jws-backend/src/controllers/00-keycloak-controller.ts

import { Body, Controller, Delete, Get, Path, Post, Route, Security, Tags } from "tsoa";
import { addUserRoles, getGroup, listRole, removeUserRoles } from "../services/keycloak";

@Route("api/v1/keycloak")
@Tags("Single-Sign On")
@Security("keycloak")
export class KeycloakController extends Controller {
  @Get("role")
  async getRole() {
    const role = await listRole();
    if (Array.isArray(role))
      return role.filter(
        (a) =>
          !["uma_authorization", "offline_access", "default-roles", "system"].some((b) =>
            a.name.includes(b),
          ),
      );
    throw new Error("Failed. Cannot get role.");
  }

  @Post("{userId}/role")
  async addRole(@Path() userId: string, @Body() body: { role: string[] }) {
    const list = await listRole();

    if (!Array.isArray(list)) throw new Error("Failed. Cannot get role(s) data from the server.");

    const result = await addUserRoles(
      userId,
      list.filter((v) => body.role.includes(v.id)),
    );

    if (!result) throw new Error("Failed. Cannot set user's role.");
  }

  @Delete("{userId}/role/{roleId}")
  async deleteRole(@Path() userId: string, @Path() roleId: string) {
    const list = await listRole();

    if (!Array.isArray(list)) throw new Error("Failed. Cannot get role(s) data from the server.");

    const result = await removeUserRoles(
      userId,
      list.filter((v) => roleId === v.id),
    );
    if (!result) throw new Error("Failed. Cannot remove user's role.");
  }

  @Get("group")
  async getGroup() {
    const group = await getGroup();
    if (!Array.isArray(group)) throw new Error("Failed. Cannot get group(s) data from the server.");

    return group;
  }
}
refactor(keycloak): now only expose role management endpoint 2024-10-22 10:41:46 +07:00			`import { Body, Controller, Delete, Get, Path, Post, Route, Security, Tags } from "tsoa";`
add group from keycloak 2025-04-22 14:02:36 +07:00			`import { addUserRoles, getGroup, listRole, removeUserRoles } from "../services/keycloak";`
feat: keycloak user and role management 2024-04-02 09:25:44 +07:00
refactor!: add v1 prefix to endpoints 2024-06-06 09:42:02 +07:00			`@Route("api/v1/keycloak")`
feat: add update user data endpoint 2024-04-05 15:24:24 +07:00			`@Tags("Single-Sign On")`
feat: keycloak user and role management 2024-04-02 09:25:44 +07:00			`@Security("keycloak")`
			`export class KeycloakController extends Controller {`
			`@Get("role")`
			`async getRole() {`
refactor: user relation 2024-07-01 13:24:02 +07:00			`const role = await listRole();`
feat: filter out internal roles (3 for now) 2024-04-10 10:32:28 +07:00			`if (Array.isArray(role))`
			`return role.filter(`
			`(a) =>`
refactor: filter out system role 2024-08-13 20:25:32 +07:00			`!["uma_authorization", "offline_access", "default-roles", "system"].some((b) =>`
			`a.name.includes(b),`
			`),`
feat: filter out internal roles (3 for now) 2024-04-10 10:32:28 +07:00			`);`
feat: keycloak user and role management 2024-04-02 09:25:44 +07:00			`throw new Error("Failed. Cannot get role.");`
			`}`

			`@Post("{userId}/role")`
			`async addRole(@Path() userId: string, @Body() body: { role: string[] }) {`
refactor: user relation 2024-07-01 13:24:02 +07:00			`const list = await listRole();`
feat: keycloak user and role management 2024-04-02 09:25:44 +07:00
			`if (!Array.isArray(list)) throw new Error("Failed. Cannot get role(s) data from the server.");`

			`const result = await addUserRoles(`
			`userId,`
			`list.filter((v) => body.role.includes(v.id)),`
			`);`

			`if (!result) throw new Error("Failed. Cannot set user's role.");`
			`}`

			`@Delete("{userId}/role/{roleId}")`
			`async deleteRole(@Path() userId: string, @Path() roleId: string) {`
refactor: user relation 2024-07-01 13:24:02 +07:00			`const list = await listRole();`
feat: keycloak user and role management 2024-04-02 09:25:44 +07:00
			`if (!Array.isArray(list)) throw new Error("Failed. Cannot get role(s) data from the server.");`

			`const result = await removeUserRoles(`
			`userId,`
			`list.filter((v) => roleId === v.id),`
			`);`
			`if (!result) throw new Error("Failed. Cannot remove user's role.");`
			`}`
add group from keycloak 2025-04-22 14:02:36 +07:00
			`@Get("group")`
			`async getGroup() {`
			`const group = await getGroup();`
			`if (!Array.isArray(group)) throw new Error("Failed. Cannot get group(s) data from the server.");`

			`return group;`
			`}`
feat: keycloak user and role management 2024-04-02 09:25:44 +07:00			`}`