: * $ref: '#/components/schemas/User' * 400: * $ref: '#/components/responses/ValidationError' * 401: * $ref: '#/components/responses/Unauthorized' * 403: * $ref: '#/components/responses/Forbidden' * 404: * $ref: '#/components/responses/NotFound' */ const { idInput } = require('../../../utils/inputs'); const Errors = { NOT_ENOUGH_RIGHTS: { notEnoughRights: 'Not enough rights', }, USER_NOT_FOUND: { userNotFound: 'User not found', }, }; module.exports = { inputs: { id: { ...idInput, required: true, }, }, exits: { notEnoughRights: { responseType: 'forbidden', }, userNotFound: { responseType: 'notFound', }, }, async fn(inputs) { const { currentUser } = this.req; let user = await User.qm.getOneById(inputs.id); if (!user) { throw Errors.USER_NOT_FOUND; } if (user.email === sails.config.custom.defaultAdminEmail) { throw Errors.NOT_ENOUGH_RIGHTS; } user = await sails.helpers.users.deleteOne.with({ record: user, actorUser: currentUser, request: this.req, }); if (!user) { throw Errors.USER_NOT_FOUND; } return { item: sails.helpers.users.presentOne(user, currentUser), }; }, };