Format files and fix http response

2025-07-10 05:54:58 +02:00 · 2024-10-06 18:05:20 -04:00 · 2024-10-06 18:05:20 -04:00 · 8213036729
commit 8213036729
parent 797f72e1d0
49 changed files with 2428 additions and 2404 deletions
--- a/server/auth/actions.ts
+++ b/server/auth/actions.ts
@ -5,98 +5,92 @@ import { and, eq } from 'drizzle-orm';
 import createHttpError from 'http-errors';
 import HttpCode from '@server/types/HttpCode';

-export const ActionsEnum = {
-
-    createOrg: 1,
-    deleteOrg: 2,
-    getOrg: 3,
-    listOrgs: 4,
-    updateOrg: 5,
-    
-    createSite: 6,
-    deleteSite: 7,
-    getSite: 8,
-    listSites: 9,
-    updateSite: 10,
-
-    createResource: 11,
-    deleteResource: 12,
-    getResource: 13,
-    listResources: 14,
-    updateResource: 15,
-
-    createTarget: 16,
-    deleteTarget: 17,
-    getTarget: 18,
-    listTargets: 19,
-    updateTarget: 20,
-
-    getUser: 21,
-    deleteUser: 22,
-    listUsers: 23
-
+export enum ActionsEnum {
+    createOrg = "createOrg",
+    deleteOrg = "deleteOrg",
+    getOrg = "getOrg",
+    listOrgs = "listOrgs",
+    updateOrg = "updateOrg",
+    createSite = "createSite",
+    deleteSite = "deleteSite",
+    getSite = "getSite",
+    listSites = "listSites",
+    updateSite = "updateSite",
+    createResource = "createResource",
+    deleteResource = "deleteResource",
+    getResource = "getResource",
+    listResources = "listResources",
+    updateResource = "updateResource",
+    createTarget = "createTarget",
+    deleteTarget = "deleteTarget",
+    getTarget = "getTarget",
+    listTargets = "listTargets",
+    updateTarget = "updateTarget",
+    getUser = "getUser",
+    deleteUser = "deleteUser",
+    listUsers = "listUsers"
 }

-export async function checkUserActionPermission(actionId: number, req: Request): Promise<boolean> {
-  const userId = req.user?.id;
+export async function checkUserActionPermission(actionId: string, req: Request): Promise<boolean> {
+    const userId = req.user?.id;

-  if (!userId) {
-    throw createHttpError(HttpCode.UNAUTHORIZED, 'User not authenticated');
-  }
-
-  if (!req.userOrgId) {
-    throw createHttpError(HttpCode.BAD_REQUEST, 'Organization ID is required');
-  }
-
-  try {
-    let userOrgRoleId = req.userOrgRoleId;
-
-    // If userOrgRoleId is not available on the request, fetch it
-    if (userOrgRoleId === undefined) {
-      const userOrgRole = await db.select()
-        .from(userOrgs)
-        .where(and(eq(userOrgs.userId, userId), eq(userOrgs.orgId, req.userOrgId)))
-        .limit(1);
-
-      if (userOrgRole.length === 0) {
-        throw createHttpError(HttpCode.FORBIDDEN, 'User does not have access to this organization');
-      }
-
-      userOrgRoleId = userOrgRole[0].roleId;
+    if (!userId) {
+        throw createHttpError(HttpCode.UNAUTHORIZED, 'User not authenticated');
    }

-    // Check if the user has direct permission for the action in the current org
-    const userActionPermission = await db.select()
-      .from(userActions)
-      .where(
-        and(
-          eq(userActions.userId, userId),
-          eq(userActions.actionId, actionId),
-          eq(userActions.orgId, req.userOrgId)
-        )
-      )
-      .limit(1);
-
-    if (userActionPermission.length > 0) {
-      return true;
+    if (!req.userOrgId) {
+        throw createHttpError(HttpCode.BAD_REQUEST, 'Organization ID is required');
    }

-    // If no direct permission, check role-based permission
-    const roleActionPermission = await db.select()
-      .from(roleActions)
-      .where(
-        and(
-          eq(roleActions.actionId, actionId),
-          eq(roleActions.roleId, userOrgRoleId),
-          eq(roleActions.orgId, req.userOrgId)
-        )
-      )
-      .limit(1);
+    try {
+        let userOrgRoleId = req.userOrgRoleId;

-    return roleActionPermission.length > 0;
+        // If userOrgRoleId is not available on the request, fetch it
+        if (userOrgRoleId === undefined) {
+            const userOrgRole = await db.select()
+                .from(userOrgs)
+                .where(and(eq(userOrgs.userId, userId), eq(userOrgs.orgId, req.userOrgId)))
+                .limit(1);

-  } catch (error) {
-    console.error('Error checking user action permission:', error);
-    throw createHttpError(HttpCode.INTERNAL_SERVER_ERROR, 'Error checking action permission');
-  }
+            if (userOrgRole.length === 0) {
+                throw createHttpError(HttpCode.FORBIDDEN, 'User does not have access to this organization');
+            }
+
+            userOrgRoleId = userOrgRole[0].roleId;
+        }
+
+        // Check if the user has direct permission for the action in the current org
+        const userActionPermission = await db.select()
+            .from(userActions)
+            .where(
+                and(
+                    eq(userActions.userId, userId),
+                    eq(userActions.actionId, actionId),
+                    eq(userActions.orgId, req.userOrgId)
+                )
+            )
+            .limit(1);
+
+        if (userActionPermission.length > 0) {
+            return true;
+        }
+
+        // If no direct permission, check role-based permission
+        const roleActionPermission = await db.select()
+            .from(roleActions)
+            .where(
+                and(
+                    eq(roleActions.actionId, actionId),
+                    eq(roleActions.roleId, userOrgRoleId),
+                    eq(roleActions.orgId, req.userOrgId)
+                )
+            )
+            .limit(1);
+
+        return roleActionPermission.length > 0;
+
+    } catch (error) {
+        console.error('Error checking user action permission:', error);
+        throw createHttpError(HttpCode.INTERNAL_SERVER_ERROR, 'Error checking action permission');
+    }
 }