feat(sharing): add email and message sharing functionality

app/api/emails/[id]/messages/[messageId]/share/[shareId]/route.ts

@@ -0,0 +1,55 @@
+import { createDb } from "@/lib/db"
+import { messageShares, messages, emails } from "@/lib/schema"
+import { eq, and } from "drizzle-orm"
+import { NextResponse } from "next/server"
+import { getUserId } from "@/lib/apiKey"
+
+export const runtime = "edge"
+
+// 删除消息分享链接
+export async function DELETE(
+  request: Request,
+  { params }: { params: Promise<{ id: string; messageId: string; shareId: string }> }
+) {
+  const userId = await getUserId()
+  if (!userId) {
+    return NextResponse.json({ error: "Unauthorized" }, { status: 401 })
+  }
+
+  const { id: emailId, messageId, shareId } = await params
+  const db = createDb()
+
+  try {
+    // 验证邮箱所有权
+    const email = await db.query.emails.findFirst({
+      where: and(eq(emails.id, emailId), eq(emails.userId, userId))
+    })
+
+    if (!email) {
+      return NextResponse.json({ error: "Unauthorized" }, { status: 403 })
+    }
+
+    // 获取消息并验证
+    const message = await db.query.messages.findFirst({
+      where: and(eq(messages.id, messageId), eq(messages.emailId, emailId))
+    })
+
+    if (!message) {
+      return NextResponse.json({ error: "Message not found" }, { status: 404 })
+    }
+
+    // 删除分享记录
+    await db.delete(messageShares).where(
+      and(eq(messageShares.id, shareId), eq(messageShares.messageId, messageId))
+    )
+
+    return NextResponse.json({ success: true })
+  } catch (error) {
+    console.error("Failed to delete message share:", error)
+    return NextResponse.json(
+      { error: "Failed to delete share" },
+      { status: 500 }
+    )
+  }
+}
+

app/api/emails/[id]/messages/[messageId]/share/route.ts

@@ -0,0 +1,119 @@
+import { createDb } from "@/lib/db"
+import { messageShares, messages, emails } from "@/lib/schema"
+import { eq, and } from "drizzle-orm"
+import { NextResponse } from "next/server"
+import { getUserId } from "@/lib/apiKey"
+import { nanoid } from "nanoid"
+
+export const runtime = "edge"
+
+// 获取消息的所有分享链接
+export async function GET(
+  request: Request,
+  { params }: { params: Promise<{ id: string; messageId: string }> }
+) {
+  const userId = await getUserId()
+  if (!userId) {
+    return NextResponse.json({ error: "Unauthorized" }, { status: 401 })
+  }
+
+  const { id: emailId, messageId } = await params
+  const db = createDb()
+
+  try {
+    // 验证邮箱所有权
+    const email = await db.query.emails.findFirst({
+      where: and(eq(emails.id, emailId), eq(emails.userId, userId))
+    })
+
+    if (!email) {
+      return NextResponse.json({ error: "Unauthorized" }, { status: 403 })
+    }
+
+    // 获取消息
+    const message = await db.query.messages.findFirst({
+      where: and(eq(messages.id, messageId), eq(messages.emailId, emailId))
+    })
+
+    if (!message) {
+      return NextResponse.json({ error: "Message not found" }, { status: 404 })
+    }
+
+    // 获取该消息的所有分享链接
+    const shares = await db.query.messageShares.findMany({
+      where: eq(messageShares.messageId, messageId),
+      orderBy: (messageShares, { desc }) => [desc(messageShares.createdAt)]
+    })
+
+    return NextResponse.json({ shares, total: shares.length })
+  } catch (error) {
+    console.error("Failed to fetch message shares:", error)
+    return NextResponse.json(
+      { error: "Failed to fetch shares" },
+      { status: 500 }
+    )
+  }
+}
+
+// 创建新的消息分享链接
+export async function POST(
+  request: Request,
+  { params }: { params: Promise<{ id: string; messageId: string }> }
+) {
+  const userId = await getUserId()
+  if (!userId) {
+    return NextResponse.json({ error: "Unauthorized" }, { status: 401 })
+  }
+
+  const { id: emailId, messageId } = await params
+  const db = createDb()
+
+  try {
+    // 验证邮箱所有权
+    const email = await db.query.emails.findFirst({
+      where: and(eq(emails.id, emailId), eq(emails.userId, userId))
+    })
+
+    if (!email) {
+      return NextResponse.json({ error: "Unauthorized" }, { status: 403 })
+    }
+
+    // 获取消息并验证
+    const message = await db.query.messages.findFirst({
+      where: and(eq(messages.id, messageId), eq(messages.emailId, emailId))
+    })
+
+    if (!message) {
+      return NextResponse.json({ error: "Message not found" }, { status: 404 })
+    }
+
+    // 解析请求体
+    const body = await request.json() as { expiresIn: number }
+    const { expiresIn } = body // expiresIn 单位为毫秒，0表示永久
+
+    // 生成简短的分享token (16个字符)
+    const token = nanoid(16)
+
+    // 计算过期时间
+    let expiresAt = null
+    if (expiresIn && expiresIn > 0) {
+      expiresAt = new Date(Date.now() + expiresIn)
+    }
+
+    // 创建分享记录
+    const [share] = await db.insert(messageShares).values({
+      messageId,
+      token,
+      expiresAt
+    }).returning()
+
+    return NextResponse.json(share, { status: 201 })
+  } catch (error) {
+    console.error("Failed to create message share:", error)
+    return NextResponse.json(
+      { error: "Failed to create share" },
+      { status: 500 }
+    )
+  }
+}
+

