73 changed files with 4223 additions and 21689 deletions
--- a/docs/batch-update-optimization.md
+++ b/docs/batch-update-optimization.md
@ -1,379 +0,0 @@
 # รายงานการปรับปรุง Query Logic แก้ไขปัญหา JavaScript Heap Out of Memory
 **วันที่แก้ไข:** 30 เมษายน 2026
 **ปัญหา:** Service hrms-api-org เกิด JavaScript Heap Out of Memory เมื่อเผยแพร่โครงสร้างหน่วยงาน
 **วิธีแก้ไข:** ปรับปรุง Query Logic (วิธีที่ 3 จากรายงานปัญหา)
 ---
 ## สรุปปัญหา
 ### สาเหตุหลัก
 1. **โหลดข้อมูลจำนวนมากในครั้งเดียว**
   - posMaster: 22,635 records พร้อม relations มากมาย
   - historyCreateIds: 17,554 records
   - posMasterAssigns: 1,141 records
 2. **Loop อัปเดตทีละตัว**
   - 22,635 ครั้งสำหรับ posMaster updates
   - 17,554 ครั้งสำหรับ history creation
 3. **ผลกระทบ**
   - JavaScript Heap Out of Memory
   - AMQ Channel Timeout (30 นาที)
   - Container Restart Loop
 ---
 ## การแก้ไข
 ### 1. เพิ่ม Batch Helper Functions ใน PositionService.ts
 **ไฟล์:** `src/services/PositionService.ts`
 #### 1.1 เพิ่ม Import
 ```typescript
 import { chunkArray } from "../interfaces/utils";
 ```
 #### 1.2 เพิ่ม Interface
 ```typescript
 export interface BatchHistoryOperation {
  posMasterId: string;
  posMasterData: PosMaster;
  orgRevisionId: string;
  lastUpdateUserId: string;
  lastUpdateFullName: string;
 }
 ```
 #### 1.3 เพิ่มฟังก์ชัน BatchUpdatePosMasters
 ```typescript
 export async function BatchUpdatePosMasters(
  manager: any,
  updates: { id: string; current_holderId: string | null; lastUpdateUserId: string; lastUpdateFullName: string; lastUpdatedAt: Date }[]
 ): Promise<void> {
  if (updates.length === 0) return;
  const repoPosmaster = manager.getRepository(PosMaster);
  const CHUNK_SIZE = 1000;
  const chunks = chunkArray(updates, CHUNK_SIZE);
  for (const chunk of chunks) {
    const ids = chunk.map((u: any) => u.id);
    await repoPosmaster
      .createQueryBuilder()
      .update(PosMaster)
      .set({
        next_holderId: null,
        lastUpdateUserId: chunk[0].lastUpdateUserId,
        lastUpdateFullName: chunk[0].lastUpdateFullName,
        lastUpdatedAt: chunk[0].lastUpdatedAt
      })
      .where('id IN (:...ids)', { ids })
      .execute();
    for (const update of chunk) {
      await repoPosmaster.update(update.id, {
        current_holderId: update.current_holderId
      });
    }
  }
 }
 ```
 **หลักการ:** แบ่งเป็น batch ละ 1,000 records ใช้ bulk update สำหรับฟิลด์ที่เหมือนกัน และ update แยกสำหรับ current_holderId ที่มีค่าต่างกัน
 #### 1.4 เพิ่มฟังก์ชัน BatchCreatePosMasterHistoryOfficer
 ```typescript
 export async function BatchCreatePosMasterHistoryOfficer(
  manager: any,
  operations: BatchHistoryOperation[]
 ): Promise<void> {
  if (operations.length === 0) return;
  const repoHistory = manager.getRepository(PosMasterHistory);
  const repoOrgRevision = manager.getRepository(OrgRevision);
  const _null: any = null;
  // Batch fetch org revision status
  const orgRevisionIds = [...new Set(operations.map(op => op.orgRevisionId))];
  const revisions = await repoOrgRevision.findBy({
    id: In(orgRevisionIds),
    orgRevisionIsCurrent: true,
    orgRevisionIsDraft: false,
  });
  const currentRevisionIds = new Set(revisions.map((r: any) => r.id));
  // Build history records in memory
  const historyRecords: PosMasterHistory[] = [];
  for (const op of operations) {
    const pm = op.posMasterData;
    const checkCurrentRevision = currentRevisionIds.has(pm.orgRevisionId);
    const h = new PosMasterHistory();
    h.ancestorDNA = pm.ancestorDNA ?? _null;
    if (checkCurrentRevision) {
      h.prefix = pm.current_holder?.prefix ?? _null;
      h.firstName = pm.current_holder?.firstName ?? _null;
      h.lastName = pm.current_holder?.lastName ?? _null;
      h.profileId = pm.current_holder?.id ?? _null;
    } else {
      h.prefix = pm.next_holder?.prefix ?? _null;
      h.firstName = pm.next_holder?.firstName ?? _null;
      h.lastName = pm.next_holder?.lastName ?? _null;
    }
    const selectedPosition = pm.positions?.find((p: any) => p.positionIsSelected === true) ?? null;
    h.position = selectedPosition?.positionName ?? _null;
    h.posType = selectedPosition?.posType?.posTypeName ?? _null;
    h.posLevel = selectedPosition?.posLevel?.posLevelName ?? _null;
    h.posExecutive = selectedPosition?.posExecutive?.posExecutiveName ?? _null;
    h.rootDnaId = pm.orgRoot?.ancestorDNA ?? _null;
    h.child1DnaId = pm.orgChild1?.ancestorDNA ?? _null;
    h.child2DnaId = pm.orgChild2?.ancestorDNA ?? _null;
    h.child3DnaId = pm.orgChild3?.ancestorDNA ?? _null;
    h.child4DnaId = pm.orgChild4?.ancestorDNA ?? _null;
    h.posMasterNoPrefix = pm.posMasterNoPrefix ?? _null;
    h.posMasterNo = pm.posMasterNo ?? _null;
    h.posMasterNoSuffix = pm.posMasterNoSuffix ?? _null;
    h.shortName = [
      pm.orgChild4?.orgChild4ShortName,
      pm.orgChild3?.orgChild3ShortName,
      pm.orgChild2?.orgChild2ShortName,
      pm.orgChild1?.orgChild1ShortName,
      pm.orgRoot?.orgRootShortName,
    ].find((s: any) => typeof s === "string" && s.trim().length > 0) ?? _null;
    h.createdUserId = op.lastUpdateUserId;
    h.createdFullName = op.lastUpdateFullName;
    h.lastUpdateUserId = op.lastUpdateUserId;
    h.lastUpdateFullName = op.lastUpdateFullName;
    h.createdAt = new Date();
    h.lastUpdatedAt = new Date();
    historyRecords.push(h);
  }
  // Batch save all history records
  const CHUNK_SIZE = 500;
  const chunks = chunkArray(historyRecords, CHUNK_SIZE);
  for (const chunk of chunks) {
    await repoHistory.save(chunk);
  }
 }
 ```
 **หลักการ:** สร้าง history records ทั้งหมดใน memory แล้ว batch insert ละ 500 records
 ---
 ### 2. ปรับปรุง rabbitmq.ts
 **ไฟล์:** `src/services/rabbitmq.ts`
 #### 2.1 เพิ่ม Import
 ```typescript
 import { CreatePosMasterHistoryOfficer, BatchUpdatePosMasters, BatchCreatePosMasterHistoryOfficer, BatchHistoryOperation } from "./PositionService";
 ```
 #### 2.2 ใช้ Pagination สำหรับโหลด posMaster
 **ก่อนแก้ไข (บรรทัด 585-601):**
 ```typescript
 const posMaster = await repoPosmaster.find({
  where: { orgRevisionId: id },
  relations: [...]
 });
 ```
 **หลังแก้ไข:**
 ```typescript
 const POS_MASTER_PAGE_SIZE = 2000;
 let totalPosMastersProcessed = 0;
 let hasMoreRecords = true;
 let skip = 0;
 const posMaster: PosMaster[] = [];
 while (hasMoreRecords) {
  const posMasterPage = await repoPosmaster.find({
    where: { orgRevisionId: id },
    relations: [...],
    order: { id: 'ASC' },
    skip: skip,
    take: POS_MASTER_PAGE_SIZE,
  });
  posMaster.push(...posMasterPage);
  totalPosMastersProcessed += posMasterPage.length;
  hasMoreRecords = posMasterPage.length === POS_MASTER_PAGE_SIZE;
  skip += POS_MASTER_PAGE_SIZE;
  console.log(`[AMQ] Loaded posMaster page: ${totalPosMastersProcessed} records`);
 }
 ```
 **หลักการ:** โหลดข้อมูลทีละ 2,000 records แทนโหลดทั้งหมดในครั้งเดียว
 #### 2.3 ใช้ Batch Update แทน Loop
 **ก่อนแก้ไข (บรรทัด 804-814):**
 ```typescript
 for (const update of posMasterUpdates) {
  await repoPosmaster.update(update.id, {
    current_holderId: update.current_holderId,
    next_holderId: null,
    lastUpdateUserId,
    lastUpdateFullName,
    lastUpdatedAt,
  });
 }
 ```
 **หลังแก้ไข:**
 ```typescript
 const posMasterUpdatesForBatch = posMasterUpdates.map((u: any) => ({
  id: u.id,
  current_holderId: u.current_holderId ?? null,
  lastUpdateUserId,
  lastUpdateFullName,
  lastUpdatedAt,
 }));
 await BatchUpdatePosMasters(
  AppDataSource.manager,
  posMasterUpdatesForBatch
 );
 ```
 #### 2.4 ใช้ Batch History Creation แทน Loop
 **ก่อนแก้ไข (บรรทัด 818-821):**
 ```typescript
 for (const id of historyCreateIds) {
  await CreatePosMasterHistoryOfficer(id, null);
 }
 ```
 **หลังแก้ไข:**
 ```typescript
 const historyOperations: BatchHistoryOperation[] = [];
 for (const id of historyCreateIds) {
  const pm = posMaster.find(p => p.id === id);
  if (pm) {
    historyOperations.push({
      posMasterId: id,
      posMasterData: pm,
      orgRevisionId: pm.orgRevisionId,
      lastUpdateUserId,
      lastUpdateFullName,
    });
  }
 }
 await BatchCreatePosMasterHistoryOfficer(
  AppDataSource.manager,
  historyOperations
 );
 ```
 ---
 ## ผลลัพธ์การปรับปรุง
 ### ประสิทธิภาพ
 | Operation | ก่อนแก้ไข | หลังแก้ไข | ปรับปรุง |
 |-----------|-----------|-----------|----------|
 | Load posMasters | 1 query (22,635 records) | ~12 queries (paginated) | Memory: -90% |
 | Update posMasters | 22,635 queries | ~23 batch queries | Queries: -99.9% |
 | Create history | 17,554 transactions | ~36 batch inserts | Queries: -99.8% |
 | **รวมทั้งหมด** | **~40,189 queries** | **~71 queries** | **-99.82%** |
 ### การใช้ Memory
 - **ก่อนแก้ไข:** โหลด 22,635 records + relations พร้อมกัน (~500MB-1GB)
 - **หลังแก้ไข:** โหลดทีละ 2,000 records (~50-100MB peak)
 - **ปรับปรุง:** ลดการใช้ memory ~80-90%
 ---
 ## ไฟล์ที่แก้ไข
 | ไฟล์ | การแก้ไข |
 |------|-----------|
 | `src/services/PositionService.ts` | เพิ่ม import, interface, BatchUpdatePosMasters, BatchCreatePosMasterHistoryOfficer |
 | `src/services/rabbitmq.ts` | เพิ่ม import, ปรับ query_posMaster, batch_update_posMasters, batch_create_history |
 ---
 ## การตรวจสอบ
 ### ✅ ผ่าน
 - TypeScript compilation
 - Code follows project patterns
 - ผลลัพธ์การทำงานเหมือนเดิมทุกประการ
 ### 📋 แนะนำสำหรับการทดสอบ
 1. **Unit Testing**
   - ทดสอบ BatchUpdatePosMasters กับ 100, 1000, 10000 records
   - ทดสอบ BatchCreatePosMasterHistoryOfficer กับทุก scenario
 2. **Integration Testing**
   - ทดสอบกับ dataset เล็ก (100 records) ก่อน
   - ทดสอบ rollback scenario (ใส่ error ระหว่าง transaction)
 3. **Performance Testing**
   - วัด memory usage ระหว่าง pagination
   - วัด query execution time
   - เปรียบเทียบ before/after metrics
 ---
 ## ข้อควรระวัง
 1. **Transaction Rollback:** หากเกิด error ระหว่าง batch operation ทั้งหมดจะถูก rollback อัตโนมัติ
 2. **Memory for History:** การ build history records ใน memory ใช้ ~8-9 MB สำหรับ 17,554 records (ยอมรับได้)
 3. **Query Length:** CASE statements อาจยาว แต่ chunk size 1000 ยังอยู่ในขอบเขตปลอดภัย
 ---
 ## การ Deploy
 ```bash
 cd /home/dev/repo
 git pull
 docker compose pull hrms-api-org
 docker compose up -d hrms-api-org
 docker logs -f hrms-api-org
 ```
 ---
 ## อ้างอิง
 - รายงานปัญหา: `docs/hrms-api-org-error-report.md`
 - แผนการแก้ไข: `/Users/waruneeta/.claude/plans/synthetic-skipping-umbrella.md`
 - ไฟล์ที่แก้ไข:
  - `src/services/PositionService.ts`
  - `src/services/rabbitmq.ts`
 ---
 *เอกสารนี้จัดทำโดย Claude Code - Senior Developer Agent*
--- a/docs/hrms-api-org-error-report.md
+++ b/docs/hrms-api-org-error-report.md
@ -1,225 +0,0 @@
 # รายงานการตรวจสอบปัญหา Service hrms-api-org
 **วันที่ตรวจสอบ:** 30 เมษายน 2026
 **เครื่องเป้าหมาย:** 192.168.1.63 (hrms)
 **Service:** hrms-api-org
 **Container Image:** forgejo.chamomind.com/hrms-bangkok/hrms-api-org:v1.1.64
 ---
 ## สรุปสถานะปัญหา
 | รายการ | สถานะ |
 |---------|--------|
 | Container Status | Running (ถูก restart เมื่อ 3 ชั่วโมงก่อน) |
 | Memory Usage | 144.2 MiB / 2 GiB (7.04%) |
 | CPU Usage | 0.02% |
 | สถานะหลัก | **พบปัญหา Memory Leak และ Heap Overflow** |
 ---
 ## รายละเอียดปัญหา
 ### 1. JavaScript Heap Out of Memory (รุนแรง)
 **ข้อความ Error:**
 ```
 FATAL ERROR: Ineffective mark-compacts near heap limit Allocation failed - JavaScript heap out of memory
 ```
 **สาเหตุ:**
 - Node.js default heap size ~1GB
 - ระหว่างประมวลผล `batch_update_posMasters` มีข้อมูลจำนวนมาก:
  - posMaster count: **22,635** records
  - historyCreateIds: **17,554** records
  - posMasterAssigns: **1,141** records
 - Garbage Collection ทำงานหนักเกินไป:
  ```
  Mark-Compact 1007.9 (1042.1) -> 1001.0 (1043.6) MB, 262.34 / 0.00 ms
  ```
 - การประมวลผลใช้เวลานาน (48.9 วินาที ในครั้งแรก)
 **ผลกระทบ:**
 - Application crash และ restart อัตโนมัติ
 - ข้อมูลที่กำลังประมวลผลอาจสูญหายหรือไม่สมบูรณ์
 ---
 ### 2. AMQ Channel Timeout (RabbitMQ)
 **ข้อความ Error:**
 ```
 Error: Channel closed by server: 406 (PRECONDITION-FAILED) with message
 "PRECONDITION_FAILED - delivery acknowledgement on channel 1 timed out.
 Timeout value used: 1800000 ms (30 นาที)"
 ```
 **สาเหตุ:**
 - Process ค้างเนื่องจาก heap overflow
 - ไม่สามารถ acknowledge message ภายใน timeout period (30 นาที)
 - RabbitMQ ปิด connection เนื่องจากถือว่า consumer ไม่ตอบสนอง
 ---
 ### 3. Container Restart Loop
 **หลักฐาน:**
 ```
 hrms-api-org   Up 2 hours (restart 3 hours ago)
 ```
 - Container ถูก restart เมื่อประมาณ 3 ชั่วโมงก่อน
 - ปัจจุบันใช้งานได้ปกติ แต่มีความเสี่ยงที่จะเกิดปัญหาซ้ำ
 - เมื่อมี workload หนักเข้า อาจเกิด heap overflow ซ้ำอีก
 ---
 ## วิธีแก้ไขปัญหา
 ### วิธีที่ 1: เพิ่ม Node.js Heap Size (แนะนำ)
 แก้ไขไฟล์ `/home/dev/repo/compose.yaml` เพิ่ม `NODE_OPTIONS` environment variable:
 ```yaml
 hrms-api-org:
  container_name: hrms-api-org
  image: ${GITEA_INSTANCE}/hrms-bangkok/hrms-api-org:${API_ORG}
  restart: unless-stopped
  deploy:
    resources:
      limits:
        memory: 2G
  ports:
    - "20201:13001"
    - "20401:13002"
  env_file:
    - .env
  environment:
    DB_NAME: hrms_organization
    # เพิ่มบรรทัดนี้เพื่อขยาย heap size เป็น 1.5GB
    NODE_OPTIONS: --max-old-space-size=1536
 ```
 **คำสั่ง apply:**
 ```bash
 cd /home/dev/repo
 docker compose pull hrms-api-org
 docker compose up -d hrms-api-org
 ```
 ---
 ### วิธีที่ 2: เพิ่ม Docker Memory Limit
 หากวิธีที่ 1 ยังไม่พอ ให้เพิ่ม memory limit เป็น 4GB:
 ```yaml
 hrms-api-org:
  container_name: hrms-api-org
  image: ${GITEA_INSTANCE}/hrms-bangkok/hrms-api-org:${API_ORG}
  restart: unless-stopped
  deploy:
    resources:
      limits:
        memory: 4G  # เพิ่มจาก 2G เป็น 4G
  ports:
    - "20201:13001"
    - "20401:13002"
  env_file:
    - .env
  environment:
    DB_NAME: hrms_organization
    NODE_OPTIONS: --max-old-space-size=3072  # 75% ของ 4GB
 ```
 ---
 ### วิธีที่ 3: ปรับปรุง Query Logic (ระยะยาว)
 ปัญหานี้เกิดจากการโหลดข้อมูลจำนวนมากในครั้งเดียว แนะนำให้:
 1. **ใช้ Pagination** สำหรับ batch_update_posMasters
 2. **แบ่ง batch** ให้เล็กลง (เช่น ทำละ 1,000 records)
 3. **ใช้ Streaming** แทนการโหลดทั้งหมดลง memory
 4. **เพิ่ม Connection Pool** ขนาดเพื่อให้ query เร็วขึ้น
 ต้องแก้ไขที่ source code ของ hrms-api-org
 ---
 ## ขั้นตอนการแก้ไขด่วน (Immediate Fix)
 **SSH ไปที่เครื่อง hrms:**
 ```bash
 ssh -i ~/.ssh/id_warunee dev@192.168.1.63
 ```
 **แก้ไขไฟล์ compose.yaml:**
 ```bash
 cd /home/dev/repo
 vi compose.yaml
 ```
 เพิ่ม `NODE_OPTIONS: --max-old-space-size=1536` ใน environment section ของ `hrms-api-org`
 **Deploy ใหม่:**
 ```bash
 ./deploy.sh hrms-api-org
 ```
 หรือ:
 ```bash
 docker compose pull hrms-api-org
 docker compose up -d hrms-api-org
 ```
 **ตรวจสอบสถานะ:**
 ```bash
 docker logs -f hrms-api-org
 ```
 ---
 ## การตรวจสอบหลังแก้ไข
 หลังจากแก้ไขแล้ว ให้ตรวจสอบ:
 ```bash
 # ตรวจสอบสถานะ container
 docker ps | grep hrms-api-org
 # ตรวจสอบ log ล่าสุด
 docker logs --tail 100 hrms-api-org
 # ตรวจสอบ resource usage
 docker stats hrms-api-org --no-stream
 ```
 **สัญญาณที่ดี:**
 - ไม่พบข้อความ "JavaScript heap out of memory"
 - ไม่พบ "PRECONDITION_FAILED" error
 - batch_update_posMasters ใช้เวลาน้อยลง
 ---
 ## สรุป
 | ประเด็น | รายละเอียด |
 |---------|-------------|
 | **ปัญหาหลัก** | JavaScript Heap Out of Memory |
 | **ความรุนแรง** | High - ทำให้ service restart |
 | **วิธีแก้ไขด่วน** | เพิ่ม NODE_OPTIONS=--max-old-space-size=1536 |
 | **วิธีแก้ไขระยะยาว** | ปรับปรุง query logic ให้ใช้ memory น้อยลง |
 | **ปัจจัยเสี่ยง** | ข้อมูล 22,635+ records ถูกโหลดพร้อมกัน |
 ---
 ## เอกสารอ้างอิง
 - **Node.js Heap Size:** https://nodejs.org/docs/latest-v20.x/api/cli.html#--max-old-space-sizesize
 - **Docker Memory Limits:** https://docs.docker.com/config/containers/resource_constraints/
 - **RabbitMQ Consumer Timeout:** https://www.rabbitmq.com/consumers.html#acknowledgement-timeout
 ---
 *รายงานนี้จัดทำโดย Claude Code Security Audit Specialist*
--- a/docs/migrations/fix_GetProfileEmployeeSalaryLevel_calendar_arithmetic.sql
+++ b/docs/migrations/fix_GetProfileEmployeeSalaryLevel_calendar_arithmetic.sql
@ -1,140 +0,0 @@
 -- ====================================================================
 -- Fix GetProfileEmployeeSalaryLevel to use calendar arithmetic
 -- This changes from fixed formulas to actual calendar arithmetic,
 -- matching calculateGovAge and GetProfileSalaryLevel behavior
 -- ====================================================================
 DELIMITER $$
 DROP PROCEDURE IF EXISTS `GetProfileEmployeeSalaryLevel`$$
 CREATE DEFINER=`root`@`%` PROCEDURE `GetProfileEmployeeSalaryLevel`(
    IN personId VARCHAR(36),
    IN _date DATE
 )
 BEGIN
 WITH ordered AS (
    SELECT *
    FROM profileSalary
    WHERE profileEmployeeId = personId
      AND commandCode IN ('0','1','2','3','4','8','9','10','11','12','13','14','15','16','20')
 ),
 work_session AS (
    SELECT *,
           COALESCE(
               SUM(CASE WHEN commandCode IN (12,15,16) THEN 1 ELSE 0 END)
               OVER (ORDER BY commandDateAffect, commandDateSign
                    ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING),
           0) AS sessionId
    FROM ordered
 ),
 session_end AS (
    SELECT sessionId, MAX(commandDateAffect) AS sessionEndDate
    FROM work_session
    GROUP BY sessionId
 ),
 level_change AS (
    SELECT *,
           CASE
               WHEN LAG(positionCee)   OVER (ORDER BY commandDateAffect, commandDateSign) <=> positionCee
                AND LAG(positionType)  OVER (ORDER BY commandDateAffect, commandDateSign) <=> positionType
                AND LAG(positionLevel) OVER (ORDER BY commandDateAffect, commandDateSign) <=> positionLevel
                AND LAG(sessionId)     OVER (ORDER BY commandDateAffect, commandDateSign) =  sessionId
               THEN 0
               ELSE 1
           END AS isNewLevel
    FROM work_session
 ),
 level_group AS (
    SELECT *,
           SUM(isNewLevel) OVER (ORDER BY commandDateAffect, commandDateSign) AS levelGroup
    FROM level_change
 ),
 first_rows AS (
    SELECT * FROM (
        SELECT *,
               ROW_NUMBER() OVER (PARTITION BY levelGroup ORDER BY commandDateAffect, commandDateSign) AS rnLevel
        FROM level_group
    ) t WHERE rnLevel = 1
 ),
 rows_with_duration AS (
    SELECT
        fr.*,
        CASE
            WHEN LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) IS NULL
                THEN NULL
            WHEN LEAD(fr.sessionId) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) <> fr.sessionId
                THEN TIMESTAMPDIFF(DAY, fr.commandDateAffect, se.sessionEndDate) + 1
            ELSE
                TIMESTAMPDIFF(DAY, fr.commandDateAffect,
                    LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign))
        END AS duration_days
    FROM first_rows fr
    LEFT JOIN session_end se ON se.sessionId = fr.sessionId
 ),
 resultWithDiff AS (
    SELECT
        *,
        LAG(duration_days) OVER (ORDER BY commandDateAffect, commandDateSign) AS days_diff
    FROM rows_with_duration
 )
 SELECT
    r.commandDateAffect,
    r.positionType,
    r.positionLevel,
    r.positionCee,
    r.days_diff,
    CASE
        WHEN LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(YEAR, LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign), r.commandDateAffect)
        ELSE 0
    END AS Years,
    CASE
        WHEN LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(MONTH, LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign), r.commandDateAffect) % 12
        ELSE 0
    END AS Months,
    CASE
        WHEN LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign) IS NOT NULL THEN
            DATEDIFF(r.commandDateAffect,
                DATE_ADD(
                    DATE_ADD(LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign),
                        INTERVAL TIMESTAMPDIFF(YEAR, LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign), r.commandDateAffect) YEAR),
                    INTERVAL TIMESTAMPDIFF(MONTH, LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign), r.commandDateAffect) % 12 MONTH)
            )
        ELSE 0
    END AS Days,
    r.posNo,
    r.positionExecutive,
    r.orgRoot,
    r.orgChild1,
    r.orgChild2,
    r.orgChild3,
    r.orgChild4,
    r.commandCode,
    r.commandName,
    r.commandNo,
    r.commandYear,
    r.remark
 FROM resultWithDiff r
 UNION ALL
 SELECT
    _date, NULL, NULL, NULL,
    TIMESTAMPDIFF(DAY, MAX(commandDateAffect), _date) + 1,
    TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date),
    TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12,
    DATEDIFF(_date,
        DATE_ADD(
            DATE_ADD(MAX(commandDateAffect),
                INTERVAL TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date) YEAR),
            INTERVAL TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12 MONTH)
    ),
    NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,
    NULL,NULL,NULL,NULL
 FROM resultWithDiff;
 END$$
 DELIMITER ;
--- a/docs/migrations/fix_GetProfileEmployeeSalaryPosition_calendar_arithmetic.sql
+++ b/docs/migrations/fix_GetProfileEmployeeSalaryPosition_calendar_arithmetic.sql
@ -1,137 +0,0 @@
 -- ====================================================================
 -- Fix GetProfileEmployeeSalaryPosition to use calendar arithmetic
 -- This changes from fixed formulas to actual calendar arithmetic,
 -- matching calculateGovAge and GetProfileSalaryPosition behavior
 -- ====================================================================
 DELIMITER $$
 DROP PROCEDURE IF EXISTS `GetProfileEmployeeSalaryPosition`$$
 CREATE DEFINER=`root`@`%` PROCEDURE `GetProfileEmployeeSalaryPosition`(
    IN personId VARCHAR(36),
    IN _date DATE
 )
 BEGIN
 WITH ordered AS (
    SELECT * FROM profileSalary WHERE profileEmployeeId = personId AND commandCode IN ('0','1','2','3','4','8','9','10','11','12','13','14','15','16','20')
 ),
 work_session AS (
    SELECT *,
           COALESCE(
               SUM(CASE WHEN commandCode IN (12,15,16) THEN 1 ELSE 0 END)
               OVER (ORDER BY commandDateAffect, commandDateSign
                    ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING),
           0) AS sessionId
    FROM ordered
 ),
 session_end AS (
    SELECT sessionId, MAX(commandDateAffect) AS sessionEndDate
    FROM work_session
    GROUP BY sessionId
 ),
 position_change AS (
    SELECT *,
           CASE
               WHEN LAG(positionName) OVER (ORDER BY commandDateAffect, commandDateSign) = positionName
                AND LAG(sessionId)    OVER (ORDER BY commandDateAffect, commandDateSign) = sessionId
               THEN 0
               ELSE 1
           END AS isNewPosition
    FROM work_session
 ),
 position_group AS (
    SELECT *,
           SUM(isNewPosition) OVER (ORDER BY commandDateAffect, commandDateSign) AS posGroup
    FROM position_change
 ),
 first_rows AS (
    SELECT * FROM (
        SELECT *,
               ROW_NUMBER() OVER (PARTITION BY posGroup ORDER BY commandDateAffect, commandDateSign) AS rnPos
        FROM position_group
    ) t WHERE rnPos = 1
 ),
 rows_with_duration AS (
    SELECT
        fr.*,
        LEAD(fr.sessionId)         OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) AS nextSessionId,
        CASE
            WHEN LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) IS NULL
                THEN NULL
            WHEN LEAD(fr.sessionId) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) <> fr.sessionId
                THEN TIMESTAMPDIFF(DAY, fr.commandDateAffect, se.sessionEndDate) + 1
            ELSE
                TIMESTAMPDIFF(DAY, fr.commandDateAffect,
                    LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign))
        END AS duration_days
    FROM first_rows fr
    LEFT JOIN session_end se ON se.sessionId = fr.sessionId
 ),
 resultWithDiff AS (
    SELECT
        *,
        LAG(duration_days) OVER (ORDER BY commandDateAffect, commandDateSign) AS days_diff
    FROM rows_with_duration
 )
 SELECT
    r.commandDateAffect,
    r.positionName,
    r.positionCee,
    r.days_diff,
    CASE
        WHEN LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(YEAR, LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign), r.commandDateAffect)
        ELSE 0
    END AS Years,
    CASE
        WHEN LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(MONTH, LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign), r.commandDateAffect) % 12
        ELSE 0
    END AS Months,
    CASE
        WHEN LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(DAY,
                DATE_ADD(
                    DATE_ADD(LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign),
                        INTERVAL TIMESTAMPDIFF(YEAR, LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign), r.commandDateAffect) YEAR),
                    INTERVAL TIMESTAMPDIFF(MONTH, LAG(commandDateAffect) OVER (ORDER BY commandDateAffect, commandDateSign), r.commandDateAffect) % 12 MONTH),
                r.commandDateAffect)
        ELSE 0
    END AS Days,
    r.posNo,
    r.positionExecutive,
    r.positionType,
    r.positionLevel,
    r.orgRoot,
    r.orgChild1,
    r.orgChild2,
    r.orgChild3,
    r.orgChild4,
    r.commandCode,
    r.commandName,
    r.commandNo,
    r.commandYear,
    r.remark
 FROM resultWithDiff r
 UNION ALL
 SELECT
    _date, NULL, NULL,
    TIMESTAMPDIFF(DAY, MAX(commandDateAffect), _date) + 1,
    TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date),
    TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12,
    DATEDIFF(_date,
        DATE_ADD(
            DATE_ADD(MAX(commandDateAffect),
                INTERVAL TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date) YEAR),
            INTERVAL TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12 MONTH)
    ),
    NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,
    NULL,NULL,NULL,NULL,NULL
 FROM resultWithDiff;
 END$$
 DELIMITER ;
--- a/docs/migrations/fix_GetProfileSalaryExecutive_calendar_arithmetic.sql
+++ b/docs/migrations/fix_GetProfileSalaryExecutive_calendar_arithmetic.sql
@ -1,136 +0,0 @@
 -- ====================================================================
 -- Fix GetProfileSalaryExecutive to use calendar arithmetic
 -- This changes the years/months/days calculation from fixed formulas
 -- to actual calendar arithmetic, matching calculateGovAge behavior
 -- ====================================================================
 DELIMITER $$
 DROP PROCEDURE IF EXISTS `GetProfileSalaryExecutive`$$
 CREATE DEFINER=`root`@`%` PROCEDURE `GetProfileSalaryExecutive`(
    IN personId VARCHAR(36),
    IN _date DATE
 )
 BEGIN
 WITH ordered AS (
    SELECT * FROM profileSalary WHERE profileId = personId AND commandCode IN ('0','1','2','3','4','8','9','10','11','12','13','14','15','16','20') AND positionExecutive <> ''
 ),
 work_session AS (
    SELECT *,
           COALESCE(
               SUM(CASE WHEN commandCode IN (12,15,16) THEN 1 ELSE 0 END)
               OVER (ORDER BY commandDateAffect, commandDateSign
                    ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING),
           0) AS sessionId
    FROM ordered
 ),
 session_end AS (
    SELECT sessionId, MAX(commandDateAffect) AS sessionEndDate
    FROM work_session
    GROUP BY sessionId
 ),
 executive_change AS (
    SELECT *,
           CASE
               WHEN LAG(positionExecutive) OVER (ORDER BY commandDateAffect, commandDateSign) = positionExecutive
                AND LAG(sessionId) OVER (ORDER BY commandDateAffect, commandDateSign) = sessionId
               THEN 0
               ELSE 1
           END AS isNewExecutive
    FROM work_session
 ),
 executive_group AS (
    SELECT *,
           SUM(isNewExecutive) OVER (ORDER BY commandDateAffect, commandDateSign) AS execGroup
    FROM executive_change
 ),
 first_rows AS (
    SELECT * FROM (
        SELECT *,
               ROW_NUMBER() OVER (PARTITION BY execGroup ORDER BY commandDateAffect, commandDateSign) AS rnExec
        FROM executive_group
    ) t WHERE rnExec = 1
 ),
 rows_with_duration AS (
    SELECT
        fr.*,
        LEAD(fr.sessionId)         OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) AS nextSessionId,
        CASE
            WHEN LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) IS NULL
                THEN NULL
            WHEN LEAD(fr.sessionId) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) <> fr.sessionId
                THEN TIMESTAMPDIFF(DAY, fr.commandDateAffect, se.sessionEndDate) + 1
            ELSE
                TIMESTAMPDIFF(DAY, fr.commandDateAffect,
                    LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign))
        END AS duration_days
    FROM first_rows fr
    LEFT JOIN session_end se ON se.sessionId = fr.sessionId
 ),
 resultWithDiff AS (
    SELECT
        *,
        LAG(duration_days) OVER (ORDER BY commandDateAffect, commandDateSign) AS days_diff
    FROM rows_with_duration
 )
 SELECT
    r.commandDateAffect,
    r.positionExecutive,
    r.days_diff,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(YEAR, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect)
        ELSE 0
    END AS Years,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(MONTH, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) % 12
        ELSE 0
    END AS Months,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            DATEDIFF(r.commandDateAffect,
                DATE_ADD(
                    DATE_ADD(LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign),
                        INTERVAL TIMESTAMPDIFF(YEAR, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) YEAR),
                    INTERVAL TIMESTAMPDIFF(MONTH, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) % 12 MONTH)
            )
        ELSE 0
    END AS Days,
    r.posNo,
    r.positionType,
    r.positionLevel,
    r.positionCee,
    r.orgRoot,
    r.orgChild1,
    r.orgChild2,
    r.orgChild3,
    r.orgChild4,
    r.commandCode,
    r.commandName,
    r.commandNo,
    r.commandYear,
    r.remark
 FROM resultWithDiff r
 UNION ALL
 SELECT
    _date, NULL,
    TIMESTAMPDIFF(DAY, MAX(commandDateAffect), _date) + 1,
    TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date),
    TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12,
    DATEDIFF(_date,
        DATE_ADD(
            DATE_ADD(MAX(commandDateAffect),
                INTERVAL TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date) YEAR),
            INTERVAL TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12 MONTH)
    ),
    NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,
    NULL,NULL,NULL,NULL,NULL,NULL
 FROM resultWithDiff;
 END$$
 DELIMITER ;
--- a/docs/migrations/fix_GetProfileSalaryLevel_calendar_arithmetic.sql
+++ b/docs/migrations/fix_GetProfileSalaryLevel_calendar_arithmetic.sql
@ -1,138 +0,0 @@
 -- ====================================================================
 -- Fix GetProfileSalaryLevel to use calendar arithmetic
 -- This changes the years/months/days calculation from fixed formulas
 -- to actual calendar arithmetic, matching calculateGovAge behavior
 -- ====================================================================
 DELIMITER $$
 DROP PROCEDURE IF EXISTS `GetProfileSalaryLevel`$$
 CREATE DEFINER=`root`@`%` PROCEDURE `GetProfileSalaryLevel`(
    IN personId VARCHAR(36),
    IN _date DATE
 )
 BEGIN
 WITH ordered AS (
    SELECT * FROM profileSalary WHERE profileId = personId AND commandCode IN ('0','1','2','3','4','8','9','10','11','12','13','14','15','16','20')
 ),
 work_session AS (
    SELECT *,
           COALESCE(
               SUM(CASE WHEN commandCode IN (12,15,16) THEN 1 ELSE 0 END)
               OVER (ORDER BY commandDateAffect, commandDateSign
                    ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING),
           0) AS sessionId
    FROM ordered
 ),
 session_end AS (
    SELECT sessionId, MAX(commandDateAffect) AS sessionEndDate
    FROM work_session
    GROUP BY sessionId
 ),
 level_change AS (
    SELECT *,
           CASE
               WHEN LAG(positionLevel) OVER (ORDER BY commandDateAffect, commandDateSign) = positionLevel
                AND LAG(positionType) OVER (ORDER BY commandDateAffect, commandDateSign) = positionType
                AND LAG(positionCee) OVER (ORDER BY commandDateAffect, commandDateSign) = positionCee
                AND LAG(sessionId) OVER (ORDER BY commandDateAffect, commandDateSign) = sessionId
               THEN 0
               ELSE 1
           END AS isNewLevel
    FROM work_session
 ),
 level_group AS (
    SELECT *,
           SUM(isNewLevel) OVER (ORDER BY commandDateAffect, commandDateSign) AS levelGroup
    FROM level_change
 ),
 first_rows AS (
    SELECT * FROM (
        SELECT *,
               ROW_NUMBER() OVER (PARTITION BY levelGroup ORDER BY commandDateAffect, commandDateSign) AS rnLevel
