chamomind/jws-backend
chamomind/jws-backend
6
0
Fork 0
Code Issues Projects 1 Releases Packages 1 Wiki Activity Actions

change: make user can view only user within branch

Browse source
This commit is contained in:
Methapon Metanipat 2024-08-30 10:20:51 +07:00
parent cd153b062a
commit e911695f3a
1 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
src/controllers/user-controller.ts
View file

@ -196,6 +196,7 @@ export class UserController extends Controller {
@Get() @Get()
@Security("keycloak") @Security("keycloak")
async getUser( async getUser(
@Request() req: RequestWithUser,
@Query() userType?: UserType, @Query() userType?: UserType,
@Query() zipCode?: string, @Query() zipCode?: string,
@Query() includeBranch: boolean = false, @Query() includeBranch: boolean = false,
@ -223,6 +224,11 @@ export class UserController extends Controller {
], ],
AND: { AND: {
userRole: { not: "system" }, userRole: { not: "system" },
branch: !["system", "head_of_admin", "admin", "branch_admin"].some((v) =>
req.user.roles?.includes(v),
)
? { some: { userId: req.user.sub } }
: undefined,
}, },
} satisfies Prisma.UserWhereInput; } satisfies Prisma.UserWhereInput;