fosrl.pangolin/server/setup/ensureActions.ts

import { ActionsEnum } from "@server/auth/actions";
import { db } from "@server/db";
import { actions, roles, roleActions } from "../db/schema";
import { eq, inArray } from "drizzle-orm";
import logger from "@server/logger";

export async function ensureActions() {
    const actionIds = Object.values(ActionsEnum);
    const existingActions = await db.select().from(actions).execute();
    const existingActionIds = existingActions.map((action) => action.actionId);

    const actionsToAdd = actionIds.filter(
        (id) => !existingActionIds.includes(id)
    );
    const actionsToRemove = existingActionIds.filter(
        (id) => !actionIds.includes(id as ActionsEnum)
    );

    const defaultRoles = await db
        .select()
        .from(roles)
        .where(eq(roles.isAdmin, true))
        .execute();

        await db.transaction(async (trx) => {

    // Add new actions
    for (const actionId of actionsToAdd) {
        logger.debug(`Adding action: ${actionId}`);
        await trx.insert(actions).values({ actionId }).execute();
        // Add new actions to the Default role
        if (defaultRoles.length != 0) {
            await trx
                .insert(roleActions)
                .values(
                    defaultRoles.map((role) => ({
                        roleId: role.roleId!,
                        actionId,
                        orgId: role.orgId!
                    }))
                )
                .execute();
        }
    }

    // Remove deprecated actions
    if (actionsToRemove.length > 0) {
        logger.debug(`Removing actions: ${actionsToRemove.join(", ")}`);
        await trx
            .delete(actions)
            .where(inArray(actions.actionId, actionsToRemove))
            .execute();
        await trx
            .delete(roleActions)
            .where(inArray(roleActions.actionId, actionsToRemove))
            .execute();
    }
});
}

export async function createAdminRole(orgId: string) {
    let roleId: any;
    await db.transaction(async (trx) => {

    const [insertedRole] = await trx
        .insert(roles)
        .values({
            orgId,
            isAdmin: true,
            name: "Admin",
            description: "Admin role with the most permissions"
        })
        .returning({ roleId: roles.roleId })
        .execute();

    if (!insertedRole || !insertedRole.roleId) {
        throw new Error("Failed to create Admin role");
    }

    roleId = insertedRole.roleId;

    const actionIds = await trx.select().from(actions).execute();

    if (actionIds.length === 0) {
        logger.info("No actions to assign to the Admin role");
        return;
    }

    await trx
        .insert(roleActions)
        .values(
            actionIds.map((action) => ({
                roleId,
                actionId: action.actionId,
                orgId
            }))
        )
        .execute();
    });

    if (!roleId) {
        throw new Error("Failed to create Admin role");
    }

    return roleId;
}
Add ensureActions 2024-10-06 18:12:27 -04:00			`import { ActionsEnum } from "@server/auth/actions";`
			`import { db } from "@server/db";`
Add setup entrypoint 2024-12-22 12:33:49 -05:00			`import { actions, roles, roleActions } from "../db/schema";`
			`import { eq, inArray } from "drizzle-orm";`
Fix ensure issue 2024-10-13 18:41:15 -04:00			`import logger from "@server/logger";`
Add ensureActions 2024-10-06 18:12:27 -04:00
			`export async function ensureActions() {`
			`const actionIds = Object.values(ActionsEnum);`
Ensure the user's actions 2024-10-10 21:59:30 -04:00			`const existingActions = await db.select().from(actions).execute();`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`const existingActionIds = existingActions.map((action) => action.actionId);`
Add ensureActions 2024-10-06 18:12:27 -04:00
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`const actionsToAdd = actionIds.filter(`
			`(id) => !existingActionIds.includes(id)`
			`);`
			`const actionsToRemove = existingActionIds.filter(`
			`(id) => !actionIds.includes(id as ActionsEnum)`
			`);`
Ensure the user's actions 2024-10-10 21:59:30 -04:00
			`const defaultRoles = await db`
Add ensureActions 2024-10-06 18:12:27 -04:00			`.select()`
Ensure the user's actions 2024-10-10 21:59:30 -04:00			`.from(roles)`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`.where(eq(roles.isAdmin, true))`
Add ensureActions 2024-10-06 18:12:27 -04:00			`.execute();`
Ensure the user's actions 2024-10-10 21:59:30 -04:00
Add basic transactions 2024-12-24 16:00:02 -05:00			`await db.transaction(async (trx) => {`