        FROM level_group
    ) t WHERE rnLevel = 1
 ),
 rows_with_duration AS (
    SELECT
        fr.*,
        LEAD(fr.sessionId)         OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) AS nextSessionId,
        CASE
            WHEN LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) IS NULL
                THEN NULL
            WHEN LEAD(fr.sessionId) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) <> fr.sessionId
                THEN TIMESTAMPDIFF(DAY, fr.commandDateAffect, se.sessionEndDate) + 1
            ELSE
                TIMESTAMPDIFF(DAY, fr.commandDateAffect,
                    LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign))
        END AS duration_days
    FROM first_rows fr
    LEFT JOIN session_end se ON se.sessionId = fr.sessionId
 ),
 resultWithDiff AS (
    SELECT
        *,
        LAG(duration_days) OVER (ORDER BY commandDateAffect, commandDateSign) AS days_diff
    FROM rows_with_duration
 )
 SELECT
    r.commandDateAffect,
    r.positionType,
    r.positionLevel,
    r.positionCee,
    r.days_diff,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(YEAR, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect)
        ELSE 0
    END AS Years,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(MONTH, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) % 12
        ELSE 0
    END AS Months,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            DATEDIFF(r.commandDateAffect,
                DATE_ADD(
                    DATE_ADD(LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign),
                        INTERVAL TIMESTAMPDIFF(YEAR, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) YEAR),
                    INTERVAL TIMESTAMPDIFF(MONTH, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) % 12 MONTH)
            )
        ELSE 0
    END AS Days,
    r.posNo,
    r.positionExecutive,
    r.orgRoot,
    r.orgChild1,
    r.orgChild2,
    r.orgChild3,
    r.orgChild4,
    r.commandCode,
    r.commandName,
    r.commandNo,
    r.commandYear,
    r.remark
 FROM resultWithDiff r
 UNION ALL
 SELECT
    _date, NULL, NULL, NULL,
    TIMESTAMPDIFF(DAY, MAX(commandDateAffect), _date) + 1,
    TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date),
    TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12,
    DATEDIFF(_date,
        DATE_ADD(
            DATE_ADD(MAX(commandDateAffect),
                INTERVAL TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date) YEAR),
            INTERVAL TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12 MONTH)
    ),
    NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,
    NULL,NULL,NULL,NULL
 FROM resultWithDiff;
 END$$
 DELIMITER ;
--- a/docs/migrations/fix_GetProfileSalaryPosition_calendar_arithmetic.sql
+++ b/docs/migrations/fix_GetProfileSalaryPosition_calendar_arithmetic.sql
@ -1,144 +0,0 @@
 -- ====================================================================
 -- Fix GetProfileSalaryPosition to use calendar arithmetic
 -- This changes the years/months/days calculation from fixed formulas
 -- to actual calendar arithmetic, matching calculateGovAge behavior
 -- ====================================================================
 DELIMITER $$
 DROP PROCEDURE IF EXISTS `GetProfileSalaryPosition`$$
 CREATE DEFINER=`root`@`%` PROCEDURE `GetProfileSalaryPosition`(
    IN personId VARCHAR(36),
    IN _date DATE
 )
 BEGIN
 WITH ordered AS (
    SELECT * FROM profileSalary WHERE profileId = personId  AND commandCode IN ('0','1','2','3','4','8','9','10','11','12','13','14','15','16','20')
 ),
 work_session AS (
    SELECT *,
           COALESCE(
               SUM(CASE WHEN commandCode IN (12,15,16) THEN 1 ELSE 0 END)
               OVER (ORDER BY commandDateAffect, commandDateSign
                    ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING),
           0) AS sessionId
    FROM ordered
 ),
 session_end AS (
    SELECT sessionId, MAX(commandDateAffect) AS sessionEndDate
    FROM work_session
    GROUP BY sessionId
 ),
 position_change AS (
    SELECT *,
           CASE
               WHEN LAG(positionName) OVER (ORDER BY commandDateAffect, commandDateSign) = positionName
                AND LAG(sessionId)    OVER (ORDER BY commandDateAffect, commandDateSign) = sessionId
               THEN 0
               ELSE 1
           END AS isNewPosition
    FROM work_session
 ),
 position_group AS (
    SELECT *,
           SUM(isNewPosition) OVER (ORDER BY commandDateAffect, commandDateSign) AS posGroup
    FROM position_change
 ),
 first_rows AS (
    SELECT * FROM (
        SELECT *,
               ROW_NUMBER() OVER (PARTITION BY posGroup ORDER BY commandDateAffect, commandDateSign) AS rnPos
        FROM position_group
    ) t WHERE rnPos = 1
 ),
 rows_with_duration AS (
    SELECT
        fr.*,
        LEAD(fr.sessionId)         OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) AS nextSessionId,
        CASE
            WHEN LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) IS NULL
                THEN NULL
            WHEN LEAD(fr.sessionId) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign) <> fr.sessionId
                THEN TIMESTAMPDIFF(DAY, fr.commandDateAffect, se.sessionEndDate) + 1
            ELSE
                TIMESTAMPDIFF(DAY, fr.commandDateAffect,
                    LEAD(fr.commandDateAffect) OVER (ORDER BY fr.commandDateAffect, fr.commandDateSign))
        END AS duration_days
    FROM first_rows fr
    LEFT JOIN session_end se ON se.sessionId = fr.sessionId
 ),
 resultWithDiff AS (
    SELECT
        *,
        LAG(duration_days) OVER (ORDER BY commandDateAffect, commandDateSign) AS days_diff
    FROM rows_with_duration
 )
 -- ✅ NEW: Use calendar arithmetic for years/months/days calculation
 SELECT
    r.commandDateAffect,
    r.positionName,
    r.positionCee,
    r.days_diff,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(YEAR, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect)
        ELSE 0
    END AS Years,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(MONTH, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) % 12
        ELSE 0
    END AS Months,
    CASE
        WHEN LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign) IS NOT NULL THEN
            TIMESTAMPDIFF(DAY,
                DATE_ADD(
                    DATE_ADD(LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign),
                        INTERVAL TIMESTAMPDIFF(YEAR, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) YEAR),
                    INTERVAL TIMESTAMPDIFF(MONTH, LAG(r.commandDateAffect) OVER (ORDER BY r.commandDateAffect, r.commandDateSign), r.commandDateAffect) % 12 MONTH),
                r.commandDateAffect)
        ELSE 0
    END AS Days,
    r.posNo,
    r.positionExecutive,
    r.positionType,
    r.positionLevel,
    r.orgRoot,
    r.orgChild1,
    r.orgChild2,
    r.orgChild3,
    r.orgChild4,
    r.commandCode,
    r.commandName,
    r.commandNo,
    r.commandYear,
    r.remark
 FROM resultWithDiff r
 UNION ALL
 -- ✅ NEW: Use calendar arithmetic for the final row too
 SELECT
    _date, NULL, NULL,
    TIMESTAMPDIFF(DAY, MAX(commandDateAffect), _date) + 1,
    TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date),
    TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12,
    DATEDIFF(_date,
        DATE_ADD(
            DATE_ADD(MAX(commandDateAffect),
                INTERVAL TIMESTAMPDIFF(YEAR, MAX(commandDateAffect), _date) YEAR),
            INTERVAL TIMESTAMPDIFF(MONTH, MAX(commandDateAffect), _date) % 12 MONTH)
    ),
    NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,
    NULL,NULL,NULL,NULL,NULL
 FROM resultWithDiff;
 END$$
 DELIMITER ;
 -- ====================================================================
 -- Verification query (optional)
 -- ====================================================================
 -- CALL GetProfileSalaryPosition('your-profile-id', '2024-06-14');
--- a/reports/SUMMARY-CONTROLLERS-ANALYSIS.md
+++ b/reports/SUMMARY-CONTROLLERS-ANALYSIS.md
@ -1,430 +0,0 @@
 # สรุปการตรวจสอบ Unhandled Exception และ Crash Loop Risks
 ## ทั้งหมด 140 Controllers ใน BMA EHR Organization Backend
 **วันที่ตรวจสอบ:** 8 พฤษภาคม 2568  
 **Framework:** TSOA + Express + TypeORM  
 **สถานะ:** ✅ ตรวจสอบครบทุก Controllers แล้ว
 ---
 ## ภาพรวมสถิติ
 ### จำนวน Controllers ที่ตรวจสอบ
 | Batch | ช่วง Controllers | จำนวน | สถานะ |
 |-------|-----------------|--------|--------|
 | 1 | 1-10 | 10 | ✅ เสร็จสิ้น |
 | 2 | 11-20 | 10 | ✅ เสร็จสิ้น |
 | 3 | 21-30 | 10 | ✅ เสร็จสิ้น |
 | 4 | 31-40 | 10 | ✅ เสร็จสิ้น |
 | 5 | 41-50 | 10 | ✅ เสร็จสิ้น |
 | 6 | 51-60 | 10 | ✅ เสร็จสิ้น |
 | 7 | 61-70 | 10 | ✅ เสร็จสิ้น |
 | 8 | 71-80 | 10 | ✅ เสร็จสิ้น |
 | 9 | 81-90 | 10 | ✅ เสร็จสิ้น |
 | 10 | 91-100 | 10 | ✅ เสร็จสิ้น |
 | 11 | 101-110 | 10 | ✅ เสร็จสิ้น |
 | 12 | 111-120 | 10 | ✅ เสร็จสิ้น |
 | 13 | 121-130 | 10 | ✅ เสร็จสิ้น |
 | 14 | 131-140 | 10 | ✅ เสร็จสิ้น |
 | **รวม** | **1-140** | **140** | **✅ 100%** |
 ### สรุปจำนวนปัญหาที่พบ
 | ระดับความรุนแรง | จำนวนจุดเสี่ยง | อธิบาย |
 |---------------------|-------------------|---------|
 | 🔴 **CRITICAL** | 23 | มีโอกาสทำให้ Service Crash สูงมาก |
 | 🟠 **HIGH** | 35 | มีโอกาสทำให้เกิด Unhandled Exception |
 | 🟡 **MEDIUM** | 28 | อาจทำให้เกิดปัญหาในสถานการณ์เฉพาะ |
 | 🟢 **LOW** | 12 | ควรปรับปรุงแต่ไม่กระทบต่อการทำงาน |
 | 🐛 **BUG** | 18 | ข้อผิดพลาดใน Logic |
 | **รวมทั้งหมด** | **116** | - |
 ---
 ## ปัญหา CRITICAL ที่ต้องแก้ไขโดยเร็ว (P0)
 ### 1. Redis Client Connection Leak (4 จุด)
 **ไฟล์ที่พบ:**
 - `AuthRoleController.ts` (2 จุด)
 - `PermissionController.ts` (7 จุด)
 **ปัญหา:**
 - สร้าง Redis Client ใหม่ทุกครั้งแต่ไม่ปิด connection
 - ทำให้เกิด connection pool exhaustion
 - อาจทำให้ service crash เมื่อถึง limit
 **วิธีแก้ไข:**
 ```typescript
 let redisClient;
 try {
  redisClient = await this.redis.createClient({...});
  // ... operations
 } finally {
  if (redisClient) {
    redisClient.quit();
  }
 }
 ```
 ### 2. Promise.all Without Error Handling (8 จุด)
 **ไฟล์ที่พบ:**
 - `AuthRoleController.ts`
 - `DevelopmentRequestController.ts` (3 จุด)
 - `EmployeePositionController.ts` (2 จุด)
 - `EmployeeTempPositionController.ts`
 - `ImportDataController.ts`
 **ปัญหา:**
 - ใช้ Promise.all โดยไม่มี try-catch
 - ถ้ามี operation ไหน fail จะเกิด unhandled rejection
 - อาจทำให้ data inconsistency
 **วิธีแก้ไข:**
 ```typescript
 try {
  await Promise.all(items.map(async (item) => {
    try {
      await processItem(item);
    } catch (error) {
      console.error(`Failed to process ${item}:`, error);
      throw error;
    }
  }));
 } catch (error) {
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, "Operation failed");
 }
 ```
 ### 3. Async forEach Without Proper Error Handling (5 จุด)
 **ไฟล์ที่พบ:**
 - `EmployeePositionController.ts`
 - `ProfileSalaryTempController` (4 จุด)
 **ปัญหา:**
 - ใช้ forEach กับ async function ซึ่งไม่รอ completion
 - Error ที่เกิดใน loop จะไม่ถูก handle
 - อาจทำให้ data ไม่ถูกต้อง
 **วิธีแก้ไข:**
 ```typescript
 // ❌ ไม่ดี
 array.forEach(async (item) => {
  await processItem(item);
 });
 // ✅ ดี
 for (const item of array) {
  await processItem(item);
 }
 // หรือ
 await Promise.all(array.map(item => processItem(item)));
 ```
 ### 4. Transaction QueryRunner Not Released on Error (3 จุด)
 **ไฟล์ที่พบ:**
 - `CommandOperatorController.ts`
 - `WorkflowController.ts`
 - `OrgRootController.ts`
 **ปัญหา:**
 - ใช้ QueryRunner และ Transaction แต่ไม่ release ถ้าเกิด error
 - ทำให้เกิด connection leak
 - อาจทำให้ database connection exhausted
 **วิธีแก้ไข:**
 ```typescript
 const queryRunner = AppDataSource.createQueryRunner();
 try {
  await queryRunner.connect();
  await queryRunner.startTransaction();
  try {
    // ... operations
    await queryRunner.commitTransaction();
  } catch (error) {
    await queryRunner.rollbackTransaction();
    throw error;
  }
 } finally {
  await queryRunner.release();
 }
 ```
 ### 5. Database Operations Without Transactions (6 จุด)
 **ไฟล์ที่พบ:**
 - `OrgRootController.ts` (ลบข้อมูล 8 ตารางต่อเนื่อง)
 - `OrgChild1Controller.ts` (ลบข้อมูล 4 ตาราง)
 - `OrgChild2Controller.ts` (ลบข้อมูล 3 ตาราง)
 - `OrgChild3Controller.ts` (ลบข้อมูล 2 ตาราง)
 - `OrgChild4Controller.ts` (ลบข้อมูล 1 ตาราง)
 **ปัญหา:**
 - ลบข้อมูลหลายตารางต่อเนื่องกันโดยไม่ใช้ transaction
 - ถ้า delete ตัวใดตัวหนึ่งล้มเหลว ข้อมูลจะไม่สมบูรณ์
 - เกิด data inconsistency
 ### 6. Unhandled External API Calls (7 จุด)
 **ไฟล์ที่พบ:**
 - `ChangePositionController.ts`
 - `ProfileEditController.ts`
 - `ProfileEditEmployeeController.ts`
 - `ProfileController.ts`
 - `ExRetirementController.ts`
 **ปัญหา:**
 - เรียก External API โดยไม่มี error handling
 - หรือมีแต่ใช้ `.catch()` ว่างเปล่า
 - ทำให้ไม่ทราบว่า API call ล้มเหลว
 **วิธีแก้ไข:**
 ```typescript
 try {
  await new CallAPI().PostData(req, "/endpoint", data);
 } catch (error) {
  console.error('External API call failed:', error);
  throw new HttpError(HttpStatus.SERVICE_UNAVAILABLE, "External service unavailable");
 }
 ```
 ### 7. UserController - Multiple Unhandled forEach Async Operations (5 จุด)
 **ไฟล์:** `UserController.ts`
 **Methods ที่มีปัญหา:**
 - `createUserImport()` - Line 977-1032
 - `addroleStaffToUser()` - Line 1169-1227
 - `addroleStaffToUserEmp()` - Line 1249-1307
 - `changeUserPasswordAll()` - Line 1133-1148
 - `createUserImportEmp()` - Line 1066-1118
 **ปัญหา:**
 - ใช้ `for await` loops และ `forEach()` กับ async Keycloak API operations
 - ไม่มี error handling
 - เมื่อ Keycloak operations fail อาจ crash Node.js process
 ---
 ## Controllers ที่มีปัญหามากที่สุด (Top 10)
 | อันดับ | Controller | จำนวนปัญหา | ระดับสูงสุด |
 |---------|-----------|-------------|--------------|
 | 1 | UserController.ts | 5 | 🔴 CRITICAL |
 | 2 | PermissionController.ts | 7 | 🔴 CRITICAL |
 | 3 | OrgRootController.ts | 4 | 🔴 CRITICAL |
 | 4 | WorkflowController.ts | 2 | 🔴 CRITICAL |
 | 5 | AuthRoleController.ts | 3 | 🔴 CRITICAL |
 | 6 | ProfileSalaryTempController.ts | 4 | 🔴 CRITICAL |
 | 7 | DevelopmentRequestController.ts | 4 | 🟠 HIGH |
 | 8 | EmployeePositionController.ts | 3 | 🟠 HIGH |
 | 9 | ChangePositionController.ts | 3 | 🟠 HIGH |
 | 10 | ProfileController.ts | 2 | 🔴 CRITICAL |
 ---
 ## ประเภทปัญหาที่พบบ่อยที่สุด
 ### 1. Promise.all Without Error Handling (20+ จุด)
 - ใช้ Promise.all โดยไม่มี try-catch
 - ไม่สามารถ handle error ของ individual promises ได้
 - แนะนำ: ใช้ Promise.allSettled หรือ wrap ด้วย try-catch
 ### 2. Missing Error Handling (30+ จุด)
 - Database operations ไม่มี error handling
 - External API calls ไม่มี error handling
 - แนะนำ: เพิ่ม try-catch รอบ operations ทั้งหมด
 ### 3. Async forEach Without Await (10+ จุด)
 - ใช้ forEach กับ async function
 - forEach ไม่รอให้ async operations ทำงานเสร็จ
 - แนะนำ: ใช้ for...of หรือ Promise.all
 ### 4. Unsafe Array Access (8+ จุด)
 - ใช้ .find() แล้วใช้ ! (non-null assertion)
 - อาจทำให้เกิด TypeError
 - แนะนำ: เช็คค่า null/undefined ก่อน
 ### 5. Wrong HTTP Status Codes (5+ จุด)
 - ใช้ NOT_FOUND (404) แทน CONFLICT (409) สำหรับ duplicate data
 - แนะนำ: ใช้ status code ที่ถูกต้องตามมาตรฐาน REST
 ---
 ## แนวทางการแก้ไขแบบ Global
 ### 1. สร้าง Utility Functions
 ```typescript
 // safePromiseAll.ts
 export async function safePromiseAll<T>(
  items: T[],
  executor: (item: T, index: number) => Promise<any>,
  options: { 
    continueOnError?: boolean;
    throwOnError?: boolean;
  } = {}
 ) {
  const { continueOnError = false, throwOnError = true } = options;
  if (continueOnError) {
    const results = await Promise.allSettled(
      items.map((item, index) => executor(item, index))
    );
    const failures = results.filter(r => r.status === 'rejected');
    if (failures.length > 0 && throwOnError) {
      console.warn(`${failures.length} operations failed`);
    }
    return results;
  } else {
    return Promise.all(
      items.map((item, index) => executor(item, index))
    );
  }
 }
 ```
 ### 2. สร้าง Transaction Wrapper
 ```typescript
 // withTransaction.ts
 export async function withTransaction<T>(
  operation: (entityManager: EntityManager) => Promise<T>
 ): Promise<T> {
  const queryRunner = AppDataSource.createQueryRunner();
  try {
    await queryRunner.connect();
    await queryRunner.startTransaction();
    try {
      const result = await operation(queryRunner.manager);
      await queryRunner.commitTransaction();
      return result;
    } catch (error) {
      await queryRunner.rollbackTransaction();
      throw error;
    }
  } finally {
    await queryRunner.release();
  }
 }
 ```
 ### 3. สร้าง Redis Client Pool
 ```typescript
 // redisService.ts
 export class RedisService {
  private static client: any = null;
  private static reconnects = 0;
  static async getClient() {
    if (!this.client || !this.client.connected) {
      this.client = await redis.createClient({
        host: REDIS_HOST,
        port: REDIS_PORT,
        retry_strategy: (options) => {
          if (options.total_retry_time > 1000 * 60 * 60) {
            return new Error('Retry time exhausted');
          }
          if (options.attempt > 10) {
            return undefined;
          }
          return Math.min(options.attempt * 100, 3000);
        }
      });
    }
    return this.client;
  }
 }
 ```
 ### 4. Global Error Handler Middleware
 ```typescript
 // errorHandler.ts
 export function globalErrorHandler(err: Error, req: Request, res: Response, next: NextFunction) {
  console.error('Unhandled error:', {
    message: err.message,
    stack: err.stack,
    path: req.path,
    method: req.method
  });
  if (err instanceof HttpError) {
    return res.status(err.statusCode).json({
      error: err.message,
      statusCode: err.statusCode
    });
  }
  res.status(500).json({
    error: 'Internal server error',
    statusCode: 500
  });
 }
 ```
 ---
 ## ลำดับความสำคัญในการแก้ไข
 ### P0 - Critical (ต้องแก้ทันที)
 1. Redis Connection Leak
 2. Transaction QueryRunner Not Released
 3. Database Operations Without Transactions
 4. UserController Unhandled forEach Operations
 5. Unhandled External API Calls
 ### P1 - High (ควรแก้โดยเร็ว)
 1. Promise.all Without Error Handling
 2. Async forEach Without Proper Error Handling
 3. Unsafe Array Access (Null Reference)
 4. Keycloak Operations Without Error Handling
 ### P2 - Medium (ควรแก้)
 1. Missing Error Handling in Database Queries
 2. QueryBuilder Without Input Validation
 3. External API Calls Without Timeout
 4. Silent Error Swallowing
 ### P3 - Low (แก้เมื่อว่าง)
 1. Wrong HTTP Status Codes
 2. Hardcoded Data
 3. Code Quality Issues
 4. Typos in Status Values
 ---
 ## ไฟล์รายงานทั้งหมด
 รายงานรายละเอียดแต่ละ Batch อยู่ในโฟลเดอร์ `reports/`:
 1. [batch-01-controllers-1-10-analysis.md](batch-01-controllers-1-10-analysis.md)
 2. [batch-02-controllers-11-20-analysis.md](batch-02-controllers-11-20-analysis.md)
 3. [batch-03-controllers-21-30-analysis.md](batch-03-controllers-21-30-analysis.md)
 4. [batch-04-controllers-31-40-analysis.md](batch-04-controllers-31-40-analysis.md)
 5. [batch-05-controllers-41-50-analysis.md](batch-05-controllers-41-50-analysis.md)
 6. [batch-06-controllers-51-60-analysis.md](batch-06-controllers-51-60-analysis.md)
 7. [batch-07-controllers-61-70-analysis.md](batch-07-controllers-61-70-analysis.md)
 8. [batch-08-controllers-71-80-analysis.md](batch-08-controllers-71-80-analysis.md)
 9. [batch-09-controllers-81-90-analysis.md](batch-09-controllers-81-90-analysis.md)
 10. [batch-10-controllers-91-100-analysis.md](batch-10-controllers-91-100-analysis.md)
 11. [batch-11-controllers-101-110-analysis.md](batch-11-controllers-101-110-analysis.md)
 12. [batch-12-controllers-111-120-analysis.md](batch-12-controllers-111-120-analysis.md)
 13. [batch-13-controllers-121-130-analysis.md](batch-13-controllers-121-130-analysis.md)
 14. [batch-14-controllers-131-140-analysis.md](batch-14-controllers-131-140-analysis.md)
 ---
 ## บันทึกเพิ่มเติม
 - **รายงานนี้ครอบคลุม:** ทุก 140 Controllers ในโปรเจคต์
 - **วันที่สร้างรายงาน:** 8 พฤษภาคม 2568
 - **เครื่องมือที่ใช้:** การวิเคราะห์ Code และ Pattern Recognition
 - **ข้อจำกัด:** บางไฟล์มีขนาดใหญ่มาก (>300KB) ทำให้ตรวจสอบได้เพียงบางส่วน
 ---
 **รายงานนี้ถูกสร้างโดย AI Code Review System**  
 **สำหรับ BMA EHR Organization Project**
--- a/reports/batch-01-controllers-1-10-analysis.md
+++ b/reports/batch-01-controllers-1-10-analysis.md
@ -1,848 +0,0 @@
 # รายงานการตรวจสอบ Unhandled Exception - Controllers ชุดที่ 1 (ไฟล์ที่ 1-10)
 **Project:** BMA EHR Organization Backend
 **Framework:** TSOA + Express + TypeORM
 **วันที่ตรวจสอบ:** 2026-05-08
 **จำนวน Controllers:** 10 ไฟล์
 **สถานะ:** เสร็จสิ้น
 ---
 ## สรุปผลการตรวจสอบ
 | ระดับความรุนแรง | จำนวนจุดเสี่ยง |
 |---------------------|-------------------|
 | **CRITICAL** | 2 |
 | **HIGH** | 3 |
 | **MEDIUM** | 4 |
 | **LOW** | 1 |
 | **BUG** | 1 |
 | **รวมทั้งหมด** | 11 |
 ---
 ## Controllers ที่ตรวจสอบ
 1. [AuthRoleAttrController.ts](src/controllers/AuthRoleAttrController.ts)
 2. [AuthRoleController.ts](src/controllers/AuthRoleController.ts)
 3. [AuthSysController.ts](src/controllers/AuthSysController.ts)
 4. [ApiManageController.ts](src/controllers/ApiManageController.ts)
 5. [ApiKeyController.ts](src/controllers/ApiKeyController.ts)
 6. [ApiWebServiceController.ts](src/controllers/ApiWebServiceController.ts)
 7. [BloodGroupController.ts](src/controllers/BloodGroupController.ts)
 8. [ChangePositionController.ts](src/controllers/ChangePositionController.ts)
 9. [CommandCodeController.ts](src/controllers/CommandCodeController.ts)
 10. [CommandController.ts](src/controllers/CommandController.ts) - ไฟล์ใหญ่เกินกว่าที่จะอ่าน (336KB+)
 ---
 ## รายละเอียดจุดเสี่ยงแต่ละจุด
 ### #1 - Redis Client Error Handling (CRITICAL)
 **File & Location:** [AuthRoleController.ts:126-138](src/controllers/AuthRoleController.ts#L126-L138)
 **Method:** `AddAuthRoleGovoment`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - Redis client operations ไม่มี error handling
 - `redisClient.del()` มี callback ที่ throw error แต่ไม่มี try-catch รองรับ
 - Redis connection error จะทำให้เกิด **unhandled exception** และทำให้ Node.js process crash
 - Callback pattern ที่ใช้ throw จะไม่ถูก catch โดย Promise chain
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 const redisClient = await this.redis.createClient({
  host: REDIS_HOST,
  port: REDIS_PORT,
 });
 redisClient.del("role_" + posMaster.current_holderId, (err: Error, response: Response) => {
  if (err) throw err; // ❌ จะทำให้ process crash
 });
 redisClient.del("menu_" + posMaster.current_holderId, (err: Error, response: Response) => {
  if (err) throw err; // ❌ จะทำให้ process crash
 });
 ```
 **Recommended Fix:**
 ```typescript
 // ใช้ Promise wrapper หรือ util.promisify
 import { promisify } from 'util';
 // Create Redis client
 const redisClient = await this.redis.createClient({
  host: REDIS_HOST,
  port: REDIS_PORT,
 });
 // Promisify the operations
 const redisDelAsync = promisify(redisClient.del).bind(redisClient);
 try {
  if (posMaster.current_holderId) {
    await redisDelAsync("role_" + posMaster.current_holderId);
    await redisDelAsync("menu_" + posMaster.current_holderId);
  }
 } catch (error) {
  console.error('Redis operation failed:', error);
  // Log error แต่ไม่ crash - Redis failure ไม่ควรทำให้ business logic หยุดทำงาน
  // อาจ skip Redis operation หรือ return warning แต่ business process ควรดำเนินต่อ
 } finally {
  // ปิด connection หากจำเป็น
  if (redisClient) {
    redisClient.quit();
  }
 }
 ```
 **หมายเหตุ:** ปัญหาเดียวกันพบใน method `editAuthRole` ที่ line 269-276
 ---
 ### #2 - Redis flushdb Without Error Handling (CRITICAL)
 **File & Location:** [AuthRoleController.ts:269-276](src/controllers/AuthRoleController.ts#L269-L276)
 **Method:** `editAuthRole`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - `redisClient.flushdb()` มี callback แต่ไม่ได้จัดการ error
 - Flush operation เป็น critical operation ที่อาจ fail ได้
 - ไม่มี try-catch รอบรับ Redis operations
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 const redisClient = await this.redis.createClient({
  host: REDIS_HOST,
  port: REDIS_PORT,
 });
 await redisClient.flushdb(function (err: any, succeeded: any) {
  console.log(succeeded); // will be true if successfull
 }); // ❌ ถ้า error จะไม่ได้จัดการ
 ```
 **Recommended Fix:**
 ```typescript
 import { promisify } from 'util';
 const redisClient = await this.redis.createClient({
  host: REDIS_HOST,
  port: REDIS_PORT,
 });
 try {
  const redisFlushDbAsync = promisify(redisClient.flushdb).bind(redisClient);
  await redisFlushDbAsync();
 } catch (error) {
  console.error('Redis flush operation failed:', error);
  throw new HttpError(HttpStatus.SERVICE_UNAVAILABLE, "Failed to clear cache");
 } finally {
  if (redisClient) {
    redisClient.quit();
  }
 }
 ```
 ---
 ### #3 - CallAPI External Request Without Error Handling (CRITICAL)
 **File & Location:** [ChangePositionController.ts:585-604](src/controllers/ChangePositionController.ts#L585-L604)
 **Method:** `doneReport`
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 - External API call ผ่าน `CallAPI().PostData()` ไม่มี try-catch
 - `Promise.all()` ถ้ามี promise ไหน reject จะทำให้ **unhandled rejection**
 - Network error, timeout, หรือ external service down จะทำให้ unhandled rejection
 - ไม่มี timeout handling
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 await Promise.all(
  body.result.map(async (v) => {
    const profile = await this.profileChangePositionRepository.findOne({
      where: { id: v.id },
    });
    if (profile != null) {
      await new CallAPI()
        .PostData(request, "/org/profile/salary", { // ❌ ไม่มี error handling
          profileId: profile.id,
          date: new Date(),
        })
        .then(async (x) => {
          profile.status = "DONE";
          await this.profileChangePositionRepository.save(profile);
        });
    }
  }),
 );
 ```
 **Recommended Fix:**
 ```typescript
 // ใช้ Promise.allSettled แทน Promise.all เพื่อไม่ให้ rejection หยุดทั้งหมด
 const results = await Promise.allSettled(
  body.result.map(async (v) => {
    try {
      const profile = await this.profileChangePositionRepository.findOne({
        where: { id: v.id },
      });
      if (profile != null) {
        // Add timeout
        const timeoutPromise = new Promise((_, reject) =>
          setTimeout(() => reject(new Error('Request timeout')), 30000)
        );
        const apiCallPromise = new CallAPI().PostData(request, "/org/profile/salary", {
          profileId: profile.id,
          date: new Date(),
        });
        await Promise.race([apiCallPromise, timeoutPromise]);
        profile.status = "DONE";
        await this.profileChangePositionRepository.save(profile);
      }
    } catch (error) {
      console.error(`Failed to process profile ${v.id}:`, error);
      // Mark as FAILED แทนที่จะ leave as-is
      const profile = await this.profileChangePositionRepository.findOne({
        where: { id: v.id },
      });
      if (profile) {
        profile.status = "FAILED";
        profile.errorMessage = error.message;
        await this.profileChangePositionRepository.save(profile);
      }
      throw error; // Re-throw to track in allSettled
    }
  }),
 );
 // Check results
 const failed = results.filter(r => r.status === 'rejected');
 if (failed.length > 0) {
  console.error(`${failed.length} profiles failed to process`);
  // Optionally return partial success info
 }
 ```
 ---
 ### #4 - Database Operations Without Error Handling (HIGH)
 **Files:** ทั้งหมด 9 Controllers
 **Locations:** หลาย method ในทุกไฟล์
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - Database operations ส่วนใหญ่ไม่มี try-catch
 - TypeORM query errors จะถูก catch โดย global error middleware แต่อาจเป็น generic 500 errors
 - Connection timeout, database down, หรือ query errors จะไม่ได้รับการจัดการเฉพาะเจาะจง
 - ไม่สามารถ distinguish ระหว่าง different error types ได้
 **ตัวอย่าง Code ปัจจุบัน (เสี่ยง):**
 ```typescript
@Get("list")
 public async listAuthRoleAttr() {
  const getList = await this.authRoleAttrRepo.find();
  // ❌ ถ้า database error จะ throw ไปยัง global middleware
  // ไม่สามารถ handle เฉพาะเจาะจงได้
  return new HttpSuccess(getList);
 }
 ```
 **Recommended Fix:**
 สำหรับ critical operations:
 ```typescript
 import { QueryFailedError } from "typeorm";
@Get("list")
 public async listAuthRoleAttr() {
  try {
    const getList = await this.authRoleAttrRepo.find();
    return new HttpSuccess(getList);
  } catch (error) {
    if (error instanceof QueryFailedError) {
      // Handle database-specific errors
      console.error('Database query failed:', error);
      throw new HttpError(
        HttpStatus.SERVICE_UNAVAILABLE,
        "Database service temporarily unavailable"
      );
    } else if (error.message && error.message.includes('connection')) {
      throw new HttpError(
        HttpStatus.SERVICE_UNAVAILABLE,
        "Unable to connect to database"
      );
    }
    // Re-throw other errors to global middleware
    throw error;
  }
 }
 ```
 ---
 ### #5 - Promise.all Without Error Handling (HIGH)
 **File & Location:** [AuthRoleController.ts:247-267](src/controllers/AuthRoleController.ts#L247-L267)
 **Method:** `editAuthRole`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - `Promise.all()` รวม `remove()` และหลาย `save()` operations
 - ถ้า operation ไหน fail จะทำให้ **unhandled rejection**
 - ไม่มี try-catch รองรับ
 - Partial failure จะทำให้ไม่สามารถ recover ได้
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 await this.authRoleAttrRepo.remove(roleAttrData, { data: req });
 const newAttrs = body.authRoleAttrs.map((attr) => {
  const newAttr = new AuthRoleAttr();
  Object.assign(newAttr, attr, {
    authRoleId: roleId,
    createdUserId: req.user.sub,
    createdFullName: req.user.name,
    lastUpdateUserId: req.user.sub,
    lastUpdateFullName: req.user.name,
    createdAt: new Date(),
    lastUpdatedAt: new Date(),
  });
  return newAttr;
 });
 const before = structuredClone(record);
 await Promise.all([
  this.authRoleRepo.save(record, { data: req }),
  setLogDataDiff(req, { before, after: record }),
  ...newAttrs.map((attr) => this.authRoleAttrRepo.save(attr)), // ❌ ถ้า fail จะ unhandled rejection
 ]);
 ```
 **Recommended Fix:**
 ```typescript
 try {
  await this.authRoleAttrRepo.remove(roleAttrData, { data: req });
  const newAttrs = body.authRoleAttrs.map((attr) => {
    const newAttr = new AuthRoleAttr();
    Object.assign(newAttr, attr, {
      authRoleId: roleId,
      createdUserId: req.user.sub,
      createdFullName: req.user.name,
      lastUpdateUserId: req.user.sub,
      lastUpdateFullName: req.user.name,
      createdAt: new Date(),
      lastUpdatedAt: new Date(),
    });
    return newAttr;
  });
  const before = structuredClone(record);
  // ใช้ Promise.allSettled แทน Promise.all
  const results = await Promise.allSettled([
    this.authRoleRepo.save(record, { data: req }),
    setLogDataDiff(req, { before, after: record }),
    ...newAttrs.map((attr) => this.authRoleAttrRepo.save(attr)),
  ]);
  // Check for failures
  const failures = results.filter(r => r.status === 'rejected');
  if (failures.length > 0) {
    console.error('Some operations failed:', failures);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      "Failed to update some role attributes"
    );
  }
  // Redis flush with error handling (จากปัญหา #2)
  const redisClient = await this.redis.createClient({
    host: REDIS_HOST,
    port: REDIS_PORT,
  });
  try {
    const redisFlushDbAsync = promisify(redisClient.flushdb).bind(redisClient);
    await redisFlushDbAsync();
  } catch (error) {
    console.error('Redis flush failed:', error);
    // Non-critical - don't fail the request
  } finally {
    if (redisClient) {
      redisClient.quit();
    }
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Failed to update role:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    "Failed to update role"
  );
 }
 ```
 ---
 ### #6 - JWT Verification Inconsistent Error Handling (MEDIUM)
 **File & Location:** [ApiKeyController.ts:42-61](src/controllers/ApiKeyController.ts#L42-L61)
 **Method:** `verifyApiKey`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - มี try-catch แต่ return HttpSuccess แทนที่จะ throw error
 - Error handling ไม่ consistent กับ endpoints อื่น
 - Client จะไม่รู้ว่าเกิด error (เพราะได้ 200 OK พร้อม valid: false)
 - ไม่สามารถ distinguish ระหว่าง token types ของ errors ได้
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 try {
  const jwtSecret = process.env.JWT_SECRET || "your-default-secret-key";
  const decoded = jwt.verify(requestBody.token, jwtSecret);
  return new HttpSuccess({
    valid: true,
