feat(auth): add, update were added for adm account in backend only

server/services/auth/routes/userAdmin/createUser.ts

@@ -0,0 +1,115 @@
+import { z, createRoute, OpenAPIHono } from "@hono/zod-openapi";
+import { registerUser } from "../../controllers/register.js";
+import { authMiddleware } from "../../middleware/authMiddleware.js";
+import hasCorrectRole from "../../middleware/roleCheck.js";
+
+const app = new OpenAPIHono();
+
+const UserSchema = z.object({
+  username: z
+    .string()
+    .regex(/^[a-zA-Z0-9_]{3,30}$/)
+    .openapi({ example: "smith034" }),
+  email: z.string().email().openapi({ example: "smith@example.com" }),
+  password: z
+    .string()
+    .min(6, { message: "Passwords must be longer than 3 characters" })
+    .regex(/[A-Z]/, {
+      message: "Password must contain at least one uppercase letter",
+    })
+    .regex(/[\W_]/, {
+      message: "Password must contain at least one special character",
+    })
+    .openapi({ example: "Password1!" }),
+});
+
+type User = z.infer<typeof UserSchema>;
+
+const responseSchema = z.object({
+  success: z.boolean().optional().openapi({ example: true }),
+  message: z.string().optional().openapi({ example: "User Created" }),
+});
+
+app.openapi(
+  createRoute({
+    tags: ["Auth:admin"],
+    summary: "Creates user",
+    method: "post",
+    path: "/",
+    middleware: [
+      authMiddleware,
+      hasCorrectRole(["admin", "systemAdmin"], "admin"),
+    ],
+    request: {
+      body: {
+        content: {
+          "application/json": { schema: UserSchema },
+        },
+      },
+    },
+    responses: {
+      200: {
+        content: { "application/json": { schema: responseSchema } },
+        description: "Retrieve the user",
+      },
+      400: {
+        content: {
+          "application/json": {
+            schema: z.object({
+              success: z.boolean().openapi({ example: false }),
+              message: z
+                .string()
+                .openapi({ example: "Invalid credentials passed" }),
+            }),
+          },
+        },
+        description: "Retrieve the user",
+      },
+    },
+  }),
+  async (c) => {
+    // apit hit
+    //apiHit(c, {endpoint: "api/auth/register"});
+    let { username, email, password } = await c.req.json();
+
+    if (!username || !email || !password) {
+      return c.json({ success: false, message: "Credentials missing" }, 400);
+    }
+
+    // some usernames that should be ignored
+    const badActors = ["admin", "root"];
+    if (badActors.includes(username)) {
+      return c.json(
+        {
+          success: false,
+          message: `${username} is not a valid name to be registerd please try again`,
+        },
+        400
+      );
+    }
+
+    try {
+      const register = await registerUser(username, password, email);
+
+      return c.json(
+        {
+          success: register.success,
+          message: register.message,
+          user: register?.user,
+        },
+        200
+      );
+    } catch (error) {
+      console.log(error);
+      return c.json(
+        {
+          success: false,
+          message: `${username} already exists please login or reset password, if you feel this is an error please contact your admin.`,
+        },
+        400
+      );
+    }
+  }
+);
+
+export default app;

server/services/auth/routes/userAdmin/getUsers.ts

@@ -0,0 +1,35 @@
+import { z, createRoute, OpenAPIHono } from "@hono/zod-openapi";
+
+import { responses } from "../../../../globalUtils/routeDefs/responses.js";
+
+import { getAllUsers } from "../../controllers/userAdmin/getUsers.js";
+import { authMiddleware } from "../../middleware/authMiddleware.js";
+import hasCorrectRole from "../../middleware/roleCheck.js";
+
+const app = new OpenAPIHono();
+
+app.openapi(
+  createRoute({
+    tags: ["Auth:admin"],
+    summary: "Gets Users",
+    method: "get",
+    path: "/allusers",
+    middleware: [
+      authMiddleware,
+      hasCorrectRole(["admin", "systemAdmin"], "admin"),
+    ],
+    responses: responses(),
+  }),
+  async (c) => {
+    // apit hit
+    //apiHit(c, {endpoint: "api/auth/register"});
+    const allUsers: any = await getAllUsers();
+    return c.json({
+      success: allUsers?.success,
+      message: allUsers?.message,
+      data: allUsers?.data,
+    });
+  }
+);
+
+export default app;

