fix navbar and guest user checks

previously guest users would cause a response 500 if a private album existed, meaning they couldn't see any albums
they also couldn't load media in any album due to requiring an access token

backend/internal/routes/media.go

@@ -39,12 +39,27 @@ func RegisterMediaRoutes(rg *gin.RouterGroup) {
 	media.GET("/getAllMediaInAlbum", func(c *gin.Context) {
 		accessToken := c.GetHeader("Authorization")
 		albumID := c.Query("albumId")
-		media, err := services.GetAllMediaInAlbum(albumID, accessToken)
+		isPublic, err := services.IsAlbumPublic(albumID)
 		if err != nil {
 			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 			return
 		}
-		c.JSON(http.StatusOK, gin.H{"media": media})
+		if isPublic {
+			media, err := services.GetAllMediaInPublicAlbum(albumID)
+			if err != nil {
+				c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
+				return
+			}
+			c.JSON(http.StatusOK, gin.H{"media": media})
+			return
+		} else {
+			media, err := services.GetAllMediaInAlbum(albumID, accessToken)
+			if err != nil {
+				c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
+				return
+			}
+			c.JSON(http.StatusOK, gin.H{"media": media})
+		}
 	})
 	media.GET("/:albumId/:mediaId", func(c *gin.Context) {
 		albumID := c.Param("albumId")
@@ -52,6 +67,20 @@ func RegisterMediaRoutes(rg *gin.RouterGroup) {
 		if albumID == "root" {
 			albumID = ""
 		}
+		isPublic, err := services.IsAlbumPublic(albumID)
+		if err != nil {
+			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
+			return
+		}
+		if isPublic {
+			mediaData, err := services.GetMedia(albumID, mediaID)
+			if err != nil {
+				c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
+				return
+			}
+			c.File(mediaData.Path)
+			return
+		}
 		accessToken := c.GetHeader("Authorization")
 		userID, err := services.ValidateAccessToken(accessToken)
 		if err != nil {