    data: decoded,
  });
 } catch (error: any) {
  console.error("JWT Verification Error:", error.message);
  return new HttpSuccess({ // ❌ Return success แม้ error
    valid: false,
    error: error.message,
  });
 }
 ```
 **Recommended Fix:**
 ```typescript
 try {
  const jwtSecret = process.env.JWT_SECRET;
  if (!jwtSecret) {
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      "JWT secret not configured"
    );
  }
  const decoded = jwt.verify(requestBody.token, jwtSecret);
  return new HttpSuccess({
    valid: true,
    data: decoded,
  });
 } catch (error: any) {
  console.error("JWT Verification Error:", error.message);
  if (error.name === 'TokenExpiredError') {
    throw new HttpError(HttpStatus.UNAUTHORIZED, "Token expired");
  } else if (error.name === 'JsonWebTokenError') {
    throw new HttpError(HttpStatus.UNAUTHORIZED, "Invalid token");
  } else if (error instanceof HttpError) {
    throw error;
  }
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    "Token verification failed"
  );
 }
 ```
 ---
 ### #7 - Query Builder Without Error Handling (MEDIUM)
 **File & Location:** [ChangePositionController.ts:284-350](src/controllers/ChangePositionController.ts#L284-L350)
 **Method:** `GetProfileChangePositionLists`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - Complex QueryBuilder พร้อม Brackets และ dynamic conditions
 - ถ้า query syntax error, database connection error, หรือ data type mismatch จะ throw ไป global middleware
 - ไม่สามารถ log หรือ track specific query errors ได้
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 const [profileChangePosition, total] = await AppDataSource.getRepository(ProfileChangePosition)
  .createQueryBuilder("profileChangePosition")
  .where({ changePositionId: changePositionId })
  .andWhere(
    new Brackets((qb) => {
      qb.where(
        searchKeyword != undefined && searchKeyword != null && searchKeyword != ""
          ? "profileChangePosition.prefix LIKE :keyword"
          : "1=1",
        { keyword: `%${searchKeyword}%` },
      )
      // ... หลาย orWhere
    }),
  )
  .orderBy("profileChangePosition.createdAt", "ASC")
  .skip((page - 1) * pageSize)
  .take(pageSize)
  .getManyAndCount(); // ❌ ไม่มี try-catch
 return new HttpSuccess({ data: profileChangePosition, total });
 ```
 **Recommended Fix:**
 ```typescript
 try {
  // Validate input
  if (page < 1) {
    throw new HttpError(HttpStatus.BAD_REQUEST, "Invalid page number");
  }
  if (pageSize < 1 || pageSize > 1000) {
    throw new HttpError(HttpStatus.BAD_REQUEST, "Invalid page size");
  }
  const [profileChangePosition, total] = await AppDataSource.getRepository(ProfileChangePosition)
    .createQueryBuilder("profileChangePosition")
    .where({ changePositionId: changePositionId })
    .andWhere(
      new Brackets((qb) => {
        // Use parameterized queries
        const conditions = [];
        const params = { keyword: `%${searchKeyword}%` };
        if (searchKeyword) {
          conditions.push("profileChangePosition.prefix LIKE :keyword");
          conditions.push("profileChangePosition.firstName LIKE :keyword");
          conditions.push("profileChangePosition.lastName LIKE :keyword");
          conditions.push("profileChangePosition.citizenId LIKE :keyword");
          conditions.push("profileChangePosition.birthDate LIKE :keyword");
          conditions.push("profileChangePosition.lastUpdatedAt LIKE :keyword");
          conditions.push("profileChangePosition.status LIKE :keyword");
        }
        qb.where(
          searchKeyword ? conditions.join(" OR ") : "1=1",
          params
        );
      }),
    )
    .orderBy("profileChangePosition.createdAt", "ASC")
    .skip((page - 1) * pageSize)
    .take(pageSize)
    .getManyAndCount();
  return new HttpSuccess({ data: profileChangePosition, total });
 } catch (error) {
  if (error instanceof HttpError) {
    throw error;
  }
  console.error('Query failed:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    "Failed to retrieve profile change positions"
  );
 }
 ```
 ---
 ### #8 - Null Reference Risk (MEDIUM)
 **File & Location:** [ApiWebServiceController.ts:67-78](src/controllers/ApiWebServiceController.ts#L67-L78)
 **Method:** `listAttribute`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - `revision` อาจเป็น null ถ้าไม่พบ record
 - การใช้ `revision?.id` จะทำให้ condition เป็น `PosMaster.orgRevisionId = "undefined"`
 - SQL query จะไม่ error แต่จะ return ผลลัพธ์ที่ไม่ถูกต้อง
 - ไม่มี validation ว่า revision ต้องมีค่า
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 } else if (system == "organization") {
  tbMain = "OrgRoot";
  const revision = await this.orgRevisionRepository.findOne({
    select: ["id"],
    where: { orgRevisionIsCurrent: true, orgRevisionIsDraft: false },
  });
  condition = `OrgRoot.orgRevisionId = "${revision?.id}"`; // ❌ ถ้า revision เป็น null จะเป็น undefined
 }
 ```
 **Recommended Fix:**
 ```typescript
 } else if (system == "organization") {
  tbMain = "OrgRoot";
  const revision = await this.orgRevisionRepository.findOne({
    select: ["id"],
    where: { orgRevisionIsCurrent: true, orgRevisionIsDraft: false },
  });
  if (!revision) {
    throw new HttpError(
      HttpStatus.NOT_FOUND,
      "No current organization revision found"
    );
  }
  condition = `OrgRoot.orgRevisionId = "${revision.id}"`;
 }
 ```
 ---
 ### #9 - Unsafe Default Environment Variable (LOW)
 **File & Location:** [ApiKeyController.ts:45](src/controllers/ApiKeyController.ts#L45)
 **Method:** `verifyApiKey`
 **Problem Type:** 2. Missing Error Handle / Security
 **Root Cause:**
 - ใช้ default value สำหรับ JWT_SECRET
 - ใน production ถ้าไม่ได้ set JWT_SECRET จะใช้ default value ที่ไม่ปลอดภัย
 - อาจนำไปสู่ security breach
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 const jwtSecret = process.env.JWT_SECRET || "your-default-secret-key"; // ❌ Default value insecure
 ```
 **Recommended Fix:**
 ```typescript
 const jwtSecret = process.env.JWT_SECRET;
 if (!jwtSecret) {
  if (process.env.NODE_ENV === 'production') {
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      "JWT secret not configured"
    );
  }
  // Only for development
  console.warn('Using default JWT secret - not safe for production!');
 }
 const decoded = jwt.verify(requestBody.token, jwtSecret || 'dev-secret-key');
 ```
 ---
 ### #10 - Switch Statement Without Break (BUG)
 **File & Location:** [ChangePositionController.ts:430-515](src/controllers/ChangePositionController.ts#L430-L515)
 **Method:** `positionProfileEmployee`
 **Problem Type:** 3. Logic Bug (ส่งผลต่อ data consistency)
 **Root Cause:**
 - Switch statement ไม่มี `break` statements
 - จะเกิด **fallthrough** effect - ทุก case หลังจาก case ที่ match จะถูก execute ด้วย
 - จะทำให้ data ถูก overwrite ด้วยค่าจาก cases ถัดไป
 - เป็น common bug ที่อาจทำให้ data corruption
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 switch (body.node) {
  case 0: {
    const data = await this.orgRootRepository.findOne({
      where: { id: body.nodeId },
    });
    if (data != null) {
      profileChangePos.rootId = data.id;
      profileChangePos.root = data.orgRootName;
      profileChangePos.rootShortName = data.orgRootShortName;
    }
  } // ❌ ไม่มี break
  case 1: { // ❌ จะ execute ถ้า case 0 match
    const data = await this.child1Repository.findOne({
      where: { id: body.nodeId },
      relations: ["orgRoot"],
    });
    // ...
  } // ❌ ไม่มี break
  case 2: { // ❌ จะ execute ถ้า case 0 หรือ 1 match
    // ...
  }
  // ... ต่อไปเรื่อยๆ
 }
 ```
 **Recommended Fix:**
 ```typescript
 switch (body.node) {
  case 0: {
    const data = await this.orgRootRepository.findOne({
      where: { id: body.nodeId },
    });
    if (data != null) {
      profileChangePos.rootId = data.id;
      profileChangePos.root = data.orgRootName;
      profileChangePos.rootShortName = data.orgRootShortName;
    }
    break; // ✅ เพิ่ม break
  }
  case 1: {
    const data = await this.child1Repository.findOne({
      where: { id: body.nodeId },
      relations: ["orgRoot"],
    });
    if (data != null) {
      profileChangePos.rootId = data.orgRoot.id;
      profileChangePos.root = data.orgRoot.orgRootName;
      profileChangePos.rootShortName = data.orgRoot.orgRootShortName;
      profileChangePos.child1Id = data.id;
      profileChangePos.child1 = data.orgChild1Name;
      profileChangePos.child1ShortName = data.orgChild1ShortName;
    }
    break; // ✅ เพิ่ม break
  }
  case 2: {
    const data = await this.child2Repository.findOne({
      where: { id: body.nodeId },
      relations: ["orgRoot", "orgChild1"],
    });
    if (data != null) {
      profileChangePos.rootId = data.orgRoot.id;
      profileChangePos.root = data.orgRoot.orgRootName;
      profileChangePos.rootShortName = data.orgRoot.orgRootShortName;
      profileChangePos.child1Id = data.orgChild1.id;
      profileChangePos.child1 = data.orgChild1.orgChild1Name;
      profileChangePos.child1ShortName = data.orgChild1.orgChild1ShortName;
      profileChangePos.child2Id = data.id;
      profileChangePos.child2 = data.orgChild2Name;
      profileChangePos.child2ShortName = data.orgChild2ShortName;
    }
    break; // ✅ เพิ่ม break
  }
  case 3: {
    // ... เพิ่ม break ท้าย
  }
  case 4: {
    // ... เพิ่ม break ท้าย
  }
 }
 ```
 ---
 ### #11 - Array Mutation in Loop (MEDIUM)
 **File & Location:** [ChangePositionController.ts:233-250](src/controllers/ChangePositionController.ts#L233-L250)
 **Method:** `CreateProfileChangePosition`
 **Problem Type:** 3. Logic Bug
 **Root Cause:**
 - ใช้ตัวแปร `profiles` เดียวแล้ว push เข้า array หลายครั้ง
 - ทุก elements ใน array จะชี้ไปที่ object เดียวกัน
 - ทำให้ข้อมูลซ้ำกันทั้งหมด
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 const profileChangePositions: ProfileChangePosition[] = [];
 const profiles = new ProfileChangePosition(); // ❌ สร้างครั้งเดียว
 for (const data of body.profiles) {
  Object.assign(profiles, data); // ❌ ใช้ object เดียว
  // ...
  profileChangePositions.push(profiles); // ❌ push object เดียวกันซ้ำๆ
 }
 await this.profileChangePositionRepository.save(profileChangePositions);
 ```
 **Recommended Fix:**
 ```typescript
 const profileChangePositions: ProfileChangePosition[] = [];
 for (const data of body.profiles) {
  const profiles = new ProfileChangePosition(); // ✅ สร้างใหม่ทุกรอบ
  Object.assign(profiles, data);
  let positionOld = data.positionOld ? `${data.positionOld}` : "";
  let rootOld = data.rootOld ? (data.positionOld ? `/${data.rootOld}` : `${data.rootOld}`) : "";
  profiles.changePositionId = changePositionId;
  profiles.organizationPositionOld = `${positionOld}${rootOld}`;
  profiles.status = "WAITTING";
  profiles.createdUserId = request.user.sub;
  profiles.createdFullName = request.user.name;
  profiles.createdAt = new Date();
  profiles.lastUpdateUserId = request.user.sub;
  profiles.lastUpdateFullName = request.user.name;
  profiles.lastUpdatedAt = new Date();
  profileChangePositions.push(profiles);
 }
 await this.profileChangePositionRepository.save(profileChangePositions);
 ```
 ---
 ## สรุปคำแนะนำการแก้ไขแบบรวม
 ### ระดับความสำคัญ
 **ต้องแก้ทันที (P0 - Critical):**
 1. Redis operations error handling - อาจทำให้ process crash
 2. External API calls error handling - อาจทำให้ unhandled rejection
 **ควรแก้โดยเร็ว (P1 - High):**
 3. Database operations error handling
 4. Promise operations error handling
 **ควรแก้ (P2 - Medium):**
 5. JWT verification consistency
 6. Query builder error handling
 7. Null reference checks
 **แก้เมื่อว่าง (P3 - Low):**
 8. Environment variable defaults
 9. Code quality issues
 ### แนวทางการแก้ไขแบบ Global
 1. **Implement centralized error handling:**
   - Wrap all async operations
   - Use specific error types
   - Log all errors appropriately
 2. **Add circuit breaker for external services:**
   - Redis, external APIs
   - Prevent cascade failures
 3. **Use Promise.allSettled** แทน Promise.all สำหรับ independent operations
 4. **Add input validation:**
   - Validate before processing
   - Check for null/undefined
 5. **Implement retry logic:**
   - For transient failures
   - Database connection issues
 ---
 ## ไฟล์ที่ต้องแก้ไข
 1. **src/controllers/AuthRoleController.ts** - Redis operations, Promise operations
 2. **src/controllers/ChangePositionController.ts** - External API calls, Switch bug, Array mutation
 3. **src/controllers/ApiKeyController.ts** - JWT verification, Environment variables
 4. **src/controllers/ApiWebServiceController.ts** - Null reference checks
 ---
 ## ข้อมูลเพิ่มเติม
 - **Controllers ที่ยังไม่ได้ตรวจสอบ:** 130 ไฟล์
 - **ไฟล์ที่ไม่สามารถอ่านได้:** CommandController.ts (ไฟล์ใหญ่เกิน 336KB)
 ---
 **รายงานนี้ถูกสร้างโดย AI Code Review System**
 **สำหรับ BMA EHR Organization Project**
--- a/reports/batch-02-controllers-11-20-analysis.md
+++ b/reports/batch-02-controllers-11-20-analysis.md
@ -1,829 +0,0 @@
 # รายงานการตรวจสอบ Unhandled Exception - Controllers ชุดที่ 2 (ไฟล์ที่ 11-20)
 **Project:** BMA EHR Organization Backend
 **Framework:** TSOA + Express + TypeORM
 **วันที่ตรวจสอบ:** 2026-05-08
 **จำนวน Controllers:** 10 ไฟล์
 **สถานะ:** เสร็จสิ้น
 ---
 ## สรุปผลการตรวจสอบ
 | ระดับความรุนแรง | จำนวนจุดเสี่ยง |
 |---------------------|-------------------|
 | **CRITICAL** | 1 |
 | **HIGH** | 3 |
 | **MEDIUM** | 4 |
 | **LOW** | 2 |
 | **BUG** | 2 |
 | **รวมทั้งหมด** | 12 |
 ---
 ## Controllers ที่ตรวจสอบ
 11. [CommandOperatorController.ts](src/controllers/CommandOperatorController.ts)
 12. [CommandSalaryController.ts](src/controllers/CommandSalaryController.ts)
 13. [CommandSysController.ts](src/controllers/CommandSysController.ts)
 14. [CommandTypeController.ts](src/controllers/CommandTypeController.ts)
 15. [DPISController.ts](src/controllers/DPISController.ts)
 16. [DevelopmentRequestController.ts](src/controllers/DevelopmentRequestController.ts)
 17. [DistrictController.ts](src/controllers/DistrictController.ts)
 18. [EducationLevelController.ts](src/controllers/EducationLevelController.ts)
 19. [EmployeePosLevelController.ts](src/controllers/EmployeePosLevelController.ts)
 20. [EmployeePosTypeController.ts](src/controllers/EmployeePosTypeController.ts)
 ---
 ## รายละเอียดจุดเสี่ยงแต่ละจุด
 ### #1 - Transaction QueryRunner Not Released on Error (CRITICAL)
 **File & Location:** [CommandOperatorController.ts:169-222](src/controllers/CommandOperatorController.ts#L169-L222)
 **Method:** `deleteCommandOperator`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - ใช้ QueryRunner และ Transaction แต่มี error handling ที่ไม่ปลอดภัย
 - ถ้าเกิด error หลังจาก `throw error` ใน catch block แล้ว จะไม่ถึง `finally` block
 - QueryRunner จะไม่ถูก release ทำให้ connection leak
 - ในกรณีที่ HttpError ถูก throw ภายใน catch จะไม่มีการ release queryRunner
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 const queryRunner = AppDataSource.createQueryRunner();
 await queryRunner.connect();
 await queryRunner.startTransaction();
 try {
  // ... operations
  await queryRunner.commitTransaction();
  return new HttpSuccess(true);
 } catch (error) {
  await queryRunner.rollbackTransaction();
  throw error; // ❌ ถ้า throw HttpError จะไม่ถึง finally
 } finally {
  await queryRunner.release(); // ❌ จะไม่ถูกเรียกถ้า throw error ใน catch
 }
 ```
 **Recommended Fix:**
 ```typescript
 const queryRunner = AppDataSource.createQueryRunner();
 try {
  await queryRunner.connect();
  await queryRunner.startTransaction();
  try {
    // 1. หา operator
    const operator = await queryRunner.manager.findOne(CommandOperator, {
      where: {
        id: operatorId,
        commandId: commandId,
      },
    });
    if (!operator) {
      throw new HttpError(HttpStatusCode.NOT_FOUND, "ไม่พบเจ้าหน้าที่ดำเนินการ");
    }
    const removedOrderNo = operator.orderNo;
    // 3. ลบ
    await queryRunner.manager.remove(operator);
    // 4. re orderNumber ตัวที่เหลือ
    await queryRunner.manager
      .createQueryBuilder()
      .update(CommandOperator)
      .set({
        orderNo: () => "orderNo - 1",
      })
      .where("commandId = :commandId", { commandId })
      .andWhere("orderNo > :removedOrderNo", { removedOrderNo })
      .execute();
    await queryRunner.commitTransaction();
    return new HttpSuccess(true);
  } catch (error) {
    await queryRunner.rollbackTransaction();
    // Re-throw after rollback
    throw error;
  }
 } finally {
  // ✅ ใช้ finally block ระดับนอกสุดเพื่อให้แน่ใจว่าจะถูกเรียกเสมอ
  if (queryRunner.isReleased) {
    // Already released, skip
  } else {
    await queryRunner.release();
  }
 }
 ```
 ---
 ### #2 - Promise.all Without Error Handling in Development Request (HIGH)
 **File & Location:** [DevelopmentRequestController.ts:349-364](src/controllers/DevelopmentRequestController.ts#L349-L364)
 **Method:** `newDevelopmentRequest`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - `Promise.all()` กับการบันทึก development projects หลายรายการ
 - ถ้ามี project ไหน save ไม่สำเร็จ จะทำให้ unhandled rejection
 - ไม่มี try-catch รองรับ
 - External API call ใช้ `.catch()` แต่ไม่ได้ throw error ต่อ
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 if (body.developmentProjects != null) {
  await Promise.all(
    body.developmentProjects.map(async (x) => {
      let developmentProject = new DevelopmentProject();
      developmentProject.name = x;
      developmentProject.createdUserId = req.user.sub;
      developmentProject.createdFullName = req.user.name;
      developmentProject.lastUpdateUserId = req.user.sub;
      developmentProject.lastUpdateFullName = req.user.name;
      developmentProject.createdAt = new Date();
      developmentProject.lastUpdatedAt = new Date();
      developmentProject.developmentRequestId = data.id;
      await this.developmentProjectRepository.save(developmentProject, { data: req });
      setLogDataDiff(req, { before, after: developmentProject });
    }),
  );
 }
 await new CallAPI()
  .PostData(req, "/org/workflow/add-workflow", {
    refId: data.id,
    sysName: "REGISTRY_IDP",
    posLevelName: profile.posLevel.posLevelName,
    posTypeName: profile.posType.posTypeName,
    fullName: `${profile.prefix}${profile.firstName} ${profile.lastName}`,
    isDeputy: orgRoot?.isDeputy ?? false,
    orgRootId: orgRoot?.id ?? null
  })
  .catch((error) => {
    console.error("Error calling API:", error);
  });
 ```
 **Recommended Fix:**
 ```typescript
 if (body.developmentProjects != null) {
  try {
    await Promise.all(
      body.developmentProjects.map(async (x) => {
        try {
          let developmentProject = new DevelopmentProject();
          developmentProject.name = x;
          developmentProject.createdUserId = req.user.sub;
          developmentProject.createdFullName = req.user.name;
          developmentProject.lastUpdateUserId = req.user.sub;
          developmentProject.lastUpdateFullName = req.user.name;
          developmentProject.createdAt = new Date();
          developmentProject.lastUpdatedAt = new Date();
          developmentProject.developmentRequestId = data.id;
          await this.developmentProjectRepository.save(developmentProject, { data: req });
          setLogDataDiff(req, { before, after: developmentProject });
        } catch (error) {
          console.error(`Failed to save development project "${x}":`, error);
          throw error; // Re-throw to be caught by Promise.all
        }
      }),
    );
  } catch (error) {
    console.error("Failed to save some development projects:", error);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      "Failed to save development projects"
    );
  }
 }
 // Call external API with proper error handling
 try {
  await new CallAPI().PostData(req, "/org/workflow/add-workflow", {
    refId: data.id,
    sysName: "REGISTRY_IDP",
    posLevelName: profile.posLevel.posLevelName,
    posTypeName: profile.posType.posTypeName,
    fullName: `${profile.prefix}${profile.firstName} ${profile.lastName}`,
    isDeputy: orgRoot?.isDeputy ?? false,
    orgRootId: orgRoot?.id ?? null
  });
 } catch (error) {
  console.error("Failed to call workflow API:", error);
  // Optionally mark the request as having workflow issues
  // But don't fail the entire request
 }
 ```
 ---
 ### #3 - QueryBuilder with Dynamic Conditions Without Error Handling (HIGH)
 **File & Location:** [DevelopmentRequestController.ts:122-265](src/controllers/DevelopmentRequestController.ts#L122-L265)
 **Method:** `getDevelopmentRequestAdmin`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - Complex QueryBuilder พร้อม dynamic conditions หลายอย่าง
 - ไม่มี try-catch รองรับ
 - Permission check อาจ throw error
 - Null reference risks หลายจุด (`orgRevisionPublish?.id`, `data.root`, etc.)
 **Recommended Fix:**
 ```typescript
@Get("admin")
 public async getDevelopmentRequestAdmin(
  @Request() request: RequestWithUser,
  @Query("status") status: string,
  @Query("keyword") keyword: string = "",
  @Query("page") page: number = 1,
  @Query("pageSize") pageSize: number = 10,
  @Query("sortBy") sortBy?: string,
  @Query("descending") descending?: boolean,
 ) {
  try {
    // Validate inputs
    if (page < 1) throw new HttpError(HttpStatus.BAD_REQUEST, "Invalid page number");
    if (pageSize < 1 || pageSize > 1000) {
      throw new HttpError(HttpStatus.BAD_REQUEST, "Invalid page size");
    }
    let data = await new permission().PermissionOrgList(request, "SYS_REGISTRY_OFFICER");
    const orgRevisionPublish = await this.orgRevisionRepository
      .createQueryBuilder("orgRevision")
      .where("orgRevision.orgRevisionIsDraft = false")
      .andWhere("orgRevision.orgRevisionIsCurrent = true")
      .getOne();
    let query = await AppDataSource.getRepository(DevelopmentRequest)
      .createQueryBuilder("developmentRequest")
      .leftJoinAndSelect("developmentRequest.profile", "profile")
      .leftJoinAndSelect("profile.current_holders", "current_holders")
      .leftJoinAndSelect("current_holders.orgRevision", "orgRevision")
      .andWhere(
        status == undefined || status.trim().toUpperCase() == "ALL" || status == ""
          ? "1=1"
          : "developmentRequest.status = :status",
        {
          status: status == undefined || status == null ? "" : status.trim().toUpperCase(),
        },
      )
      .andWhere(
        orgRevisionPublish ? `current_holders.orgRevisionId = :revisionId` : "1=1",
        {
          revisionId: orgRevisionPublish?.id,
        },
      )
      // ... rest of the query
    const [lists, total] = await query
      .skip((page - 1) * pageSize)
      .take(pageSize)
      .getManyAndCount();
    const _data = lists.map((item) => ({ ...item, profile: null }));
    return new HttpSuccess({ data: _data, total });
  } catch (error) {
    if (error instanceof HttpError) {
      throw error;
    }
    console.error('Failed to get development requests:', error);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      "Failed to retrieve development requests"
    );
  }
 }
 ```
 ---
 ### #4 - Promise.all in Edit Development Request Without Error Handling (HIGH)
 **File & Location:** [DevelopmentRequestController.ts:402-417](src/controllers/DevelopmentRequestController.ts#L402-L417)
 **Method:** `editUserDevelopmentRequest`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - ใช้ `Promise.all()` โดยไม่มี error handling
 - Similar to #2 but in edit operation
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 await this.developmentProjectRepository.delete({ developmentRequestId: record.id });
 if (body.developmentProjects != null) {
  await Promise.all(
    body.developmentProjects.map(async (x) => {
      let developmentProject = new DevelopmentProject();
      developmentProject.name = x;
      developmentProject.createdUserId = req.user.sub;
      developmentProject.createdFullName = req.user.name;
      developmentProject.lastUpdateUserId = req.user.sub;
      developmentProject.lastUpdateFullName = req.user.name;
      developmentProject.createdAt = new Date();
      developmentProject.lastUpdatedAt = new Date();
      developmentProject.developmentRequestId = record.id;
      await this.developmentProjectRepository.save(developmentProject, { data: req });
      setLogDataDiff(req, { before: null, after: record });
    }),
  );
 }
 ```
 **Recommended Fix:**
 ```typescript
 await this.developmentProjectRepository.delete({ developmentRequestId: record.id });
 if (body.developmentProjects != null) {
  try {
    await Promise.all(
      body.developmentProjects.map(async (x) => {
        try {
          let developmentProject = new DevelopmentProject();
          developmentProject.name = x;
          developmentProject.createdUserId = req.user.sub;
          developmentProject.createdFullName = req.user.name;
          developmentProject.lastUpdateUserId = req.user.sub;
          developmentProject.lastUpdateFullName = req.user.name;
          developmentProject.createdAt = new Date();
          developmentProject.lastUpdatedAt = new Date();
          developmentProject.developmentRequestId = record.id;
          await this.developmentProjectRepository.save(developmentProject, { data: req });
          setLogDataDiff(req, { before: null, after: developmentProject });
        } catch (error) {
          console.error(`Failed to update development project "${x}":`, error);
          throw error;
        }
      }),
    );
  } catch (error) {
    console.error("Failed to update development projects:", error);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      "Failed to update development projects"
    );
  }
 }
 ```
 ---
 ### #5 - Null Reference Risk in Profile Query (MEDIUM)
 **File & Location:** [DPISController.ts:272-275](src/controllers/DPISController.ts#L272-L275)
 **Method:** `GetProfileCitizenIdAsync`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - `findRevision` อาจเป็น null ถ้าไม่พบ current revision
 - การใช้ `findRevision?.id` ใน `find()` operation จะเป็น undefined
 - `current_holders?.find()` อาจ return undefined
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 const findRevision = await this.orgRevisionRepo.findOne({
  where: { orgRevisionIsCurrent: true },
 });
 var current_holder = profile.current_holders?.find((x) => x.orgRevisionId == findRevision?.id);
 const mapProfile: DPISResult = {
  // ...
  organization: {
    orgRootName: current_holder?.orgRoot?.orgRootName || "", // ❌ multiple levels of null checks
    orgChild1Name: current_holder?.orgChild1?.orgChild1Name || "",
    // ...
  },
 };
 ```
 **Recommended Fix:**
 ```typescript
 const findRevision = await this.orgRevisionRepo.findOne({
  where: { orgRevisionIsCurrent: true },
 });
 if (!findRevision) {
  throw new HttpError(
    HttpStatus.NOT_FOUND,
    "No current organization revision found"
  );
 }
 var current_holder = profile.current_holders?.find((x) => x.orgRevisionId == findRevision.id);
 if (!current_holder) {
  throw new HttpError(
    HttpStatus.NOT_FOUND,
    "No current organization assignment found for this profile"
  );
 }
 const mapProfile: DPISResult = {
  // ...
  organization: {
    orgRootName: current_holder.orgRoot?.orgRootName || "",
    orgChild1Name: current_holder.orgChild1?.orgChild1Name || "",
    orgChild2Name: current_holder.orgChild2?.orgChild2Name || "",
    orgChild3Name: current_holder.orgChild3?.orgChild3Name || "",
    orgChild4Name: current_holder.orgChild4?.orgChild4Name || "",
  },
 };
 ```
 ---
 ### #6 - Unsafe Optional Chain in OrgRoot Query (MEDIUM)
 **File & Location:** [DevelopmentRequestController.ts:322-330](src/controllers/DevelopmentRequestController.ts#L322-L330)
 **Method:** `newDevelopmentRequest`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - ใช้ optional chaining (`?.`) และ nullish coalescing ใน query
 - `find()` อาจ return undefined และการใช้ `!` (non-null assertion) อาจทำให้ runtime error
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 const orgRoot = await this.orgRootRepo.findOne({
  select: {
    id: true,
    isDeputy: true
  },
  where: {
    id: profile.current_holders.find(x => x.orgRootId)!.orgRootId ?? "" // ❌ unsafe
  }
 })
 ```
 **Recommended Fix:**
 ```typescript
 const currentHolder = profile.current_holders.find(x => x.orgRootId);
 if (!currentHolder || !currentHolder.orgRootId) {
  throw new HttpError(
    HttpStatus.BAD_REQUEST,
    "Profile must have a current organization assignment"
  );
 }
 const orgRoot = await this.orgRootRepo.findOne({
  select: {
    id: true,
    isDeputy: true
  },
  where: {
    id: currentHolder.orgRootId
  }
 });
 if (!orgRoot) {
  throw new HttpError(
    HttpStatus.NOT_FOUND,
    "Organization root not found"
  );
 }
 ```
 ---
 ### #7 - Promise.all in Admin Edit Without Error Handling (MEDIUM)
 **File & Location:** [DevelopmentRequestController.ts:467-490](src/controllers/DevelopmentRequestController.ts#L467-L490)
 **Method:** `editAdminDevelopmentRequest`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - `Promise.all()` กับ nested save operations
 - ไม่มี error handling สำหรับ individual promises
 **Recommended Fix:**
 ```typescript
 if (record.developmentProjects != null) {
  try {
    await Promise.all(
      record.developmentProjects.map(async (x) => {
        try {
          let developmentProject = new DevelopmentProject();
          let developmentProjectHistory = new DevelopmentProject();
          Object.assign(developmentProject, {
            ...meta,
            id: undefined,
            name: record.name,
            profileDevelopmentId: profileDevelopment.id,
          });
          Object.assign(developmentProject, {
            ...meta,
            id: undefined,
            name: record.name,
            profileDevelopmentHistoryId: history.id,
          });
          await Promise.all([
            this.developmentProjectRepository.save(developmentProject, { data: req }),
            setLogDataDiff(req, { before: null, after: developmentProject }),
            this.developmentProjectRepository.save(developmentProjectHistory, { data: req }),
          ]);
        } catch (error) {
          console.error(`Failed to save development project for "${record.name}":`, error);
          throw error;
        }
      }),
    );
  } catch (error) {
    console.error("Failed to save development projects:", error);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      "Failed to save development projects"
    );
  }
 }
 ```
 ---
 ### #8 - QueryBuilder Parameters Without Validation (MEDIUM)
 **File & Location:** [CommandSalaryController.ts:73-108](src/controllers/CommandSalaryController.ts#L73-L108)
 **Method:** `GetAdmin`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - QueryBuilder พร้อม dynamic conditions
 - ไม่มี input validation
 - Page number validation เป็น optional (มี default value แต่ไม่ validate range)
 **Recommended Fix:**
 ```typescript
@Get("admin")
 async GetAdmin(
  @Query("page") page: number = 1,
  @Query("pageSize") pageSize: number = 10,
  @Query() commandSysId?: string | null,
  @Query() isActive?: boolean | null,
  @Query() searchKeyword?: string | null,
 ) {
  try {
    // Validate inputs
    if (page < 1 || page > 10000) {
      throw new HttpError(HttpStatus.BAD_REQUEST, "Invalid page number");
    }
    if (pageSize < 1 || pageSize > 1000) {
      throw new HttpError(HttpStatus.BAD_REQUEST, "Invalid page size");
    }
    const [commandSalarys, total] = await this.commandSalaryRepository
      .createQueryBuilder("commandSalary")
      .andWhere(
        isActive != null && isActive != undefined ? "commandSalary.isActive = :isActive" : "1=1",
        {
          isActive:
            isActive == null || isActive == undefined ? null : `${isActive == true ? 1 : 0}`,
        },
      )
      // ... rest of query
      .getManyAndCount();
    return new HttpSuccess({ commandSalarys, total });
  } catch (error) {
    if (error instanceof HttpError) {
      throw error;
    }
    console.error('Failed to get command salaries:', error);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      "Failed to retrieve command salaries"
    );
  }
 }
 ```
 ---
 ### #9 - Hardcoded Response Data (LOW)
 **File & Location:** [CommandTypeController.ts:140-199](src/controllers/CommandTypeController.ts#L140-L199)
 **Method:** `GetById`
 **Problem Type:** 3. Code Quality
 **Root Cause:**
 - Hardcoded template data ใน code
 - ไม่ flexible และยากต่อการ maintain
 - ควรเก็บใน database หรือ configuration
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 if (_commandType.code == "C-PM-10") {
  let _commandType10: any;
  _commandType10 = {
    // ... hardcoded fields
    name1: "๑. ..........................ประธาน",
    name2: "๒. ..........................กรรมการ",
    // ...
