hrms-bangkok/hrms-api-development
7
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

check workflow

Browse source
This commit is contained in:
kittapath 2024-10-22 08:21:07 +07:00
parent e0f37dda4a
commit aa5e69776e
6 changed files with 69 additions and 49 deletions
Download patch file Download diff file Expand all files Collapse all files

28
src/controllers/DevelopmentController.ts
View file

@ -1530,8 +1530,8 @@ export class DevelopmentController extends Controller {
*/ */
@Get("tab7/{id}") @Get("tab7/{id}")
async GetDevelopemtTab7ById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtTab7ById(@Request() request: RequestWithUser, @Path() id: string) {
// await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_PROJECT");
await new permission().PermissionGet(request, "SYS_DEV_PROJECT"); if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_PROJECT");
const getDevelopment = await this.developmentRepository.findOne({ const getDevelopment = await this.developmentRepository.findOne({
where: { id }, where: { id },
}); });
@ -1556,8 +1556,8 @@ export class DevelopmentController extends Controller {
*/ */
@Get("tab8/{id}") @Get("tab8/{id}")
async GetDevelopemtTab8ById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtTab8ById(@Request() request: RequestWithUser, @Path() id: string) {
// await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_PROJECT");
await new permission().PermissionGet(request, "SYS_DEV_PROJECT"); if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_PROJECT");
const getDevelopment = await this.developmentRepository.findOne({ const getDevelopment = await this.developmentRepository.findOne({
relations: ["developmentRisks"], relations: ["developmentRisks"],
where: { id: id }, where: { id: id },
@ -2005,8 +2005,8 @@ export class DevelopmentController extends Controller {
*/ */
@Get("tab1/{id}") @Get("tab1/{id}")
async GetDevelopemtTab1ById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtTab1ById(@Request() request: RequestWithUser, @Path() id: string) {
// await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_PROJECT");
await new permission().PermissionGet(request, "SYS_DEV_PROJECT"); if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_PROJECT");
const getDevelopment = await this.developmentRepository.findOne({ const getDevelopment = await this.developmentRepository.findOne({
where: { id: id }, where: { id: id },
}); });
@ -2059,8 +2059,8 @@ export class DevelopmentController extends Controller {
*/ */
@Get("tab2/{id}") @Get("tab2/{id}")
async GetDevelopemtTab2ById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtTab2ById(@Request() request: RequestWithUser, @Path() id: string) {
// await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_PROJECT");
await new permission().PermissionGet(request, "SYS_DEV_PROJECT"); if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_PROJECT");
const getDevelopment = await this.developmentRepository.findOne({ const getDevelopment = await this.developmentRepository.findOne({
where: { id: id }, where: { id: id },
relations: [ relations: [
@ -2155,8 +2155,8 @@ export class DevelopmentController extends Controller {
*/ */
@Get("tab3/{id}") @Get("tab3/{id}")
async GetDevelopemtTab3ById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtTab3ById(@Request() request: RequestWithUser, @Path() id: string) {
// await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_PROJECT");
await new permission().PermissionGet(request, "SYS_DEV_PROJECT"); if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_PROJECT");
const getDevelopment = await this.developmentRepository.findOne({ const getDevelopment = await this.developmentRepository.findOne({
where: { id: id }, where: { id: id },
relations: [ relations: [
@ -2274,8 +2274,8 @@ export class DevelopmentController extends Controller {
*/ */
@Get("tab4/{id}") @Get("tab4/{id}")
async GetDevelopemtTab4ById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtTab4ById(@Request() request: RequestWithUser, @Path() id: string) {
// await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_PROJECT");
await new permission().PermissionGet(request, "SYS_DEV_PROJECT"); if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_PROJECT");
const getDevelopment = await this.developmentRepository.findOne({ const getDevelopment = await this.developmentRepository.findOne({
where: { id: id }, where: { id: id },
relations: ["developmentEvaluations"], relations: ["developmentEvaluations"],
@ -2308,8 +2308,8 @@ export class DevelopmentController extends Controller {
*/ */
@Get("tab5/{id}") @Get("tab5/{id}")
async GetDevelopemtTab5ById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtTab5ById(@Request() request: RequestWithUser, @Path() id: string) {
// await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_PROJECT");
await new permission().PermissionGet(request, "SYS_DEV_PROJECT"); if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_PROJECT");
const getDevelopment = await this.developmentRepository.findOne({ const getDevelopment = await this.developmentRepository.findOne({
relations: ["developmentOthers"], relations: ["developmentOthers"],
where: { id: id }, where: { id: id },

