server/api/api/v1/follow_requests/[account_id]/reject.ts

import { apiRoute, auth, handleZodError } from "@/api";
import {
    Account as AccountSchema,
    Relationship as RelationshipSchema,
} from "@versia/client/schemas";
import { RolePermission } from "@versia/client/schemas";
import { Relationship, User } from "@versia/kit/db";
import { describeRoute } from "hono-openapi";
import { resolver, validator } from "hono-openapi/zod";
import { z } from "zod";
import { ApiError } from "~/classes/errors/api-error";

export default apiRoute((app) =>
    app.post(
        "/api/v1/follow_requests/:account_id/reject",
        describeRoute({
            summary: "Reject follow request",
            externalDocs: {
                url: "https://docs.joinmastodon.org/methods/follow_requests/#reject",
            },
            tags: ["Follows"],
            responses: {
                200: {
                    description:
                        "Your Relationship with this account should be unchanged.",
                    content: {
                        "application/json": {
                            schema: resolver(RelationshipSchema),
                        },
                    },
                },
                404: ApiError.accountNotFound().schema,
                401: ApiError.missingAuthentication().schema,
                422: ApiError.validationFailed().schema,
            },
        }),
        auth({
            auth: true,
            permissions: [RolePermission.ManageOwnFollows],
        }),
        validator(
            "param",
            z.object({
                account_id: AccountSchema.shape.id,
            }),
            handleZodError,
        ),
        async (context) => {
            const { user } = context.get("auth");

            const { account_id } = context.req.valid("param");

            const account = await User.fromId(account_id);

            if (!account) {
                throw ApiError.accountNotFound();
            }

            const oppositeRelationship = await Relationship.fromOwnerAndSubject(
                account,
                user,
            );

            await oppositeRelationship.update({
                requested: false,
                following: false,
            });

            const foundRelationship = await Relationship.fromOwnerAndSubject(
                user,
                account,
            );

            // Check if rejecting remote follow
            if (account.isRemote()) {
                // Federate follow reject
                await user.rejectFollowRequest(account);
            }

            return context.json(foundRelationship.toApi(), 200);
        },
    ),
);