465 lines
12 KiB
TypeScript
465 lines
12 KiB
TypeScript
import { CustomerType, Prisma, Status } from "@prisma/client";
|
|
import {
|
|
Body,
|
|
Controller,
|
|
Delete,
|
|
Get,
|
|
Path,
|
|
Post,
|
|
Put,
|
|
Query,
|
|
Request,
|
|
Route,
|
|
Security,
|
|
Tags,
|
|
} from "tsoa";
|
|
import { RequestWithUser } from "../interfaces/user";
|
|
import prisma from "../db";
|
|
import HttpStatus from "../interfaces/http-status";
|
|
import HttpError from "../interfaces/http-error";
|
|
import { isSystem } from "../utils/keycloak";
|
|
import {
|
|
branchRelationPermInclude,
|
|
createPermCheck,
|
|
createPermCondition,
|
|
} from "../services/permission";
|
|
import { filterStatus } from "../services/prisma";
|
|
import { deleteFile, deleteFolder, fileLocation, getFile, listFile, setFile } from "../utils/minio";
|
|
import { notFoundError, relationError } from "../utils/error";
|
|
|
|
const MANAGE_ROLES = [
|
|
"system",
|
|
"head_of_admin",
|
|
"admin",
|
|
"head_of_account",
|
|
"account",
|
|
"head_of_sale",
|
|
"sale",
|
|
];
|
|
|
|
function globalAllow(user: RequestWithUser["user"]) {
|
|
const allowList = ["system", "head_of_admin", "admin", "head_of_account", "head_of_sale"];
|
|
return allowList.some((v) => user.roles?.includes(v));
|
|
}
|
|
|
|
const permissionCond = createPermCondition(globalAllow);
|
|
const permissionCheck = createPermCheck(globalAllow);
|
|
|
|
export type CustomerCreate = {
|
|
registeredBranchId: string;
|
|
customerType: CustomerType;
|
|
status?: Status;
|
|
selectedImage?: string;
|
|
|
|
branch: ((
|
|
| {
|
|
// NOTE: About (Natural Person)
|
|
citizenId: string;
|
|
}
|
|
| {
|
|
// NOTE: About (Legal Entity)
|
|
legalPersonNo: string;
|
|
registerName: string;
|
|
registerNameEN: string;
|
|
registerDate: Date;
|
|
authorizedCapital: string;
|
|
authorizedName: string;
|
|
authorizedNameEN: string;
|
|
}
|
|
) & {
|
|
customerId: string;
|
|
customerName: string;
|
|
|
|
telephoneNo: string;
|
|
|
|
status?: Status;
|
|
|
|
homeCode: string;
|
|
employmentOffice: string;
|
|
employmentOfficeEN: string;
|
|
address: string;
|
|
addressEN: string;
|
|
soi?: string | null;
|
|
soiEN?: string | null;
|
|
moo?: string | null;
|
|
mooEN?: string | null;
|
|
street?: string | null;
|
|
streetEN?: string | null;
|
|
|
|
email: string;
|
|
contactTel: string;
|
|
officeTel: string;
|
|
contactName: string;
|
|
agent: string;
|
|
|
|
businessType: string;
|
|
jobPosition: string;
|
|
jobDescription: string;
|
|
payDate: string;
|
|
payDateEN: string;
|
|
wageRate: number;
|
|
wageRateText: string;
|
|
|
|
subDistrictId?: string | null;
|
|
districtId?: string | null;
|
|
provinceId?: string | null;
|
|
})[];
|
|
};
|
|
|
|
export type CustomerUpdate = {
|
|
registeredBranchId?: string;
|
|
status?: "ACTIVE" | "INACTIVE";
|
|
customerType?: CustomerType;
|
|
selectedImage?: string;
|
|
};
|
|
|
|
@Route("api/v1/customer")
|
|
@Tags("Customer")
|
|
export class CustomerController extends Controller {
|
|
@Get("type-stats")
