From fdf4284c3c7e6e70109b15a00589282cf031d93d Mon Sep 17 00:00:00 2001
From: kittapath <kittapath@frappet.com>
Date: Thu, 15 Aug 2024 13:28:28 +0700
Subject: [PATCH] service call service

---
 src/interfaces/call-api.ts   |  2 ++
 src/interfaces/permission.ts | 17 ++++++++++++-----
 2 files changed, 14 insertions(+), 5 deletions(-)

diff --git a/src/interfaces/call-api.ts b/src/interfaces/call-api.ts
index d6498fa..69364e4 100644
--- a/src/interfaces/call-api.ts
+++ b/src/interfaces/call-api.ts
@@ -23,6 +23,7 @@ class CallAPI {
         headers: {
           Authorization: `${token}`,
           "Content-Type": "application/json",
+          api_key: process.env.API_KEY,
         },
       });
       return response.data.result;
@@ -39,6 +40,7 @@ class CallAPI {
         headers: {
           Authorization: `${token}`,
           "Content-Type": "application/json",
+          api_key: process.env.API_KEY,
         },
       });
       return response.data.result;
diff --git a/src/interfaces/permission.ts b/src/interfaces/permission.ts
index 74bb1de..539def0 100644
--- a/src/interfaces/permission.ts
+++ b/src/interfaces/permission.ts
@@ -19,6 +19,13 @@ import HttpStatus from "./http-status";
 
 class CheckAuth {
   public async Permission(req: RequestWithUser, system: string, action: string) {
+    if (
+      req.headers.hasOwnProperty("api_key") &&
+      req.headers["api_key"] &&
+      req.headers["api_key"] == process.env.API_KEY
+    ) {
+      return null;
+    }
     await new CallAPI()
       .GetData(req, "/org/permission")
       .then((x) => {
@@ -39,19 +46,19 @@ class CheckAuth {
       });
   }
   public async PermissionCreate(req: RequestWithUser, system: string) {
-    this.Permission(req, system, "CREATE");
+    return await this.Permission(req, system, "CREATE");
   }
   public async PermissionDelete(req: RequestWithUser, system: string) {
-    this.Permission(req, system, "DELETE");
+    return await this.Permission(req, system, "DELETE");
   }
   public async PermissionGet(req: RequestWithUser, system: string) {
-    this.Permission(req, system, "GET");
+    return await this.Permission(req, system, "GET");
   }
   public async PermissionList(req: RequestWithUser, system: string) {
-    this.Permission(req, system, "LIST");
+    return await this.Permission(req, system, "LIST");
   }
   public async PermissionUpdate(req: RequestWithUser, system: string) {
-    this.Permission(req, system, "UPDATE");
+    return await this.Permission(req, system, "UPDATE");
   }
 }