60 lines
1.7 KiB
JavaScript
60 lines
1.7 KiB
JavaScript
import { randomBytes } from 'node:crypto'
|
|
import bcrypt from 'bcrypt'
|
|
import { createError, readBody } from 'h3'
|
|
import { z } from 'zod'
|
|
import { requireAdminSession } from '../../../utils/admin-auth'
|
|
import { createMemberByAdmin, isEmailTaken, isUsernameTaken } from '../../../repositories/member-repository'
|
|
|
|
const memberInputSchema = z.object({
|
|
username: z.string().trim().min(1).max(60),
|
|
email: z.string().trim().email().max(254),
|
|
avatarUrl: z.string().trim().max(500).optional().default(''),
|
|
labels: z.array(z.string().trim().min(1).max(40)).max(20).optional().default([]),
|
|
note: z.string().max(500).optional().default('')
|
|
})
|
|
|
|
/**
|
|
* 관리자 회원 생성 API
|
|
* @param {import('h3').H3Event} event - 요청 이벤트
|
|
* @returns {Promise<Object>} 생성된 회원
|
|
*/
|
|
export default defineEventHandler(async (event) => {
|
|
requireAdminSession(event)
|
|
const parsedBody = memberInputSchema.safeParse(await readBody(event))
|
|
|
|
if (!parsedBody.success) {
|
|
throw createError({
|
|
statusCode: 400,
|
|
message: '회원 생성 요청 형식이 올바르지 않습니다.'
|
|
})
|
|
}
|
|
|
|
const body = parsedBody.data
|
|
const email = body.email.toLowerCase()
|
|
|
|
if (await isUsernameTaken({ username: body.username })) {
|
|
throw createError({
|
|
statusCode: 409,
|
|
message: '이미 사용 중인 이름입니다.'
|
|
})
|
|
}
|
|
|
|
if (await isEmailTaken({ email })) {
|
|
throw createError({
|
|
statusCode: 409,
|
|
message: '이미 사용 중인 이메일입니다.'
|
|
})
|
|
}
|
|
|
|
const passwordHash = await bcrypt.hash(randomBytes(32).toString('hex'), 12)
|
|
|
|
return createMemberByAdmin({
|
|
username: body.username,
|
|
email,
|
|
passwordHash,
|
|
avatarUrl: body.avatarUrl,
|
|
labels: [...new Set(body.labels)],
|
|
note: body.note
|
|
})
|
|
})
|