  };
  _commandType = _commandType10;
 } else if (["C-PM-21", "C-PM-23"].includes(_commandType.code)) {
  let _commandType21and23: any;
  _commandType21and23 = {
    // ... hardcoded fields
    persons: [
      {
        no: "",
        org: "",
        // ...
      },
    ],
  };
  _commandType = _commandType21and23;
 }
 ```
 **Recommended Fix:**
 ```typescript
 // Move these templates to database or configuration
 const commandTemplates = await this.commandTemplateRepository.find({
  where: { commandTypeCode: _commandType.code }
 });
 if (commandTemplates.length > 0) {
  const template = commandTemplates[0];
  return new HttpSuccess({
    ..._commandType,
    ...template.templateData
  });
 }
 return new HttpSuccess(_commandType);
 ```
 ---
 ### #10 - Missing Transaction for Related Operations (LOW)
 **File & Location:** [CommandOperatorController.ts:109-112](src/controllers/CommandOperatorController.ts#L109-L112)
 **Method:** `swapCommandOperator`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - มีการ swap orderNo ระหว่าง 2 records
 - ไม่ได้ใช้ transaction
 - ถ้า save ตัวแรกสำเร็จ แต่ตัวที่สอง fail จะเกิด data inconsistency
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 // swap
 const temp = source.orderNo;
 source.orderNo = dest.orderNo;
 dest.orderNo = temp;
 await Promise.all([
  this.commandOperatorRepo.save(source),
  this.commandOperatorRepo.save(dest),
 ]);
 ```
 **Recommended Fix:**
 ```typescript
 const queryRunner = AppDataSource.createQueryRunner();
 try {
  await queryRunner.connect();
  await queryRunner.startTransaction();
  // swap
  const temp = source.orderNo;
  source.orderNo = dest.orderNo;
  dest.orderNo = temp;
  await Promise.all([
    queryRunner.manager.save(CommandOperator, source),
    queryRunner.manager.save(CommandOperator, dest),
  ]);
  await queryRunner.commitTransaction();
  return new HttpSuccess();
 } catch (error) {
  await queryRunner.rollbackTransaction();
  console.error('Failed to swap command operators:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    "Failed to swap operator order"
  );
 } finally {
  await queryRunner.release();
 }
 ```
 ---
 ### #11 - Wrong Error Status Code (BUG)
 **File & Location:** [Multiple Files - CommandSysController.ts:127](src/controllers/CommandSysController.ts#L127), [CommandTypeController.ts:216](src/controllers/CommandTypeController.ts#L216), etc.
 **Methods:** `Post` in various controllers
 **Problem Type:** 3. Logic Bug
 **Root Cause:**
 - Throw `HttpError(HttpStatusCode.NOT_FOUND, ...)` สำหรับ duplicate name errors
 - ควรใช้ `BAD_REQUEST` หรือ `CONFLICT` แทน
 **Code ปัจจุบัน (ผิด):**
 ```typescript
 if (checkName) {
  throw new HttpError(HttpStatusCode.NOT_FOUND, "ชื่อนี้มีอยู่ในระบบแล้ว"); // ❌ Wrong status code
 }
 ```
 **Recommended Fix:**
 ```typescript
 if (checkName) {
  throw new HttpError(HttpStatusCode.CONFLICT, "ชื่อนี้มีอยู่ในระบบแล้ว"); // ✅ Correct status code
 }
 ```
 ---
 ### #12 - Typos in Status Field (BUG)
 **File & Location:** [ChangePositionController.ts:79](src/controllers/ChangePositionController.ts#L79)
 **Method:** `CreateChangePosition`
 **Problem Type:** 3. Logic Bug
 **Root Cause:**
 - Status เป็น "WAITTING" (ตัว T เกิน)
 - ควรเป็น "WAITING"
 **Code ปัจจุบัน (ผิด):**
 ```typescript
 changePosition.status = "WAITTING"; // ❌ typo
 ```
 **Recommended Fix:**
 ```typescript
 changePosition.status = "WAITING"; // ✅ correct spelling
 ```
 **หมายเหตุ:** ปัญหาเดียวกันนี้พบใน [ChangePositionController.ts:241](src/controllers/ChangePositionController.ts#L241)
 ---
 ## สรุปคำแนะนำการแก้ไขแบบรวม
 ### ระดับความสำคัญ
 **ต้องแก้ทันที (P0 - Critical):**
 1. QueryRunner transaction not released on error - อาจทำให้ connection leak
 **ควรแก้โดยเร็ว (P1 - High):**
 2. Promise.all operations without error handling - unhandled rejections
 3. QueryBuilder without validation and error handling
 **ควรแก้ (P2 - Medium):**
 4. Null reference checks
 5. Unsafe optional chain usage
 6. Promise operations in edit methods
 **แก้เมื่อว่าง (P3 - Low):**
 7. Hardcoded data
 8. Missing transaction for related operations
 ### แนวทางการแก้ไขแบบ Global
 1. **Use try-finally pattern** for all QueryRunner operations
 2. **Add input validation** for all query parameters
 3. **Use Promise.allSettled** หรือ wrap promises in try-catch
 4. **Implement proper null checks** ก่อน accessing nested properties
 5. **Use transactions** สำหรับ operations ที่ต้องการ consistency
 ---
 ## ไฟล์ที่ต้องแก้ไข
 1. **src/controllers/CommandOperatorController.ts** - Transaction handling, Promise operations
 2. **src/controllers/DevelopmentRequestController.ts** - Promise.all, QueryBuilder validation
 3. **src/controllers/DPISController.ts** - Null reference checks
 4. **src/controllers/CommandSalaryController.ts** - Input validation
 5. **src/controllers/CommandTypeController.ts** - Error status codes, hardcoded data
 ---
 ## ข้อมูลเพิ่มเติม
 - **Controllers ที่ยังไม่ได้ตรวจสอบ:** 120 ไฟล์
 - **จุดเสี่ยงที่พบซ้ำจากชุดที่ 1:** Promise.all without error handling, QueryBuilder without error handling
 ---
 **รายงานนี้ถูกสร้างโดย AI Code Review System**
 **สำหรับ BMA EHR Organization Project**
--- a/reports/batch-03-controllers-21-30-analysis.md
+++ b/reports/batch-03-controllers-21-30-analysis.md
@ -1,874 +0,0 @@
 # รายงานการตรวจสอบ Unhandled Exception - Controllers ชุดที่ 3 (ไฟล์ที่ 21-30)
 **Project:** BMA EHR Organization Backend
 **Framework:** TSOA + Express + TypeORM
 **วันที่ตรวจสอบ:** 2026-05-08
 **จำนวน Controllers:** 10 ไฟล์
 **สถานะ:** เสร็จสิ้น
 ---
 ## สรุปผลการตรวจสอบ
 | ระดับความรุนแรง | จำนวนจุดเสี่ยง |
 |---------------------|-------------------|
 | **CRITICAL** | 0 |
 | **HIGH** | 4 |
 | **MEDIUM** | 5 |
 | **LOW** | 2 |
 | **BUG** | 2 |
 | **รวมทั้งหมด** | 13 |
 ---
 ## Controllers ที่ตรวจสอบ
 21. [EmployeePositionController.ts](src/controllers/EmployeePositionController.ts)
 22. [EmployeeTempPositionController.ts](src/controllers/EmployeeTempPositionController.ts)
 23. [ExRetirementController.ts](src/controllers/ExRetirementController.ts)
 24. [GenderController.ts](src/controllers/GenderController.ts)
 25. [ImportDataController.ts](src/controllers/ImportDataController.ts)
 26. [InsigniaController.ts](src/controllers/InsigniaController.ts)
 27. [InsigniaTypeController.ts](src/controllers/InsigniaTypeController.ts)
 28. [IssuesController.ts](src/controllers/IssuesController.ts)
 29. [KeycloakSyncController.ts](src/controllers/KeycloakSyncController.ts)
 30. [LoginController.ts](src/controllers/LoginController.ts)
 ---
 ## รายละเอียดจุดเสี่ยงแต่ละจุด
 ### #1 - Promise.all Without Error Handling in Position Creation (HIGH)
 **File & Location:** [EmployeePositionController.ts:690-707](src/controllers/EmployeePositionController.ts#L690-L707)
 **Method:** `createEmpMaster`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - ใช้ `Promise.all()` สำหรับบันทึก positions หลายรายการพร้อมกัน
 - ถ้ามี position ไหน save ไม่สำเร็จ จะเกิด unhandled rejection
 - ไม่มี try-catch รองรับ ทำให้ไม่สามารถควบคุม error ได้
 - ส่งผลให้อาจเกิด data inconsistency ถ้า save บางส่วนสำเร็จ แต่บางส่วนล้มเหลว
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 await Promise.all(
  requestBody.positions.map(async (x: any) => {
    const position = Object.assign(new EmployeePosition());
    position.positionName = x.posDictName;
    position.posTypeId = x.posTypeId == "" ? null : x.posTypeId;
    position.posLevelId = x.posLevelId == "" ? null : x.posLevelId;
    position.positionIsSelected = false;
    position.posMasterId = posMaster.id;
    position.createdUserId = request.user.sub;
    position.createdFullName = request.user.name;
    position.createdAt = new Date();
    position.lastUpdateUserId = request.user.sub;
    position.lastUpdateFullName = request.user.name;
    position.lastUpdatedAt = new Date();
    await this.employeePositionRepository.save(position, { data: request });
  }),
 );
 return new HttpSuccess(posMaster.id);
 ```
 **Recommended Fix:**
 ```typescript
 try {
  await Promise.all(
    requestBody.positions.map(async (x: any) => {
      try {
        const position = Object.assign(new EmployeePosition());
        position.positionName = x.posDictName;
        position.posTypeId = x.posTypeId == "" ? null : x.posTypeId;
        position.posLevelId = x.posLevelId == "" ? null : x.posLevelId;
        position.positionIsSelected = false;
        position.posMasterId = posMaster.id;
        position.createdUserId = request.user.sub;
        position.createdFullName = request.user.name;
        position.createdAt = new Date();
        position.lastUpdateUserId = request.user.sub;
        position.lastUpdateFullName = request.user.name;
        position.lastUpdatedAt = new Date();
        await this.employeePositionRepository.save(position, { data: request });
      } catch (error) {
        console.error(`Failed to save position "${x.posDictName}":`, error);
        throw error; // Re-throw to be caught by Promise.all
      }
    }),
  );
  return new HttpSuccess(posMaster.id);
 } catch (error) {
  console.error("Failed to save positions:", error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    "Failed to save positions"
  );
 }
 ```
 ---
 ### #2 - Promise.all Without Error Handling in Position Update (HIGH)
 **File & Location:** [EmployeePositionController.ts:905-921](src/controllers/EmployeePositionController.ts#L905-L921)
 **Method:** `updateEmpMaster`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - Similar to #1 แต่เกิดใน update operation
 - `Promise.all()` โดยไม่มี error handling
 - เกิดการลบ positions เก่า ก่อน แล้วค่อยสร้างใหม่ ถ้าสร้างใหม่ fail จะเกิด data loss
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 await this.employeePositionRepository.delete({ posMasterId: posMaster.id });
 await Promise.all(
  requestBody.positions.map(async (x: any) => {
    const position = Object.assign(new EmployeePosition());
    position.positionName = x.posDictName;
    position.posTypeId = x.posTypeId == "" ? null : x.posTypeId;
    position.posLevelId = x.posLevelId == "" ? null : x.posLevelId;
    position.positionIsSelected = false;
    position.posMasterId = posMaster.id;
    position.createdUserId = request.user.sub;
    position.createdFullName = request.user.name;
    position.createdAt = new Date();
    position.lastUpdateUserId = request.user.sub;
    position.lastUpdateFullName = request.user.name;
    position.lastUpdatedAt = new Date();
    await this.employeePositionRepository.save(position, { data: request });
  }),
 );
 ```
 **Recommended Fix:**
 ```typescript
 // Get existing positions as backup before deletion
 const existingPositions = await this.employeePositionRepository.find({
  where: { posMasterId: posMaster.id }
 });
 try {
  await this.employeePositionRepository.delete({ posMasterId: posMaster.id });
  await Promise.all(
    requestBody.positions.map(async (x: any) => {
      try {
        const position = Object.assign(new EmployeePosition());
        position.positionName = x.posDictName;
        position.posTypeId = x.posTypeId == "" ? null : x.posTypeId;
        position.posLevelId = x.posLevelId == "" ? null : x.posLevelId;
        position.positionIsSelected = false;
        position.posMasterId = posMaster.id;
        position.createdUserId = request.user.sub;
        position.createdFullName = request.user.name;
        position.createdAt = new Date();
        position.lastUpdateUserId = request.user.sub;
        position.lastUpdateFullName = request.user.name;
        position.lastUpdatedAt = new Date();
        await this.employeePositionRepository.save(position, { data: request });
      } catch (error) {
        console.error(`Failed to update position "${x.posDictName}":`, error);
        throw error;
      }
    }),
  );
 } catch (error) {
  console.error("Failed to update positions, restoring backup:", error);
  // Restore backup positions
  await this.employeePositionRepository.save(existingPositions);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    "Failed to update positions"
  );
 }
 ```
 ---
 ### #3 - Async forEach Without Proper Error Handling (HIGH)
 **File & Location:** [EmployeePositionController.ts:2378-2395](src/controllers/EmployeePositionController.ts#L2378-L2395)
 **Method:** `createEmpHolder`
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 - ใช้ `forEach` กับ async function ซึ่งไม่รอให้ทุก operation สำเร็จ
 - การใช้ `forEach` กับ async จะไม่ catch error ที่เกิดใน loop
 - ถ้ามีการ save ที่ fail จะไม่ทราบ และ data อาจไม่ถูกต้อง
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 dataMaster.positions.forEach(async (position) => {
  if (position.id === requestBody.position) {
    position.positionIsSelected = true;
    const profile = await this.profileRepository.findOne({
      where: { id: requestBody.profileId },
    });
    if (profile != null) {
      const _null: any = null;
      profile.posLevelId = position?.posLevelId ?? _null;
      profile.posTypeId = position?.posTypeId ?? _null;
      profile.position = position?.positionName ?? _null;
      await this.profileRepository.save(profile);
    }
  } else {
    position.positionIsSelected = false;
  }
  await this.employeePositionRepository.save(position);
 });
 ```
 **Recommended Fix:**
 ```typescript
 // Use Promise.all instead of forEach with async
 await Promise.all(
  dataMaster.positions.map(async (position) => {
    try {
      if (position.id === requestBody.position) {
        position.positionIsSelected = true;
        const profile = await this.profileRepository.findOne({
          where: { id: requestBody.profileId },
        });
        if (profile != null) {
          const _null: any = null;
          profile.posLevelId = position?.posLevelId ?? _null;
          profile.posTypeId = position?.posTypeId ?? _null;
          profile.position = position?.positionName ?? _null;
          await this.profileRepository.save(profile);
        }
      } else {
        position.positionIsSelected = false;
      }
      await this.employeePositionRepository.save(position);
    } catch (error) {
      console.error(`Failed to update position ${position.id}:`, error);
      throw error;
    }
  })
 );
 ```
 ---
 ### #4 - Promise.all in EmployeeTempPositionController Without Error Handling (HIGH)
 **File & Location:** [EmployeeTempPositionController.ts:557-574](src/controllers/EmployeeTempPositionController.ts#L557-L574)
 **Method:** `createEmpMaster`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - เหมือนกับ #1 แต่เกิดใน EmployeeTempPositionController
 - ใช้ `Promise.all()` โดยไม่มี error handling
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 await Promise.all(
  requestBody.positions.map(async (x: any) => {
    const position = Object.assign(new EmployeePosition());
    position.positionName = x.posDictName;
    position.posTypeId = x.posTypeId == "" ? null : x.posTypeId;
    position.posLevelId = x.posLevelId == "" ? null : x.posLevelId;
    position.positionIsSelected = false;
    position.posMasterTempId = posMaster.id;
    position.createdUserId = request.user.sub;
    position.createdFullName = request.user.name;
    position.createdAt = new Date();
    position.lastUpdateUserId = request.user.sub;
    position.lastUpdateFullName = request.user.name;
    position.lastUpdatedAt = new Date();
    await this.employeePositionRepository.save(position, { data: request });
  }),
 );
 ```
 **Recommended Fix:**
 ใช้การแก้ไขเดียวกันกับ #1
 ---
 ### #5 - Unsafe Token Fetch in ExRetirementController (MEDIUM)
 **File & Location:** [ExRetirementController.ts:148-173](src/controllers/ExRetirementController.ts#L148-L173)
 **Method:** `getToken`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - ฟังก์ชัน `getToken` มีการ throw error แต่ใช้ `Promise.reject`
 - ไม่มีการระบุประเภทของ error ที่ชัดเจน
 - Error ที่เกิดขึ้นอาจไม่ถูก handle อย่างเหมาะสมในบางกรณี
 - Token cache อาจเก็บ token ที่หมดอายุ
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 async function getToken(ClientID: string, ClientSecret: string): Promise<string> {
  const cacheKey = `${ClientID}:${ClientSecret}`;
  // ลองหา token ใน cache ก่อน
  const cachedToken = TokenCache.get(cacheKey);
  if (cachedToken) {
    return cachedToken;
  }
  // ถ้าไม่มีใน cache ให้ขอใหม่
  try {
    const formData = new FormData();
    formData.append("ClientID", ClientID);
    formData.append("ClientSecret", ClientSecret);
    const res = await axios.post(API_URL_BANGKOK + "/authorize", formData, {
      headers: {
        "Content-Type": "application/json",
      },
    });
    const token = res.data.token;
    TokenCache.set(cacheKey, token);
    return token;
  } catch (error) {
    return Promise.reject({ message: "Error occurred", error });
  }
 }
 ```
 **Recommended Fix:**
 ```typescript
 async function getToken(ClientID: string, ClientSecret: string): Promise<string> {
  const cacheKey = `${ClientID}:${ClientSecret}`;
  // ลองหา token ใน cache ก่อน
  const cachedToken = TokenCache.get(cacheKey);
  if (cachedToken) {
    return cachedToken;
  }
  // ถ้าไม่มีใน cache ให้ขอใหม่
  try {
    const formData = new FormData();
    formData.append("ClientID", ClientID);
    formData.append("ClientSecret", ClientSecret);
    const res = await axios.post(API_URL_BANGKOK + "/authorize", formData, {
      headers: {
        "Content-Type": "application/json",
      },
      timeout: 10000, // Add timeout
    });
    if (!res.data || !res.data.token) {
      throw new Error("Invalid token response from exprofile API");
    }
    const token = res.data.token;
    TokenCache.set(cacheKey, token);
    return token;
  } catch (error: any) {
    console.error("Failed to get exprofile token:", error);
    // More specific error handling
    if (error.response?.status === 401) {
      throw new Error("Invalid credentials for exprofile API");
    } else if (error.code === 'ECONNABORTED') {
      throw new Error("Request timeout while fetching exprofile token");
    } else {
      throw new Error(`Failed to fetch exprofile token: ${error.message}`);
    }
  }
 }
 ```
 ---
 ### #6 - Promise.all Without Error Handling in ImportDataController (MEDIUM)
 **File & Location:** [ImportDataController.ts:2425-2443](src/controllers/ImportDataController.ts#L2425-L2443)
 **Method:** Import Education Mis Data
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - ใช้ `Promise.all()` สำหรับ batch insert ข้อมูลลง database
 - ไม่มี error handling ถ้า insert บางรายการ fail
 - ไม่สามารถรู้ได้ว่ามีกี่รายการที่สำเร็จ/ล้มเหลว
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 await Promise.all(
  getExcel.map(async (item: any) => {
    const educationMis = new EducationMis();
    educationMis.EDUCATION_CODE = item.EDUCATION_CODE;
    educationMis.EDUCATION_NAME = item.EDUCATION_NAME;
    // ... set other properties
    await this.educationMisRepository.save(educationMis);
  }),
 );
 ```
 **Recommended Fix:**
 ```typescript
 const results = await Promise.allSettled(
  getExcel.map(async (item: any) => {
    try {
      const educationMis = new EducationMis();
      educationMis.EDUCATION_CODE = item.EDUCATION_CODE;
      educationMis.EDUCATION_NAME = item.EDUCATION_NAME;
      // ... set other properties
      await this.educationMisRepository.save(educationMis);
      return { status: 'success', code: item.EDUCATION_CODE };
    } catch (error) {
      console.error(`Failed to save education ${item.EDUCATION_CODE}:`, error);
      return { 
        status: 'failed', 
        code: item.EDUCATION_CODE, 
        error: error.message 
      };
    }
  }),
 );
 const failed = results.filter(r => r.status === 'rejected' || (r.status === 'fulfilled' && r.value.status === 'failed'));
 if (failed.length > 0) {
  console.warn(`Failed to import ${failed.length} education records`);
  // Optionally notify user about partial failure
 }
 ```
 ---
 ### #7 - External API Call Without Proper Error Handling (MEDIUM)
 **File & Location:** [ExRetirementController.ts:50-103](src/controllers/ExRetirementController.ts#L50-L103)
 **Method:** `getExRetirement`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - มีการเรียก external API แต่ error handling ยังไม่ครอบคลุม
 - ใช้ retry mechanism แต่ไม่มี exponential backoff
 - ไม่มี logging ที่ชัดเจนสำหรับการ debug
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
 let retryCount = 0;
 const maxRetries = 2;
 while (retryCount < maxRetries) {
  try {
    const token = await getToken(clientId, clientSecret);
    if (!token) {
      throw new HttpError(HttpStatusCode.NOT_FOUND, "ไม่สามารถขอ Token ได้");
    }
    const scope = "getOfficerRetireData";
    const startRecord = requestBody.page !== 1 ? (requestBody.page - 1) * 25 : 0;
    const formData = new FormData();
    formData.append("scope", scope);
    formData.append("startRecord", startRecord.toString());
    formData.append("retireYear", requestBody.retireYear);
    formData.append("citizenID", requestBody.citizenID);
    formData.append("firstNameTH", requestBody.firstNameTH);
    formData.append("lastNameTH", requestBody.lastNameTH);
    formData.append("officerTypeID", requestBody.type === "officer" ? "1" : "2");
    const res = await axios.post(API_URL_BANGKOK + "/getData", formData, {
      headers: {
        Authorization: `Bearer ${token}`,
      },
    });
    return new HttpSuccess(res.data.data);
  } catch (error: any) {
    if (error.response?.status === 500 && retryCount < maxRetries - 1) {
      TokenCache.delete(`${clientId}:${clientSecret}`);
      retryCount++;
      continue;
    }
    throw new HttpError(HttpStatusCode.INTERNAL_SERVER_ERROR, "ไม่สามารถติดต่อ API ได้");
  }
 }
 ```
 **Recommended Fix:**
 ```typescript
 let retryCount = 0;
 const maxRetries = 2;
 const baseDelay = 1000; // 1 second
 while (retryCount < maxRetries) {
  try {
    const token = await getToken(clientId, clientSecret);
    if (!token) {
      throw new HttpError(HttpStatusCode.NOT_FOUND, "ไม่สามารถขอ Token ได้");
    }
    const scope = "getOfficerRetireData";
    const startRecord = requestBody.page !== 1 ? (requestBody.page - 1) * 25 : 0;
    const formData = new FormData();
    formData.append("scope", scope);
    formData.append("startRecord", startRecord.toString());
    formData.append("retireYear", requestBody.retireYear);
    formData.append("citizenID", requestBody.citizenID);
    formData.append("firstNameTH", requestBody.firstNameTH);
    formData.append("lastNameTH", requestBody.lastNameTH);
    formData.append("officerTypeID", requestBody.type === "officer" ? "1" : "2");
    const res = await axios.post(API_URL_BANGKOK + "/getData", formData, {
      headers: {
        Authorization: `Bearer ${token}`,
      },
      timeout: 30000, // 30 second timeout
    });
    return new HttpSuccess(res.data.data);
  } catch (error: any) {
    retryCount++;
    // Log error for debugging
    console.error(`Error fetching retirement data (attempt ${retryCount}/${maxRetries}):`, {
      message: error.message,
      status: error.response?.status,
      code: error.code
    });
    // Check if we should retry
    const shouldRetry = 
      (error.response?.status === 500 || 
       error.response?.status === 503 || 
       error.code === 'ECONNRESET' ||
       error.code === 'ETIMEDOUT') && 
      retryCount < maxRetries;
    if (shouldRetry) {
      TokenCache.delete(`${clientId}:${clientSecret}`);
      // Exponential backoff
      const delay = baseDelay * Math.pow(2, retryCount - 1);
      await new Promise(resolve => setTimeout(resolve, delay));
      continue;
    }
    // Don't retry on client errors (4xx) or after max retries
    throw new HttpError(
      HttpStatusCode.INTERNAL_SERVER_ERROR, 
      `ไม่สามารถติดต่อ API ได้: ${error.message}`
    );
  }
 }
 ```
 ---
 ### #8 - Missing Error Handling in IssuesController (MEDIUM)
 **File & Location:** [IssuesController.ts:54-71](src/controllers/IssuesController.ts#L54-L71)
 **Method:** `updateIssue`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 - ไม่มี try-catch รองรับ operation ที่อาจ fail
 - ไม่มีการตรวจสอบว่า request body ถูกต้องหรือไม่
 - การใช้ `Object.assign` โดยไม่ validate อาจทำให้เกิด invalid data
 **Code ปัจจุบัน (เสี่ยง):**
 ```typescript
@Put("{id}")
 async updateIssue(
  @Path("id") id: string,
  @Body() requestBody: Partial<UpdateIssueRequest>,
  @Request() request: RequestWithUser,
 ) {
  let issue = await this.issuesRepository.findOneBy({ id });
  if (!issue) {
    this.setStatus(HttpStatusCode.NOT_FOUND);
    return { message: "ไม่พบข้อมูลที่ต้องการแก้ไข" };
  }
  Object.assign(issue, requestBody);
  issue.lastUpdateUserId = request.user.sub;
  issue.lastUpdateFullName = request.user.name;
  issue.lastUpdatedAt = new Date();
  await this.issuesRepository.save(issue);
  return new HttpSuccess(issue);
 }
 ```
 **Recommended Fix:**
 ```typescript
@Put("{id}")
 async updateIssue(
  @Path("id") id: string,
  @Body() requestBody: Partial<UpdateIssueRequest>,
  @Request() request: RequestWithUser,
 ) {
  try {
    let issue = await this.issuesRepository.findOneBy({ id });
    if (!issue) {
      this.setStatus(HttpStatusCode.NOT_FOUND);
      return new HttpError(HttpStatusCode.NOT_FOUND, "ไม่พบข้อมูลที่ต้องการแก้ไข");
    }
    // Validate request body if needed
    if (requestBody.status !== undefined) {
      // Validate status enum values
    }
    Object.assign(issue, requestBody);
    issue.lastUpdateUserId = request.user.sub;
    issue.lastUpdateFullName = request.user.name;
    issue.lastUpdatedAt = new Date();
    try {
      await this.issuesRepository.save(issue);
    } catch (saveError: any) {
      console.error("Failed to save issue:", saveError);
      throw new HttpError(
        HttpStatusCode.INTERNAL_SERVER_ERROR,
        "ไม่สามารถบันทึกข้อมูลได้"
      );
    }
    return new HttpSuccess(issue);
  } catch (error) {
    if (error instanceof HttpError) {
      throw error;
    }
    console.error("Error updating issue:", error);
    throw new HttpError(
      HttpStatusCode.INTERNAL_SERVER_ERROR,
      "เกิดข้อผิดพลาดในการอัปเดตข้อมูล"
    );
  }
 }
 ```
 ---
 ### #9 - Promise.all Without Error Handling in Province Import (MEDIUM)
 **File & Location:** [ImportDataController.ts:2856-2874](src/controllers/ImportDataController.ts#L2856-L2874)
 **Method:** Import Province Data
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - Similar to #6 แต่เกิดใน province import
 - ใช้ `Promise.all()` โดยไม่มี error handling
 **Recommended Fix:**
 ใช้การแก้ไขเดียวกันกับ #6 และ #11
 ---
 ### #10 - Wrong Error Status Code (BUG)
 **File & Location:** [InsigniaController.ts:62-64](src/controllers/InsigniaController.ts#L62-L64), [InsigniaTypeController.ts:58-60](src/controllers/InsigniaTypeController.ts#L58-L60)
 **Methods:** `CreateInsignia`, `CreateInsigniaType`
 **Problem Type:** 3. Logic Bug
 **Root Cause:**
 - Throw `HttpError(HttpStatusCode.NOT_FOUND, ...)` สำหรับ duplicate data errors
 - ควรใช้ `CONFLICT` (409) หรือ `BAD_REQUEST` (400) แทน
 **Code ปัจจุบัน (ผิด):**
 ```typescript
 if (rowRepeated) {
  throw new HttpError(HttpStatusCode.NOT_FOUND, "ข้อมูล Row นี้มีอยู่ในระบบแล้ว");
 }
 ```
 **Recommended Fix:**
 ```typescript
 if (rowRepeated) {
  throw new HttpError(HttpStatusCode.CONFLICT, "ข้อมูล Row นี้มีอยู่ในระบบแล้ว");
 }
 ```
 ---
 ### #11 - Promise.all Without Error Handling in Amphur Import (LOW)
 **File & Location:** [ImportDataController.ts:2889-2908](src/controllers/ImportDataController.ts#L2889-L2908)
 **Method:** Import Amphur Data
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 - Similar to #6 แต่เกิดใน amphur import
 - ใช้ `Promise.all()` โดยไม่มี error handling
 **Recommended Fix:**
 ใช้การแก้ไขเดียวกันกับ #6
 ---
 ### #12 - Redundant Promise.all in LoginController (LOW)
 **File & Location:** [LoginController.ts:38-47](src/controllers/LoginController.ts#L38-L47)
 **Method:** `login`
 **Problem Type:** 3. Code Quality
 **Root Cause:**
 - ใช้ `Promise.all` กับ array ที่มีแค่ 1 promise
 - การใช้งานไม่มีประโยชน์เพราะไม่ได้ parallelize อะไรเลย
 - Code อ่านยากและสับสน
 **Code ปัจจุบัน (ผิด):**
 ```typescript
 let _data: any = null;
 await Promise.all([
  await new CallAPI()
    .PostDataKeycloak(`/realms/${process.env.KC_REALMS}/protocol/openid-connect/token`, data)
    .then(async (x) => {
      _data = x;
    })
    .catch(async (x) => {
      throw new HttpError(HttpStatus.UNAUTHORIZED, "ชื่อผู้ใช้งานหรือรหัสผ่านไม่ถูกต้อง");
    }),
 ]);
 ```
 **Recommended Fix:**
 ```typescript
 try {
  const _data = await new CallAPI().PostDataKeycloak(
    `/realms/${process.env.KC_REALMS}/protocol/openid-connect/token`, 
    data
  );
  if (!_data) {
    throw new HttpError(HttpStatus.UNAUTHORIZED, "ชื่อผู้ใช้งานหรือรหัสผ่านไม่ถูกต้อง");
  }
  return new HttpSuccess(_data);
 } catch (error: any) {
  if (error instanceof HttpError) {
    throw error;
  }
  throw new HttpError(HttpStatus.UNAUTHORIZED, "ชื่อผู้ใช้งานหรือรหัสผ่านไม่ถูกต้อง");
 }
 ```
 ---
 ### #13 - Error Message from External API Not Handled (BUG)
 **File & Location:** [LoginController.ts:44-46](src/controllers/LoginController.ts#L44-L46), [LoginController.ts:85-87](src/controllers/LoginController.ts#L85-L87)
 **Methods:** `login`, `loginCheckin`
 **Problem Type:** 3. Logic Bug
 **Root Cause:**
 - Catch error แล้ว throw HttpError ใหม่ แต่ไม่ได้ preserve error message ต้นทาง
 - ทำให้ user ไม่รู้สาเหตุที่แท้จริงของการ login ล้มเหลว
 **Code ปัจจุบัน (ผิด):**
 ```typescript
 .catch(async (x) => {
  throw new HttpError(HttpStatus.UNAUTHORIZED, "ชื่อผู้ใช้งานหรือรหัสผ่านไม่ถูกต้อง");
 }),
 ```
 **Recommended Fix:**
 ```typescript
 .catch(async (error: any) => {
  const errorMessage = error?.response?.data?.error_description || 
                      error?.response?.data?.error ||
                      error?.message ||
                      "ชื่อผู้ใช้งานหรือรหัสผ่านไม่ถูกต้อง";
  console.error("Login failed:", error);
  throw new HttpError(HttpStatus.UNAUTHORIZED, errorMessage);
 }),
 ```
 ---
 ## สรุปคำแนะนำการแก้ไขแบบรวม
 ### ระดับความสำคัญ
 **ต้องแก้โดยเร็ว (P1 - High):**
 1. Promise.all operations without error handling - unhandled rejections อาจทำให้ service ไม่เสถียร
 2. Async forEach ที่ไม่รอ completion - อาจทำให้ data ไม่ถูกต้อง
 **ควรแก้ (P2 - Medium):**
 3. External API call error handling - ควรมี retry mechanism ที่ดีขึ้น
 4. Missing error handling in IssuesController
 5. Promise operations in import controllers
 **แก้เมื่อว่าง (P3 - Low):**
 6. Redundant Promise.all in LoginController
 7. Error status code issues
 ### แนวทางการแก้ไขแบบ Global
 1. **สร้าง utility function** สำหรับ Promise.all ที่มี error handling:
 ```typescript
 async function safePromiseAll<T>(
  items: T[],
  executor: (item: T, index: number) => Promise<any>,
  options: { 
    continueOnError?: boolean;
    throwOnError?: boolean;
  } = {}
 ) {
  const { continueOnError = false, throwOnError = true } = options;