3
src/controllers/DevelopmentEmployeeHistoryController.ts
View file

@ -370,7 +370,8 @@ export class DevelopmentEmployeeHistoryController extends Controller {
*/ */
@Get("{id}") @Get("{id}")
async GetDevelopemtHistoryById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtHistoryById(@Request() request: RequestWithUser, @Path() id: string) {
await new permission().PermissionGet(request, "SYS_DEV_HISTORY_EMP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_HISTORY_EMP");
if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_HISTORY_EMP");
const type = "EMPLOYEE"; const type = "EMPLOYEE";
const getDevelopment = await this.developmentHistoryRepository.findOne({ const getDevelopment = await this.developmentHistoryRepository.findOne({
relations: ["development", "employeePosLevel", "employeePosType"], relations: ["development", "employeePosLevel", "employeePosType"],

4
src/controllers/DevelopmentHistoryController.ts
View file

@ -366,7 +366,9 @@ export class DevelopmentOfficerHistoryController extends Controller {
*/ */
@Get("{id}") @Get("{id}")
async GetDevelopemtHistoryById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtHistoryById(@Request() request: RequestWithUser, @Path() id: string) {
await new permission().PermissionGet(request, "SYS_DEV_HISTORY_OFFICER"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_HISTORY_OFFICER");
if (_workflow == false)
await new permission().PermissionGet(request, "SYS_DEV_HISTORY_OFFICER");
const type = "OFFICER"; const type = "OFFICER";
const getDevelopment = await this.developmentHistoryRepository.findOne({ const getDevelopment = await this.developmentHistoryRepository.findOne({
relations: ["development", "posLevel", "posType"], relations: ["development", "posLevel", "posType"],

5
src/controllers/DevelopmentScholarshipController.ts
View file

@ -253,7 +253,7 @@ export class DevelopmentScholarshipController extends Controller {
*/ */
@Get("{id}") @Get("{id}")
async GetDevelopemtScholarshipById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtScholarshipById(@Request() request: RequestWithUser, @Path() id: string) {
// await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP");//USER //await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); //USER
const getDevelopment = await this.developmentScholarshipRepository.findOne({ const getDevelopment = await this.developmentScholarshipRepository.findOne({
relations: ["posLevel", "posType", "posLevelguarantor", "posTypeguarantor"], relations: ["posLevel", "posType", "posLevelguarantor", "posTypeguarantor"],
where: { id: id }, where: { id: id },
@ -414,7 +414,8 @@ export class DevelopmentScholarshipController extends Controller {
*/ */
@Get("admin/{id}") @Get("admin/{id}")
async GetDevelopemtScholarshipAdminById(@Request() request: RequestWithUser, @Path() id: string) { async GetDevelopemtScholarshipAdminById(@Request() request: RequestWithUser, @Path() id: string) {
await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP"); let _workflow = await new permission().Workflow(request, id, "SYS_DEV_SCHOLARSHIP");
if (_workflow == false) await new permission().PermissionGet(request, "SYS_DEV_SCHOLARSHIP");
const getDevelopment = await this.developmentScholarshipRepository.findOne({ const getDevelopment = await this.developmentScholarshipRepository.findOne({
relations: ["posLevel", "posType", "posLevelguarantor", "posTypeguarantor"], relations: ["posLevel", "posType", "posLevelguarantor", "posTypeguarantor"],
where: { id: id }, where: { id: id },

14
src/controllers/StrategyController.ts
View file

@ -1,4 +1,16 @@
import { Body, Controller, Delete, Get, Patch, Path, Post, Request, Route, Security, Tags } from "tsoa"; import {
Body,
Controller,
Delete,
Get,
Patch,
Path,
Post,
Request,
Route,
Security,
Tags,
} from "tsoa";
import { AppDataSource } from "../database/data-source"; import { AppDataSource } from "../database/data-source";
import { StrategyChild1 } from "../entities/StrategyChild1"; import { StrategyChild1 } from "../entities/StrategyChild1";
import { StrategyChild2 } from "../entities/StrategyChild2"; import { StrategyChild2 } from "../entities/StrategyChild2";