Ensure the user's actions 2024-10-10 21:59:30 -04:00			`// Add new actions`
			`for (const actionId of actionsToAdd) {`
Updated gerbil key handeling 2024-10-26 17:02:11 -04:00			logger.debug(`Adding action: ${actionId}`);
Add basic transactions 2024-12-24 16:00:02 -05:00			`await trx.insert(actions).values({ actionId }).execute();`
Ensure the user's actions 2024-10-10 21:59:30 -04:00			`// Add new actions to the Default role`
Updated gerbil key handeling 2024-10-26 17:02:11 -04:00			`if (defaultRoles.length != 0) {`
Add basic transactions 2024-12-24 16:00:02 -05:00			`await trx`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`.insert(roleActions)`
			`.values(`
			`defaultRoles.map((role) => ({`
			`roleId: role.roleId!,`
			`actionId,`
setup server admin 2024-12-25 15:54:32 -05:00			`orgId: role.orgId!`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`}))`
			`)`
Fix out of order superuser role 2024-10-21 22:13:53 -04:00			`.execute();`
			`}`
Ensure the user's actions 2024-10-10 21:59:30 -04:00			`}`

			`// Remove deprecated actions`
			`if (actionsToRemove.length > 0) {`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			logger.debug(`Removing actions: ${actionsToRemove.join(", ")}`);
Add basic transactions 2024-12-24 16:00:02 -05:00			`await trx`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`.delete(actions)`
			`.where(inArray(actions.actionId, actionsToRemove))`
			`.execute();`
Add basic transactions 2024-12-24 16:00:02 -05:00			`await trx`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`.delete(roleActions)`
			`.where(inArray(roleActions.actionId, actionsToRemove))`
			`.execute();`
Add ensureActions 2024-10-06 18:12:27 -04:00			`}`
Add basic transactions 2024-12-24 16:00:02 -05:00			`});`
Ensure the user's actions 2024-10-10 21:59:30 -04:00			`}`

rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`export async function createAdminRole(orgId: string) {`
Add basic transactions 2024-12-24 16:00:02 -05:00			`let roleId: any;`
			`await db.transaction(async (trx) => {`

			`const [insertedRole] = await trx`
Ensure the user's actions 2024-10-10 21:59:30 -04:00			`.insert(roles)`
			`.values({`
			`orgId,`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`isAdmin: true,`
			`name: "Admin",`
setup server admin 2024-12-25 15:54:32 -05:00			`description: "Admin role with the most permissions"`
Ensure the user's actions 2024-10-10 21:59:30 -04:00			`})`
			`.returning({ roleId: roles.roleId })`
			`.execute();`

Add basic transactions 2024-12-24 16:00:02 -05:00			`if (!insertedRole \|\| !insertedRole.roleId) {`
			`throw new Error("Failed to create Admin role");`
			`}`

			`roleId = insertedRole.roleId;`
Ensure the user's actions 2024-10-10 21:59:30 -04:00
Add basic transactions 2024-12-24 16:00:02 -05:00			`const actionIds = await trx.select().from(actions).execute();`
Trying to add site provider 2024-10-13 22:45:48 -04:00
			`if (actionIds.length === 0) {`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`logger.info("No actions to assign to the Admin role");`
Trying to add site provider 2024-10-13 22:45:48 -04:00			`return;`
			`}`

Add basic transactions 2024-12-24 16:00:02 -05:00			`await trx`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`.insert(roleActions)`
			`.values(`
			`actionIds.map((action) => ({`
			`roleId,`
			`actionId: action.actionId,`
setup server admin 2024-12-25 15:54:32 -05:00			`orgId`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`}))`
			`)`
Ensure the user's actions 2024-10-10 21:59:30 -04:00			`.execute();`
Add basic transactions 2024-12-24 16:00:02 -05:00			`});`

			`if (!roleId) {`
			`throw new Error("Failed to create Admin role");`
			`}`
Add stepper 2024-10-14 19:30:38 -04:00
			`return roleId;`
rename super user to admin and middleware refactoring 2024-11-05 22:38:57 -05:00			`}`