|
|
@Security("keycloak")
|
|
async stat(@Request() req: RequestWithUser) {
|
|
const list = await prisma.customer.groupBy({
|
|
by: "customerType",
|
|
_count: true,
|
|
where: {
|
|
registeredBranch: isSystem(req.user) ? undefined : { OR: permissionCond(req.user) },
|
|
},
|
|
});
|
|
|
|
return list.reduce<Record<CustomerType, number>>(
|
|
(a, c) => {
|
|
a[c.customerType] = c._count;
|
|
return a;
|
|
},
|
|
{
|
|
CORP: 0,
|
|
PERS: 0,
|
|
},
|
|
);
|
|
}
|
|
|
|
@Get()
|
|
@Security("keycloak")
|
|
async list(
|
|
@Request() req: RequestWithUser,
|
|
@Query() customerType?: CustomerType,
|
|
@Query() query: string = "",
|
|
@Query() status?: Status,
|
|
@Query() page: number = 1,
|
|
@Query() pageSize: number = 30,
|
|
@Query() includeBranch: boolean = false,
|
|
) {
|
|
const where = {
|
|
OR: query
|
|
? [
|
|
{ branch: { some: { namePrefix: { contains: query } } } },
|
|
{ branch: { some: { firstName: { contains: query } } } },
|
|
{ branch: { some: { firstNameEN: { contains: query } } } },
|
|
{ branch: { some: { lastName: { contains: query } } } },
|
|
{ branch: { some: { lastNameEN: { contains: query } } } },
|
|
]
|
|
: undefined,
|
|
AND: {
|
|
customerType,
|
|
...filterStatus(status),
|
|
registeredBranch: isSystem(req.user) ? undefined : { OR: permissionCond(req.user) },
|
|
},
|
|
} satisfies Prisma.CustomerWhereInput;
|
|
|
|
const [result, total] = await prisma.$transaction([
|
|
prisma.customer.findMany({
|
|
include: {
|
|
_count: true,
|
|
branch: includeBranch
|
|
? {
|
|
include: {
|
|
province: true,
|
|
district: true,
|
|
subDistrict: true,
|
|
},
|
|
orderBy: [{ statusOrder: "asc" }, { createdAt: "asc" }],
|
|
}
|
|
: {
|
|
include: {
|
|
province: true,
|
|
district: true,
|
|
subDistrict: true,
|
|
},
|
|
take: 1,
|
|
orderBy: { createdAt: "asc" },
|
|
},
|
|
createdBy: true,
|
|
updatedBy: true,
|
|
},
|
|
orderBy: [{ statusOrder: "asc" }, { createdAt: "asc" }],
|
|
where,
|
|
take: pageSize,
|
|
skip: (page - 1) * pageSize,
|
|
}),
|
|
prisma.customer.count({ where }),
|
|
]);
|
|
|
|
return { result, page, pageSize, total };
|
|
}
|
|
|
|
@Get("{customerId}")
|
|
@Security("keycloak")
|
|
async getById(@Path() customerId: string) {
|
|
const [record, countEmployee] = await prisma.$transaction([
|
|
prisma.customer.findFirst({
|
|
include: {
|
|
branch: {
|
|
include: {
|
|
province: true,
|
|
district: true,
|
|
subDistrict: true,
|
|
},
|
|
orderBy: { createdAt: "asc" },
|
|
},
|
|
createdBy: true,
|
|
updatedBy: true,
|
|
},
|
|
where: { id: customerId },
|
|
}),
|
|
prisma.employee.count({ where: { customerBranch: { customerId } } }),
|
|
]);
|
|
|
|
if (!record) throw notFoundError("Customer");
|
|
return Object.assign(record, { _count: { employee: countEmployee } });
|
|
}
|
|
|
|
@Post()
|
|
@Security("keycloak", MANAGE_ROLES)
|
|
async create(@Request() req: RequestWithUser, @Body() body: CustomerCreate) {
|
|
const [registeredBranch] = await prisma.$transaction([
|
|
prisma.branch.findFirst({
|
|