app/api/emails/[id]/share/[shareId]/route.ts

@@ -0,0 +1,46 @@
+import { createDb } from "@/lib/db"
+import { emailShares, emails } from "@/lib/schema"
+import { eq, and } from "drizzle-orm"
+import { NextResponse } from "next/server"
+import { getUserId } from "@/lib/apiKey"
+
+export const runtime = "edge"
+
+// 删除分享链接
+export async function DELETE(
+  request: Request,
+  { params }: { params: Promise<{ id: string; shareId: string }> }
+) {
+  const userId = await getUserId()
+  if (!userId) {
+    return NextResponse.json({ error: "Unauthorized" }, { status: 401 })
+  }
+
+  const { id: emailId, shareId } = await params
+  const db = createDb()
+
+  try {
+    // 验证邮箱所有权
+    const email = await db.query.emails.findFirst({
+      where: and(eq(emails.id, emailId), eq(emails.userId, userId))
+    })
+
+    if (!email) {
+      return NextResponse.json({ error: "Email not found" }, { status: 404 })
+    }
+
+    // 删除分享记录
+    await db.delete(emailShares).where(
+      and(eq(emailShares.id, shareId), eq(emailShares.emailId, emailId))
+    )
+
+    return NextResponse.json({ success: true })
+  } catch (error) {
+    console.error("Failed to delete email share:", error)
+    return NextResponse.json(
+      { error: "Failed to delete share" },
+      { status: 500 }
+    )
+  }
+}
+

app/api/emails/[id]/share/route.ts

@@ -0,0 +1,101 @@
+import { createDb } from "@/lib/db"
+import { emailShares, emails } from "@/lib/schema"
+import { eq, and } from "drizzle-orm"
+import { NextResponse } from "next/server"
+import { getUserId } from "@/lib/apiKey"
+import { nanoid } from "nanoid"
+
+export const runtime = "edge"
+
+// 获取邮箱的所有分享链接
+export async function GET(
+  request: Request,
+  { params }: { params: Promise<{ id: string }> }
+) {
+  const userId = await getUserId()
+  if (!userId) {
+    return NextResponse.json({ error: "Unauthorized" }, { status: 401 })
+  }
+
+  const { id: emailId } = await params
+  const db = createDb()
+
+  try {
+    // 验证邮箱所有权
+    const email = await db.query.emails.findFirst({
+      where: and(eq(emails.id, emailId), eq(emails.userId, userId))
+    })
+
+    if (!email) {
+      return NextResponse.json({ error: "Email not found" }, { status: 404 })
+    }
+
+    // 获取该邮箱的所有分享链接
+    const shares = await db.query.emailShares.findMany({
+      where: eq(emailShares.emailId, emailId),
+      orderBy: (emailShares, { desc }) => [desc(emailShares.createdAt)]
+    })
+
+    return NextResponse.json({ shares, total: shares.length })
+  } catch (error) {
+    console.error("Failed to fetch email shares:", error)
+    return NextResponse.json(
+      { error: "Failed to fetch shares" },
+      { status: 500 }
+    )
+  }
+}
+
+// 创建新的分享链接
+export async function POST(
+  request: Request,
+  { params }: { params: Promise<{ id: string }> }
+) {
+  const userId = await getUserId()
+  if (!userId) {
+    return NextResponse.json({ error: "Unauthorized" }, { status: 401 })
+  }
+
+  const { id: emailId } = await params
+  const db = createDb()
+
+  try {
+    // 验证邮箱所有权
+    const email = await db.query.emails.findFirst({
+      where: and(eq(emails.id, emailId), eq(emails.userId, userId))
+    })
+
+    if (!email) {
+      return NextResponse.json({ error: "Email not found" }, { status: 404 })
+    }
+
+    // 解析请求体
+    const body = await request.json() as { expiresIn: number }
+    const { expiresIn } = body // expiresIn 单位为毫秒，0表示永久
+
+    // 生成简短的分享token (16个字符)
+    const token = nanoid(16)
+
+    // 计算过期时间
+    let expiresAt = null
+    if (expiresIn && expiresIn > 0) {
+      expiresAt = new Date(Date.now() + expiresIn)
+    }
+
+    // 创建分享记录
+    const [share] = await db.insert(emailShares).values({
+      emailId,
+      token,
+      expiresAt
+    }).returning()
+
+    return NextResponse.json(share, { status: 201 })
+  } catch (error) {
+    console.error("Failed to create email share:", error)
+    return NextResponse.json(
+      { error: "Failed to create share" },
+      { status: 500 }
+    )
+  }
+}
+