Add review deletion functionality and UI enhancements

- Implemented delete functionality for reviews in both the ReviewModal and ReviewsTable components. - Added confirmation prompts for review deletion actions. - Updated ReviewController to allow deletion of reviews by admins or the review owner. - Enhanced event handling to refresh the review list upon deletion. - Improved UI to include delete buttons for admins in the ratings page and reviews table.
2026-03-02 14:09:43 +00:00 · 2026-02-09 22:31:44 +08:00 · 2026-02-09 22:31:44 +08:00 · 633bc4805e
commit 633bc4805e
parent d2285d952a
5 changed files with 106 additions and 5 deletions
--- a/server/controllers/ReviewController.js
+++ b/server/controllers/ReviewController.js
@ -108,6 +108,40 @@ class ReviewController {
    }
  }

+  /**
+   * DELETE: /api/reviews/:id
+   * Delete a review by ID.
+   * Admin or the owner of the review can delete it.
+   *
+   * @param {import('express').Request} req
+   * @param {import('express').Response} res
+   */
+  async deleteById(req, res) {
+    if (!Database.serverSettings.enableReviews) {
+      return res.status(403).send('Review feature is disabled')
+    }
+
+    const { id } = req.params
+
+    try {
+      const review = await Database.reviewModel.findByPk(id)
+      if (!review) {
+        return res.sendStatus(404)
+      }
+
+      // Check if user is owner or admin
+      if (review.userId !== req.user.id && req.user.type !== 'admin' && req.user.type !== 'root') {
+        return res.status(403).send('Not authorized to delete this review')
+      }
+
+      await review.destroy()
+      res.sendStatus(200)
+    } catch (error) {
+      Logger.error(`[ReviewController] Failed to delete review ${id}`, error)
+      res.status(500).send('Failed to delete review')
+    }
+  }
+
  /**
   * GET: /api/me/reviews
   * Get all reviews by the current user.