fosrl.pangolin/server/routers/site/listSites.ts

import { ActionsEnum, checkUserActionPermission } from "@server/auth/actions";
import { db } from "@server/db";
import {
    orgs,
    roleSites,
    sites,
    userSites,
} from "@server/db/schema";
import HttpCode from "@server/types/HttpCode";
import response from "@server/utils/response";
import { and, eq, inArray, or, sql } from "drizzle-orm";
import { NextFunction, Request, Response } from "express";
import createHttpError from "http-errors";
import { z } from "zod";
import { fromError } from "zod-validation-error";

const listSitesParamsSchema = z.object({
    orgId: z.string(),
});

const listSitesSchema = z.object({
    limit: z
        .string()
        .optional()
        .default("1000")
        .transform(Number)
        .pipe(z.number().int().positive()),
    offset: z
        .string()
        .optional()
        .default("0")
        .transform(Number)
        .pipe(z.number().int().nonnegative()),
});

function querySites(orgId: string, accessibleSiteIds: number[]) {
    return db
        .select({
            siteId: sites.siteId,
            name: sites.name,
            subdomain: sites.subdomain,
            pubKey: sites.pubKey,
            subnet: sites.subnet,
            megabytesIn: sites.megabytesIn,
            megabytesOut: sites.megabytesOut,
            orgName: orgs.name,
        })
        .from(sites)
        .leftJoin(orgs, eq(sites.orgId, orgs.orgId))
        .where(
            and(
                inArray(sites.siteId, accessibleSiteIds),
                eq(sites.orgId, orgId),
            ),
        );
}

export type ListSitesResponse = {
    sites: Awaited<ReturnType<typeof querySites>>;
    pagination: { total: number; limit: number; offset: number };
};

export async function listSites(
    req: Request,
    res: Response,
    next: NextFunction,
): Promise<any> {
    try {
        const parsedQuery = listSitesSchema.safeParse(req.query);
        if (!parsedQuery.success) {
            return next(
                createHttpError(
                    HttpCode.BAD_REQUEST,
                    fromError(parsedQuery.error),
                ),
            );
        }
        const { limit, offset } = parsedQuery.data;

        const parsedParams = listSitesParamsSchema.safeParse(req.params);
        if (!parsedParams.success) {
            return next(
                createHttpError(
                    HttpCode.BAD_REQUEST,
                    parsedParams.error.errors.map((e) => e.message).join(", "),
                ),
            );
        }
        const { orgId } = parsedParams.data;

        // Check if the user has permission to list sites
        const hasPermission = await checkUserActionPermission(
            ActionsEnum.listSites,
            req,
        );
        if (!hasPermission) {
            return next(
                createHttpError(
                    HttpCode.FORBIDDEN,
                    "User does not have permission to perform this action",
                ),
            );
        }

        if (orgId && orgId !== req.userOrgId) {
            return next(
                createHttpError(
                    HttpCode.FORBIDDEN,
                    "User does not have access to this organization",
                ),
            );
        }

        const accessibleSites = await db
            .select({
                siteId: sql<number>`COALESCE(${userSites.siteId}, ${roleSites.siteId})`,
            })
            .from(userSites)
            .fullJoin(roleSites, eq(userSites.siteId, roleSites.siteId))
            .where(
                or(
                    eq(userSites.userId, req.user!.userId),
                    eq(roleSites.roleId, req.userOrgRoleId!),
                ),
            );

        const accessibleSiteIds = accessibleSites.map((site) => site.siteId);
        const baseQuery = querySites(orgId, accessibleSiteIds);

        let countQuery = db
            .select({ count: sql<number>`cast(count(*) as integer)` })
            .from(sites)
            .where(
                and(
                    inArray(sites.siteId, accessibleSiteIds),
                    eq(sites.orgId, orgId),
                ),
            );

        const sitesList = await baseQuery.limit(limit).offset(offset);
        const totalCountResult = await countQuery;
        const totalCount = totalCountResult[0].count;

        return response<ListSitesResponse>(res, {
            data: {
                sites: sitesList,
                pagination: {
                    total: totalCount,
                    limit,
                    offset,
                },
            },
            success: true,
            error: false,
            message: "Sites retrieved successfully",
            status: HttpCode.OK,
        });
    } catch (error) {
        return next(
            createHttpError(
                HttpCode.INTERNAL_SERVER_ERROR,
                "An error occurred...",
            ),
        );
    }
}
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`import { ActionsEnum, checkUserActionPermission } from "@server/auth/actions";`
			`import { db } from "@server/db";`
			`import {`
			`orgs,`
			`roleSites,`
			`sites,`
			`userSites,`
			`} from "@server/db/schema";`
			`import HttpCode from "@server/types/HttpCode";`
Fix return response and add list 2024-10-02 21:17:38 -04:00			`import response from "@server/utils/response";`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`import { and, eq, inArray, or, sql } from "drizzle-orm";`
			`import { NextFunction, Request, Response } from "express";`
			`import createHttpError from "http-errors";`
			`import { z } from "zod";`
			`import { fromError } from "zod-validation-error";`
Fix return response and add list 2024-10-02 21:17:38 -04:00
Move nessicary info to url params 2024-10-02 22:05:21 -04:00			`const listSitesParamsSchema = z.object({`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`orgId: z.string(),`
Move nessicary info to url params 2024-10-02 22:05:21 -04:00			`});`

