feat: midterm shit done

functions/api/avatars/index.js

@@ -0,0 +1,50 @@
+import { verifyJWT } from '../../middleware/auth';
+import { createErrorResponse, createSuccessResponse } from '../../utils';
+import { fileTypeFromBuffer } from 'file-type';
+
+export async function onRequestPut(context) {
+  try {
+    const { request, env } = context;
+
+    // Verify the JWT token
+    const authResult = await verifyJWT(context);
+    if (authResult) {
+      return authResult; // Return the error response from the middleware
+    }
+
+    const formData = await request.formData();
+    const avatar = formData.get('avatar');
+
+    if (!avatar) {
+      return createErrorResponse("Missing avatar", 400);
+    }
+
+    if (avatar.size > 2 * 1024 * 1024) {
+      return createErrorResponse("Avatar must be less than 2MB", 400);
+    }
+
+    const buffer = await avatar.arrayBuffer();
+    const fileTypeResult = await fileTypeFromBuffer(buffer);
+
+    if (!fileTypeResult) {
+      return createErrorResponse("Unsupported file type", 400);
+    }
+
+    if (fileTypeResult.mime !== 'image/jpeg' && fileTypeResult.mime !== 'image/png') {
+      return createErrorResponse("Avatar must be a JPG or PNG image", 400);
+    }
+
+    // Upload the avatar to R2
+    const fileExtension = fileTypeResult.ext;
+    const objectName = `avatars/${context.user.userId}.${fileExtension}`;
+    await env.MY_BUCKET.put(objectName, buffer);
+
+    // Store the filename in D1
+    await env.DB.prepare("UPDATE users SET avatar = ? WHERE id = ?").bind(objectName, context.user.userId).run();
+
+    return createSuccessResponse({ message: "Avatar uploaded successfully" });
+  } catch (error) {
+    console.error("Avatar upload error:", error);
+    return createErrorResponse("Avatar upload failed", 500);
+  }
+}