where: { id: body.registeredBranchId },
|
|
include: branchRelationPermInclude(req.user),
|
|
}),
|
|
]);
|
|
|
|
await permissionCheck(req.user, registeredBranch);
|
|
|
|
const record = await prisma.$transaction(
|
|
async (tx) => {
|
|
await tx.branch.updateMany({
|
|
where: {
|
|
id: body.registeredBranchId,
|
|
status: "CREATED",
|
|
},
|
|
data: {
|
|
status: "INACTIVE",
|
|
statusOrder: 1,
|
|
},
|
|
});
|
|
|
|
const { branch, ...rest } = body;
|
|
|
|
const company = (registeredBranch?.headOffice || registeredBranch)?.code;
|
|
const headoffice = branch[0];
|
|
|
|
if (!headoffice) {
|
|
throw new HttpError(
|
|
HttpStatus.BAD_REQUEST,
|
|
"Require at least one branch as headoffice",
|
|
"requireOneMinBranch",
|
|
);
|
|
}
|
|
|
|
const runningKey = `CUSTOMER_BRANCH_${company}_${"citizenId" in headoffice ? headoffice.citizenId : headoffice.legalPersonNo}`;
|
|
|
|
const last = await tx.runningNo.upsert({
|
|
where: { key: runningKey },
|
|
create: {
|
|
key: runningKey,
|
|
value: branch.length,
|
|
},
|
|
update: { value: { increment: branch.length } },
|
|
});
|
|
|
|
return await tx.customer.create({
|
|
include: {
|
|
branch: {
|
|
include: {
|
|
province: true,
|
|
district: true,
|
|
subDistrict: true,
|
|
},
|
|
},
|
|
createdBy: true,
|
|
updatedBy: true,
|
|
},
|
|
data: {
|
|
...rest,
|
|
branch: {
|
|
create: branch.map((v, i) => ({
|
|
...v,
|
|
code: `${runningKey.replace("CUSTOMER_BRANCH_", "")}-${`${last.value - branch.length + i}`.padStart(2, "0")}`,
|
|
codeCustomer: runningKey.replace("CUSTOMER_BRANCH_", ""),
|
|
createdBy: { connect: { id: req.user.sub } },
|
|
updatedBy: { connect: { id: req.user.sub } },
|
|
})),
|
|
},
|
|
statusOrder: +(body.status === "INACTIVE"),
|
|
createdByUserId: req.user.sub,
|
|
updatedByUserId: req.user.sub,
|
|
},
|
|
});
|
|
},
|
|
{ isolationLevel: Prisma.TransactionIsolationLevel.Serializable },
|
|
);
|
|
|
|
this.setStatus(HttpStatus.CREATED);
|
|
|
|
return record;
|
|
}
|
|
|
|
@Put("{customerId}")
|
|
@Security("keycloak", MANAGE_ROLES)
|
|
async editById(
|
|
@Path() customerId: string,
|
|
@Request() req: RequestWithUser,
|
|
@Body() body: CustomerUpdate,
|
|
) {
|
|
if (body.registeredBranchId === "") body.registeredBranchId = undefined;
|
|
|
|
const customer = await prisma.customer.findUnique({
|
|
where: { id: customerId },
|
|
include: {
|
|
registeredBranch: {
|
|
include: branchRelationPermInclude(req.user),
|
|
},
|
|
},
|
|
});
|
|
|
|
if (!customer) throw notFoundError("Branch");
|
|
|
|
const [branch] = await prisma.$transaction([
|
|
prisma.branch.findFirst({
|
|
where: { id: body.registeredBranchId },
|
|
include: branchRelationPermInclude(req.user),
|
|
}),
|
|
]);
|
|
|
|
if (!!body.registeredBranchId && !branch) throw relationError("Branch");
|
|
|
|
if (customer.registeredBranch) {
|
|
await permissionCheck(req.user, customer.registeredBranch);
|
|
}
|
|
|
|
if (body.registeredBranchId !== undefined && branch) {
|
|
await permissionCheck(req.user, branch);
|
|
}
