feat(server): added in service script to run a crud

2025-03-03 12:28:55 -06:00
parent f3b92e94e3
commit 8e5903cbf3
22 changed files with 361 additions and 131 deletions
--- a/server/services/auth/controllers/login.ts
+++ b/server/services/auth/controllers/login.ts
@@ -3,7 +3,7 @@ import {db} from "../../../../database/dbclient.js";
 import {users} from "../../../../database/schema/users.js";
 import {eq, sql} from "drizzle-orm";
 import {checkPassword} from "../utils/checkPassword.js";
-import {roleCheck} from "./getUserAccess.js";
+import {roleCheck} from "./userRoles/getUserAccess.js";

 /**
 * Authenticate a user and return a JWT.
--- a/server/services/auth/controllers/userRoles/getUserAccess.ts
+++ b/server/services/auth/controllers/userRoles/getUserAccess.ts
@@ -4,10 +4,13 @@ in the login route we attach it to user under roles.
 */

 import {eq} from "drizzle-orm";
-import {db} from "../../../../database/dbclient.js";
-import {userRoles} from "../../../../database/schema/userRoles.js";
+import {db} from "../../../../../database/dbclient.js";
+import {userRoles} from "../../../../../database/schema/userRoles.js";

-export const roleCheck = async (user_id: any) => {
+export const roleCheck = async (user_id: string | undefined) => {
+    if (!user_id) {
+        throw Error("Missing user_id");
+    }
    // get the user roles by the user_id
    const roles = await db.select().from(userRoles).where(eq(userRoles.user_id, user_id));

--- a/server/services/auth/controllers/userRoles/setSysAdmin.ts
+++ b/server/services/auth/controllers/userRoles/setSysAdmin.ts
@@ -0,0 +1,35 @@
+import {users} from "../../../../../database/schema/users.js";
+import {eq} from "drizzle-orm";
+import {db} from "../../../../../database/dbclient.js";
+import {userRoles} from "../../../../../database/schema/userRoles.js";
+import {modules} from "../../../../../database/schema/modules.js";
+import {roles} from "../../../../../database/schema/roles.js";
+
+export const setSysAdmin = async (user: any, roleName: any): Promise<void> => {
+    // remove all userRoles to prevent errors
+    try {
+        const remove = await db.delete(userRoles).where(eq(userRoles.user_id, user[0].user_id));
+    } catch (error) {
+        console.log(error);
+    }
+
+    // now we want to add the user to the system admin.
+    const module = await db.select().from(modules);
+    const role = await db.select().from(roles).where(eq(roles.name, roleName));
+
+    for (let i = 0; i < module.length; i++) {
+        try {
+            const userRole = await db.insert(userRoles).values({
+                user_id: user[0].user_id,
+                role_id: role[0].role_id,
+                module_id: module[i].module_id,
+                role: roleName,
+            });
+            console.log(`${user[0].username} has been granted access to ${module[i].name} with the role ${roleName}`);
+        } catch (error) {
+            console.log(error);
+        }
+    }
+
+    return;
+};
--- a/server/services/auth/controllers/userRoles/setUserRoles.ts
+++ b/server/services/auth/controllers/userRoles/setUserRoles.ts
@@ -0,0 +1,57 @@
+/*
+pass over a users uuid and return all modules they have permission too. 
+in the login route we attach it to user under roles.
+*/
+
+import {eq} from "drizzle-orm";
+import {db} from "../../../../../database/dbclient.js";
+import {userRoles} from "../../../../../database/schema/userRoles.js";
+import {users} from "../../../../../database/schema/users.js";
+import {modules} from "../../../../../database/schema/modules.js";
+import {roles} from "../../../../../database/schema/roles.js";
+import {setSysAdmin} from "./setSysAdmin.js";
+
+export const setUserAccess = async (username: string, moduleName: string, roleName: string, override?: string) => {
+    // get the user roles by the user_id
+    const user = await db.select().from(users).where(eq(users.username, username));
+    const module = await db.select().from(modules).where(eq(modules.name, moduleName));
+
+    if (process.env.SECRETOVERRIDECODE != override && roleName === "systemAdmin") {
+        return {success: false, message: "The override code provided is invalid."};
+    }
+
+    const role = await db.select().from(roles).where(eq(roles.name, roleName));
+
+    /**
+     * For system admin we want to do a little more
+     */
+
+    if (roleName === "systemAdmin") {
+        await setSysAdmin(user, roleName);
+        return {
+            success: true,
+            message: `${username} has been granted access to ${moduleName} with the role ${roleName}`,
+        };
+    }
+    //console.log(user, module, role);
+
+    // set the user
+    try {
+        const userRole = await db
+        .insert(userRoles)
+        .values({user_id: user[0].user_id, role_id: role[0].role_id, module_id: module[0].module_id, role: roleName});
+        //.returning({user: users.username, email: users.email});
+
+        // return c.json({message: "User Registered", user}, 200);
+        return {
+            success: true,
+            message: `${username} has been granted access to ${moduleName} with the role ${roleName}`,
+        };
+    } catch (error) {
+        return {
+            success: false,
+            message: `There was an error granting ${username} access to ${moduleName} with the role ${roleName}`,
+            data: error,
+        };
+    }
+};