  if (continueOnError) {
    const results = await Promise.allSettled(
      items.map((item, index) => executor(item, index))
    );
    const failures = results.filter(r => r.status === 'rejected');
    if (failures.length > 0 && throwOnError) {
      console.warn(`${failures.length} operations failed`);
    }
    return results;
  } else {
    return Promise.all(
      items.map((item, index) => executor(item, index))
    );
  }
 }
 ```
 2. **ใช้ try-catch** รอบทุก database operation และ external API call
 3. **Implement logging** ที่สมบูรณ์สำหรับ debugging
 4. **Use proper HTTP status codes** ตามมาตรฐาน REST API
 ---
 ## ไฟล์ที่ต้องแก้ไข
 1. **src/controllers/EmployeePositionController.ts** - Promise.all handling, forEach with async
 2. **src/controllers/EmployeeTempPositionController.ts** - Promise.all handling
 3. **src/controllers/ExRetirementController.ts** - External API error handling, token management
 4. **src/controllers/ImportDataController.ts** - Promise.all in import operations
 5. **src/controllers/IssuesController.ts** - Error handling
 6. **src/controllers/LoginController.ts** - Redundant Promise.all, error messages
 7. **src/controllers/InsigniaController.ts** - Error status codes
 8. **src/controllers/InsigniaTypeController.ts** - Error status codes
 ---
 ## ข้อมูลเพิ่มเติม
 - **Controllers ที่ยังไม่ได้ตรวจสอบ:** 110 ไฟล์
 - **จุดเสี่ยงที่พบซ้ำจากชุดที่ 1-2:** Promise.all without error handling, wrong HTTP status codes
 ---
 **รายงานนี้ถูกสร้างโดย AI Code Review System**
 **สำหรับ BMA EHR Organization Project**
--- a/reports/batch-04-controllers-31-40-analysis.md
+++ b/reports/batch-04-controllers-31-40-analysis.md
@ -1,234 +0,0 @@
 # รายงานการวิเคราะห์ความเสี่ยงการหยุดทำงานของระบบ (Crash Risk Analysis)
 ## ชุดที่ 4 (Batch 4) - Controllers 31-40
 ## วันที่ 8 พฤษภาคม 2568
 ---
 ## **รายชื่อ Controllers ที่ตรวจสอบ (31-40)**
 31. MainController.ts
 32. MyController.ts
 33. OrgChild1Controller.ts
 34. OrgChild2Controller.ts
 35. OrgChild3Controller.ts
 36. OrgChild4Controller.ts
 37. OrgRootController.ts
 38. OrganizationController.ts (ไฟล์ขนาดใหญ่ >397KB)
 39. OrganizationDotnetController.ts (ไฟล์ขนาดใหญ่ >329KB)
 40. OrganizationUnauthorizeController.ts
 ---
 ## **สรุปผลการตรวจสอบ**
 ### จำนวนปัญหาที่พบ: 8 ปัญหา
 | ระดับความรุนแรง | จำนวน | ประเภท |
 |---|---|---|
 | 🔴 วิกฤติ | 2 | มีโอกาสทำให้ Service Crash สูงมาก |
 | 🟠 สูง | 4 | มีโอกาสทำให้เกิด Unhandled Exception |
 | 🟡 ปานกลาง | 2 | อาจทำให้เกิดปัญหาในสถานการณ์เฉพาะ |
 ---
 ## **รายละเอียดปัญหาแต่ละรายการ**
 ---
 ## 🔴 **ปัญหาที่ 1: การลบข้อมูลหลายตารางโดยไม่ใช้ Transaction (OrgRootController)**
 ### ไฟล์และตำแหน่ง:
 - **ไฟล์:** `src/controllers/OrgRootController.ts`
 - **บรรทัด:** 467-475
 - **Method:** `delete`
 ### ประเภทปัญหา:
 1. **Unhandled Exception** - การดำเนินการหลายอย่างโดยไม่มี Transaction
 ### สาเหตุที่ทำให้เสี่ยงต่อการ Crash:
 โค้ดทำการลบข้อมูล 6 ตารางต่อเนื่องกันโดยไม่มี error handling และไม่ใช้ transaction:
 - หาก delete ตัวใดตัวหนึ่งล้มเหลว ข้อมูลจะไม่สมบูรณ์
 - ไม่มีการ rollback เมื่อเกิด error
 - หากมี foreign key constraint violation อาจทำให้ service crash
 ### โค้ดปัจจุบัน (มีปัญหา):
 ```typescript
 await this.empPositionRepository.remove(empPositions, { data: request });
 await this.empPosMasterRepository.remove(empPosMasters, { data: request });
 await this.positionRepository.remove(positions, { data: request });
 await this.posMasterRepository.remove(posMasters, { data: request });
 await this.child4Repository.delete({ orgRootId: id });
 await this.child3Repository.delete({ orgRootId: id });
 await this.child2Repository.delete({ orgRootId: id });
 await this.child1Repository.delete({ orgRootId: id });
 await this.orgRootRepository.delete({ id });
 // ❌ ไม่มี try-catch หรือ transaction
 ```
 ### วิธีแก้ไขที่แนะนำ:
 ```typescript
 try {
  await AppDataSource.transaction(async (transactionalEntityManager) => {
    await transactionalEntityManager.remove(EmployeePosition, empPositions);
    await transactionalEntityManager.remove(EmployeePosMaster, empPosMasters);
    await transactionalEntityManager.remove(Position, positions);
    await transactionalEntityManager.remove(PosMaster, posMasters);
    await transactionalEntityManager.delete(OrgChild4, { orgRootId: id });
    await transactionalEntityManager.delete(OrgChild3, { orgRootId: id });
    await transactionalEntityManager.delete(OrgChild2, { orgRootId: id });
    await transactionalEntityManager.delete(OrgChild1, { orgRootId: id });
    await transactionalEntityManager.delete(OrgRoot, { id });
  });
  return new HttpSuccess();
 } catch (error) {
  console.error('ลบข้อมูล OrgRoot ล้มเหลว:', error);
  if (error.code === '23503') {
    throw new HttpError(
      HttpStatusCode.CONFLICT,
      "ไม่สามารถลบได้ เนื่องจากมีการใช้งานข้อมูลนี้อยู่"
    );
  }
  throw new HttpError(
    HttpStatusCode.INTERNAL_SERVER_ERROR,
    "เกิดข้อผิดพลาดในการลบข้อมูล"
  );
 }
 ```
 ---
 ## 🔴 **ปัญหาที่ 2: Nested forEach กับ Async Operations (OrgRootController)**
 ### ไฟล์และตำแหน่ง:
 - **ไฟล์:** `src/controllers/OrgRootController.ts`
 - **บรรทัด:** 571-1009
 - **Method:** `publishEmployee`
 ### ประเภทปัญหา:
 1. **Unhandled Exception** - Async operations ใน forEach ไม่ได้รับการจัดการ
 ### สาเหตุที่ทำให้เสี่ยงต่อการ Crash:
 มีการใช้ `forEach` ซ้อนกัน 4-5 ระดับ:
 - `forEach` ไม่รอ callback ให้ทำงานเสร็จ
 - Promise rejections อาจไม่ได้รับการ handle
 - หากเกิด error ใน nested operations อาจทำให้ unhandled rejection
 ---
 ## 🟠 **ปัญหาที่ 3: Promise.all ที่ไม่มี Error Handling (OrgChild Controllers)**
 ### ไฟล์และตำแหน่ง:
 - **ไฟล์:** `src/controllers/OrgChild1Controller.ts`
 - **บรรทัด:** 105-113, 122-130, 242-250, 259-268
 - **Method:** `save`, `Edit`
 ### ประเภทปัญหา:
 2. **Missing Error Handle** - Promise.all ไม่มี catch
 ### สาเหตุที่ทำให้เสี่ยงต่อการ Crash:
 มีการใช้ `Promise.all` หลายครั้งแต่ไม่มี error handling:
 - หาก database operations fail จะเกิด unhandled rejection
 - ไม่มี try-catch รอบ Promise.all
 ---
 ## 🟠 **ปัญหาที่ 4-6: การลบข้อมูลหลายตารางโดยไม่ใช้ Transaction (OrgChild1-4 Controllers)**
 ### ไฟล์และตำแหน่ง:
 - **ไฟล์:** `src/controllers/OrgChild1Controller.ts` (บรรทัด 456-463)
 - **ไฟล์:** `src/controllers/OrgChild2Controller.ts` (บรรทัด 317-323)
 - **ไฟล์:** `src/controllers/OrgChild3Controller.ts` (บรรทัด 272-278)
 - **ไฟล์:** `src/controllers/OrgChild4Controller.ts` (บรรทัด 311-315)
 - **Method:** `delete`
 ### ประเภทปัญหา:
 1. **Unhandled Exception** - การลบข้อมูลหลายตารางไม่มี Transaction
 ---
 ## 🟠 **ปัญหาที่ 7: Map ที่มี Null Reference (OrgRootController)**
 ### ไฟล์และตำแหน่ง:
 - **ไฟล์:** `src/controllers/OrgRootController.ts`
 - **บรรทัด:** 446-465
 - **Method:** `delete`
 ### ประเภทปัญหา:
 1. **Unhandled Exception** - Null reference ใน map
 ---
 ## 🟡 **ปัญหาที่ 8: Missing Error Handling ใน MainController**
 ### ไฟล์และตำแหน่ง:
 - **ไฟล์:** `src/controllers/MainController.ts`
 - **บรรทัด:** 42-52
 - **Method:** `getMainPerson`
 ### ประเภทปัญหา:
 2. **Missing Error Handle** - ไม่มี error handling
 ---
 ## **สรุปสถิติ**
 ### ปัญหาตามระดับความรุนแรง:
 | ระดับ | จำนวน | ไฟล์ที่พบ |
 |---|---|---|
 | 🔴 วิกฤติ | 2 | OrgRootController (2) |
 | 🟠 สูง | 4 | OrgRoot, OrgChild1-4Controllers |
 | 🟡 ปานกลาง | 2 | MainController, OrgRootController |
 ### ไฟล์ที่มีปัญหามากที่สุด:
 1. **OrgRootController.ts** - 4 ปัญหา (รุนแรงที่สุด)
 2. **OrgChild1Controller.ts** - 2 ปัญหา
 3. **OrgChild2Controller.ts** - 1 ปัญหา
 4. **OrgChild3Controller.ts** - 1 ปัญหา
 5. **OrgChild4Controller.ts** - 1 ปัญหา
 6. **MainController.ts** - 1 ปัญหา
 ### ปัญหาที่พบบ่อยที่สุด:
 1. **การลบข้อมูลหลายตารางโดยไม่ใช้ Transaction** (พบ 5 ครั้ง)
 2. **Promise.all/Async operations ไม่มี Error Handling** (พบ 3 ครั้ง)
 ---
 ## **คำแนะนำเพื่อป้องกันปัญหา**
 ### 1. สร้าง Transaction Wrapper Function
 สร้าง utility function สำหรับ database operations หลายตาราง
 ### 2. ใช้ for...of แทน forEach สำหรับ Async Operations
 ```typescript
 // ❌ ไม่ดี
 array.forEach(async (item) => {
  await processItem(item);
 });
 // ✅ ดี
 for (const item of array) {
  await processItem(item);
 }
 ```
 ### 3. เพิ่ม Error Handling รอบ Async Operations
 ใช้ try-catch ครอบ Promise.all และ async operations ทั้งหมด
 ### 4. Enable Strict TypeScript
 ตรวจสอบ `tsconfig.json` ให้แน่ใจว่ามีการเปิดใช้ strict mode
 ---
 ## **บันทึกเพิ่มเติม**
 - **วันที่สร้างรายงาน:** 8 พฤษภาคม 2568
 - **จำนวน Controllers ที่ตรวจสอบ:** 10 ไฟล์ (31-40)
 - **เครื่องมือที่ใช้:** การวิเคราะห์ Code และ Pattern Recognition
 - **ข้อจำกัด:** OrganizationController.ts และ OrganizationDotnetController.ts มีขนาดใหญ่มาก (>300KB)
 ---
 **รายงานนี้ครอบคลุมเฉพาะ Controllers 31-40 สำหรับชุดที่ 4**
--- a/reports/batch-05-controllers-41-50-analysis.md
+++ b/reports/batch-05-controllers-41-50-analysis.md
--- a/reports/batch-06-controllers-51-60-analysis.md
+++ b/reports/batch-06-controllers-51-60-analysis.md
@ -1,253 +0,0 @@
 # รายงานการวิเคราะห์จุดเสี่ยง Unhandled Exception - Controllers ชุดที่ 6 (51-60)
 ## วันที่วิเคราะห์: 2026-05-08
 ## สรุปผลการวิเคราะห์
 จากการตรวจสอบ Controllers ทั้ง 10 ไฟล์ (51-60):
 1. ProfileAbilityEmployeeController
 2. ProfileAbilityEmployeeTempController
 3. ProfileAbsentLateController
 4. ProfileActpositionController
 5. ProfileActpositionEmployeeController
 6. ProfileActpositionEmployeeTempController
 7. ProfileAddressController
 8. ProfileAddressEmployeeController
 9. ProfileAddressEmployeeTempController
 10. ProfileAssessmentsController
 พบ **0 จุดเสี่ยงระดับวิกฤต** ที่อาจทำให้เกิด Unhandled Exception และ Crash Loop ในระบบ Microservices
 ---
 ## รายละเอียดจุดเสี่ยงที่พบ
 ### ไม่พบจุดเสี่ยงระดับวิกฤต
 Controllers ทั้งหมดในชุดนี้มีการจัดการ Error ที่ดี โดย:
 1. **ทุก Method ใช้ async/await อย่างถูกต้อง** - ไม่มี Promise ที่ถูกเรียกโดยไม่มี await
 2. **มีการ throw HttpError** - เมื่อเกิด Error จะ throw HttpError ที่มี Status Code ที่ชัดเจน
 3. **Database Operations ล้วนอยู่ใน try-catch โดยนัย** - TypeORM repositories มีการ handle error ภายใน
 4. **ใช้ Promise.all อย่างปลอดภัย** - ใน operations ที่ต้องบันทึกข้อมูลหลายจุดพร้อมกัน
 ---
 ## จุดที่ควรปรับปรุง (แนะนำ)
 แม้จะไม่พบจุดเสี่ยงระดับวิกฤต แต่มีจุดที่ควรปรับปรุงเพื่อเพิ่มความแข็งแกร่งของระบบ:
 ### 1. File: ProfileAbilityEmployeeController.ts, ProfileAbilityEmployeeTempController.ts, ProfileActpositionEmployeeController.ts, ProfileActpositionEmployeeTempController.ts
 **Method:** `detailProfileAbilityUser`, `detailProfileActpositionUser`
 **Problem Type:** 2. Missing Error Handle (Potential Null Reference)
 **Root Cause:**
 ```typescript
 // Lines 42-48
 const getProfileAbilityId = await this.profileAbilityRepo.find({
  where: { profileEmployeeId: profile.id, isDeleted: false },
  order: { createdAt: "ASC" },
 });
 if (!getProfileAbilityId) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 ```
 `find()` method จะ return empty array `[]` เมื่อไม่พบข้อมูล ไม่ใช่ `null` หรือ `undefined` ดังนั้น condition `!getProfileAbilityId` จะไม่เคยเป็น true
 **Recommended Fix:**
 ```typescript
 const getProfileAbilityId = await this.profileAbilityRepo.find({
  where: { profileEmployeeId: profile.id, isDeleted: false },
  order: { createdAt: "ASC" },
 });
 if (getProfileAbilityId.length === 0) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 // หรือถ้าต้องการให้ return empty array ได้
 return new HttpSuccess(getProfileAbilityId);
 ```
 ---
 ### 2. File: ProfileAbsentLateController.ts
 **Method:** `newAbsentLateBatch`
 **Problem Type:** 2. Missing Error Handle (Transaction Safety)
 **Root Cause:**
 ```typescript
 // Lines 159-168
 const result = await this.absentLateRepo.save(records, { data: req });
 // บันทึก history สำหรับแต่ละ record
 const historyRecords = result.map((data) => {
  const history = new ProfileAbsentLateHistory();
  Object.assign(history, { ...data, id: undefined });
  history.profileAbsentLateId = data.id;
  return history;
 });
 await this.historyRepo.save(historyRecords, { data: req });
 ```
 ถ้าการบันทึก history ล้มเหลว ข้อมูลหลัก (records) จะถูกบันทึกไปแล้ว ทำให้เกิด Data Inconsistency
 **Recommended Fix:**
 ```typescript
 // ใช้ Transaction หรือ wrap ด้วย try-catch
 try {
  const result = await this.absentLateRepo.save(records, { data: req });
  const historyRecords = result.map((data) => {
    const history = new ProfileAbsentLateHistory();
    Object.assign(history, { ...data, id: undefined });
    history.profileAbsentLateId = data.id;
    return history;
  });
  await this.historyRepo.save(historyRecords, { data: req });
  return new HttpSuccess({ count: result.length, ids: result.map((r) => r.id) });
 } catch (error) {
  // ถ้าเกิด error ควร rollback หรือลบข้อมูลที่บันทึกไปแล้ว
  // หรือใช้ Transaction ของ TypeORM
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, "เกิดข้อผิดพลาดในการบันทึกข้อมูล");
 }
 ```
 ---
 ### 3. File: ProfileActpositionController.ts
 **Method:** `getProfileActpositionHistory`
 **Problem Type:** 2. Missing Error Handle (Potential Null Reference in Relations)
 **Root Cause:**
 ```typescript
 // Lines 95-104
 const record = await this.profileActpositionHistoryRepo.find({
  relations: ["histories"],
  where: { profileActpositionId: actpositionId },
  order: { createdAt: "DESC" },
 });
 if (!record) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 const mappedRecords = record.map(history => {
  const firstHistory = history.histories ?? []; 
 ```
 มีการใช้ `relations: ["histories"]` แต่ไม่มีการตรวจสอบว่า relation นี้มีอยู่จริงใน Entity หรือไม่ ถ้า relation ไม่ถูกต้องอาจเกิด error
 **Recommended Fix:**
 ```typescript
 try {
  const record = await this.profileActpositionHistoryRepo.find({
    relations: ["histories"],
    where: { profileActpositionId: actpositionId },
    order: { createdAt: "DESC" },
  });
  if (record.length === 0) {
    throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
  }
  const mappedRecords = record.map(history => {
    const firstHistory = Array.isArray(history.histories) ? history.histories[0] : null;
    return {
      // ... rest of mapping
    };
  });
  return new HttpSuccess(mappedRecords);
 } catch (error) {
  if (error instanceof HttpError) throw error;
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, "เกิดข้อผิดพลาดในการดึงข้อมูล");
 }
 ```
 ---
 ### 4. All Controllers
 **Method:** ทุก Method ที่ใช้ `Promise.all`
 **Problem Type:** 2. Missing Error Handle (Partial Failure)
 **Root Cause:**
 ```typescript
 // Pattern ที่ใช้ในหลาย ๆ Controller
 await Promise.all([
  this.profileRepo.save(record, { data: req }),
  setLogDataDiff(req, { before, after: record }),
  this.historyRepo.save(history, { data: req }),
 ]);
 ```
 ถ้า `setLogDataDiff` หรือ `historyRepo.save` ล้มเหลว แต่ `profileRepo.save` สำเร็จ จะเกิด Data Inconsistency
 **Recommended Fix:**
 ```typescript
 // ใช้ Transaction ของ TypeORM แทน
 await AppDataSource.transaction(async (transactionalEntityManager) => {
  await transactionalEntityManager.save(Profile, record);
  await transactionalEntityManager.save(ProfileHistory, history);
  // setLogDataDiff ควรอยู่นอก transaction หรือ handle error แยก
 });
 setLogDataDiff(req, { before, after: record });
 ```
 ---
 ## สรุปคำแนะนำการแก้ไข
 ### ระดับความสำคัญ: สูง
 1. **ใช้ Transaction สำหรับ Operations ที่ต้องบันทึกข้อมูลหลายตาราง** - เพื่อป้องกัน Data Inconsistency
 2. **ตรวจสอบค่าที่ return จาก `find()` อย่างถูกต้อง** - ใช้ `.length === 0` แทน `!result`
 ### ระดับความสำคัญ: ปานกลาง
 1. **เพิ่ม Error Boundary หรือ Global Error Handler** - เพื่อจัดการ error ที่ไม่คาดคิด
 2. **Log error ที่เกิดขึ้น** - เพื่อช่วยในการ Debug และ Monitor
 ### ระดับความสำคัญ: ต่ำ
 1. **Refactor code ให้ใช้ Transaction Manager** - เพื่อให้ code สะอาดและปลอดภัยมากขึ้น
 ---
 ## การจัดการ Error ที่ดีที่สุดสำหรับ Microservices
 ```typescript
 // 1. ใช้ AsyncHandler Wrapper
 export const asyncHandler = (fn: Function) => (req: Request, res: Response, next: NextFunction) => {
  Promise.resolve(fn(req, res, next)).catch(next);
 };
 // 2. ใช้ Global Error Handler
 app.use((error: Error, req: Request, res: Response, next: NextFunction) => {
  console.error('Unhandled error:', error);
  res.status(500).json({ error: 'Internal server error' });
 });
 // 3. ใช้ Transaction สำหรับ Database Operations
 await AppDataSource.transaction(async (manager) => {
  // All database operations here
 });
 ```
 ---
 ## สรุป
 Controllers ในชุดที่ 6 (51-60) มีความเสี่ยงต่ำต่อการเกิด **Unhandled Exception** ที่จะทำให้ Service Crash แต่มีจุดที่ควรปรับปรุงเพื่อ:
 1. **ป้องกัน Data Inconsistency** - โดยการใช้ Transaction
 2. **ปรับปรุง Logic การตรวจสอบข้อมูล** - โดยการเช็ค length ของ array ที่ return จาก find()
 3. **เพิ่มความแข็งแกร่งของระบบ** - โดยการเพิ่ม Error Handling และ Logging
 **ไม่มีจุดเสี่ยงระดับวิกฤตที่จะทำให้เกิด Crash Loop ในทันที** แต่ควรปรับปรุงตามคำแนะนำเพื่อเพิ่มความเสถียรของระบบในระยะยาว
--- a/reports/batch-07-controllers-61-70-analysis.md
+++ b/reports/batch-07-controllers-61-70-analysis.md
@ -1,248 +0,0 @@
 # รายงานการวิเคราะห์จุดเสี่ยง Unhandled Exception - Controllers ชุดที่ 7 (61-70)
 ## วันที่วิเคราะห์: 2026-05-08
 ## สรุปผลการวิเคราะห์
 จากการตรวจสอบ Controllers ทั้ง 10 ไฟล์ (61-70):
 1. ProfileAssistanceController
 2. ProfileAssistanceEmployeeController
 3. ProfileAssistanceEmployeeTempController
 4. ProfileCertificateController
 5. ProfileCertificateEmployeeController
 6. ProfileCertificateEmployeeTempController
 7. ProfileChildrenController
 8. ProfileChildrenEmployeeController
 9. ProfileChildrenEmployeeTempController
 10. ProfileDisciplineController
 พบ **0 จุดเสี่ยงระดับวิกฤต** ที่อาจทำให้เกิด Unhandled Exception และ Crash Loop ในระบบ Microservices
 ---
 ## รายละเอียดจุดเสี่ยงที่พบ
 ### ไม่พบจุดเสี่ยงระดับวิกฤต
 Controllers ทั้งหมดในชุดนี้มีการจัดการ Error ที่ดี โดย:
 1. **ทุก Method ใช้ async/await อย่างถูกต้อง** - ไม่มี Promise ที่ถูกเรียกโดยไม่มี await
 2. **มีการ throw HttpError** - เมื่อเกิด Error จะ throw HttpError ที่มี Status Code ที่ชัดเจน
 3. **Database Operations ล้วนอยู่ใน try-catch โดยนัย** - TypeORM repositories มีการ handle error ภายใน
 4. **ใช้ Promise.all อย่างปลอดภัย** - ใน operations ที่ต้องบันทึกข้อมูลหลายจุดพร้อมกัน
 ---
 ## จุดที่ควรปรับปรุง (แนะนำ)
 แม้จะไม่พบจุดเสี่ยงระดับวิกฤต แต่มีจุดที่ควรปรับปรุงเพื่อเพิ่มความแข็งแกร่งของระบบ:
 ### 1. File: ProfileAssistanceController.ts, ProfileAssistanceEmployeeController.ts, ProfileAssistanceEmployeeTempController.ts
 **Method:** `detailProfileAssistanceUser`, `detailProfileAssistance`, `getProfileAssistanceHistory`, `getProfileAdminAssistanceHistory`
 **Problem Type:** 2. Missing Error Handle (Logic Issue)
 **Root Cause:**
 ```typescript
 // Lines 42-48 (ProfileAssistanceController.ts)
 const getProfileAssistanceId = await this.profileAssistanceRepo.find({
  where: { profileId: profile.id, isDeleted: false },
  order: { createdAt: "ASC" },
 });
 if (!getProfileAssistanceId) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 ```
 `find()` method จะ return empty array `[]` เมื่อไม่พบข้อมูล ไม่ใช่ `null` หรือ `undefined` ดังนั้น condition `!getProfileAssistanceId` จะไม่เคยเป็น true
 **Recommended Fix:**
 ```typescript
 const getProfileAssistanceId = await this.profileAssistanceRepo.find({
  where: { profileId: profile.id, isDeleted: false },
  order: { createdAt: "ASC" },
 });
 if (getProfileAssistanceId.length === 0) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 // หรือถ้าต้องการให้ return empty array ได้
 return new HttpSuccess(getProfileAssistanceId);
 ```
 ---
 ### 2. File: ProfileCertificateController.ts, ProfileCertificateEmployeeController.ts
 **Method:** `deleteCertificate`
 **Problem Type:** 2. Missing Error Handle (Logic Error)
 **Root Cause:**
 ```typescript
 // Lines 226-228 (ProfileCertificateController.ts)
 if (certificateResult.affected && certificateResult.affected <= 0) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 ```
 Logic ผิด เพราะ `certificateResult.affected && certificateResult.affected <= 0` จะเป็น false เมื่อ affected = 0 (เนื่องจาก 0 ถือเป็น falsy value) ทำให้ไม่เคย throw error
 **Recommended Fix:**
 ```typescript
 if (certificateResult.affected === undefined || certificateResult.affected <= 0) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 ```
 ---
 ### 3. All Controllers
 **Method:** ทุก Method ที่ใช้ `Promise.all`
 **Problem Type:** 2. Missing Error Handle (Partial Failure)
 **Root Cause:**
 ```typescript
 // Pattern ที่ใช้ในหลาย ๆ Controller
 await Promise.all([
  this.profileAssistanceRepo.save(record, { data: req }),
  setLogDataDiff(req, { before, after: record }),
  this.profileAssistanceHistoryRepo.save(history, { data: req }),
 ]);
 ```
 ถ้า `setLogDataDiff` หรือ `historyRepo.save` ล้มเหลว แต่ `profileAssistanceRepo.save` สำเร็จ จะเกิด Data Inconsistency
 **Recommended Fix:**
 ```typescript
 // ใช้ Transaction ของ TypeORM แทน
 await AppDataSource.transaction(async (transactionalEntityManager) => {
  await transactionalEntityManager.save(ProfileAssistance, record);
  await transactionalEntityManager.save(ProfileAssistanceHistory, history);
 });
 setLogDataDiff(req, { before, after: record });
 ```
 ---
 ### 4. File: ProfileChildrenController.ts, ProfileChildrenEmployeeController.ts, ProfileChildrenEmployeeTempController.ts
 **Method:** `newChildren`, `editChildren`
 **Problem Type:** 2. Missing Error Handle (Unhandled Extension Function)
 **Root Cause:**
 ```typescript
 // Lines 96, 125 (ProfileChildrenController.ts)
 data.childrenCitizenId = Extension.CheckCitizen(String(data.childrenCitizenId));
 ```
 ถ้า `Extension.CheckCitizen()` มีการ throw error จะทำให้เกิด Unhandled Exception
 **Recommended Fix:**
 ```typescript
 try {
  data.childrenCitizenId = Extension.CheckCitizen(String(data.childrenCitizenId));
 } catch (error) {
  throw new HttpError(HttpStatus.BAD_REQUEST, "รูปแบบเลขบัตรประชาชนไม่ถูกต้อง");
 }
 ```
 ---
 ### 5. File: ProfileDisciplineController.ts
 **Method:** `editDiscipline`
 **Problem Type:** 2. Missing Error Handle (Inconsistent Code Pattern)
 **Root Cause:**
 ```typescript
 // Lines 166-173 (ProfileDisciplineController.ts)
 // await Promise.all(
 this.disciplineRepository.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.disciplineHistoryRepository.save(history, { data: req });
  // setLogDataDiff(req, { before, after: history });
 }
 // );
 ```
 มีการ comment out `Promise.all` แต่ยังคงเรียก `save()` โดยไม่มี await ในบางจุด ซึ่งอาจทำให้เกิด race condition
 **Recommended Fix:**
 ```typescript
 await Promise.all([
  this.disciplineRepository.save(record, { data: req }),
  setLogDataDiff(req, { before, after: record }),
  ...(Object.keys(body).length === 1 && body.isUpload
    ? []
    : [this.disciplineHistoryRepository.save(history, { data: req })]),
 ]);
 ```
 ---
 ## สรุปคำแนะนำการแก้ไข
 ### ระดับความสำคัญ: สูง
 1. **แก้ไข Logic การตรวจสอบผลลัพธ์จาก `find()`** - ใช้ `.length === 0` แทน `!result`
 2. **แก้ไข Logic การตรวจสอบ `affected`** - ใช้ `=== undefined || <= 0` แทน `&& <= 0`
 3. **ใช้ Transaction สำหรับ Operations ที่ต้องบันทึกข้อมูลหลายตาราง** - เพื่อป้องกัน Data Inconsistency
 ### ระดับความสำคัญ: ปานกลาง
 1. **เพิ่ม Error Handling รอบ ๆ Extension Functions** - เพื่อป้องกัน Unhandled Exception
 2. **ทำให้ Pattern การใช้ Promise/await สอดคล้องกัน** - หลีกเลี่ยงการเรียก save() โดยไม่มี await
 ### ระดับความสำคัญ: ต่ำ
 1. **Refactor code ให้ใช้ Transaction Manager** - เพื่อให้ code สะอาดและปลอดภัยมากขึ้น
 2. **เพิ่ม Error Boundary หรือ Global Error Handler** - เพื่อจัดการ error ที่ไม่คาดคิด
 ---
 ## การจัดการ Error ที่ดีที่สุดสำหรับ Microservices
 ```typescript
 // 1. ใช้ AsyncHandler Wrapper
 export const asyncHandler = (fn: Function) => (req: Request, res: Response, next: NextFunction) => {
  Promise.resolve(fn(req, res, next)).catch(next);
 };
 // 2. ใช้ Global Error Handler
 app.use((error: Error, req: Request, res: Response, next: NextFunction) => {
  console.error('Unhandled error:', error);
  res.status(500).json({ error: 'Internal server error' });
 });
 // 3. ใช้ Transaction สำหรับ Database Operations
 await AppDataSource.transaction(async (manager) => {
  // All database operations here
 });
 // 4. ตรวจสอบผลลัพธ์จาก find() อย่างถูกต้อง
 const results = await repo.find({ where: condition });
 if (results.length === 0) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 // 5. ตรวจสอบ affected อย่างถูกต้อง
 const result = await repo.delete({ id });
 if (result.affected === undefined || result.affected <= 0) {
  throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
 }
 ```
 ---
 ## สรุป
 Controllers ในชุดที่ 7 (61-70) มีความเสี่ยงต่ำต่อการเกิด **Unhandled Exception** ที่จะทำให้ Service Crash แต่มีจุดที่ควรปรับปรุงเพื่อ:
 1. **ป้องกัน Logic Errors** - โดยการตรวจสอบผลลัพธ์จาก `find()` และ `affected` อย่างถูกต้อง
 2. **ป้องกัน Data Inconsistency** - โดยการใช้ Transaction
 3. **เพิ่มความแข็งแกร่งของระบบ** - โดยการเพิ่ม Error Handling รอบ ๆ Extension Functions
 **ไม่มีจุดเสี่ยงระดับวิกฤตที่จะทำให้เกิด Crash Loop ในทันที** แต่ควรปรับปรุงตามคำแนะนำเพื่อเพิ่มความเสถียรของระบบในระยะยาว
--- a/reports/batch-08-controllers-71-80-analysis.md
+++ b/reports/batch-08-controllers-71-80-analysis.md
@ -1,445 +0,0 @@
 # Batch 08: Controllers 71-80 Analysis - Unhandled Exception & Crash Loop Risks
 ## Executive Summary
 พบจุดเสี่ยงระดับ **CRITICAL** ที่อาจทำให้เกิด **Unhandled Exception** และ **Crash Loop** ในระบบ Microservices จำนวน **8 จุด** จากการตรวจสอบ 10 Controllers ในชุดที่ 8
 ---
 ## Critical Issues Found
 ### 1. **CRITICAL** - Unhandled External API Call in ProfileController.ts
 #### **File & Location**
 - **File:** `src/controllers/ProfileController.ts`
 - **Methods:**
  - Line 484-499: `getSalaryProfile()` method
  - Line 977-992: Similar pattern in another method
 #### **Problem Type**
 1. **Unhandled Exception**
 2. **Silent Error Swallowing**
 #### **Root Cause**
 ```typescript
 // Line 484-499
 await Promise.all(
  await profiles.profileAvatars.slice(-7).map(async (x, i) => {
    if (x == null) {
      _ImgUrl[i] = null;
    } else {
      const url = process.env.API_URL + `/salary/file/${x?.avatar}/${x?.avatarName}`;
      try {
        const response_ = await axios.get(url, {
          headers: {
            Authorization: `${token_}`,
            "Content-Type": "application/json",
            api_key: process.env.API_KEY,
          },
        });
        _ImgUrl[i] = response_.data.downloadUrl;
      } catch {}  // ❌ SILENT ERROR - Empty catch block
    }
  })
 );
 ```
 **รายละเอียดปัญหา:**
 1. **Empty catch block**: มีการใช้ `catch {}` ว่างเปล่า ทำให้ไม่ทราบว่าเกิด Error 什么
 2. **Unhandled Promise rejection**: หาก axios.get throw exception ภายใน Promise.all อาจทำให้เกิด Unhandled Promise Rejection
 3. **External API dependency**: เรียก API ภายนอก (API_URL) โดยไม่มี Timeout handling
 4. **No retry logic**: ไม่มีการ retry เมื่อเกิด Error
 **ผลกระทบ:**
 - หาก External API ล่มหรือ Timeout อาจทำให้ Request ค้างอยู่นาน
 - ไม่มี Logging ทำให้ยากต่อการ Debug
 - อาจทำให้ Memory Leak หาก Promise ไม่ resolve
 ---
 ### 2. **CRITICAL** - Incorrect Error Handling Pattern in updateName() Function
 #### **File & Location**
 - **File:** `src/controllers/ProfileChangeNameController.ts`
  - Lines 118-128: `newChangeName()` method
  - Lines 189-200: `editChangeName()` method
 - **File:** `src/controllers/ProfileChangeNameEmployeeController.ts`
  - Lines 124-134: `newChangeName()` method
  - Lines 189-200: `editChangeName()` method (similar pattern)
 - **File:** `src/controllers/ProfileChangeNameEmployeeTempController.ts`
  - Lines 116-126: `newChangeName()` method
 - **File:** `src/controllers/ProfileController.ts`
  - Lines 5473-5483: Update profile method
  - Lines 5792-5802: Update profile method
 #### **Problem Type**
 1. **Unhandled Exception**
 2. **Type Error Risk**
 #### **Root Cause**
 ```typescript
 // Pattern found across multiple controllers
 if (profile != null && profile.keycloak != null && profile.isDelete === false) {
  const result = await updateName(
    profile.keycloak,
    profile.firstName,
    profile.lastName,
    profile.prefix,
  );
  if (!result) {
    throw new Error(result.errorMessage);  // ❌ CRITICAL BUG
  }
 }
 ```
 **รายละเอียดปัญหา:**
 1. **Accessing property of undefined**: เมื่อ `result` เป็น `false` (falsy value) การพยายามเข้าถึง `result.errorMessage` จะทำให้เกิด TypeError
 2. **Unhandled Exception**: TypeError นี้จะไม่ถูก catch และจะ propagate ขึ้นไปทำให้ Service Crash
 3. **Inconsistent return type**: ฟังก์ชัน `updateName()` ใน `src/keycloak/index.ts` ส่งค่ากลับเป็น `false`, `true`, `id`, หรือ `object with errorMessage` (ไม่ consistent)
 **ตรวจสอบฟังก์ชัน updateName():**
 ```typescript
 // src/keycloak/index.ts:525-533
 if (!res) return false;
 if (!res.ok) {
  return await res.json();  // Returns error object with errorMessage
 }
 const path = res.headers.get("Location");
 const id = path?.split("/").at(-1);
 return id || true;  // Returns string ID or true
 ```
 **ผลกระทบ:**
 - **CRASH LOOP**: เมื่อ Keycloak API คืนค่า error จะเกิด TypeError และทำให้ Process Crash
 - ข้อมูลใน Database ถูกบันทึกแล้ว แต่ Keycloak ไม่ได้ถูก update (Data Inconsistency)
 ---
 ### 3. **HIGH** - Missing Error Handling in Promise.all() Operations
 #### **File & Location**
 - **File:** `src/controllers/ProfileCertificateEmployeeTempController.ts`
  - Lines 155-163: `editCertificate()` method
 - **File:** `src/controllers/ProfileDevelopmentController.ts`
  - Lines 294-297: `editDevelopment()` method
 - **File:** `src/controllers/ProfileDevelopmentEmployeeController.ts`
  - Lines 237-240: `editDevelopment()` method
 #### **Problem Type**
 1. **Missing Error Handle**
 2. **Data Consistency Risk**
 #### **Root Cause**
 ```typescript
 // Example from ProfileCertificateEmployeeTempController.ts:155-163
 await Promise.all([
  this.certificateRepo.save(record, { data: req }),
  setLogDataDiff(req, { before, after: record }),
  this.certificateHistoryRepository.save(history, { data: req }),
 ]);
 ```
 **รายละเอียดปัญหา:**
 1. **Partial failure risk**: หาก `setLogDataDiff()` throw error การ save ทั้ง 2 จุดก่อนหน้านี้จะเสียไป
 2. **No transaction**: ไม่มีการใช้ Transaction ในการ save ข้อมูลหลายตาราง
 3. **Orphaned data**: อาจเกิดข้อมูลปนกันระหว่าง production และ history
 ---
 ### 4. **MEDIUM** - StructuredClone Potential Memory Issue
 #### **File & Location**
 - **Multiple Controllers**: ใช้ `structuredClone()` กับ object ขนาดใหญ่
 - **Example:** `ProfileChangeNameController.ts:137`, `ProfileDevelopmentController.ts:349`
 #### **Problem Type**
 1. **Memory Issue**
 2. **Performance Risk**
 #### **Root Cause**
 ```typescript
 const before = structuredClone(record); // record อาจมีขนาดใหญ่
 ```
 **รายละเอียดปัญหา:**
 - `structuredClone()` ใช้เวลาและ memory มากกับ object ขนาดใหญ่
 - อาจทำให้เกิด Memory Heap Overflow ใน Production
 ---
 ## Recommended Fixes
 ### Fix 1: ProfileController.ts - External API Call with Proper Error Handling
 **Before:**
 ```typescript
 try {
  const response_ = await axios.get(url, {
    headers: {
      Authorization: `${token_}`,
      "Content-Type": "application/json",
      api_key: process.env.API_KEY,
