refactor: organize file

2024-09-05 09:21:39 +07:00 · 2024-09-05 09:21:39 +07:00 · 2af4e750b0
commit 2af4e750b0
parent e141ea330a
19 changed files with 0 additions and 0 deletions
--- a/src/controllers/01-branch-user-controller.ts
+++ b/src/controllers/01-branch-user-controller.ts
@ -0,0 +1,322 @@
+import { Branch, Prisma, Status, User } from "@prisma/client";
+import {
+  Body,
+  Controller,
+  Delete,
+  Get,
+  Path,
+  Post,
+  Query,
+  Request,
+  Route,
+  Security,
+  Tags,
+} from "tsoa";
+
+import prisma from "../db";
+import HttpError from "../interfaces/http-error";
+import HttpStatus from "../interfaces/http-status";
+import { RequestWithUser } from "../interfaces/user";
+
+const MANAGE_ROLES = ["system", "head_of_admin", "admin", "branch_manager"];
+
+function globalAllow(user: RequestWithUser["user"]) {
+  const listAllowed = ["system", "head_of_admin", "admin"];
+  return user.roles?.some((v) => listAllowed.includes(v)) || false;
+}
+
+type BranchUserBody = { user: string[] };
+
+async function userBranchCodeGen(branch: Branch, user: User[]) {
+  await prisma.$transaction(
+    async (tx) => {
+      for (const usr of user) {
+        if (usr.code !== null) continue;
+
+        const typ = usr.userType;
+
+        const mapTypeNo = {
+          USER: 1,
+          MESSENGER: 2,
+          DELEGATE: 3,
+          AGENCY: 4,
+        }[typ];
+
+        const last = await tx.runningNo.upsert({
+          where: {
+            key: `BR_USR_${branch.code}_${mapTypeNo}`,
+          },
+          create: {
+            key: `BR_USR_${branch.code}_${mapTypeNo}`,
+            value: 1,
+          },
+          update: { value: { increment: 1 } },
+        });
+
+        await tx.user.update({
+          where: { id: usr.id },
+          data: {
+            code: mapTypeNo + `${last.value}`.padStart(6, "0"),
+          },
+        });
+      }
+    },
+    { isolationLevel: Prisma.TransactionIsolationLevel.Serializable },
+  );
+}
+
+@Route("api/v1/branch/{branchId}/manager")
+@Tags("Branch User")
+export class BranchManagerUserController extends Controller {
+  @Get()
+  @Security("keycloak")
+  async getBranchAdmin(@Path() branchId: string) {
+    return await prisma.user.findFirst({
+      where: {
+        branch: {
+          some: { branchId },
+        },
+        userRole: "branch_manager",
+      },
+    });
+  }
+}
+
+@Route("api/v1/user/{userId}/branch")
+@Tags("Branch User")
+export class UserBranchController extends Controller {
+  @Get()
+  @Security("keycloak")
+  async getUserBranch(
+    @Path() userId: string,
+    @Query() zipCode?: string,
+    @Query() query: string = "",
+    @Query() page: number = 1,
+    @Query() pageSize: number = 30,
+  ) {
+    const where = {
+      OR: [
+        { branch: { name: { contains: query }, zipCode }, userId },
+        { branch: { nameEN: { contains: query }, zipCode }, userId },
+      ],
+    } satisfies Prisma.BranchUserWhereInput;
+
+    const [result, total] = await prisma.$transaction([
+      prisma.branchUser.findMany({
+        orderBy: { branch: { createdAt: "asc" } },
+        include: {
+          branch: {
+            include: {
+              province: true,
+              district: true,
+              subDistrict: true,
+              headOffice: {
+                include: {
+                  province: true,
+                  district: true,
+                  subDistrict: true,
+                },
+              },
+            },
+          },
+        },
+        where,
+        take: pageSize,
+        skip: (page - 1) * pageSize,
+      }),
+      prisma.branchUser.count({ where }),
+    ]);
+
+    return { result: result.map((v) => v.branch), page, pageSize, total };
+  }
+}
+
+@Route("api/v1/branch/{branchId}/user")
+@Tags("Branch User")
+export class BranchUserController extends Controller {
+  @Get()
+  @Security("keycloak")
+  async getBranchUser(
+    @Path() branchId: string,
+    @Query() zipCode?: string,
+    @Query() query: string = "",
+    @Query() page: number = 1,
+    @Query() pageSize: number = 30,
+  ) {
+    const where = {
+      OR: [
+        { user: { firstName: { contains: query }, zipCode }, branchId },
+        { user: { firstNameEN: { contains: query }, zipCode }, branchId },
+        { user: { lastName: { contains: query }, zipCode }, branchId },
+        { user: { lastNameEN: { contains: query }, zipCode }, branchId },