Fix return response and add list 2024-10-02 21:17:38 -04:00			`const listSitesSchema = z.object({`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`limit: z`
			`.string()`
			`.optional()`
			`.default("1000")`
			`.transform(Number)`
			`.pipe(z.number().int().positive()),`
			`offset: z`
			`.string()`
			`.optional()`
			`.default("0")`
			`.transform(Number)`
			`.pipe(z.number().int().nonnegative()),`
Fix return response and add list 2024-10-02 21:17:38 -04:00			`});`

fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`function querySites(orgId: string, accessibleSiteIds: number[]) {`
			`return db`
			`.select({`
			`siteId: sites.siteId,`
			`name: sites.name,`
			`subdomain: sites.subdomain,`
			`pubKey: sites.pubKey,`
			`subnet: sites.subnet,`
			`megabytesIn: sites.megabytesIn,`
			`megabytesOut: sites.megabytesOut,`
			`orgName: orgs.name,`
			`})`
			`.from(sites)`
			`.leftJoin(orgs, eq(sites.orgId, orgs.orgId))`
			`.where(`
			`and(`
			`inArray(sites.siteId, accessibleSiteIds),`
			`eq(sites.orgId, orgId),`
			`),`
			`);`
			`}`

			`export type ListSitesResponse = {`
			`sites: Awaited<ReturnType<typeof querySites>>;`
			`pagination: { total: number; limit: number; offset: number };`
			`};`

			`export async function listSites(`
			`req: Request,`
			`res: Response,`
			`next: NextFunction,`
			`): Promise<any> {`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`try {`
			`const parsedQuery = listSitesSchema.safeParse(req.query);`
			`if (!parsedQuery.success) {`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`return next(`
			`createHttpError(`
			`HttpCode.BAD_REQUEST,`
			`fromError(parsedQuery.error),`
			`),`
			`);`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`}`
			`const { limit, offset } = parsedQuery.data;`
Move nessicary info to url params 2024-10-02 22:05:21 -04:00
Format files and fix http response 2024-10-06 18:05:20 -04:00			`const parsedParams = listSitesParamsSchema.safeParse(req.params);`
			`if (!parsedParams.success) {`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`return next(`
			`createHttpError(`
			`HttpCode.BAD_REQUEST,`
			`parsedParams.error.errors.map((e) => e.message).join(", "),`
			`),`
			`);`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`}`
			`const { orgId } = parsedParams.data;`
Move nessicary info to url params 2024-10-02 22:05:21 -04:00
Format files and fix http response 2024-10-06 18:05:20 -04:00			`// Check if the user has permission to list sites`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`const hasPermission = await checkUserActionPermission(`
			`ActionsEnum.listSites,`
			`req,`
			`);`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`if (!hasPermission) {`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`return next(`
			`createHttpError(`
			`HttpCode.FORBIDDEN,`
			`"User does not have permission to perform this action",`
			`),`
			`);`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`}`
Fix return response and add list 2024-10-02 21:17:38 -04:00
Format files and fix http response 2024-10-06 18:05:20 -04:00			`if (orgId && orgId !== req.userOrgId) {`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`return next(`
			`createHttpError(`
			`HttpCode.FORBIDDEN,`
			`"User does not have access to this organization",`
			`),`
			`);`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`}`
Fix return response and add list 2024-10-02 21:17:38 -04:00
Format files and fix http response 2024-10-06 18:05:20 -04:00			`const accessibleSites = await db`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`.select({`
			siteId: sql<number>`COALESCE(${userSites.siteId}, ${roleSites.siteId})`,
			`})`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`.from(userSites)`
			`.fullJoin(roleSites, eq(userSites.siteId, roleSites.siteId))`
			`.where(`
			`or(`
remove lucia 2024-10-13 17:13:47 -04:00			`eq(userSites.userId, req.user!.userId),`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`eq(roleSites.roleId, req.userOrgRoleId!),`
			`),`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`);`
Fix return response and add list 2024-10-02 21:17:38 -04:00
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`const accessibleSiteIds = accessibleSites.map((site) => site.siteId);`
			`const baseQuery = querySites(orgId, accessibleSiteIds);`
Fix return response and add list 2024-10-02 21:17:38 -04:00
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`let countQuery = db`
Format files and fix http response 2024-10-06 18:05:20 -04:00			.select({ count: sql<number>`cast(count(*) as integer)` })
			`.from(sites)`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`.where(`
			`and(`
			`inArray(sites.siteId, accessibleSiteIds),`
			`eq(sites.orgId, orgId),`
			`),`
			`);`
Format files and fix http response 2024-10-06 18:05:20 -04:00
			`const sitesList = await baseQuery.limit(limit).offset(offset);`
			`const totalCountResult = await countQuery;`
			`const totalCount = totalCountResult[0].count;`

fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`return response<ListSitesResponse>(res, {`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`data: {`
			`sites: sitesList,`
			`pagination: {`
			`total: totalCount,`
			`limit,`
			`offset,`
			`},`
			`},`
			`success: true,`
			`error: false,`
			`message: "Sites retrieved successfully",`
			`status: HttpCode.OK,`
			`});`
			`} catch (error) {`
fixed listSites endpoint 2024-10-14 21:54:43 -04:00			`return next(`
			`createHttpError(`
			`HttpCode.INTERNAL_SERVER_ERROR,`
			`"An error occurred...",`
			`),`
			`);`
Format files and fix http response 2024-10-06 18:05:20 -04:00			`}`
remove lucia 2024-10-13 17:13:47 -04:00			`}`