    },
  });
  _ImgUrl[i] = response_.data.downloadUrl;
 } catch {}  // ❌ Empty catch
 ```
 **After:**
 ```typescript
 try {
  const response_ = await axios.get(url, {
    headers: {
      Authorization: `${token_}`,
      "Content-Type": "application/json",
      api_key: process.env.API_KEY,
    },
    timeout: 5000,  // Add timeout
  });
  _ImgUrl[i] = response_.data.downloadUrl;
 } catch (error) {
  console.error(`Failed to fetch avatar ${x?.avatar}:`, error.message);
  _ImgUrl[i] = null;  // Fallback to null
  // Or re-throw if critical: throw new HttpError(HttpStatus.SERVICE_UNAVAILABLE, "Avatar service unavailable");
 }
 ```
 ---
 ### Fix 2: Incorrect Error Handling Pattern - ALL Controllers
 **Before:**
 ```typescript
 const result = await updateName(
  profile.keycloak,
  profile.firstName,
  profile.lastName,
  profile.prefix,
 );
 if (!result) {
  throw new Error(result.errorMessage);  // ❌ TypeError when result is false
 }
 ```
 **After:**
 ```typescript
 const result = await updateName(
  profile.keycloak,
  profile.firstName,
  profile.lastName,
  profile.prefix,
 );
 // Check result type properly
 if (result === false || (result && result.errorMessage)) {
  const errorMessage = result?.errorMessage || 'Failed to update name in Keycloak';
  console.error('Keycloak updateName error:', errorMessage);
  // Option 1: Throw HTTP error instead of generic Error
  throw new HttpError(
    HttpStatus.SERVICE_UNAVAILABLE,
    `ไม่สามารถอัปเดตชื่อใน Keycloak ได้: ${errorMessage}`
  );
  // Option 2: Log and continue (if not critical)
  // console.warn(`Keycloak update failed for user ${profile.keycloak}: ${errorMessage}`);
  // Don't throw - just log the error
 }
 ```
 **OR** Fix the keycloak function to return consistent type:
 ```typescript
 // src/keycloak/index.ts
 export async function updateName(
  userId: string,
  firstName: string,
  lastName: string,
  prefix: string,
 ): Promise<{ success: boolean; errorMessage?: string }> {
  try {
    const existingUser = await getUser(userId);
    if (!existingUser) {
      return { success: false, errorMessage: `User ${userId} not found` };
    }
    const updatedUser = {
      ...existingUser,
      firstName,
      lastName,
      attributes: {
        ...(existingUser.attributes || {}),
        prefix,
      },
    };
    const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users/${userId}`, {
      headers: {
        "authorization": `Bearer ${await getToken()}`,
        "content-type": `application/json`,
      },
      method: "PUT",
      body: JSON.stringify(updatedUser),
    });
    if (!res.ok) {
      const errorData = await res.json();
      return { success: false, errorMessage: errorData.message || 'Update failed' };
    }
    return { success: true };
  } catch (error) {
    return { success: false, errorMessage: error.message };
  }
 }
 ```
 ---
 ### Fix 3: Add Transaction Support for Multi-Table Operations
 **Before:**
 ```typescript
 await Promise.all([
  this.certificateRepo.save(record, { data: req }),
  setLogDataDiff(req, { before, after: record }),
  this.certificateHistoryRepository.save(history, { data: req }),
 ]);
 ```
 **After:**
 ```typescript
 try {
  await AppDataSource.transaction(async (transactionalEntityManager) => {
    await transactionalEntityManager.save(ProfileCertificate, record);
    await transactionalEntityManager.save(ProfileCertificateHistory, history);
  });
  // Log diff outside transaction
  setLogDataDiff(req, { before, after: record });
 } catch (error) {
  console.error('Failed to save certificate:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'ไม่สามารถบันทึกข้อมูลได้ กรุณาลองใหม่'
  );
 }
 ```
 ---
 ### Fix 4: Add Global Error Handler for Unhandled Exceptions
 **Create/Update `src/middlewares/error-handler.ts`:**
 ```typescript
 import { Request, Response, NextFunction } from 'express';
 import HttpError from '../interfaces/http-error';
 export function globalErrorHandler(
  err: Error,
  req: Request,
  res: Response,
  next: NextFunction
 ) {
  console.error('[Unhandled Exception]', err);
  // Don't leak error details in production
  const isDevelopment = process.env.NODE_ENV === 'development';
  if (err instanceof HttpError) {
    return res.status(err.status).json({
      error: err.message,
      ...(isDevelopment && { stack: err.stack })
    });
  }
  // Handle TypeError from result.errorMessage pattern
  if (err instanceof TypeError && err.message.includes("errorMessage")) {
    return res.status(500).json({
      error: 'External service error',
      ...(isDevelopment && { details: err.message })
    });
  }
  // Generic error response
  res.status(500).json({
    error: 'Internal server error',
    ...(isDevelopment && { 
      message: err.message,
      stack: err.stack 
    })
  });
 }
 // Handle unhandled promise rejections
 export function setupUnhandledRejectionHandler() {
  process.on('unhandledRejection', (reason, promise) => {
    console.error('[Unhandled Rejection] at:', promise, 'reason:', reason);
    // Don't crash the process
    // Log to monitoring service instead
  });
  process.on('uncaughtException', (error) => {
    console.error('[Uncaught Exception]', error);
    // Log to monitoring service
    // Graceful shutdown
    process.exit(1);
  });
 }
 ```
 ---
 ## Summary Statistics
 | Issue Type | Count | Severity |
 |------------|-------|----------|
 | Unhandled External API Call | 2 | CRITICAL |
 | Incorrect Error Handling (TypeError Risk) | 8 | CRITICAL |
 | Missing Transaction Support | 6 | HIGH |
 | Silent Error Swallowing | 2 | MEDIUM |
 | Memory/Performance Risk | Multiple | MEDIUM |
 ---
 ## Files Requiring Immediate Attention
 1. ✅ `src/controllers/ProfileController.ts` - CRITICAL (Line 484, 5473, 5792)
 2. ✅ `src/controllers/ProfileChangeNameController.ts` - CRITICAL (Line 118, 189)
 3. ✅ `src/controllers/ProfileChangeNameEmployeeController.ts` - CRITICAL (Line 124, 189)
 4. ✅ `src/controllers/ProfileChangeNameEmployeeTempController.ts` - CRITICAL (Line 116)
 5. ✅ `src/keycloak/index.ts` - CRITICAL (Need to fix return type consistency)
 ---
 ## Priority Recommendations
 ### P0 (Immediate Action Required)
 1. Fix the `result.errorMessage` TypeError pattern across all controllers
 2. Add proper error handling for external API calls in ProfileController
 3. Implement global error handler for unhandled exceptions
 ### P1 (This Sprint)
 4. Add transaction support for multi-table operations
 5. Implement retry logic for external API calls
 6. Add proper logging and monitoring
 ### P2 (Next Sprint)
 7. Review memory usage with structuredClone()
 8. Add circuit breaker pattern for external services
 9. Implement comprehensive error tracking
 ---
 ## Testing Recommendations
 1. **Unit Tests**: Test error scenarios for Keycloak integration
 2. **Integration Tests**: Test external API failure scenarios
 3. **Load Tests**: Test memory usage with large profile data
 4. **Chaos Testing**: Test behavior when external services are down
 ---
 **Report Generated:** 2026-05-08
 **Batch:** 08 (Controllers 71-80)
 **Total Files Analyzed:** 10
 **Critical Issues Found:** 8
--- a/reports/batch-09-controllers-81-90-analysis.md
+++ b/reports/batch-09-controllers-81-90-analysis.md
@ -1,593 +0,0 @@
 # Batch 09: Controllers 81-90 Analysis - Unhandled Exception & Crash Loop Risks
 ## Executive Summary
 พบจุดเสี่ยงระดับ **CRITICAL** ที่อาจทำให้เกิด **Unhandled Exception** และ **Crash Loop** ในระบบ Microservices จำนวน **5 จุด** จากการตรวจสอบ 10 Controllers ในชุดที่ 9
 ---
 ## Critical Issues Found
 ### 1. **CRITICAL** - Unhandled External API Call with Silent Failure
 #### **File & Location**
 - **File:** `src/controllers/ProfileEditController.ts`
  - Lines 360-372: `newProfileEdit()` method
 - **File:** `src/controllers/ProfileEditEmployeeController.ts`
  - Lines 360-372: `profileEdit()` method
 #### **Problem Type**
 1. **Unhandled Exception**
 2. **Silent Error Swallowing**
 3. **Data Inconsistency Risk**
 #### **Root Cause**
 ```typescript
 // ProfileEditController.ts:360-372
 await new CallAPI()
  .PostData(req, "/org/workflow/add-workflow", {
    refId: data.id,
    sysName: "REGISTRY_PROFILE",
    posLevelName: profile.posLevel.posLevelName,
    posTypeName: profile.posType.posTypeName,
    fullName: `${profile.prefix}${profile.firstName} ${profile.lastName}`,
    isDeputy: orgRoot?.isDeputy ?? false,
    orgRootId: orgRoot?.id ?? null
  })
  .catch((error) => {
    console.error("Error calling API:", error);
  });
 // ❌ No re-throw, no proper error handling
 ```
 **รายละเอียดปัญหา:**
 1. **Silent Failure**: มีการใช้ `.catch()` แค่ log error แต่ไม่ throw หรือ handle error
 2. **Data Inconsistency**: ข้อมูล ProfileEdit ถูกบันทึกแล้ว แต่ Workflow ไม่ได้ถูกสร้าง
 3. **No Transaction**: ไม่มีการใช้ Transaction เพื่อ roll back ข้อมูลเมื่อ API ล้มเหลว
 4. **User Confusion**: ผู้ใช้จะเห็นว่าบันทึกสำเร็จ แต่จริงๆ แล้ว Workflow ไม่ได้ทำงาน
 **ผลกระทบ:**
 - ข้อมูลใน Database ไม่สมบูรณ์ (ProfileEdit มีแต่ไม่มี Workflow)
 - ผู้ใช้ไม่ทราบว่าเกิด Error จริงๆ
 - ระบบอาจทำงานผิดปกติในภายหลังเมื่อมีการดำเนินการกับข้อมูลที่ไม่สมบูรณ์
 ---
 ### 2. **CRITICAL** - Potential Null Pointer Exception in Optional Chaining
 #### **File & Location**
 - **File:** `src/controllers/ProfileEditController.ts`
  - Line 336-344: `newProfileEdit()` method
 - **File:** `src/controllers/ProfileEditEmployeeController.ts`
  - Line 337-345: `profileEdit()` method
 #### **Problem Type**
 1. **Unhandled Exception**
 2. **TypeError Risk**
 3. **Potential Crash**
 #### **Root Cause**
 ```typescript
 // ProfileEditController.ts:336-344
 const orgRoot = await this.orgRootRepo.findOne({
  select: {
    id: true,
    isDeputy: true
  },
  where: {
    id: profile.current_holders.find(x => x.orgRootId)!.orgRootId ?? ""
    //                                                          ^
    //                                                          Non-null assertion without check
  }
 });
 ```
 **รายละเอียดปัญหา:**
 1. **Unsafe Array Access**: ใช้ `.find()` แล้วใช้ `!` (non-null assertion) โดยไม่มีการ check
 2. **Potential TypeError**: หาก `.find()` return `undefined` การพยายามเข้าถึง `.orgRootId` จะทำให้เกิด `TypeError: Cannot read property 'orgRootId' of undefined`
 3. **Unhandled Exception**: Error นี้จะทำให้ Service Crash ทันที
 **สถานการณ์ที่อาจเกิดขึ้น:**
 ```typescript
 // หาก current_holders เป็น empty array หรือไม่พบ element
 profile.current_holders.find(x => x.orgRootId) // returns undefined
 undefined!.orgRootId // ❌ CRASH: TypeError
 ```
 ---
 ### 3. **HIGH** - Unsafe Array Access in Multiple Locations
 #### **File & Location**
 - **File:** `src/controllers/ProfileEditController.ts`
  - Line 278: `detailProfileEdit()` method
 - **File:** `src/controllers/ProfileEditEmployeeController.ts`
  - Line 277: `detailProfileEditEmp()` method
 #### **Problem Type**
 1. **Unhandled Exception**
 2. **TypeError Risk**
 #### **Root Cause**
 ```typescript
 // ProfileEditController.ts:278-292
 let orgRoot: OrgRoot | null = null;
 if(getProfileEdit.profile) { 
  const empPosMaster = await this.posMasterRepo.findOne({
    where: {
      current_holderId: getProfileEdit.profile.id,
      orgRevision: { orgRevisionIsCurrent: true, orgRevisionIsDraft: false }
    },
    relations: { orgRevision: true }
  });
  if(empPosMaster) {
    orgRoot = await this.orgRootRepo.findOne({
      select: { isDeputy: true },
      where: { id: empPosMaster.orgRootId ?? "" }
      //                               ^^^^^^^^^^^^^^^^^^^
      //                               May be null, using "" as fallback
    });
  }
 }
 ```
 **รายละเอียดปัญหา:**
 1. **Unsafe Fallback**: ใช้ empty string `""` เป็น fallback สำหรับ `orgRootId`
 2. **Silent Failure**: การ query ด้วย ID ว่างจะ return `null` แต่ไม่มีการแจ้งเตือน
 3. **Data Integrity**: อาจทำให้ข้อมูล `isDeputy` ไม่ถูกต้อง
 ---
 ### 4. **HIGH** - Missing Error Handling in Database Update Operations
 #### **File & Location**
 - **File:** `src/controllers/ProfileDisciplineController.ts`
  - Lines 167-172: `editDiscipline()` method
 - **File:** `src/controllers/ProfileDisciplineEmployeeController.ts`
  - Lines 172-177: `editDiscipline()` method
 - **File:** `src/controllers/ProfileDisciplineEmployeeTempController.ts`
  - Lines 162-167: `editDiscipline()` method
 - **File:** `src/controllers/ProfileDutyController.ts`
  - Lines 143-148: `editDuty()` method
 - **File:** `src/controllers/ProfileDutyEmployeeController.ts`
  - Lines 152-157: `editDuty()` method
 - **File:** `src/controllers/ProfileDutyEmployeeTempController.ts`
  - Lines 141-146: `editDuty()` method
 #### **Problem Type**
 1. **Missing Error Handle**
 2. **Data Loss Risk**
 #### **Root Cause**
 ```typescript
 // Pattern found across multiple controllers
 this.disciplineRepository.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.disciplineHistoryRepository.save(history, { data: req });
  // ❌ No await, no error handling
 }
 ```
 **รายละเอียดปัญหา:**
 1. **Missing await**: ไม่มีการ `await` การ save history ทำให้ไม่รู้ว่า save สำเร็จหรือไม่
 2. **No Error Handling**: หากการ save history ล้มเหลว จะไม่มีการ catch error
 3. **Silent Failure**: History อาจไม่ถูกบันทึก แต่ไม่มีใครรู้
 **ผลกระทบ:**
 - History audit trail ไม่สมบูรณ์
 - ไม่สามารถ trace back การเปลี่ยนแปลงได้
 - การ audit และ debugging ยากขึ้น
 ---
 ### 5. **MEDIUM** - Complex Nested Query Without Error Handling
 #### **File & Location**
 - **File:** `src/controllers/ProfileEditController.ts`
  - Lines 112-255: `detailProfileEditAdmin()` method
 - **File:** `src/controllers/ProfileEditEmployeeController.ts`
  - Lines 110-254: `detailProfileEditAdminEmp()` method
 #### **Problem Type**
 1. **Missing Error Handle**
 2. **Performance Risk**
 3. **Query Complexity Risk**
 #### **Root Cause**
 ```typescript
 // ProfileEditController.ts:122-193
 const orgRevisionPublish = await this.orgRevisionRepository
  .createQueryBuilder("orgRevision")
  .where("orgRevision.orgRevisionIsDraft = false")
  .andWhere("orgRevision.orgRevisionIsCurrent = true")
  .getOne(); // ❌ No null check, used in query below
 let query = await AppDataSource.getRepository(ProfileEdit)
  .createQueryBuilder("ProfileEdit")
  .leftJoinAndSelect("ProfileEdit.profile", "profile")
  .leftJoinAndSelect("profile.current_holders", "current_holders")
  .leftJoinAndSelect("current_holders.orgRevision", "orgRevision")
  .where((qb) => {
    if (status != "" && status != null) {
      qb.andWhere("ProfileEdit.status = :status", { status: status });
    }
    qb.andWhere("ProfileEdit.profileId IS NOT NULL");
  })
  .andWhere(orgRevisionPublish ? `current_holders.orgRevisionId = :revisionId` : "1=1", {
    revisionId: orgRevisionPublish?.id, // ❌ Could be undefined
  })
  .andWhere(
    data.root != undefined && data.root != null
      ? data.root[0] != null
        ? `current_holders.orgRootId IN (:...root)`
        : `current_holders.orgRootId is null`
      : "1=1",
    {
      root: data.root, // ❌ Could cause SQL error if undefined
    },
  )
  // ... more complex conditions
 ```
 **รายละเอียดปัญหา:**
 1. **No Null Check**: `orgRevisionPublish` อาจเป็น `null` แต่ถูกใช้ใน query
 2. **Complex Query Logic**: Query ที่ซับซ้อนมากหลายเงื่อนไข ไม่มีการ validate input
 3. **SQL Injection Risk**: แม้จะใช้ Parameterized query แต่ยังมี dynamic SQL ที่อาจเสี่ยง
 4. **No Timeout**: Query ขนาดใหญ่ไม่มี timeout อาจทำให้ connection hang
 ---
 ## Recommended Fixes
 ### Fix 1: Proper Error Handling for External API Calls
 **Before:**
 ```typescript
 await this.profileEditRepo.save(data);
 await new CallAPI()
  .PostData(req, "/org/workflow/add-workflow", {...})
  .catch((error) => {
    console.error("Error calling API:", error);
  });
 return new HttpSuccess(data.id);
 ```
 **After:**
 ```typescript
 // Option 1: Use Transaction Pattern
 await AppDataSource.transaction(async (transactionalEntityManager) => {
  // Save main data
  const savedData = await transactionalEntityManager.save(ProfileEdit, data);
  try {
    // Call external API
    await new CallAPI().PostData(req, "/org/workflow/add-workflow", {
      refId: savedData.id,
      sysName: "REGISTRY_PROFILE",
      posLevelName: profile.posLevel.posLevelName,
      posTypeName: profile.posType.posTypeName,
      fullName: `${profile.prefix}${profile.firstName} ${profile.lastName}`,
      isDeputy: orgRoot?.isDeputy ?? false,
      orgRootId: orgRoot?.id ?? null
    });
  } catch (error) {
    console.error("Failed to create workflow:", error);
    // Rollback by throwing error
    throw new HttpError(
      HttpStatus.SERVICE_UNAVAILABLE,
      "ไม่สามารถสร้าง Workflow ได้ กรุณาลองใหม่ภายหลัง"
    );
  }
 });
 return new HttpSuccess(data.id);
 // Option 2: Async Pattern with Queue (Recommended for Production)
 // Save data first, then process workflow asynchronously
 const savedData = await this.profileEditRepo.save(data);
 // Emit event for workflow creation
 // await this.eventEmitter.emit('profile.edit.created', {
 //   profileEditId: savedData.id,
 //   profileId: profile.id,
 //   // ... other data
 // });
 return new HttpSuccess(savedData.id);
 ```
 ---
 ### Fix 2: Safe Array Access with Proper Null Checks
 **Before:**
 ```typescript
 const orgRoot = await this.orgRootRepo.findOne({
  select: { id: true, isDeputy: true },
  where: {
    id: profile.current_holders.find(x => x.orgRootId)!.orgRootId ?? ""
  }
 });
 ```
 **After:**
 ```typescript
 // Safe access with proper null checks
 const currentHolder = profile.current_holders?.find(x => x.orgRootId);
 if (!currentHolder || !currentHolder.orgRootId) {
  throw new HttpError(
    HttpStatus.BAD_REQUEST,
    "ไม่พบข้อมูลตำแหน่งปัจจุบัน กรุณาติดต่อ HR"
  );
 }
 const orgRoot = await this.orgRootRepo.findOne({
  select: { id: true, isDeputy: true },
  where: { id: currentHolder.orgRootId }
 });
 if (!orgRoot) {
  console.warn(`OrgRoot not found for id: ${currentHolder.orgRootId}`);
  // Continue with default values or throw error based on business logic
 }
 ```
 ---
 ### Fix 3: Add Proper Error Handling for Database Operations
 **Before:**
 ```typescript
 this.disciplineRepository.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.disciplineHistoryRepository.save(history, { data: req });
 }
 ```
 **After:**
 ```typescript
 try {
  // Save main record
  await this.disciplineRepository.save(record, { data: req });
  setLogDataDiff(req, { before, after: record });
  // Save history if needed
  if (!(Object.keys(body).length === 1 && body.isUpload)) {
    try {
      await this.disciplineHistoryRepository.save(history, { data: req });
    } catch (historyError) {
      console.error("Failed to save history:", historyError);
      // Log error but don't fail the request
      // Consider using a message queue for audit logging
      // await this.auditQueue.send({
      //   action: 'DISCIPLINE_UPDATE',
      //   data: history,
      //   error: historyError.message
      // });
    }
  }
 } catch (error) {
  console.error("Failed to save discipline:", error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    "ไม่สามารถบันทึกข้อมูลได้ กรุณาลองใหม่"
  );
 }
 ```
 ---
 ### Fix 4: Add Query Timeout and Null Checks
 **Before:**
 ```typescript
 const orgRevisionPublish = await this.orgRevisionRepository
  .createQueryBuilder("orgRevision")
  .where("orgRevision.orgRevisionIsDraft = false")
  .andWhere("orgRevision.orgRevisionIsCurrent = true")
  .getOne();
 let query = await AppDataSource.getRepository(ProfileEdit)
  .createQueryBuilder("ProfileEdit")
  // ... complex query
 ```
 **After:**
 ```typescript
 // Add timeout and proper null handling
 const orgRevisionPublish = await this.orgRevisionRepository
  .createQueryBuilder("orgRevision")
  .where("orgRevision.orgRevisionIsDraft = false")
  .andWhere("orgRevision.orgRevisionIsCurrent = true")
  .setHint('maxExecutionTime', 5000) // 5 second timeout
  .getOne();
 // Validate permission data
 if (!data || !data.root) {
  throw new HttpError(
    HttpStatus.FORBIDDEN,
    "ไม่มีสิทธิ์เข้าถึงข้อมูล"
  );
 }
 // Build query with validation
 const queryBuilder = AppDataSource.getRepository(ProfileEdit)
  .createQueryBuilder("ProfileEdit")
  .leftJoinAndSelect("ProfileEdit.profile", "profile")
  .leftJoinAndSelect("profile.current_holders", "current_holders")
  .leftJoinAndSelect("current_holders.orgRevision", "orgRevision")
  .where((qb) => {
    if (status != "" && status != null) {
      qb.andWhere("ProfileEdit.status = :status", { status: status });
    }
    qb.andWhere("ProfileEdit.profileId IS NOT NULL");
  })
  .setMaxResults(1000) // Prevent large result sets
  .setHint('maxExecutionTime', 10000); // 10 second timeout
 // Add revision filter only if valid
 if (orgRevisionPublish?.id) {
  queryBuilder.andWhere(
    `current_holders.orgRevisionId = :revisionId`,
    { revisionId: orgRevisionPublish.id }
  );
 }
 // Add root filter with validation
 if (Array.isArray(data.root) && data.root.length > 0 && data.root[0] !== null) {
  queryBuilder.andWhere(`current_holders.orgRootId IN (:...root)`, { root: data.root });
 } else if (data.root?.[0] === null) {
  queryBuilder.andWhere(`current_holders.orgRootId IS NULL`);
 }
 const [getProfileEdit, total] = await queryBuilder
  .skip((page - 1) * pageSize)
  .take(Math.min(pageSize, 100)) // Limit page size
  .getManyAndCount();
 ```
 ---
 ### Fix 5: Implement Global Error Handler
 **Create/Update `src/middlewares/error-handler.ts`:**
 ```typescript
 import { Request, Response, NextFunction } from 'express';
 import HttpError from '../interfaces/http-error';
 export function globalErrorHandler(
  err: Error,
  req: Request,
  res: Response,
  next: NextFunction
 ) {
  console.error('[Unhandled Exception]', {
    error: err.message,
    stack: err.stack,
    path: req.path,
    method: req.method,
    body: req.body,
    query: req.query
  });
  const isDevelopment = process.env.NODE_ENV === 'development';
  if (err instanceof HttpError) {
    return res.status(err.status).json({
      error: err.message,
      ...(isDevelopment && { stack: err.stack })
    });
  }
  // Handle TypeError from unsafe property access
  if (err instanceof TypeError && err.message.includes("Cannot read")) {
    return res.status(500).json({
      error: 'Data access error',
      ...(isDevelopment && { 
        details: err.message,
        stack: err.stack 
      })
    });
  }
  // Generic error response
  res.status(500).json({
    error: 'Internal server error',
    ...(isDevelopment && { 
      message: err.message,
      stack: err.stack 
    })
  });
 }
 // Handle unhandled promise rejections
 export function setupUnhandledRejectionHandler() {
  process.on('unhandledRejection', (reason, promise) => {
    console.error('[Unhandled Rejection] at:', promise, 'reason:', reason);
    // Send to monitoring service
    // monitoringService.captureException(reason);
  });
  process.on('uncaughtException', (error) => {
    console.error('[Uncaught Exception]', error);
    // Send to monitoring service
    // monitoringService.captureException(error);
    // Graceful shutdown
    cleanup();
    process.exit(1);
  });
 }
 async function cleanup() {
  // Close database connections
  await AppDataSource.destroy();
  // Close other resources
 }
 ```
 ---
 ## Summary Statistics
 | Issue Type | Count | Severity |
 |------------|-------|----------|
 | Unhandled External API Call (Silent Failure) | 2 | CRITICAL |
 | Unsafe Array Access (Null Pointer Risk) | 2 | CRITICAL |
 | Missing Error Handling in DB Operations | 12 | HIGH |
 | Complex Query Without Timeout/Null Check | 2 | MEDIUM |
 | Data Inconsistency Risk | 4 | HIGH |
 ---
 ## Files Requiring Immediate Attention
 1. ✅ `src/controllers/ProfileEditController.ts` - CRITICAL (Line 336, 360)
 2. ✅ `src/controllers/ProfileEditEmployeeController.ts` - CRITICAL (Line 337, 360)
 3. ✅ `src/controllers/ProfileDisciplineController.ts` - HIGH (Line 167)
 4. ✅ `src/controllers/ProfileDisciplineEmployeeController.ts` - HIGH (Line 172)
 5. ✅ `src/controllers/ProfileDisciplineEmployeeTempController.ts` - HIGH (Line 162)
 6. ✅ `src/controllers/ProfileDutyController.ts` - HIGH (Line 143)
 7. ✅ `src/controllers/ProfileDutyEmployeeController.ts` - HIGH (Line 152)
 8. ✅ `src/controllers/ProfileDutyEmployeeTempController.ts` - HIGH (Line 141)
 ---
 ## Priority Recommendations
 ### P0 (Immediate Action Required)
 1. Fix unsafe array access with non-null assertion (`!`)
 2. Add proper error handling for external API calls (CallAPI)
 3. Implement transaction pattern for multi-step operations
 ### P1 (This Sprint)
 4. Add error handling for all database save operations
 5. Implement query timeout for complex queries
 6. Add input validation for query parameters
 ### P2 (Next Sprint)
 7. Implement async event queue for external API calls
 8. Add comprehensive monitoring and alerting
 9. Implement circuit breaker pattern for external services
 ---
 ## Testing Recommendations
 1. **Unit Tests**: Test null/undefined scenarios for array access
 2. **Integration Tests**: Test external API failure scenarios
 3. **Load Tests**: Test query performance with large datasets
 4. **Chaos Testing**: Test behavior when external services are down
 5. **Data Consistency Tests**: Verify transaction rollback behavior
 ---
 **Report Generated:** 2026-05-08
 **Batch:** 09 (Controllers 81-90)
 **Total Files Analyzed:** 10
 **Critical Issues Found:** 5
 **High Priority Issues:** 14
--- a/reports/batch-10-controllers-91-100-analysis.md
+++ b/reports/batch-10-controllers-91-100-analysis.md
--- a/reports/batch-11-controllers-101-110-analysis.md
+++ b/reports/batch-11-controllers-101-110-analysis.md
--- a/reports/batch-12-controllers-111-120-analysis.md
+++ b/reports/batch-12-controllers-111-120-analysis.md
@ -1,442 +0,0 @@
 # รายงานการตรวจสอบ Unhandled Exception และ Crash Loop
 ## Batch 12: Controllers 111-120
 **วันที่ตรวจสอบ:** 2026-05-08  
 **จำนวน Controllers ที่ตรวจสอบ:** 10 Controllers
 ---
 ## Controllers ที่ตรวจสอบในชุดนี้
 1. [ProfileInsigniaController.ts](src/controllers/ProfileInsigniaController.ts)
 2. [ProfileInsigniaEmployeeController.ts](src/controllers/ProfileInsigniaEmployeeController.ts)
 3. [ProfileInsigniaEmployeeTempController.ts](src/controllers/ProfileInsigniaEmployeeTempController.ts)
 4. [ProfileLeaveController.ts](src/controllers/ProfileLeaveController.ts)
 5. [ProfileLeaveEmployeeController.ts](src/controllers/ProfileLeaveEmployeeController.ts)
 6. [ProfileLeaveEmployeeTempController.ts](src/controllers/ProfileLeaveEmployeeTempController.ts)
 7. [ProfileNopaidController.ts](src/controllers/ProfileNopaidController.ts)
 8. [ProfileNopaidEmployeeController.ts](src/controllers/ProfileNopaidEmployeeController.ts)
 9. [ProfileNopaidEmployeeTempController.ts](src/controllers/ProfileNopaidEmployeeTempController.ts)
 10. [ProfileOtherController.ts](src/controllers/ProfileOtherController.ts)
 ---
 ## รายการปัญหาที่พบ
 ### 1. 🔴 CRITICAL - ProfileInsigniaController.ts - Unhandled Promise in editInsignia
 **File & Location:** [ProfileInsigniaController.ts](src/controllers/ProfileInsigniaController.ts:192-197) - `editInsignia()` method
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 ```typescript
 this.insigniaRepo.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.insigniaHistoryRepo.save(history, { data: req });
 }
 ```
 - มีการเรียก `this.insigniaRepo.save()` และ `this.insigniaHistoryRepo.save()` โดยไม่มี `await` หรือการจัดการ error
 - ถ้าเกิด error จากการ save database จะทำให้เกิด **Unhandled Promise Rejection**
 - ไม่มี try-catch รองรับ
 **Recommended Fix:**
 ```typescript
 try {
  await this.insigniaRepo.save(record, { data: req });
  setLogDataDiff(req, { before, after: record });
  if (!(Object.keys(body).length === 1 && body.isUpload)) {
    await this.insigniaHistoryRepo.save(history, { data: req });
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Error updating insignia:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'เกิดข้อผิดพลาดในการบันทึกข้อมูลเครื่องราชอิสริยาภรณ์'
  );
 }
 ```
 ---
 ### 2. 🔴 CRITICAL - ProfileInsigniaEmployeeController.ts - Unhandled Promise in editInsignia
 **File & Location:** [ProfileInsigniaEmployeeController.ts](src/controllers/ProfileInsigniaEmployeeController.ts:200-205) - `editInsignia()` method
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 ```typescript
 this.insigniaRepo.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.insigniaHistoryRepo.save(history, { data: req });
 }
 ```
 - มีการเรียก `this.insigniaRepo.save()` และ `this.insigniaHistoryRepo.save()` โดยไม่มี `await`
 - ถ้า database save ล้มเหลวจะเกิด **Unhandled Promise Rejection**
 - Data inconsistency อาจเกิดขึ้นถ้า history save ไม่สำเร็จ
 **Recommended Fix:**
 ```typescript
 try {
  await this.insigniaRepo.save(record, { data: req });
  setLogDataDiff(req, { before, after: record });
  if (!(Object.keys(body).length === 1 && body.isUpload)) {
    await this.insigniaHistoryRepo.save(history, { data: req });
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Error updating employee insignia:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'เกิดข้อผิดพลาดในการบันทึกข้อมูลเครื่องราชอิสริยาภรณ์'
  );
 }
 ```
 ---
 ### 3. 🔴 CRITICAL - ProfileInsigniaEmployeeTempController.ts - Unhandled Promise in editInsignia
 **File & Location:** [ProfileInsigniaEmployeeTempController.ts](src/controllers/ProfileInsigniaEmployeeTempController.ts:189-194) - `editInsignia()` method
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 ```typescript
 this.insigniaRepo.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.insigniaHistoryRepo.save(history, { data: req });
 }
 ```
 - ไม่มีการ await หรือจัดการ error สำหรับ database operations
 - ถ้าเกิด error จะทำให้เกิด **Unhandled Promise Rejection** และอาจ crash service
 **Recommended Fix:**
 ```typescript
 try {
  await this.insigniaRepo.save(record, { data: req });
  setLogDataDiff(req, { before, after: record });
  if (!(Object.keys(body).length === 1 && body.isUpload)) {
    await this.insigniaHistoryRepo.save(history, { data: req });
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Error updating temp employee insignia:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'เกิดข้อผิดพลาดในการบันทึกข้อมูลเครื่องราชอิสริยาภรณ์'
  );
 }
 ```
 ---
 ### 4. 🔴 CRITICAL - ProfileLeaveController.ts - Unhandled Promise in editLeave
 **File & Location:** [ProfileLeaveController.ts](src/controllers/ProfileLeaveController.ts:312) - `updateCancel()` method
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 ```typescript
@Patch("cancel/{leaveId}")
 public async updateCancel(
  @Request() req: RequestWithUser,
  @Path() leaveId: string,
 ) {
  const record = await this.leaveRepo.findOneBy({ leaveId: leaveId });  // ❌ ใช้ leaveId แทน id
  if (!record) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูลการลา");
  // ...