+        { user: { email: { contains: query }, zipCode }, branchId },
+        { user: { telephoneNo: { contains: query }, zipCode }, branchId },
+      ],
+    } satisfies Prisma.BranchUserWhereInput;
+
+    const [result, total] = await prisma.$transaction([
+      prisma.branchUser.findMany({
+        orderBy: { user: { createdAt: "asc" } },
+        include: {
+          user: {
+            include: {
+              province: true,
+              district: true,
+              subDistrict: true,
+            },
+          },
+        },
+        where,
+        take: pageSize,
+        skip: (page - 1) * pageSize,
+      }),
+      prisma.branchUser.count({ where }),
+    ]);
+
+    return { result: result.map((v) => v.user), page, pageSize, total };
+  }
+
+  @Post()
+  @Security("keycloak", MANAGE_ROLES)
+  async createBranchUser(
+    @Request() req: RequestWithUser,
+    @Path() branchId: string,
+    @Body() body: BranchUserBody,
+  ) {
+    const [branch, user] = await prisma.$transaction([
+      prisma.branch.findUnique({
+        include: {
+          user: {
+            where: { userId: req.user.sub },
+          },
+        },
+        where: { id: branchId },
+      }),
+      prisma.user.findMany({
+        include: { branch: true },
+        where: { id: { in: body.user } },
+      }),
+    ]);
+
+    if (
+      !globalAllow(req.user) &&
+      branch?.createdByUserId !== req.user.sub &&
+      !branch?.user.find((v) => v.userId === req.user.sub)
+    ) {
+      throw new HttpError(
+        HttpStatus.FORBIDDEN,
+        "You do not have permission to perform this action.",
+        "noPermission",
+      );
+    }
+
+    if (!branch) {
+      throw new HttpError(HttpStatus.BAD_REQUEST, "Branch cannot be found.", "branchBadReq");
+    }
+
+    if (user.length !== body.user.length) {
+      throw new HttpError(
+        HttpStatus.BAD_REQUEST,
+        "One or more user cannot be found.",
+        "oneOrMoreUserBadReq",
+      );
+    }
+
+    await prisma.$transaction([
+      prisma.user.updateMany({
+        where: { id: { in: body.user }, status: Status.CREATED },
+        data: { status: Status.ACTIVE },
+      }),
+      prisma.branchUser.createMany({
+        data: user
+          .filter((a) => !a.branch.some((b) => b.branchId === branchId))
+          .map((v) => ({
+            branchId,
+            userId: v.id,
+            createdByUserId: req.user.sub,
+            updatedByUserId: req.user.sub,
+          })),
+      }),
+    ]);
+
+    await userBranchCodeGen(branch, user);
+  }
+
+  @Delete()
+  @Security("keycloak", MANAGE_ROLES)
+  async deleteBranchUser(
+    @Request() req: RequestWithUser,
+    @Path() branchId: string,
+    @Body() body: BranchUserBody,
+  ) {
+    const branch = await prisma.branch.findUnique({
+      include: {
+        user: {
+          where: { userId: req.user.sub },
+        },
+      },
+      where: { id: branchId },
+    });
+
+    if (
+      !globalAllow(req.user) &&
+      branch?.createdByUserId !== req.user.sub &&
+      !branch?.user.find((v) => v.userId === req.user.sub)
+    ) {
+      throw new HttpError(
+        HttpStatus.FORBIDDEN,
+        "You do not have permission to perform this action.",
+        "noPermission",
+      );
+    }
+
+    await prisma.$transaction(
+      body.user.map((v) => prisma.branchUser.deleteMany({ where: { branchId, userId: v } })),
+    );
+
+    await prisma.user.updateMany({
+      where: {
+        branch: { none: {} },
+      },
+      data: { code: null },
+    });
+  }
+
+  @Delete("{userId}")
+  async deleteBranchUserById(
+    @Request() req: RequestWithUser,
+    @Path() branchId: string,
+    @Path() userId: string,
+  ) {
+    const branch = await prisma.branch.findUnique({
+      include: {
+        user: {
+          where: { userId: req.user.sub },
+        },
+      },
+      where: { id: branchId },
+    });
+
+    if (
+      !globalAllow(req.user) &&
+      branch?.createdByUserId !== req.user.sub &&
+      !branch?.user.find((v) => v.userId === req.user.sub)
+    ) {
+      throw new HttpError(
+        HttpStatus.FORBIDDEN,
+        "You do not have permission to perform this action.",
+        "noPermission",
+      );
+    }
+    await prisma.branchUser.deleteMany({
+      where: { branchId, userId },
+    });
+    await prisma.user.updateMany({
+      where: {
+        id: userId,
+        branch: { none: {} },
+      },
+      data: { code: null },
+    });
+  }
+}