From 842d81026e33611ff1d663432d2c17e8f04114c3 Mon Sep 17 00:00:00 2001
From: Methapon2001 <61303214+Methapon2001@users.noreply.github.com>
Date: Tue, 8 Jul 2025 17:04:23 +0700
Subject: [PATCH] feat: allow anybody to edit customer data if can manage

---
 src/controllers/03-customer-branch-citizen-controller.ts | 2 +-
 src/controllers/03-customer-controller.ts                | 2 +-
 src/controllers/03-employee-checkup-controller.ts        | 2 +-
 src/controllers/03-employee-controller.ts                | 2 +-
 src/controllers/03-employee-other-info-controller.ts     | 2 +-
 src/controllers/03-employee-passport-controller.ts       | 2 +-
 src/controllers/03-employee-visa-controller.ts           | 2 +-
 src/controllers/03-employee-work-controller.ts           | 2 +-
 8 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/src/controllers/03-customer-branch-citizen-controller.ts b/src/controllers/03-customer-branch-citizen-controller.ts
index f17b746..ad7127d 100644
--- a/src/controllers/03-customer-branch-citizen-controller.ts
+++ b/src/controllers/03-customer-branch-citizen-controller.ts
@@ -31,7 +31,7 @@ const MANAGE_ROLES = [
 ];
 
 function globalAllow(user: RequestWithUser["user"]) {
-  const listAllowed = ["system", "head_of_admin", "admin", "executive", "accountant"];
+  const listAllowed = MANAGE_ROLES;
   return user.roles?.some((v) => listAllowed.includes(v)) || false;
 }
 
diff --git a/src/controllers/03-customer-controller.ts b/src/controllers/03-customer-controller.ts
index a52ea71..082b067 100644
--- a/src/controllers/03-customer-controller.ts
+++ b/src/controllers/03-customer-controller.ts
@@ -52,7 +52,7 @@ const MANAGE_ROLES = [
 ];
 
 function globalAllow(user: RequestWithUser["user"]) {
-  const listAllowed = ["system", "head_of_admin", "admin", "executive", "accountant"];
+  const listAllowed = MANAGE_ROLES;
   return user.roles?.some((v) => listAllowed.includes(v)) || false;
 }
 
diff --git a/src/controllers/03-employee-checkup-controller.ts b/src/controllers/03-employee-checkup-controller.ts
index cb3c8ee..3fd334d 100644
--- a/src/controllers/03-employee-checkup-controller.ts
+++ b/src/controllers/03-employee-checkup-controller.ts
@@ -33,7 +33,7 @@ const MANAGE_ROLES = [
 ];
 
 function globalAllow(user: RequestWithUser["user"]) {
-  const listAllowed = ["system", "head_of_admin", "admin", "executive", "accountant"];
+  const listAllowed = MANAGE_ROLES;
   return user.roles?.some((v) => listAllowed.includes(v)) || false;
 }
 
diff --git a/src/controllers/03-employee-controller.ts b/src/controllers/03-employee-controller.ts
index bb66f58..99d69ef 100644
--- a/src/controllers/03-employee-controller.ts
+++ b/src/controllers/03-employee-controller.ts
@@ -61,7 +61,7 @@ const MANAGE_ROLES = [
 ];
 
 function globalAllow(user: RequestWithUser["user"]) {
-  const listAllowed = ["system", "head_of_admin", "admin", "executive", "accountant"];
+  const listAllowed = MANAGE_ROLES;
   return user.roles?.some((v) => listAllowed.includes(v)) || false;
 }
 
diff --git a/src/controllers/03-employee-other-info-controller.ts b/src/controllers/03-employee-other-info-controller.ts
index 3624f95..83a0a9c 100644
--- a/src/controllers/03-employee-other-info-controller.ts
+++ b/src/controllers/03-employee-other-info-controller.ts
@@ -33,7 +33,7 @@ const MANAGE_ROLES = [
 ];
 
 function globalAllow(user: RequestWithUser["user"]) {
-  const listAllowed = ["system", "head_of_admin", "admin", "executive", "accountant"];
+  const listAllowed = MANAGE_ROLES;
   return user.roles?.some((v) => listAllowed.includes(v)) || false;
 }
 
diff --git a/src/controllers/03-employee-passport-controller.ts b/src/controllers/03-employee-passport-controller.ts
index e0b1769..c8f5483 100644
--- a/src/controllers/03-employee-passport-controller.ts
+++ b/src/controllers/03-employee-passport-controller.ts
@@ -32,7 +32,7 @@ const MANAGE_ROLES = [
 ];
 
 function globalAllow(user: RequestWithUser["user"]) {
-  const listAllowed = ["system", "head_of_admin", "admin", "executive", "accountant"];
+  const listAllowed = MANAGE_ROLES;
   return user.roles?.some((v) => listAllowed.includes(v)) || false;
 }
 
diff --git a/src/controllers/03-employee-visa-controller.ts b/src/controllers/03-employee-visa-controller.ts
index 358a293..eafb22a 100644
--- a/src/controllers/03-employee-visa-controller.ts
+++ b/src/controllers/03-employee-visa-controller.ts
@@ -32,7 +32,7 @@ const MANAGE_ROLES = [
 ];
 
 function globalAllow(user: RequestWithUser["user"]) {
-  const listAllowed = ["system", "head_of_admin", "admin", "executive", "accountant"];
+  const listAllowed = MANAGE_ROLES;
   return user.roles?.some((v) => listAllowed.includes(v)) || false;
 }
 
diff --git a/src/controllers/03-employee-work-controller.ts b/src/controllers/03-employee-work-controller.ts
index 8bbfdca..89f8ccf 100644
--- a/src/controllers/03-employee-work-controller.ts
+++ b/src/controllers/03-employee-work-controller.ts
@@ -32,7 +32,7 @@ const MANAGE_ROLES = [
 ];
 
 function globalAllow(user: RequestWithUser["user"]) {
-  const listAllowed = ["system", "head_of_admin", "admin", "executive", "accountant"];
+  const listAllowed = MANAGE_ROLES;
   return user.roles?.some((v) => listAllowed.includes(v)) || false;
 }