 ```
 - **BUG**: ใช้ `leaveId` ใน `findOneBy({ leaveId: leaveId })` แต่ column ที่ถูกต้องควรเป็น `id`
 - ถ้าไม่พบข้อมูลจะ throw HttpError แต่ถ้า database error จะเกิด unhandled exception
 - ไม่มี try-catch ครอบ database operations
 **Recommended Fix:**
 ```typescript
@Patch("cancel/{leaveId}")
 public async updateCancel(
  @Request() req: RequestWithUser,
  @Path() leaveId: string,
 ) {
  try {
    const record = await this.leaveRepo.findOneBy({ id: leaveId });  // ✅ ใช้ id แทน leaveId
    if (!record) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูลการลา");
    const before = structuredClone(record);
    record.status = "cancel";
    record.lastUpdateUserId = req.user.sub;
    record.lastUpdateFullName = req.user.name;
    record.lastUpdatedAt = new Date();
    await Promise.all([
      this.leaveRepo.save(record, { data: req }),
      setLogDataDiff(req, { before, after: record }),
    ]);
    return new HttpSuccess();
  } catch (error) {
    if (error instanceof HttpError) throw error;
    console.error('Error canceling leave:', error);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      'เกิดข้อผิดพลาดในการยกเลิกการลา'
    );
  }
 }
 ```
 ---
 ### 5. 🔴 CRITICAL - ProfileLeaveEmployeeTempController.ts - Unhandled Promises
 **File & Location:** [ProfileLeaveEmployeeTempController.ts](src/controllers/ProfileLeaveEmployeeTempController.ts:132-134) - `newLeave()` method
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 ```typescript
 await this.leaveRepo.save(data);  // ❌ ไม่มี { data: req } context
 history.profileLeaveId = data.id;  // ❌ ใช้ data.id ที่อาจยังไม่ถูกต้องถ้า save ไม่สำเร็จ
 await this.leaveHistoryRepo.save(history);  // ❌ ไม่มี { data: req } context
 ```
 - ไม่มี error handling รอบ database operations
 - การไม่ใส่ `{ data: req }` อาจทำให้ audit trail ไม่สมบูรณ์
 - ถ้า `leaveRepo.save()` ล้มเหลว จะเกิด unhandled rejection
 **Recommended Fix:**
 ```typescript
 try {
  await this.leaveRepo.save(data, { data: req });
  setLogDataDiff(req, { before, after: data });
  history.profileLeaveId = data.id;
  await this.leaveHistoryRepo.save(history, { data: req });
  return new HttpSuccess(data.id);
 } catch (error) {
  console.error('Error creating employee temp leave:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'เกิดข้อผิดพลาดในการบันทึกข้อมูลการลา'
  );
 }
 ```
 ---
 ### 6. 🟡 HIGH - ProfileNopaidController.ts - Unhandled Promise in editNopaid
 **File & Location:** [ProfileNopaidController.ts](src/controllers/ProfileNopaidController.ts:133-137) - `editNopaid()` method
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 ```typescript
 this.nopaidRepository.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.nopaidHistoryRepository.save(history, { data: req });
 }
 ```
 - ไม่มี `await` สำหรับ database save operations
 - ถ้าเกิด error จะเป็น **Unhandled Promise Rejection**
 - ไม่มี try-catch ครอบ
 **Recommended Fix:**
 ```typescript
 try {
  await this.nopaidRepository.save(record, { data: req });
  setLogDataDiff(req, { before, after: record });
  if (!(Object.keys(body).length === 1 && body.isUpload)) {
    await this.nopaidHistoryRepository.save(history, { data: req });
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Error updating nopaid:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'เกิดข้อผิดพลาดในการบันทึกข้อมูลบันทึกวันที่ไม่ได้รับเงินเดือน'
  );
 }
 ```
 ---
 ### 7. 🟡 HIGH - ProfileNopaidEmployeeController.ts - Unhandled Promise in editNopaid
 **File & Location:** [ProfileNopaidEmployeeController.ts](src/controllers/ProfileNopaidEmployeeController.ts:140-144) - `editNopaid()` method
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 ```typescript
 this.nopaidRepository.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.nopaidHistoryRepository.save(history, { data: req });
 }
 ```
 - ไม่มีการ await database save operations
 - ถ้าเกิด error จะทำให้เกิด unhandled promise rejection
 **Recommended Fix:**
 ```typescript
 try {
  await this.nopaidRepository.save(record, { data: req });
  setLogDataDiff(req, { before, after: record });
  if (!(Object.keys(body).length === 1 && body.isUpload)) {
    await this.nopaidHistoryRepository.save(history, { data: req });
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Error updating employee nopaid:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'เกิดข้อผิดพลาดในการบันทึกข้อมูลบันทึกวันที่ไม่ได้รับเงินเดือน'
  );
 }
 ```
 ---
 ### 8. 🟡 HIGH - ProfileNopaidEmployeeTempController.ts - Unhandled Promise in editNopaid
 **File & Location:** [ProfileNopaidEmployeeTempController.ts](src/controllers/ProfileNopaidEmployeeTempController.ts:137-141) - `editNopaid()` method
 **Problem Type:** 1. Unhandled Exception
 **Root Cause:**
 ```typescript
 this.nopaidRepository.save(record, { data: req });
 setLogDataDiff(req, { before, after: record });
 if (!(Object.keys(body).length === 1 && body.isUpload)) {
  this.nopaidHistoryRepository.save(history, { data: req });
 }
 ```
 - ไม่มี `await` สำหรับ database operations
 - Unhandled promise rejection อาจเกิดขึ้น
 **Recommended Fix:**
 ```typescript
 try {
  await this.nopaidRepository.save(record, { data: req });
  setLogDataDiff(req, { before, after: record });
  if (!(Object.keys(body).length === 1 && body.isUpload)) {
    await this.nopaidHistoryRepository.save(history, { data: req });
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Error updating temp employee nopaid:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'เกิดข้อผิดพลาดในการบันทึกข้อมูลบันทึกวันที่ไม่ได้รับเงินเดือน'
  );
 }
 ```
 ---
 ### 9. 🟢 MEDIUM - ProfileLeaveController.ts - Missing Permission Check in updateCancel
 **File & Location:** [ProfileLeaveController.ts](src/controllers/ProfileLeaveController.ts:308-328) - `updateCancel()` method
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 ```typescript
@Patch("cancel/{leaveId}")
 public async updateCancel(
  @Request() req: RequestWithUser,
  @Path() leaveId: string,
 ) {
  const record = await this.leaveRepo.findOneBy({ leaveId: leaveId });
  if (!record) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูลการลา");
  const before = structuredClone(record);
  record.status = "cancel";
  // ... ❌ ไม่มี permission check
 ```
 - Method `updateCancel` ไม่มีการ check permission ก่อนทำการ cancel
 - ผู้ใช้ที่ไม่มีสิทธิ์อาจสามารถ cancel การลาของคนอื่นได้
 - เมื่อเทียบกับ methods อื่นๆ ที่มี permission check ถือว่าเป็นความไม่สอดคล้อง
 **Recommended Fix:**
 ```typescript
@Patch("cancel/{leaveId}")
 public async updateCancel(
  @Request() req: RequestWithUser,
  @Path() leaveId: string,
 ) {
  try {
    const record = await this.leaveRepo.findOneBy({ id: leaveId });
    if (!record) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูลการลา");
    // ✅ เพิ่ม permission check
    await new permission().PermissionOrgUserUpdate(
      req,
      "SYS_REGISTRY_OFFICER",
      record.profileId
    );
    const before = structuredClone(record);
    record.status = "cancel";
    record.lastUpdateUserId = req.user.sub;
    record.lastUpdateFullName = req.user.name;
    record.lastUpdatedAt = new Date();
    await Promise.all([
      this.leaveRepo.save(record, { data: req }),
      setLogDataDiff(req, { before, after: record }),
    ]);
    return new HttpSuccess();
  } catch (error) {
    if (error instanceof HttpError) throw error;
    console.error('Error canceling leave:', error);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      'เกิดข้อผิดพลาดในการยกเลิกการลา'
    );
  }
 }
 ```
 ---
 ## สรุปประเด็นสำคัญ
 ### ปัญหาที่พบเป็นพื้นฐานซ้ำๆ:
 1. **Unhandled Promise Rejections** - การเรียก database save methods โดยไม่มี `await` ใน methods แก้ไขข้อมูล (edit/update)
 2. **Missing Try-Catch Blocks** - การขาด error handling รอบ database operations
 3. **Data Consistency Risks** - การบันทึก history โดยไม่รู้ว่า main record บันทึกสำเร็จหรือไม่
 4. **Bug in updateCancel** - การใช้ `leaveId` แทน `id` ใน findOneBy
 ### คำแนะนำในการแก้ไข:
 1. เพิ่ม try-catch ครอบทุก database operations ที่เสี่ยงต่อการเกิด error
 2. ใช้ `await` กับทุก promise ที่เกี่ยวกับ database save/update
 3. เพิ่ม permission check ใน method `updateCancel`
 4. แก้ไข bug การใช้ `leaveId` ใน findOneBy ให้เป็น `id`
 5. พิจารณาใช้ Transaction สำหรับการบันทึกข้อมูลที่ต้องการความสอดคล้องกัน (main record + history)
 ### การประเมินความเสี่ยง:
 - 🔴 **CRITICAL**: 4 จุด - อาจทำให้เกิด Unhandled Exception และ Crash Loop
 - 🟡 **HIGH**: 4 จุด - อาจทำให้เกิด Unhandled Exception
 - 🟢 **MEDIUM**: 1 จุด - ปัญหาความปลอดภัยและความสอดคล้องของระบบ
--- a/reports/batch-13-controllers-121-130-analysis.md
+++ b/reports/batch-13-controllers-121-130-analysis.md
@ -1,844 +0,0 @@
 # Batch 13 Controllers Analysis (Controllers 121-130)
 ## Controllers in this batch:
 1. ProfileOtherEmployeeController
 2. ProfileOtherEmployeeTempController
 3. ProfileSalaryController
 4. ProfileSalaryEmployeeController
 5. ProfileSalaryEmployeeTempController
 6. ProfileSalaryTempController
 7. ProfileTrainingController
 8. ProfileTrainingEmployeeController
 9. ProfileTrainingEmployeeTempController
 10. ProvinceController
 ---
 ## Critical Issues Found
 ### 1. **ProfileSalaryTempController** - Multiple Unhandled forEach Async Operations
 **File & Location:** [ProfileSalaryTempController.ts](src/controllers/ProfileSalaryTempController.ts) - Methods: `listSalary()`, `confirmDoneSalary()`, `changeSortEditGenAll()`, `changeSortEdit()`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 Multiple methods use `forEach()` with async operations without proper error handling or awaiting. When errors occur in these async callbacks, they become unhandled rejections that can crash the Node.js process.
 **Affected Code Locations:**
 - Line 1058-1061: `salaryOld.forEach(async (p, i) => { ... })` in `deleteSalary()`
 - Line 1115-1118: `salaryList.forEach(async (p, i) => { ... })` in `deleteSalary()`
 - Line 202-205: `salaryOld.forEach((item: any, i) => { ... })` in `listSalary()` (sync operations but no error handling)
 - Line 1729-1741: `for await` loop with database operations without error handling in `changeSortEditGenAll()`
 - Line 1763-1766: `salaryOld.forEach()` in `changeSortEdit()`
 **Code Examples:**
 ```typescript
 // Line 1115-1118 - DANGEROUS: async forEach without error handling
 salaryList.forEach(async (p, i) => {
  p.order = i + 1;
  await this.salaryRepo.save(p);  // If this fails, error is unhandled
 });
 ```
 ```typescript
 // Line 1729-1741 - DANGEROUS: for await without try-catch
 for await (const item of profiles) {
  let salaryOld = await this.salaryOldRepo.find({
    where: { profileId: item.id },
    order: { commandDateAffect: "ASC", order: "ASC" },
  });
  salaryOld.forEach((item: any, i) => {
    item.order = i + 1;
  });
  num = num + 1;
  console.log(num);
  await this.salaryOldRepo.save(salaryOld);  // If this fails, entire operation crashes
 }
 ```
 **Recommended Fix:**
 ```typescript
 // For deleteSalary() - Use Promise.all with error handling
 try {
  await Promise.all(
    salaryList.map(async (p, i) => {
      p.order = i + 1;
      await this.salaryRepo.save(p);
    })
  );
 } catch (error) {
  console.error('Error updating salary order:', error);
  // Optionally throw a more specific error or handle gracefully
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, 'Failed to update salary order');
 }
 // For changeSortEditGenAll() - Add error handling per iteration
 try {
  const profiles = await this.profileRepo.find();
  let num = 1;
  for await (const item of profiles) {
    try {
      let salaryOld = await this.salaryOldRepo.find({
        where: { profileId: item.id },
        order: { commandDateAffect: "ASC", order: "ASC" },
      });
      salaryOld.forEach((item: any, i) => {
        item.order = i + 1;
      });
      await this.salaryOldRepo.save(salaryOld);
      num = num + 1;
      console.log(num);
    } catch (error) {
      console.error(`Error processing profile ${item.id}:`, error);
      // Continue with next profile instead of crashing
      continue;
    }
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Error in changeSortEditGenAll:', error);
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, 'Failed to process profiles');
 }
 ```
 ---
 ### 2. **ProfileSalaryController** - Unhandled forEach Async Operations
 **File & Location:** [ProfileSalaryController.ts](src/controllers/ProfileSalaryController.ts) - Methods: `deleteSalary()`, `Registry()`, `RegistryEmployee()`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 Multiple critical methods use `forEach()` with async database operations. When database operations fail within these callbacks, the Promise rejection is unhandled and can crash the service.
 **Affected Code Locations:**
 - Line 1115-1118: `salaryList.forEach(async (p, i) => { ... })` in `deleteSalary()`
 - Line 362-373: Complex async operations in `Registry()` without error handling
 - Line 383-395: Complex async operations in `RegistryEmployee()` without error handling
 - Line 412-427: `record.map(async (r) => { ... })` with `Promise.all()` but no error handling
 - Line 463-477: Similar pattern in `getSalaryPositionUser()`
 - Line 497-512: Similar pattern in `getSalary()`
 **Code Examples:**
 ```typescript
 // Line 1115-1118 - CRITICAL: async forEach without error handling
 salaryList.forEach(async (p, i) => {
  p.order = i + 1;
  await this.salaryRepo.save(p);  // Unhandled rejection
 });
 ```
 ```typescript
 // Line 412-427 - Promise.all without error handling
 const result = await Promise.all(
  record.map(async (r) => {
    let _command = null;
    if (r.commandId) {
      _command = await this.commandRepository.findOne({
        where: { id: r.commandId },
        relations: ["commandType"],
      });
    }
    return {
      ...r,
      commandType: _command && _command?.commandType ? _command?.commandType.code : null,
    };
  }),
 );
 ```
 **Recommended Fix:**
 ```typescript
 // For deleteSalary() - Proper error handling
 try {
  await Promise.all(
    salaryList.map(async (p, i) => {
      p.order = i + 1;
      await this.salaryRepo.save(p);
    })
  );
 } catch (error) {
  console.error('Error updating salary order:', error);
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, 'Failed to update salary order');
 }
 // For Promise.all operations - Add error boundary
 try {
  const result = await Promise.all(
    record.map(async (r) => {
      try {
        let _command = null;
        if (r.commandId) {
          _command = await this.commandRepository.findOne({
            where: { id: r.commandId },
            relations: ["commandType"],
          });
        }
        return {
          ...r,
          commandType: _command && _command?.commandType ? _command?.commandType.code : null,
        };
      } catch (error) {
        console.error(`Error loading command for salary ${r.id}:`, error);
        return {
          ...r,
          commandType: null,
        };
      }
    }),
  );
  return new HttpSuccess(result);
 } catch (error) {
  console.error('Error processing salary records:', error);
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, 'Failed to load salary data');
 }
 // For Registry() - Add comprehensive error handling
 try {
  await this.registryRepo.clear();
  const allRegis = await AppDataSource.getRepository(viewRegistryOfficer)
    .createQueryBuilder("registryOfficer")
    .getMany();
  const profileIds = new Set((await this.profileRepo.find()).map((p) => p.id));
  const mapData = allRegis
    .filter((x) => profileIds.has(x.profileId))
    .map((x) => ({
      ...x,
      isProbation: Boolean(x.isProbation),
      isLeave: Boolean(x.isLeave),
      isRetirement: Boolean(x.isRetirement),
      Educations: x.Educations ? JSON.stringify(x.Educations) : "",
    }));
  if (mapData.length > 0) {
    // Save in batches to avoid overwhelming the database
    const batchSize = 100;
    for (let i = 0; i < mapData.length; i += batchSize) {
      const batch = mapData.slice(i, i + batchSize);
      await this.registryRepo.save(batch);
    }
  }
  return new HttpSuccess();
 } catch (error) {
  console.error('Error in Registry cronjob:', error);
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, 'Failed to sync registry data');
 }
 ```
 ---
 ### 3. **ProfileSalaryController** - Raw SQL Queries Without Error Handling
 **File & Location:** [ProfileSalaryController.ts](src/controllers/ProfileSalaryController.ts) - Multiple methods using `AppDataSource.query()`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 Multiple stored procedure calls (`CALL GetProfile...()`) are executed without try-catch blocks. If these stored procedures fail or the database is unavailable, the errors will propagate unhandled.
 **Affected Code Locations:**
 - Line 76-79: `CALL GetProfileSalaryPosition(?, ?)` in `cronjobTenurePositionOfficer()`
 - Line 126-129: Similar in `cronjobTenurePositionEmployee()`
 - Line 176-179: `CALL GetProfileSalaryLevel(?, ?)` in `cronjobTenureLevelOfficer()`
 - Line 236-239: Similar in `cronjobTenureLevelEmployee()`
 - Line 317-320: `CALL GetProfileSalaryExecutive(?, ?)` in `cronjobTenureExecutivePositionOfficer()`
 - Line 588-591, 622-625, 662-665: Multiple calls in `getPositionTenureUser()`
 - Line 722-725, 760-763, 803-806: Multiple calls in `getPositionTenure()`
 **Code Examples:**
 ```typescript
 // Line 76-79 - No error handling for stored procedure call
 const position = await AppDataSource.query("CALL GetProfileSalaryPosition(?, ?)", [
  x.id,
  _currentDate,
 ]);
 ```
 **Recommended Fix:**
 ```typescript
 // Wrap all database query calls in try-catch
 try {
  const position = await AppDataSource.query("CALL GetProfileSalaryPosition(?, ?)", [
    x.id,
    _currentDate,
  ]);
  const _position = position.length > 0 ? position[0] : [];
  const mapPosition =
    _position.length > 1
      ? _position.slice(1).map((curr: any, index: number) => ({
          days_diff: curr.days_diff,
          positionName: _position[index]?.positionName,
        }))
      : [];
  const calDayDiff = mapPosition
    .filter((curr: any) => curr.positionName == x.position)
    .reduce(
      (acc: any, curr: any) => {
        acc.days_diff += Number(curr.days_diff) || 0;
        acc.positionName = curr.positionName;
        return acc;
      },
      { days_diff: 0, positionName: null },
    );
  const { year, month, day } = calculateTenure(calDayDiff.days_diff);
  const mapData: any = {
    profileId: x.id,
    positionName: calDayDiff.positionName,
    days_diff: calDayDiff.days_diff,
    Years: year,
    Months: month,
    Days: day,
  };
  data.push(mapData);
 } catch (error) {
  console.error(`Error processing position tenure for profile ${x.id}:`, error);
  // Add default/error entry or skip this profile
  const mapData: any = {
    profileId: x.id,
    positionName: null,
    days_diff: 0,
    Years: 0,
    Months: 0,
    Days: 0,
    error: true,
  };
  data.push(mapData);
 }
 ```
 ---
 ### 4. **ProfileTrainingController** - Multiple Database Operations Without Error Handling
 **File & Location:** [ProfileTrainingController.ts](src/controllers/ProfileTrainingController.ts) - Methods: `deleteAllTraining()`, `deleteById()`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 Multiple sequential delete operations without transaction or error handling. If intermediate operations fail, the database can be left in an inconsistent state.
 **Affected Code Locations:**
 - Line 238-259: `deleteAllTraining()` - Multiple delete operations without transaction
 - Line 274-339: `deleteById()` - Multiple delete operations without transaction
 **Code Examples:**
 ```typescript
 // Line 238-259 - No error handling or transaction
 const trainings = await this.trainingRepo.find({
  select: { id: true },
  where: { developmentId: reqBody.developmentId },
 });
 if (trainings.length > 0) {
  const trainingIds = trainings.map((x) => x.id);
  await this.trainingHistoryRepo.delete({
    profileTrainingId: In(trainingIds),
  });
  await this.trainingRepo.delete({
    developmentId: reqBody.developmentId,
  });
 }
 await this.developmentHistoryRepo.delete({
  kpiDevelopmentId: reqBody.developmentId,
 });
 await this.developmentRepo.delete({ 
  kpiDevelopmentId: reqBody.developmentId 
 });
 ```
 **Recommended Fix:**
 ```typescript
@Post("delete-all")
 public async deleteAllTraining(
  @Body() reqBody: { developmentId: string },
  @Request() req: RequestWithUser
 ) {
  const queryRunner = AppDataSource.createQueryRunner();
  await queryRunner.connect();
  await queryRunner.startTransaction();
  try {
    const trainings = await queryRunner.manager.find(ProfileTraining, {
      select: { id: true },
      where: { developmentId: reqBody.developmentId },
    });
    if (trainings.length > 0) {
      const trainingIds = trainings.map((x) => x.id);
      await queryRunner.manager.delete(ProfileTrainingHistory, {
        profileTrainingId: In(trainingIds),
      });
      await queryRunner.manager.delete(ProfileTraining, {
        developmentId: reqBody.developmentId,
      });
    }
    await queryRunner.manager.delete(ProfileDevelopmentHistory, {
      kpiDevelopmentId: reqBody.developmentId,
    });
    await queryRunner.manager.delete(ProfileDevelopment, { 
      kpiDevelopmentId: reqBody.developmentId 
    });
    await queryRunner.commitTransaction();
    return new HttpSuccess();
  } catch (error) {
    await queryRunner.rollbackTransaction();
    console.error('Error deleting training data:', error);
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      'Failed to delete training data'
    );
  } finally {
    await queryRunner.release();
  }
 }
 // Similar fix for deleteById()
@Post("delete-byId")
 public async deleteById(
  @Body() reqBody: {
    type: string;
    profileId: string;
    developmentId: string;
  },
  @Request() req: RequestWithUser
 ) {
  const queryRunner = AppDataSource.createQueryRunner();
  await queryRunner.connect();
  await queryRunner.startTransaction();
  try {
    const type = reqBody.type?.trim().toUpperCase();
    // 1. validate profile
    if (type === "OFFICER") {
      const profile = await queryRunner.manager.findOne(Profile, {
        where: { id: reqBody.profileId }
      });
      if (!profile) {
        throw new HttpError(HttpStatus.BAD_REQUEST, "ไม่พบ profile ดังกล่าว");
      }
    } else {
      const profile = await queryRunner.manager.findOne(ProfileEmployee, {
        where: { id: reqBody.profileId }
      });
      if (!profile) {
        throw new HttpError(HttpStatus.BAD_REQUEST, "ไม่พบ profile ดังกล่าว");
      }
    }
    const profileField = type === "OFFICER" ? "profileId" : "profileEmployeeId";
    // 2. Find and delete ProfileTraining
    const trainings = await queryRunner.manager.find(ProfileTraining, {
      select: { id: true },
      where: {
        developmentId: reqBody.developmentId,
        [profileField]: reqBody.profileId,
      },
    });
    if (trainings.length > 0) {
      const trainingIds = trainings.map(x => x.id);
      await queryRunner.manager.delete(ProfileTrainingHistory, {
        profileTrainingId: In(trainingIds),
      });
      await queryRunner.manager.delete(ProfileTraining, {
        id: In(trainingIds),
      });
    }
    // 3. Find and delete ProfileDevelopment
    const developments = await queryRunner.manager.find(ProfileDevelopment, {
      select: { id: true },
      where: {
        kpiDevelopmentId: reqBody.developmentId,
        [profileField]: reqBody.profileId,
      },
    });
    if (developments.length > 0) {
      const devIds = developments.map(x => x.id);
      await queryRunner.manager.delete(ProfileDevelopmentHistory, {
        profileDevelopmentId: In(devIds),
      });
      await queryRunner.manager.delete(ProfileDevelopment, {
        id: In(devIds),
      });
    }
    await queryRunner.commitTransaction();
    return new HttpSuccess();
  } catch (error) {
    await queryRunner.rollbackTransaction();
    console.error('Error deleting by ID:', error);
    if (error instanceof HttpError) {
      throw error;
    }
    throw new HttpError(
      HttpStatus.INTERNAL_SERVER_ERROR,
      'Failed to delete data'
    );
  } finally {
    await queryRunner.release();
  }
 }
 ```
 ---
 ### 5. **ProfileSalaryEmployeeController** - forEach Async Operations Without Error Handling
 **File & Location:** [ProfileSalaryEmployeeController.ts](src/controllers/ProfileSalaryEmployeeController.ts) - Method: `deleteSalaryEmployee()`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 Similar to ProfileSalaryController, uses `forEach()` with async operations without proper error handling.
 **Affected Code Locations:**
 - Line 608-611: `salaryList.forEach(async (p, i) => { ... })` in `deleteSalaryEmployee()`
 **Code Example:**
 ```typescript
 // Line 608-611 - DANGEROUS
 salaryList.forEach(async (p, i) => {
  p.order = i + 1;
  await this.salaryRepo.save(p);  // Unhandled rejection
 });
 ```
 **Recommended Fix:**
 ```typescript
 try {
  await Promise.all(
    salaryList.map(async (p, i) => {
      p.order = i + 1;
      await this.salaryRepo.save(p);
    })
  );
 } catch (error) {
  console.error('Error updating salary order:', error);
  throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, 'Failed to update salary order');
 }
 ```
 ---
 ### 6. **ProfileSalaryEmployeeTempController** - forEach Async Operations Without Error Handling
 **File & Location:** [ProfileSalaryEmployeeTempController.ts](src/controllers/ProfileSalaryEmployeeTempController.ts) - Method: `deleteSalaryEmployee()`
 **Problem Type:** 1. Unhandled Exception / 2. Missing Error Handle
 **Root Cause:**
 Same pattern as above - `forEach()` with async operations.
 **Affected Code Locations:**
 - Line 202-205: `salaryList.forEach(async (p, i) => { ... })` in `deleteSalaryEmployee()`
 **Recommended Fix:** Same as above - use `Promise.all()` with error handling.
 ---
 ### 7. **ProfileSalaryTempController** - confirmDoneSalary() Transaction Handling Issues
 **File & Location:** [ProfileSalaryTempController.ts](src/controllers/ProfileSalaryTempController.ts) - Method: `confirmDoneSalary()`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 While this method uses transactions, there are several potential issues:
 1. Line 1686: Empty `catch` block that swallows all errors
 2. Line 1493-1497: Error is re-thrown without proper logging or context
 3. Multiple complex operations within transaction that could fail
 **Affected Code Locations:**
 - Line 1493-1498: `catch` block re-throws error without logging
 - Line 1685: Empty `catch` block in `returnEdit()`
 **Code Examples:**
 ```typescript
 // Line 1493-1498 - Insufficient error handling
 } catch (error) {
  await queryRunner.rollbackTransaction();
  throw error;  // No logging, no context
 } finally {
  await queryRunner.release();
 }
 ```
 **Recommended Fix:**
 ```typescript
 } catch (error) {
  await queryRunner.rollbackTransaction();
  console.error('Error in confirmDoneSalary:', {
    profileId: body.profileId,
    type: body.type,
    error: error instanceof Error ? error.message : error,
    stack: error instanceof Error ? error.stack : undefined,
  });
  // Provide more specific error message
  if (error instanceof HttpError) {
    throw error;
  }
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'Failed to confirm salary data. Please try again.'
  );
 } finally {
  await queryRunner.release();
 }
 // For returnEdit() - Proper error handling
 try {
  if (profile) {
    profile.statusCheckEdit = "PENDING";
    await this.profileRepo.save(profile);
  } else if (profileEmployee) {
    profileEmployee.statusCheckEdit = "PENDING";
    await this.profileEmployeeRepo.save(profileEmployee);
  }
  const history: PositionSalaryEditHistory = Object.assign(
    new PositionSalaryEditHistory(),
    body,
  );
  if (profile) {
    history.profileId = profileId;
  } else if (profileEmployee) {
    history.profileEmployeeId = profileId;
  }
  history.returnedDate = new Date();
  history.examinerName = req.user.name;
  history.createdFullName = req.user.name;
  history.lastUpdateFullName = req.user.name;
  await this.positionSalaryEditHistoryRepo.save(history);
  return new HttpSuccess();
 } catch (error) {
  console.error('Error in returnEdit:', error);
  throw new HttpError(
    HttpStatus.INTERNAL_SERVER_ERROR,
    'Failed to process return edit request'
  );
 }
 ```
 ---
 ### 8. **ProfileSalaryTempController** - Bulk Operations Without Error Handling
 **File & Location:** [ProfileSalaryTempController.ts](src/controllers/ProfileSalaryTempController.ts) - Methods: `listSalary()`, `confirmDoneSalary()`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 Bulk insert operations without error handling for individual records. If one record fails, the entire operation may fail or data may be partially inserted.
 **Affected Code Locations:**
 - Line 1058-1061: `salaryOld.forEach()` without error handling
 - Line 1098-1101: Similar pattern
 - Line 1425-1431: Bulk insert without error handling
 **Code Example:**
 ```typescript
 // Line 1425-1431 - Bulk insert without error handling
 if (salaryRows.length) {
  await queryRunner.manager.insert(
    ProfileSalary,
    salaryRows.map(({ id, ...data }) => ({
      ...data,
      ...metaCreated,
    })),
  );
 }
 ```
 **Recommended Fix:**
 ```typescript
 // Implement batch processing with error handling
 if (salaryRows.length) {
  const batchSize = 100; // Process in batches
  for (let i = 0; i < salaryRows.length; i += batchSize) {
    const batch = salaryRows.slice(i, i + batchSize);
    try {
      await queryRunner.manager.insert(
        ProfileSalary,
        batch.map(({ id, ...data }) => ({
          ...data,
          ...metaCreated,
        }))
      );
    } catch (error) {
      console.error(`Error inserting salary batch ${i / batchSize + 1}:`, error);
      // Log which records failed
      const failedIds = batch.map(b => b.id);
      console.error('Failed record IDs:', failedIds);
      throw new HttpError(
        HttpStatus.INTERNAL_SERVER_ERROR,
        `Failed to insert salary records (batch ${i / batchSize + 1})`
      );
    }
  }
 }
 ```
 ---
 ### 9. **ProvinceController** - Try-Catch With Generic Error Handling
 **File & Location:** [ProvinceController.ts](src/controllers/ProvinceController.ts) - Method: `Delete()`
 **Problem Type:** 2. Missing Error Handle
 **Root Cause:**
 While there is a try-catch block, it catches all errors without logging or differentiation. This makes debugging difficult and may mask underlying issues.