64
src/interfaces/permission.ts
View file

@ -53,18 +53,7 @@ class CheckAuth {
return await new CallAPI() return await new CallAPI()
.GetData(req, `/org/permission/org/${system}/${action}`) .GetData(req, `/org/permission/org/${system}/${action}`)
.then(async (x) => { .then(async (x) => {
console.log(x);
let privilege = x.privilege; let privilege = x.privilege;
// if (action.trim().toLocaleUpperCase() == "CREATE")
// privilege = await this.PermissionCreate(req, system);
// if (action.trim().toLocaleUpperCase() == "DELETE")
// privilege = await this.PermissionDelete(req, system);
// if (action.trim().toLocaleUpperCase() == "GET")
// privilege = await this.PermissionGet(req, system);
// if (action.trim().toLocaleUpperCase() == "LIST")
// privilege = await this.PermissionList(req, system);
// if (action.trim().toLocaleUpperCase() == "UPDATE")
// privilege = await this.PermissionUpdate(req, system);
let data: any = { let data: any = {
root: [null], root: [null],
@ -72,6 +61,7 @@ class CheckAuth {
child2: [null], child2: [null],
child3: [null], child3: [null],
child4: [null], child4: [null],
privilege: [null],
}; };
let node = 4; let node = 4;
if (x.orgChild1Id == null) { if (x.orgChild1Id == null) {
@ -83,13 +73,23 @@ class CheckAuth {
} else if (x.orgChild4Id == null) { } else if (x.orgChild4Id == null) {
node = 3; node = 3;
} }
if (privilege == "ROOT") { if (privilege == "OWNER") {
data = {
root: null,
child1: null,
child2: null,
child3: null,
child4: null,
privilege: "OWNER",
};
} else if (privilege == "ROOT") {
data = { data = {
root: [x.orgRootId], root: [x.orgRootId],
child1: null, child1: null,
child2: null, child2: null,
child3: null, child3: null,
child4: null, child4: null,
privilege: "ROOT",
}; };
} else if (privilege == "CHILD") { } else if (privilege == "CHILD") {
data = { data = {
@ -98,6 +98,7 @@ class CheckAuth {
child2: node >= 2 ? [x.orgChild2Id] : null, child2: node >= 2 ? [x.orgChild2Id] : null,
child3: node >= 3 ? [x.orgChild3Id] : null, child3: node >= 3 ? [x.orgChild3Id] : null,
child4: node >= 4 ? [x.orgChild4Id] : null, child4: node >= 4 ? [x.orgChild4Id] : null,
privilege: "CHILD",
}; };
} else if (privilege == "NORMAL") { } else if (privilege == "NORMAL") {
data = { data = {
@ -106,16 +107,9 @@ class CheckAuth {
child2: [x.orgChild2Id], child2: [x.orgChild2Id],
child3: [x.orgChild3Id], child3: [x.orgChild3Id],
child4: [x.orgChild4Id], child4: [x.orgChild4Id],
privilege: "NORMAL",
}; };
} else if (privilege == "SPECIFIC") { } else if (privilege == "SPECIFIC") {
} else if (privilege == "OWNER") {
data = {
root: null,
child1: null,
child2: null,
child3: null,
child4: null,
};
} }
return data; return data;
@ -145,16 +139,6 @@ class CheckAuth {
.GetData(req, `/org/permission/user/${system}/${action}/${profileId}`) .GetData(req, `/org/permission/user/${system}/${action}/${profileId}`)
.then(async (x) => { .then(async (x) => {
let org = x.org; let org = x.org;
// if (action.trim().toLocaleUpperCase() == "CREATE")
// org = await this.PermissionOrgCreate(req, system);
// if (action.trim().toLocaleUpperCase() == "DELETE")
// org = await this.PermissionOrgDelete(req, system);
// if (action.trim().toLocaleUpperCase() == "GET")
// org = await this.PermissionOrgGet(req, system);
// if (action.trim().toLocaleUpperCase() == "LIST")
// org = await this.PermissionOrgList(req, system);
// if (action.trim().toLocaleUpperCase() == "UPDATE")
// org = await this.PermissionOrgUpdate(req, system);
if (org.root != null) if (x.orgRootId != org.root[0]) throw "ไม่มีสิทธิ์เข้าถึงข้อมูล"; if (org.root != null) if (x.orgRootId != org.root[0]) throw "ไม่มีสิทธิ์เข้าถึงข้อมูล";
if (org.child1 != null) if (org.child1 != null)
@ -176,6 +160,26 @@ class CheckAuth {
} }
}); });
} }
public async Workflow(req: RequestWithUser, id: string, sysName: string) {
if (
req.headers.hasOwnProperty("api_key") &&
req.headers["api_key"] &&
req.headers["api_key"] == process.env.API_KEY
) {
return null;
}
return await new CallAPI()
.PostData(req, "/org/workflow/keycloak/isofficer", {
refId: id,
sysName: sysName,
})
.then((x) => {
return true;
})
.catch((x) => {
return false;
});
}
public async PermissionCreate(req: RequestWithUser, system: string) { public async PermissionCreate(req: RequestWithUser, system: string) {
return await this.Permission(req, system, "CREATE"); return await this.Permission(req, system, "CREATE");
} }