work in progress

foyzulkarim · Mar 31, 2022 · 6f88edf · 6f88edf
1 parent e71403c
commit 6f88edf
Show file tree

Hide file tree

Showing 14 changed files with 354 additions and 148 deletions.
diff --git a/server/setup/migrate.js b/server/setup/migrate.js
@@ -3,6 +3,9 @@ require("dotenv").config();
 const logger = require("../src/core/logger");
 
 const { migrate: userMigrate } = require("./users");
+const { migrate: resourceMigrate } = require("./resources");
+const { migrate: roleMigrate } = require("./roles");
+const { migrate: permissionMigrate } = require("./permissions");
 
 logger.info("Migration starting");
 const isMongoDbUrl = JSON.parse(
@@ -18,6 +21,9 @@ const migrate = async () => {
   await mongoose.connect(uri, options);
   logger.info("Connected to MongoDB");
   await userMigrate(logger);
+  await resourceMigrate(logger);
+  await roleMigrate(logger);
+  await permissionMigrate(logger);
   logger.info(`Migration finished`);
   process.exit(0);
 };

diff --git a/server/setup/permissions.js b/server/setup/permissions.js
@@ -3,7 +3,12 @@ const parser = require("jsonc-parser");
 
 const dataStr = fs.readFileSync("./setup/permissions.jsonc", "utf8");
 
-const { save, searchOne, update } = require("../src/core/repository");
+const {
+  save,
+  searchOne,
+  update,
+  updateAll,
+} = require("../src/core/repository");
 const { name: permissionModel } = require("../src/modules/permission/model");
 const { name: resourceModel } = require("../src/modules/resource/model");
 
@@ -51,4 +56,22 @@ const seed = async (logger) => {
   logger.info(`Seeding users finished`);
 };
 
-module.exports = { seed };
+const migrate = async (logger) => {
+  logger.info(`Starting migration of permissions`);
+  const superadminUser = await searchOne({ username: "superadmin" }, "User");
+  if (!superadminUser) {
+    throw new Error("Superadmin user not found");
+  }
+
+  await updateAll(
+    {},
+    {
+      createdBy: superadminUser._id,
+      updatedBy: superadminUser._id,
+    },
+    permissionModel
+  );
+  logger.info(`Migration of permissions finished`);
+};
+
+module.exports = { seed, migrate };
diff --git a/server/setup/permissions.jsonc b/server/setup/permissions.jsonc
@@ -238,6 +238,120 @@
 
   // Admin users api permissions
 
+  // admin roles api permissions
+
+  // /api/roles/detail for Admin
+  {
+    "resourceName": "/api/roles/detail",
+    "resourceAlias": "Roles detail API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/roles/create for Admin
+  {
+    "resourceName": "/api/roles/create",
+    "resourceAlias": "Roles create API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/roles/update for Admin
+  {
+    "resourceName": "/api/roles/update",
+    "resourceAlias": "Roles update API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/roles/search for Admin
+  {
+    "resourceName": "/api/roles/search",
+    "resourceAlias": "Roles search API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/roles/count for Admin
+  {
+    "resourceName": "/api/roles/count",
+    "resourceAlias": "Roles count API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/roles/delete for Admin
+  {
+    "resourceName": "/api/roles/delete",
+    "resourceAlias": "Roles delete API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+
+  // admin permissions api permissions
+
+  // /api/permissions/detail for Admin
+  {
+    "resourceName": "/api/permissions/detail",
+    "resourceAlias": "Permissions detail API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/permissions/create for Admin
+  {
+    "resourceName": "/api/permissions/create",
+    "resourceAlias": "Permissions create API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/permissions/update for admin
+  {
+    "resourceName": "/api/permissions/update",
+    "resourceAlias": "Permissions update API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/permissions/search for admin
+  {
+    "resourceName": "/api/permissions/search",
+    "resourceAlias": "Permissions search API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/permissions/count for admin
+  {
+    "resourceName": "/api/permissions/count",
+    "resourceAlias": "Permissions count API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /api/permissions/delete for admin
+  {
+    "resourceName": "/api/permissions/delete",
+    "resourceAlias": "Permissions delete API",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+
   // /api/users/detail for admin
   {
     "resourceName": "/api/users/detail",
@@ -301,7 +415,7 @@
     "isAllowed": true,
     "isDisabled": false
   },
-  // /api/roles/search for superadmin
+  // /api/roles/search for admin
   {
     "resourceName": "/api/roles/search",
     "resourceAlias": "Roles search API",
@@ -460,6 +574,36 @@
     "isDisabled": false
   },
 
+  // admin permissions for roles pages
+
+  // /roles permissions for admin
+  {
+    "resourceName": "/roles",
+    "resourceAlias": "Roles menu",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /roles/list permissions for admin
+  {
+    "resourceName": "/roles/list",
+    "resourceAlias": "Roles list",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /roles/new permission for admin
+  {
+    "resourceName": "/roles/new",
+    "resourceAlias": "Roles new",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+
   // superadmin permissions for resources pages
 