|
|
|
|
const record = await prisma.$transaction(async (tx) => {
|
|
return await tx.customer.update({
|
|
include: {
|
|
branch: {
|
|
include: {
|
|
province: true,
|
|
district: true,
|
|
subDistrict: true,
|
|
},
|
|
},
|
|
createdBy: true,
|
|
updatedBy: true,
|
|
},
|
|
where: { id: customerId },
|
|
data: {
|
|
...body,
|
|
statusOrder: +(body.status === "INACTIVE"),
|
|
updatedByUserId: req.user.sub,
|
|
},
|
|
});
|
|
});
|
|
|
|
return record;
|
|
}
|
|
|
|
@Delete("{customerId}")
|
|
@Security("keycloak", MANAGE_ROLES)
|
|
async deleteById(@Path() customerId: string, @Request() req: RequestWithUser) {
|
|
const record = await prisma.customer.findFirst({
|
|
where: { id: customerId },
|
|
include: {
|
|
registeredBranch: {
|
|
include: branchRelationPermInclude(req.user),
|
|
},
|
|
},
|
|
});
|
|
|
|
if (!record) {
|
|
throw new HttpError(HttpStatus.NOT_FOUND, "Customer cannot be found.", "customerNotFound");
|
|
}
|
|
|
|
await permissionCheck(req.user, record.registeredBranch);
|
|
|
|
if (record.status !== Status.CREATED) {
|
|
throw new HttpError(HttpStatus.FORBIDDEN, "Customer is in used.", "customerInUsed");
|
|
}
|
|
|
|
return await prisma.customer
|
|
.delete({ where: { id: customerId } })
|
|
.then((data) => deleteFolder(`customer/${customerId}`).then(() => data));
|
|
}
|
|
}
|
|
|
|
@Route("api/v1/customer/{customerId}/image")
|
|
@Tags("Customer")
|
|
export class CustomerImageController extends Controller {
|
|
private async checkPermission(user: RequestWithUser["user"], id: string) {
|
|
const data = await prisma.customer.findUnique({
|
|
include: {
|
|
registeredBranch: {
|
|
include: branchRelationPermInclude(user),
|
|
},
|
|
},
|
|
where: { id },
|
|
});
|
|
if (!data) throw notFoundError("Customer");
|
|
await permissionCheck(user, data.registeredBranch);
|
|
}
|
|
|
|
@Get()
|
|
@Security("keycloak")
|
|
async listImage(@Request() req: RequestWithUser, @Path() customerId: string) {
|
|
await this.checkPermission(req.user, customerId);
|
|
return await listFile(fileLocation.customer.img(customerId));
|
|
}
|
|
|
|
@Get("{name}")
|
|
async getImage(
|
|
@Request() req: RequestWithUser,
|
|
@Path() customerId: string,
|
|
@Path() name: string,
|
|
) {
|
|
return req.res?.redirect(
|
|
await getFile(fileLocation.customer.img(customerId, name), 12 * 60 * 60),
|
|
);
|
|
}
|
|
|
|
@Put("{name}")
|
|
@Security("keycloak")
|
|
async putImage(
|
|
@Request() req: RequestWithUser,
|
|
@Path() customerId: string,
|
|
@Path() name: string,
|
|
) {
|
|
await this.checkPermission(req.user, customerId);
|
|
return req.res?.redirect(
|
|
await setFile(fileLocation.customer.img(customerId, name), 12 * 60 * 60),
|
|
);
|
|
}
|
|
|
|
@Delete("{name}")
|
|
@Security("keycloak")
|
|
async deleteImage(
|
|
@Request() req: RequestWithUser,
|
|
@Path() customerId: string,
|
|
@Path() name: string,
|
|
) {
|
|
await this.checkPermission(req.user, customerId);
|
|
await deleteFile(fileLocation.customer.img(customerId, name));
|
|
}
|
|
}
|