server/services/auth/routes/userAdmin/setUserRoles.ts

@@ -0,0 +1,71 @@
+import { createRoute, OpenAPIHono, z } from "@hono/zod-openapi";
+import { setUserAccess } from "../../controllers/userRoles/setUserRoles.js";
+import { apiHit } from "../../../../globalUtils/apiHits.js";
+import { apiReturn } from "../../../../globalUtils/apiReturn.js";
+import { authMiddleware } from "../../middleware/authMiddleware.js";
+import hasCorrectRole from "../../middleware/roleCheck.js";
+import { responses } from "../../../../globalUtils/routeDefs/responses.js";
+
+const app = new OpenAPIHono();
+
+const responseSchema = z.object({
+  success: z.boolean().openapi({ example: true }),
+  message: z.string().optional().openapi({ example: "user access" }),
+  data: z.array(z.object({})).optional().openapi({ example: [] }),
+});
+
+const UserAccess = z.object({
+  username: z
+    .string()
+    .regex(/^[a-zA-Z0-9_]{3,30}$/)
+    .openapi({ example: "smith034" }),
+  module: z.string().openapi({ example: "production" }),
+  role: z.string().openapi({ example: "viewer" }),
+  override: z.string().optional().openapi({ example: "secretString" }),
+});
+
+app.openapi(
+  createRoute({
+    tags: ["Auth:admin"],
+    summary: "Sets Users access",
+    method: "post",
+    path: "/setuseraccess",
+    middleware: [
+      authMiddleware,
+      hasCorrectRole(["admin", "systemAdmin"], "admin"),
+    ],
+    description: "When logged in you will be able to grant new permissions",
+    request: {
+      body: {
+        content: {
+          "application/json": { schema: UserAccess },
+        },
+      },
+    },
+    responses: responses(),
+  }),
+  async (c) => {
+    //apiHit(c, { endpoint: "api/auth/setUserRoles" });
+    const { username, module, role, override } = await c.req.json();
+    try {
+      const access = await setUserAccess(username, module, role, override);
+      //return apiReturn(c, true, access?.message, access?.data, 200);
+      return c.json(
+        { success: access.success, message: access.message, data: access.data },
+        200
+      );
+    } catch (error) {
+      console.log(error);
+      //return apiReturn(c, false, "Error in setting the user access", error, 400);
+      return c.json(
+        {
+          success: false,
+          message: "Error in setting the user access",
+          data: error,
+        },
+        400
+      );
+    }
+  }
+);
+export default app;

server/services/auth/routes/userAdmin/updateUser.ts

@@ -0,0 +1,91 @@
+import { createRoute, OpenAPIHono, z } from "@hono/zod-openapi";
+import { setUserAccess } from "../../controllers/userRoles/setUserRoles.js";
+import { apiHit } from "../../../../globalUtils/apiHits.js";
+import { apiReturn } from "../../../../globalUtils/apiReturn.js";
+import { authMiddleware } from "../../middleware/authMiddleware.js";
+import hasCorrectRole from "../../middleware/roleCheck.js";
+import { responses } from "../../../../globalUtils/routeDefs/responses.js";
+import { updateUserADM } from "../../controllers/userAdmin/updateUserAdm.js";
+
+const app = new OpenAPIHono();
+
+const responseSchema = z.object({
+  success: z.boolean().openapi({ example: true }),
+  message: z.string().optional().openapi({ example: "user access" }),
+  data: z.array(z.object({})).optional().openapi({ example: [] }),
+});
+
+const UserAccess = z.object({
+  user_id: z.string().openapi({ example: "users UUID" }),
+  username: z
+    .string()
+    .regex(/^[a-zA-Z0-9_]{3,30}$/)
+    .optional()
+    .openapi({ example: "smith034" }),
+  email: z
+    .string()
+    .email()
+    .optional()
+    .openapi({ example: "smith@example.com" }),
+  password: z
+    .string()
+    .min(6, { message: "Passwords must be longer than 3 characters" })
+    .regex(/[A-Z]/, {
+      message: "Password must contain at least one uppercase letter",
+    })
+    .regex(/[\W_]/, {
+      message: "Password must contain at least one special character",
+    })
+    .optional()
+    .openapi({ example: "Password1!" }),
+});
+
+app.openapi(
+  createRoute({
+    tags: ["Auth:admin"],
+    summary: "updates a specific user",
+    method: "post",
+    path: "/updateuser",
+    middleware: [
+      authMiddleware,
+      hasCorrectRole(["admin", "systemAdmin"], "admin"),
+    ],
+    //description: "When logged in you will be able to grant new permissions",
+    request: {
+      body: {
+        content: {
+          "application/json": { schema: UserAccess },
+        },
+      },
+    },
+    responses: responses(),
+  }),
+  async (c) => {
+    //apiHit(c, { endpoint: "api/auth/setUserRoles" });
+    const userData = await c.req.json();
+    try {
+      const userUPD: any = await updateUserADM(userData);
+      //return apiReturn(c, true, access?.message, access?.data, 200);
+      return c.json(
+        {
+          success: userUPD.success,
+          message: userUPD.message,
+          data: userUPD.data,
+        },
+        200
+      );
+    } catch (error) {
+      console.log(error);
+      //return apiReturn(c, false, "Error in setting the user access", error, 400);
+      return c.json(
+        {
+          success: false,
+          message: "Error in setting the user access",
+          data: error,
+        },
+        400
+      );
+    }
+  }
+);
+export default app;