   // /resources permissions for superadmin
@@ -520,6 +664,36 @@
     "isDisabled": false
   },
 
+  // admin permissions for permissions pages
+
+  // /permissions permissions for admin
+  {
+    "resourceName": "/permissions",
+    "resourceAlias": "Permissions menu",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /permissions/list permissions for admin
+  {
+    "resourceName": "/permissions/list",
+    "resourceAlias": "Permissions list",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+  // /permissions/new permission for admin
+  {
+    "resourceName": "/permissions/new",
+    "resourceAlias": "Permissions new",
+    "roleName": "admin",
+    "roleAlias": "Admin",
+    "isAllowed": true,
+    "isDisabled": false
+  },
+
   // user permissions for products pages
 
   // /products permissions for user

diff --git a/server/setup/resources.js b/server/setup/resources.js
@@ -2,25 +2,43 @@ const fs = require("fs");
 const parser = require("jsonc-parser");
 
 const dataStr = fs.readFileSync("./setup/resources.jsonc", "utf8");
-const { save, searchOne } = require("../src/core/repository");
-const { name: model } = require("../src/modules/resource/model");
+const { save, searchOne, updateAll } = require("../src/core/repository");
+const { name: modelName } = require("../src/modules/resource/model");
 
 // const model = "Resource";
 const seed = async (logger) => {
   const data = parser.parse(dataStr);
   await Promise.all(
     data.map(async (item) => {
-      logger.info(`Checking if ${model} ${item.name} exists`);
-      const itemExists = await searchOne({ name: item.name }, model);
+      logger.info(`Checking if ${modelName} ${item.name} exists`);
+      const itemExists = await searchOne({ name: item.name }, modelName);
       if (!itemExists) {
-        const savedItem = await save(item, model);
+        const savedItem = await save(item, modelName);
         logger.info(`Saved role id: ${savedItem._id}`);
       } else {
-        logger.info(`${model} ${item.name} already exists`);
+        logger.info(`${modelName} ${item.name} already exists`);
       }
     })
   );
-  logger.info(`${model} seeding finished`);
+  logger.info(`${modelName} seeding finished`);
 };
 
-module.exports = { seed };
+const migrate = async (logger) => {
+  logger.info(`${modelName} starting`);
+  const superadminUser = await searchOne({ username: "superadmin" }, "User");
+  if (!superadminUser) {
+    throw new Error("Superadmin user not found");
+  }
+
+  await updateAll(
+    {},
+    {
+      createdBy: superadminUser._id,
+      updatedBy: superadminUser._id,
+    },
+    modelName
+  );
+  logger.info(`${modelName} seeding finished`);
+};
+
+module.exports = { seed, migrate };
diff --git a/server/setup/roles.js b/server/setup/roles.js
@@ -1,5 +1,5 @@
 const data = require("./roles.json");
-const { save, searchOne } = require("../src/core/repository");
+const { save, searchOne, updateAll } = require("../src/core/repository");
 const { modelName } = require("../src/modules/role/service");
 
 const seed = async (logger) => {
@@ -18,4 +18,22 @@ const seed = async (logger) => {
   logger.info(`Seeding ${modelName} finished`);
 };
 
-module.exports = { seed };
+const migrate = async (logger) => {
+  logger.info(`Starting migration of ${modelName}`);
+  const superadminUser = await searchOne({ name: "superadmin" }, modelName);
+  if (!superadminUser) {
+    throw new Error(`Superadmin user not found`);
+  }
+
+  await updateAll(
+    {},
+    {
+      createdBy: superadminUser._id,
+      updatedBy: superadminUser._id,
+    },
+    modelName
+  );
+  logger.info(`Migration of ${modelName} finished`);
+};
+
+module.exports = { seed, migrate };
diff --git a/server/src/modules/auth/index.js b/server/src/modules/auth/index.js
@@ -5,9 +5,22 @@ const {
   authorizeRequest,
 } = require("../../common/middlewares");
 
+const { name: ModelName } = require("./model");
+
+const processRequest = async (req, res, next) => {
+  req.modelName = ModelName;
+  return next();
+};
+
 const init = async (app) => {
   app.use("/api/auth", authRoutes);
-  app.use("/api/users", authenticateRequest, authorizeRequest, userRoutes);
+  app.use(
+    "/api/users",
+    authenticateRequest,
+    authorizeRequest,
+    processRequest,
+    userRoutes
+  );
   return app;
 };
 

diff --git a/server/src/modules/auth/model.js b/server/src/modules/auth/model.js
@@ -51,7 +51,8 @@ userSchema.post("save", (error, doc, next) => {
   }
 });
 
-const User = mongoose.model("User", userSchema);
+const ModelName = "User";
+const User = mongoose.model(ModelName, userSchema);
 
 async function getPasswordHash(password) {
   const hash = await bcrypt.hash(password, 10);
@@ -75,4 +76,4 @@ User.setPassword = async (model, newPassword) => {
   return { passwordHash, ...model };
 };
 
-module.exports = User;
+module.exports = { Model: User, name: ModelName };