xivdev/XIVPlan-DB
1
0
Fork 0
Code Issues Wiki Activity
Files
353e6e978d360f34acc9a73a492aa914b43ac008
XIVPlan-DB/README.md
Ean Milligan b8182c8f72 add full path to init file
2026-04-20 22:39:36 -04:00

43 lines
3.2 KiB
Markdown
Raw Blame History

# XIVPlan+DB Mod Edition
This is just XIVPlan with a very basic DB implementation to make sharing links to a plan much more accessible. This repo contains the modification to XIVPlan as a git `.patch` file, and the rest of the source in this repo is the server that acts as an interface between XIVPlan and the DB.
## Ideas around the mod
User enrollment will require a username and pin, but this pin will be stored in plaintext in the DB for simplicity as there is nothing in here that requires security. Users can optionally provide an email at enrollment to protect their account from accidental deletion.
The API SSR User page will be the primary way of managing your plans to limit modifications to XIVPlan.
Plans will not ever be truly deleted from an account, instead marked as deleted and hidden.
Every non-readonly action will require user PIN as everything is stateless.
Users and their plans can be permanently deleted, but if an email was provided at enrollment they will need to confirm the delete first.
## DB Implementation
See `/db/initialize.ts` for current DB config
## API Implementation
The API will be a combination API and basic SSR. Check out the [Bruno](https://usebruno.com) docs to test/demo the api.
### Routes
- /api/home - SSR Page: shows login form
- /api/home/[userId] - SSR Page: provides import plan button to upload an existing xivplan url to the db, shows all user's plans (have section for deleted plans), each plan should have the following buttons: [Open], [Share], [Rename*] [Delete*] Buttons with a \* will prompt for PIN to confirm.
- /api/read/[planId] - API Page: **GET** returns name and data as JSON object
- /api/list/[userId] - API Page: **GET** returns non-deleted plans, specifically the name, id, and folder of each plan as a JSON array of objects
- /api/export/[userId] - API Page: **GET** returns zip of .xivplan files
- /api/create - API Page: **POST** to save new plan to DB, requires name, **PIN**, and data (optionally folder), api will generate a nanoid for the PK
- /api/update/[planId] - API Page: **PUT** to overwrite plan while keeping same name and id, requires **PIN** and data
- /api/rename/[planId] - API Page: **PUT** to rename plan while keeping same data and id, requires **PIN** and name
- /api/move/[planId] - API Page: **PUT** to change what folder a plan is in while keeping same data, name, and id, requires **PIN** and name
- /api/undelete/[planId] - API Page: **PUT** to unmark plan as deleted, requires **PIN**
- /api/delete/[planId] - API Page: **DELETE** to mark plan as deleted, requires **PIN**
- /api/perm-delete/[planId] - API Page: **DELETE** to truly delete the plan, requires **PIN** and plan to be marked as deleted
- /api/auth - API Page: **POST** to check if you are who you say you are, requires username and **PIN**, returns userId and boolean of if email was set
- /api/enroll - API Page: **POST** to create new user, requires username and **PIN** (optionally email), returns userId
- /api/unenroll - API Page: **DELETE** to get rid of user and all of their plans, requires username and **PIN** (and deletion-confirmation-code if email present)
- If email present on user and delete-confirmation-code not present, send delete-confirmation-code to user and have them redo form
Reference in New Issue View Git Blame Copy Permalink