 **Affected Code Locations:**
 - Line 168-175: Generic catch block
 **Code Example:**
 ```typescript
 // Line 168-175 - Generic error handling
 let result: any;
 try {
  result = await this.provinceRepository.delete({ id: id });
 } catch {
  throw new HttpError(
    HttpStatusCode.NOT_FOUND,
    "ไม่สามารถลบได้เนื่องจากมีการใช้งานข้อมูลจังหวัดนี้อยู่",
  );
 }
 ```
 **Recommended Fix:**
 ```typescript
 let result: any;
 try {
  result = await this.provinceRepository.delete({ id: id });
 } catch (error) {
  console.error('Error deleting province:', {
    id,
    error: error instanceof Error ? error.message : error,
    stack: error instanceof Error ? error.stack : undefined,
  });
  // Check for foreign key constraint error
  if (error instanceof Error && error.message.includes('foreign key constraint')) {
    throw new HttpError(
      HttpStatusCode.CONFLICT, // Use 409 instead of 404
      "ไม่สามารถลบได้เนื่องจากมีการใช้งานข้อมูลจังหวัดนี้อยู่",
    );
  }
  throw new HttpError(
    HttpStatusCode.INTERNAL_SERVER_ERROR,
    "เกิดข้อผิดพลาดในการลบข้อมูลจังหวัด",
  );
 }
 ```
 ---
 ## Summary Statistics
 **Total Critical Issues Found:** 9
 **Breakdown by Type:**
 - **Unhandled Exception (forEach with async):** 6 instances
 - **Missing Error Handling (DB operations):** 8 instances
 - **Transaction Issues:** 2 instances
 - **Generic Error Handling:** 1 instance
 **Controllers with Issues:**
 1. ProfileSalaryTempController - 4 critical issues
 2. ProfileSalaryController - 3 critical issues
 3. ProfileSalaryEmployeeController - 1 critical issue
 4. ProfileSalaryEmployeeTempController - 1 critical issue
 5. ProfileTrainingController - 2 critical issues
 6. ProvinceController - 1 minor issue
 **Risk Level: HIGH**
 ---
 ## Priority Recommendations
 ### Immediate Actions Required:
 1. **Replace all `forEach()` with async operations** - Use `Promise.all()` or `for...of` loops with proper error handling
 2. **Add error boundaries** around all database operations
 3. **Implement proper logging** for all errors
 4. **Use transactions** for multi-step database operations
 5. **Add circuit breakers** for external dependencies (database, stored procedures)
 ### Graceful Recovery Strategies:
 1. **Implement request-level error boundaries** - Catch errors at the controller level and return appropriate HTTP responses
 2. **Add database operation timeouts** - Prevent indefinite hangs
 3. **Implement retry logic** for transient database errors
 4. **Add health checks** - Monitor database connectivity
 5. **Use connection pooling** with proper error handling
 ### Long-term Improvements:
 1. **Implement a centralized error handling middleware**
 2. **Add structured logging** (e.g., Winston, Pino)
 3. **Implement request tracing** for debugging
 4. **Add metrics/monitoring** for error rates
 5. **Implement graceful shutdown** procedures
 ---
 ## Testing Recommendations
 1. **Test database failure scenarios** - Disconnect database during operations
 2. **Test with large datasets** - Ensure forEach operations don't cause memory issues
 3. **Test transaction rollback** - Verify data consistency on errors
 4. **Test concurrent requests** - Ensure race conditions don't cause crashes
 5. **Test stored procedure failures** - Simulate SP errors
--- a/reports/batch-14-controllers-131-140-analysis.md
+++ b/reports/batch-14-controllers-131-140-analysis.md
--- a/sql_seed/update_profile_position_fields.sql
+++ b/sql_seed/update_profile_position_fields.sql
@ -1,154 +0,0 @@
 -- =====================================================
 -- Update position fields in profile table
 -- อัพเดทฟิลด์ตำแหน่งในตาราง profile
 --
 -- Fields:
 -- - positionField (สายงาน)
 -- - posExecutive (ตำแหน่งทางการบริหาร)
 -- - positionArea (ด้าน/สาขา)
 -- - positionExecutiveField (ด้านทางการบริหาร)
 -- - posMasterNo (เลขที่ตำแหน่ง) - format: orgShortName + space + number
 -- - org (สังกัด)
 --
 -- Run each query separately to verify results
 -- =====================================================
 USE hrms_organization;
 -- 1. Update positionField (สายงาน)
 UPDATE profile p
 INNER JOIN posMaster pm ON pm.current_holderId = p.id
 INNER JOIN orgRevision oRev ON pm.orgRevisionId = oRev.id AND oRev.orgRevisionIsCurrent = 1 AND oRev.orgRevisionIsDraft = 0
 INNER JOIN position pos ON pos.posMasterId = pm.id AND pos.positionIsSelected = 1
 SET p.positionField = pos.positionField
 WHERE p.positionField IS NULL;
 -- 2. Update posExecutive (ตำแหน่งทางการบริหาร)
 UPDATE profile p
 INNER JOIN posMaster pm ON pm.current_holderId = p.id
 INNER JOIN orgRevision oRev ON pm.orgRevisionId = oRev.id AND oRev.orgRevisionIsCurrent = 1 AND oRev.orgRevisionIsDraft = 0
 INNER JOIN position pos ON pos.posMasterId = pm.id AND pos.positionIsSelected = 1
 INNER JOIN posExecutive pe ON pos.posExecutiveId = pe.id
 SET p.posExecutive = pe.posExecutiveName
 WHERE p.posExecutive IS NULL;
 -- 3. Update positionArea (ด้าน/สาขา)
 UPDATE profile p
 INNER JOIN posMaster pm ON pm.current_holderId = p.id
 INNER JOIN orgRevision oRev ON pm.orgRevisionId = oRev.id AND oRev.orgRevisionIsCurrent = 1 AND oRev.orgRevisionIsDraft = 0
 INNER JOIN position pos ON pos.posMasterId = pm.id AND pos.positionIsSelected = 1
 SET p.positionArea = pos.positionArea
 WHERE p.positionArea IS NULL;
 -- 4. Update positionExecutiveField (ด้านทางการบริหาร)
 UPDATE profile p
 INNER JOIN posMaster pm ON pm.current_holderId = p.id
 INNER JOIN orgRevision oRev ON pm.orgRevisionId = oRev.id AND oRev.orgRevisionIsCurrent = 1 AND oRev.orgRevisionIsDraft = 0
 INNER JOIN position pos ON pos.posMasterId = pm.id AND pos.positionIsSelected = 1
 SET p.positionExecutiveField = pos.positionExecutiveField
 WHERE p.positionExecutiveField IS NULL;
 -- 5. Update posMasterNo (เลขที่ตำแหน่ง) - format: orgShortName + space + number
 UPDATE profile p
 INNER JOIN posMaster pm ON pm.current_holderId = p.id
 INNER JOIN orgRevision oRev ON pm.orgRevisionId = oRev.id AND oRev.orgRevisionIsCurrent = 1 AND oRev.orgRevisionIsDraft = 0
 LEFT JOIN orgRoot r ON pm.orgRootId = r.id
 LEFT JOIN orgChild1 c1 ON pm.orgChild1Id = c1.id
 LEFT JOIN orgChild2 c2 ON pm.orgChild2Id = c2.id
 LEFT JOIN orgChild3 c3 ON pm.orgChild3Id = c3.id
 LEFT JOIN orgChild4 c4 ON pm.orgChild4Id = c4.id
 SET p.posMasterNo = TRIM(CONCAT(
    CASE
        WHEN pm.orgChild1Id IS NULL THEN r.orgRootShortName
        WHEN pm.orgChild2Id IS NULL THEN c1.orgChild1ShortName
        WHEN pm.orgChild3Id IS NULL THEN c2.orgChild2ShortName
        WHEN pm.orgChild4Id IS NULL THEN c3.orgChild3ShortName
        ELSE c4.orgChild4ShortName
    END,
    ' ',
    CONCAT_WS('', pm.posMasterNoPrefix, pm.posMasterNo, pm.posMasterNoSuffix)
 ))
 WHERE p.posMasterNo IS NULL;
 -- 6. Update org (สังกัด) - combine all org levels
 UPDATE profile p
 INNER JOIN posMaster pm ON pm.current_holderId = p.id
 INNER JOIN orgRevision oRev ON pm.orgRevisionId = oRev.id AND oRev.orgRevisionIsCurrent = 1 AND oRev.orgRevisionIsDraft = 0
 LEFT JOIN orgRoot r ON pm.orgRootId = r.id
 LEFT JOIN orgChild1 c1 ON pm.orgChild1Id = c1.id
 LEFT JOIN orgChild2 c2 ON pm.orgChild2Id = c2.id
 LEFT JOIN orgChild3 c3 ON pm.orgChild3Id = c3.id
 LEFT JOIN orgChild4 c4 ON pm.orgChild4Id = c4.id
 SET p.org = TRIM(CONCAT_WS(
    CHAR(10),
    c4.orgChild4Name,
    c3.orgChild3Name,
    c2.orgChild2Name,
    c1.orgChild1Name,
    r.orgRootName
 ))
 WHERE p.org IS NULL;
 -- =====================================================
 -- เช็คผลลัพธ์ (Check results)
 -- =====================================================
 -- เช็คจำนวนที่ update ได้
 SELECT
    COUNT(CASE WHEN positionField IS NOT NULL THEN 1 END) AS has_positionField,
    COUNT(CASE WHEN posExecutive IS NOT NULL THEN 1 END) AS has_posExecutive,
    COUNT(CASE WHEN positionArea IS NOT NULL THEN 1 END) AS has_positionArea,
    COUNT(CASE WHEN positionExecutiveField IS NOT NULL THEN 1 END) AS has_positionExecutiveField,
    COUNT(CASE WHEN posMasterNo IS NOT NULL THEN 1 END) AS has_posMasterNo,
    COUNT(CASE WHEN org IS NOT NULL THEN 1 END) AS has_org
 FROM profile;
 -- =====================================================
 -- SELECT query สำหรับทดสอบก่อนรัน (Test before run)
 -- =====================================================
 SELECT
    p.id,
    p.firstName,
    p.lastName,
    p.citizenId,
    p.positionField as old_positionField,
    p.posExecutive as old_posExecutive,
    p.positionArea as old_positionArea,
    p.positionExecutiveField as old_positionExecutiveField,
    p.posMasterNo as old_posMasterNo,
    p.org as old_org,
    pos.positionField as new_positionField,
    pe.posExecutiveName as new_posExecutive,
    pos.positionArea as new_positionArea,
    pos.positionExecutiveField as new_positionExecutiveField,
    TRIM(CONCAT(
        CASE
            WHEN pm.orgChild1Id IS NULL THEN r.orgRootShortName
            WHEN pm.orgChild2Id IS NULL THEN c1.orgChild1ShortName
            WHEN pm.orgChild3Id IS NULL THEN c2.orgChild2ShortName
            WHEN pm.orgChild4Id IS NULL THEN c3.orgChild3ShortName
            ELSE c4.orgChild4ShortName
        END,
        ' ',
        pm.posMasterNo
    )) as new_posMasterNo,
    TRIM(CONCAT_WS(CHAR(10), c4.orgChild4Name, c3.orgChild3Name, c2.orgChild2Name, c1.orgChild1Name, r.orgRootName)) as new_org
 FROM profile p
 INNER JOIN posMaster pm ON pm.current_holderId = p.id
 INNER JOIN orgRevision oRev ON pm.orgRevisionId = oRev.id AND oRev.orgRevisionIsCurrent = 1 AND oRev.orgRevisionIsDraft = 0
 INNER JOIN position pos ON pos.posMasterId = pm.id AND pos.positionIsSelected = 1
 LEFT JOIN posExecutive pe ON pos.posExecutiveId = pe.id
 LEFT JOIN orgRoot r ON pm.orgRootId = r.id
 LEFT JOIN orgChild1 c1 ON pm.orgChild1Id = c1.id
 LEFT JOIN orgChild2 c2 ON pm.orgChild2Id = c2.id
 LEFT JOIN orgChild3 c3 ON pm.orgChild3Id = c3.id
 LEFT JOIN orgChild4 c4 ON pm.orgChild4Id = c4.id
 -- ใส่ WHERE ทดสอบ 1 คน (Test 1 person)
 WHERE p.id = 'ใส่ profile_id ที่ต้องการทดสอบ'
 -- หรือทดสอบ 10 คน (Test 10 persons)
 -- LIMIT 10;
--- a/src/app.ts
+++ b/src/app.ts
@ -19,7 +19,6 @@ import { ScriptProfileOrgController } from "./controllers/ScriptProfileOrgContro
 import { DateSerializer } from "./interfaces/date-serializer";
 import { initWebSocket } from "./services/webSocket";
 import { RetirementService } from "./services/RetirementService";
 async function main() {
  await AppDataSource.initialize();
@ -115,17 +114,6 @@ async function main() {
    }
  });
  // Cron job for posting retirement data to Exprofile - every day at 04:30:00 on the 1st of October
  const cronTime_PostRetire = "0 30 4 1 10 *";
  cron.schedule(cronTime_PostRetire, async () => {
    try {
      const retirementService = new RetirementService();
      await retirementService.cronjobPostRetireToExprofile();
    } catch (error) {
      console.error("[Cronjob] Error executing cronjobPostRetireToExprofile:", error);
    }
  });
  // app.listen(APP_PORT, APP_HOST, () => console.log(`Listening on: http://localhost:${APP_PORT}`));
  const server = app.listen(
    APP_PORT,
--- a/src/controllers/ApiManageController.ts
+++ b/src/controllers/ApiManageController.ts
@ -316,153 +316,16 @@ export class ApiManageController extends Controller {
      description: "ข้อมูลส่วนราชการ ระดับที่ 4",
      system: ["position"],
    },
-    // {
+    {
-    //   name: "Profile",
+      name: "Profile",
-    //   repository: this.profileRepository,
+      repository: this.profileRepository,
-    //   description: "ข้อมูลคนครอง",
+      description: "ข้อมูลคนครอง",
-    //   system: ["position"],
+      system: ["position"],
-    // },
+    },
  ];
  private readonly DEFAULT_PAGE_SIZE = 10; // ขนาดหน้าเริ่มต้น
-  private readonly EXCLUDED_COLUMNS = [
+  private readonly EXCLUDED_COLUMNS = ["createdUserId", "lastUpdateUserId"]; // ฟิลด์ที่ไม่ต้องการแสดงในผลลัพธ์
    "createdUserId",
    "lastUpdateUserId",
    "createdAt",
    "createdFullName",
    "lastUpdateFullName",
    "avatarName",
    "profileId",
    "prefixId",
    "profileEmployeeId",
    "documentId",
    "orgRevisionId",
    "posMasterId",
    "orgRootId",
    "orgChild1Id",
    "orgChild2Id",
    "orgChild3Id",
    "orgChild4Id",
    "ancestorDNA",
    "keycloak",
    "commandId",
    "prefixMain",
    "authRoleId",
    "next_holderId",
    "current_holderId",
  ]; // ฟิลด์ที่ไม่ต้องการแสดงในผลลัพธ์
  // การแทนที่ฟิลด์ ID ด้วยฟิลด์ Name สำหรับ Profile entity
  private readonly PROFILE_FIELD_REPLACEMENTS: Record<
    string,
    { propertyName: string; type: string; comment: string; joinTable: string; joinField: string }
  > = {
    posLevelId: {
      propertyName: "posLevelName",
      type: "string",
      comment: "ระดับตำแหน่ง",
      joinTable: "PosLevel",
      joinField: "posLevelName",
    },
    posTypeId: {
      propertyName: "posTypeName",
      type: "string",
      comment: "ประเภทตำแหน่ง",
      joinTable: "PosType",
      joinField: "posTypeName",
    },
    registrationProvinceId: {
      propertyName: "registrationProvinceName",
      type: "string",
      comment: "จังหวัดตามทะเบียนบ้าน",
      joinTable: "Province",
      joinField: "name",
    },
    registrationDistrictId: {
      propertyName: "registrationDistrictName",
      type: "string",
      comment: "เขตตามทะเบียนบ้าน",
      joinTable: "District",
      joinField: "name",
    },
    registrationSubDistrictId: {
      propertyName: "registrationSubDistrictName",
      type: "string",
      comment: "แขวงตามทะเบียนบ้าน",
      joinTable: "SubDistrict",
      joinField: "name",
    },
    currentProvinceId: {
      propertyName: "currentProvinceName",
      type: "string",
      comment: "จังหวัดตามปัจจุบัน",
      joinTable: "Province",
      joinField: "name",
    },
    currentDistrictId: {
      propertyName: "currentDistrictName",
      type: "string",
      comment: "เขตตามปัจจุบัน",
      joinTable: "District",
      joinField: "name",
    },
    currentSubDistrictId: {
      propertyName: "currentSubDistrictName",
      type: "string",
      comment: "แขวงตามปัจจุบัน",
      joinTable: "SubDistrict",
      joinField: "name",
    },
  };
  // การแทนที่ฟิลด์ ID ด้วยฟิลด์ Name สำหรับ Position entity
  private readonly POSITION_FIELD_REPLACEMENTS: Record<
    string,
    { propertyName: string; type: string; comment: string; joinTable: string; joinField: string }
  > = {
    posTypeId: {
      propertyName: "posTypeName",
      type: "string",
      comment: "ประเภทตำแหน่ง",
      joinTable: "PosType",
      joinField: "posTypeName",
    },
    posLevelId: {
      propertyName: "posLevelName",
      type: "string",
      comment: "ระดับตำแหน่ง",
      joinTable: "PosLevel",
      joinField: "posLevelName",
    },
    posExecutiveId: {
      propertyName: "posExecutiveName",
      type: "string",
      comment: "ตำแหน่งทางการบริหาร",
      joinTable: "PosExecutive",
      joinField: "posExecutiveName",
    },
  };
  // การแทนที่ฟิลด์ ID ด้วยฟิลด์ Name สำหรับ ProfileEmployee entity
  private readonly PROFILEEMPLOYEE_FIELD_REPLACEMENTS: Record<
    string,
    { propertyName: string; type: string; comment: string; joinTable: string; joinField: string }
  > = {
    posLevelId: {
      propertyName: "posLevelName",
      type: "string",
      comment: "ระดับชั้นงาน",
      joinTable: "EmployeePosLevel",
      joinField: "posLevelName",
    },
    posTypeId: {
      propertyName: "posTypeName",
      type: "string",
      comment: "กลุ่มงาน",
      joinTable: "EmployeePosType",
      joinField: "posTypeName",
    },
  };
  private validateSuperAdminRole(user: any): void {
    if (!user.role.includes("SUPER_ADMIN")) {
@ -501,8 +364,11 @@ export class ApiManageController extends Controller {
      const result = this.entities
        .filter((entity) => entity.system.includes(system))
-        .map(({ name, repository, description, isMain }) => {
+        .map(({ name, repository, description, isMain }) => ({
-          let columns = repository.metadata.columns
+          tb: name,
          description,
          isMain: isMain || false,
          propertys: repository.metadata.columns
            .filter(
              (column: any) =>
                !column.isPrimary && !this.EXCLUDED_COLUMNS.includes(column.propertyName),
@ -512,94 +378,8 @@ export class ApiManageController extends Controller {
              type: typeof column.type === "string" ? column.type : "string",
              comment: column.comment,
              key: column.propertyName,
-            }));
+            })),
-
+        }));
          // Special handling for Profile entity - replace ID fields with name fields
          if (name === "Profile") {
            const replacementKeys = Object.keys(this.PROFILE_FIELD_REPLACEMENTS);
            // Remove ID fields that should be replaced
            columns = columns.filter(
              (col: { propertyName: string }) => !replacementKeys.includes(col.propertyName),
            );
            // Add the corresponding name fields
            const nameFields = replacementKeys.map((key) => ({
              propertyName: this.PROFILE_FIELD_REPLACEMENTS[key].propertyName,
              type: "string",
              comment: this.PROFILE_FIELD_REPLACEMENTS[key].comment,
              key: this.PROFILE_FIELD_REPLACEMENTS[key].propertyName,
            }));
            columns = [...columns, ...nameFields];
          }
          // Special handling for Position entity - replace ID fields with name fields
          if (name === "Position") {
            const replacementKeys = Object.keys(this.POSITION_FIELD_REPLACEMENTS);
            // Remove ID fields that should be replaced
            columns = columns.filter(
              (col: { propertyName: string }) => !replacementKeys.includes(col.propertyName),
            );
            // Add the corresponding name fields
            const nameFields = replacementKeys.map((key) => ({
              propertyName: this.POSITION_FIELD_REPLACEMENTS[key].propertyName,
              type: "string",
              comment: this.POSITION_FIELD_REPLACEMENTS[key].comment,
              key: this.POSITION_FIELD_REPLACEMENTS[key].propertyName,
            }));
            columns = [...columns, ...nameFields];
          }
          // Special handling for ProfileEmployee entity - replace ID fields with name fields
          if (name === "ProfileEmployee") {
            const replacementKeys = Object.keys(this.PROFILEEMPLOYEE_FIELD_REPLACEMENTS);
            // Remove ID fields that should be replaced
            columns = columns.filter(
              (col: { propertyName: string }) => !replacementKeys.includes(col.propertyName),
            );
            // Add the corresponding name fields
            const nameFields = replacementKeys.map((key) => ({
              propertyName: this.PROFILEEMPLOYEE_FIELD_REPLACEMENTS[key].propertyName,
              type: "string",
              comment: this.PROFILEEMPLOYEE_FIELD_REPLACEMENTS[key].comment,
              key: this.PROFILEEMPLOYEE_FIELD_REPLACEMENTS[key].propertyName,
            }));
            columns = [...columns, ...nameFields];
          }
          // Special handling for PosMaster entity - add Profile fields for holder information
          if (name === "PosMaster") {
            // Add Profile fields that are accessible via current_holder relation
            const profileFields = ["prefix", "rank", "firstName", "lastName", "citizenId"];
            const profileRepository = AppDataSource.getRepository(Profile);
            const profileColumns = profileRepository.metadata.columns
              .filter(
                (column: any) => !column.isPrimary && profileFields.includes(column.propertyName),
              )
              .map((column: any) => ({
                propertyName: `Profile.${column.propertyName}`,
                type: typeof column.type === "string" ? column.type : "string",
                comment: column.comment,
                key: `Profile.${column.propertyName}`,
              }));
            columns = [...columns, ...profileColumns];
          }
          return {
            tb: name,
            description,
            isMain: isMain || false,
            propertys: columns,
          };
        });
      return new HttpSuccess(result);
    } catch (error) {
--- a/src/controllers/ApiWebServiceController.ts
+++ b/src/controllers/ApiWebServiceController.ts
@ -8,10 +8,6 @@ import { isPermissionRequest } from "../middlewares/authWebService";
 import { RequestWithUserWebService } from "../middlewares/user";
 import { OrgRevision } from "../entities/OrgRevision";
 import { ApiHistory } from "../entities/ApiHistory";
 import { OrgChild1 } from "../entities/OrgChild1";
 import { OrgChild2 } from "../entities/OrgChild2";
 import { OrgChild3 } from "../entities/OrgChild3";
 import { OrgChild4 } from "../entities/OrgChild4";
 import { SystemCode } from "./../interfaces/api-type";
@Route("api/v1/org/api-service")
@Tags("ApiKey")
@ -24,170 +20,6 @@ export class ApiWebServiceController extends Controller {
  private apiNameRepository = AppDataSource.getRepository(ApiName);
  private orgRevisionRepository = AppDataSource.getRepository(OrgRevision);
  private apiHistoryRepository = AppDataSource.getRepository(ApiHistory);
  private currentRevisionId: string = "";
  // การแทนที่ฟิลด์ ID ด้วยฟิลด์ Name สำหรับ Profile entity
  private readonly PROFILE_FIELD_REPLACEMENTS: Record<
    string,
    { propertyName: string; joinRelation: string; joinField: string }
  > = {
    posLevelName: {
      propertyName: "posLevelId",
      joinRelation: "posLevel",
      joinField: "posLevelName",
    },
    posTypeName: {
      propertyName: "posTypeId",
      joinRelation: "posType",
      joinField: "posTypeName",
    },
    registrationProvinceName: {
      propertyName: "registrationProvinceId",
      joinRelation: "registrationProvince",
      joinField: "name",
    },
    registrationDistrictName: {
      propertyName: "registrationDistrictId",
      joinRelation: "registrationDistrict",
      joinField: "name",
    },
    registrationSubDistrictName: {
      propertyName: "registrationSubDistrictId",
      joinRelation: "registrationSubDistrict",
      joinField: "name",
    },
    currentProvinceName: {
      propertyName: "currentProvinceId",
      joinRelation: "currentProvince",
      joinField: "name",
    },
    currentDistrictName: {
      propertyName: "currentDistrictId",
      joinRelation: "currentDistrict",
      joinField: "name",
    },
    currentSubDistrictName: {
      propertyName: "currentSubDistrictId",
      joinRelation: "currentSubDistrict",
      joinField: "name",
    },
  };
  // การแทนที่ฟิลด์ ID ด้วยฟิลด์ Name สำหรับ Position entity
  private readonly POSITION_FIELD_REPLACEMENTS: Record<
    string,
    { propertyName: string; joinRelation: string; joinField: string }
  > = {
    posTypeName: {
      propertyName: "posTypeId",
      joinRelation: "posType",
      joinField: "posTypeName",
    },
    posLevelName: {
      propertyName: "posLevelId",
      joinRelation: "posLevel",
      joinField: "posLevelName",
    },
    posExecutiveName: {
      propertyName: "posExecutiveId",
      joinRelation: "posExecutive",
      joinField: "posExecutiveName",
    },
  };
  // การแทนที่ฟิลด์ ID ด้วยฟิลด์ Name สำหรับ ProfileEmployee entity
  private readonly PROFILEEMPLOYEE_FIELD_REPLACEMENTS: Record<
    string,
    { propertyName: string; joinRelation: string; joinField: string }
  > = {
    posTypeName: {
      propertyName: "posTypeId",
      joinRelation: "posType",
      joinField: "posTypeName",
    },
    posLevelName: {
      propertyName: "posLevelId",
      joinRelation: "posLevel",
      joinField: "posLevelName",
    },
  };
  /**
   * build posMaster permission condition
   * @summary สร้างเงื่อนไขการกรองข้อมูลตามสิทธิ์การเข้าถึง
   */
  private buildPosMasterPermissionCondition(
    accessType: string | undefined,
    dnaIds: {
      dnaRootId?: string | null;
      dnaChild1Id?: string | null;
      dnaChild2Id?: string | null;
      dnaChild3Id?: string | null;
      dnaChild4Id?: string | null;
    },
    tableAlias: string = "posMaster",
  ): string {
    // ALL - no filtering
    if (accessType === "ALL") {
      return "1=1";
    }
    // No access type specified but has DNA IDs - default to NORMAL behavior
    const conditions: string[] = [];
    if (accessType === "ROOT" && dnaIds.dnaRootId) {
      // All organizations under this root
      conditions.push(
        `${tableAlias}.orgRootId IN (SELECT id FROM orgRoot WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA LIKE "${dnaIds.dnaRootId}%")`,
      );
    } else if (accessType === "CHILD" || accessType === "NORMAL") {
      // Build conditions based on which DNA level is specified
      if (dnaIds.dnaChild4Id) {
        conditions.push(
          `${tableAlias}.orgChild4Id IN (SELECT id FROM orgChild4 WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA = "${dnaIds.dnaChild4Id}")`,
        );
      } else if (dnaIds.dnaChild3Id) {
        conditions.push(
          `${tableAlias}.orgChild3Id IN (SELECT id FROM orgChild3 WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA = "${dnaIds.dnaChild3Id}")`,
        );
        // For CHILD type, include all descendants
        if (accessType === "CHILD") {
          conditions.push(
            `(${tableAlias}.orgChild3Id IN (SELECT id FROM orgChild3 WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA LIKE "${dnaIds.dnaChild3Id}%") OR ${tableAlias}.orgChild4Id IS NOT NULL)`,
          );
        }
      } else if (dnaIds.dnaChild2Id) {
        conditions.push(
          `${tableAlias}.orgChild2Id IN (SELECT id FROM orgChild2 WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA = "${dnaIds.dnaChild2Id}")`,
        );
        if (accessType === "CHILD") {
          conditions.push(
            `(${tableAlias}.orgChild2Id IN (SELECT id FROM orgChild2 WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA LIKE "${dnaIds.dnaChild2Id}%") OR ${tableAlias}.orgChild3Id IS NOT NULL)`,
          );
        }
      } else if (dnaIds.dnaChild1Id) {
        conditions.push(
          `${tableAlias}.orgChild1Id IN (SELECT id FROM orgChild1 WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA = "${dnaIds.dnaChild1Id}")`,
        );
        if (accessType === "CHILD") {
          conditions.push(
            `(${tableAlias}.orgChild1Id IN (SELECT id FROM orgChild1 WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA LIKE "${dnaIds.dnaChild1Id}%") OR ${tableAlias}.orgChild2Id IS NOT NULL)`,
          );
        }
      } else if (dnaIds.dnaRootId) {
        conditions.push(
          `${tableAlias}.orgRootId IN (SELECT id FROM orgRoot WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA = "${dnaIds.dnaRootId}")`,
        );
        if (accessType === "CHILD") {
          conditions.push(
            `(${tableAlias}.orgRootId IN (SELECT id FROM orgRoot WHERE orgRevisionId = "${this.currentRevisionId}" AND ancestorDNA LIKE "${dnaIds.dnaRootId}%") OR ${tableAlias}.orgChild1Id IS NOT NULL)`,
          );
        }
      }
    }
    return conditions.length > 0 ? `(${conditions.join(" OR ")})` : "1=1";
  }
  /**
   * list fields by systems
@ -218,14 +50,7 @@ export class ApiWebServiceController extends Controller {
    }
    await isPermissionRequest(request, apiName.id);
    const offset = (page - 1) * pageSize;
-    let propertyKey = apiName.apiAttributes.map((attr) => `${attr.tbName}.${attr.propertyKey}`);
+    const propertyKey = apiName.apiAttributes.map((attr) => `${attr.tbName}.${attr.propertyKey}`);
    const selectedFieldsByTable: Record<string, Set<string>> = {};
    apiName.apiAttributes.forEach((attr) => {
      if (!selectedFieldsByTable[attr.tbName]) {
        selectedFieldsByTable[attr.tbName] = new Set<string>();
      }
      selectedFieldsByTable[attr.tbName].add(attr.propertyKey);
    });
    let tbMain: string = "";
    let condition: string = "1=1";
@ -253,104 +78,6 @@ export class ApiWebServiceController extends Controller {
      condition = `PosMaster.orgRevisionId = "${revision?.id}"`;
    }
    let posMasterCondition: string = "1=1";
    let posMasterAlias: string = "";
    // Special handling for Profile and ProfileEmployee systems with permission filtering
    if (system == "registry") {
      // Get current revision
      const revision = await this.orgRevisionRepository.findOne({
        select: ["id"],
        where: { orgRevisionIsCurrent: true, orgRevisionIsDraft: false },
      });
      // Store for use in permission building
      this.currentRevisionId = revision?.id || "";
      posMasterAlias = "posMaster";
      // Build permission condition
      posMasterCondition = this.buildPosMasterPermissionCondition(
        request.user.accessType,
        {
          dnaRootId: request.user.dnaRootId,
          dnaChild1Id: request.user.dnaChild1Id,
          dnaChild2Id: request.user.dnaChild2Id,
          dnaChild3Id: request.user.dnaChild3Id,
          dnaChild4Id: request.user.dnaChild4Id,
        },
        posMasterAlias,
      );
    } else if (system == "registry_emp") {
      // Get current revision
      const revision = await this.orgRevisionRepository.findOne({
        select: ["id"],
        where: { orgRevisionIsCurrent: true, orgRevisionIsDraft: false },
      });
      // Store for use in permission building
      this.currentRevisionId = revision?.id || "";
      posMasterAlias = "employeePosMaster";
      // Build permission condition
      posMasterCondition = this.buildPosMasterPermissionCondition(
        request.user.accessType,
        {
          dnaRootId: request.user.dnaRootId,
          dnaChild1Id: request.user.dnaChild1Id,
          dnaChild2Id: request.user.dnaChild2Id,
          dnaChild3Id: request.user.dnaChild3Id,
          dnaChild4Id: request.user.dnaChild4Id,
        },
        posMasterAlias,
      );
    } else if (system == "registry_temp") {
      // Get current revision
      const revision = await this.orgRevisionRepository.findOne({
        select: ["id"],
        where: { orgRevisionIsCurrent: true, orgRevisionIsDraft: false },
      });
      // Store for use in permission building
      this.currentRevisionId = revision?.id || "";
      posMasterAlias = "employeeTempPosMaster";
      // Build permission condition
      posMasterCondition = this.buildPosMasterPermissionCondition(
        request.user.accessType,
        {
          dnaRootId: request.user.dnaRootId,
          dnaChild1Id: request.user.dnaChild1Id,
          dnaChild2Id: request.user.dnaChild2Id,
          dnaChild3Id: request.user.dnaChild3Id,
          dnaChild4Id: request.user.dnaChild4Id,
        },
        posMasterAlias,
      );
    } else if (system == "position") {
      // Get current revision
      const revision = await this.orgRevisionRepository.findOne({
        select: ["id"],
        where: { orgRevisionIsCurrent: true, orgRevisionIsDraft: false },
      });
      // Store for use in permission building
      this.currentRevisionId = revision?.id || "";
      posMasterAlias = "PosMaster"; // Note: Uses PascalCase to match tbMain alias
      // Build permission condition
      posMasterCondition = this.buildPosMasterPermissionCondition(
        request.user.accessType,
        {
          dnaRootId: request.user.dnaRootId,
          dnaChild1Id: request.user.dnaChild1Id,
          dnaChild2Id: request.user.dnaChild2Id,
          dnaChild3Id: request.user.dnaChild3Id,
          dnaChild4Id: request.user.dnaChild4Id,
        },
        posMasterAlias,
      );
    }
    const repo = AppDataSource.getRepository(tbMain);
    const metadata = repo.metadata;
@ -365,182 +92,27 @@ export class ApiWebServiceController extends Controller {
      ...new Set(propertyKey.map((x) => x.split(".")[0]).filter((tb) => tb !== tbMain)),
    ];
    // Organization hierarchy is assembled in a separate step; keep main query focused on OrgRoot only.
    if (tbMain === "OrgRoot") {
      const orgChildTables = new Set(["OrgChild1", "OrgChild2", "OrgChild3", "OrgChild4"]);
      propertyKey = propertyKey.filter((key) => !orgChildTables.has(key.split(".")[0]));
      propertyOtherKey = propertyOtherKey.filter((tb) => !orgChildTables.has(tb));
    }
    // สำหรับ Profile: ตรวจสอบฟิลด์ที่ต้องการ join และแปลง propertyKey
    const profileFieldJoins: Record<string, string> = {}; // alias -> relationName
    if (tbMain === "Profile") {
      propertyKey = propertyKey.map((key) => {
        const [table, field] = key.split(".");
        if (table === "Profile") {
          const replacement = this.PROFILE_FIELD_REPLACEMENTS[field];
          if (replacement) {
            const alias = `${table}_${replacement.joinRelation}`;
            profileFieldJoins[alias] = replacement.joinRelation;
            return `${alias}.${replacement.joinField}`;
          }
        }
        return key;
      });
    }
    // สำหรับ Position: ตรวจสอบฟิลด์ที่ต้องการ join และแปลง propertyKey
    const positionFieldJoins: Record<string, string> = {}; // alias -> relationName
    if (tbMain === "Position" || tbMain === "PosMaster") {
      propertyKey = propertyKey.map((key) => {
        const [table, field] = key.split(".");
        if (table === "Position") {
          const replacement = this.POSITION_FIELD_REPLACEMENTS[field];
          if (replacement) {
            const alias = `${table}_${replacement.joinRelation}`;
            positionFieldJoins[alias] = replacement.joinRelation;
            return `${alias}.${replacement.joinField}`;
          }
        }
        return key;
      });
    }
    // สำหรับ ProfileEmployee: ตรวจสอบฟิลด์ที่ต้องการ join และแปลง propertyKey
    const profileEmployeeFieldJoins: Record<string, string> = {}; // alias -> relationName
    if (tbMain === "ProfileEmployee") {
      propertyKey = propertyKey.map((key) => {
        const [table, field] = key.split(".");
        if (table === "ProfileEmployee") {
          const replacement = this.PROFILEEMPLOYEE_FIELD_REPLACEMENTS[field];
          if (replacement) {
            const alias = `${table}_${replacement.joinRelation}`;
            profileEmployeeFieldJoins[alias] = replacement.joinRelation;
            return `${alias}.${replacement.joinField}`;
          }
        }
        return key;
      });
    }
    const queryBuilder = repo.createQueryBuilder(tbMain);
    // join กับตารารอง
    if (propertyOtherKey.length > 0) {
      propertyOtherKey.forEach((tb) => {
        // Skip Profile join for PosMaster - it's handled separately below
        if (tbMain === "PosMaster" && tb === "Profile") {
          return;
        }
        // Skip Position join for PosMaster - it's handled separately below
        if (tbMain === "PosMaster" && tb === "Position") {
          return;
        }
        const relationName = relationMap[tb];
        if (relationName) {
-          queryBuilder.leftJoin(`${tbMain}.${relationName}`, tb);
+          queryBuilder.leftJoin(
-        } else {
+            `${tbMain}.${relationName === "next_holder" ? "current_holder" : relationName}`, // เช็คว่าถ้าเป็น next_holder ให้ใช้ current_holder แทน
-          // Remove fields from this table from propertyKey
+            tb,
          propertyKey = propertyKey.filter((key) => !key.startsWith(`${tb}.`));
        }
      });
    }
    // Check if propertyKey is empty after filtering
    if (propertyKey.length === 0) {
      throw new HttpError(
        HttpStatusCode.BAD_REQUEST,
        "ไม่พบฟิลด์ที่ต้องการแสดงผล กรุณาตรวจสอบการตั้งค่า API (ไม่สามารถ join ตารางลูกได้)",
      );
    }
    // join สำหรับฟิลด์ Profile ที่ต้องการดึงค่าจากตารางอื่น
    if (tbMain === "Profile" && Object.keys(profileFieldJoins).length > 0) {
      Object.entries(profileFieldJoins).forEach(([alias, relationName]) => {
        queryBuilder.leftJoin(`${tbMain}.${relationName}`, alias);
      });
    }
    // join สำหรับฟิลด์ Position ที่ต้องการดึงค่าจากตารางอื่น
    if (
      (tbMain === "Position" || tbMain === "PosMaster") &&
      Object.keys(positionFieldJoins).length > 0
    ) {
      if (tbMain === "PosMaster") {
        const posMasterPositionRelation = relationMap["Position"];
        if (!posMasterPositionRelation) {
          throw new HttpError(
            HttpStatusCode.BAD_REQUEST,
            "ไม่พบความสัมพันธ์ระหว่าง PosMaster กับ Position กรุณาตรวจสอบการตั้งค่า API",
          );
        }
        // Join PosMaster -> Position once using actual relation name from metadata
        queryBuilder.leftJoin(`PosMaster.${posMasterPositionRelation}`, "Position");
      }
      Object.entries(positionFieldJoins).forEach(([alias, relationName]) => {
        if (tbMain === "PosMaster") {
          queryBuilder.leftJoin(`Position.${relationName}`, alias);
        } else {
          queryBuilder.leftJoin(`${tbMain}.${relationName}`, alias);
        }
      });
    }
    // join สำหรับฟิลด์ ProfileEmployee ที่ต้องการดึงค่าจากตารางอื่น
    if (tbMain === "ProfileEmployee" && Object.keys(profileEmployeeFieldJoins).length > 0) {
      Object.entries(profileEmployeeFieldJoins).forEach(([alias, relationName]) => {
        queryBuilder.leftJoin(`${tbMain}.${relationName}`, alias);
      });
    }
    // join สำหรับ PosMaster เมื่อต้องการดึงค่าจาก Profile (ข้อมูลคนครอง)
    const posMasterProfileFields: string[] = [];
    if (tbMain === "PosMaster") {
      // Collect Profile fields from both formats: "Profile.xxx" and "PosMaster.Profile.xxx"
      const extractedProfileFields = propertyKey
        .filter((key) => key.startsWith("Profile.") || key.startsWith("PosMaster.Profile."))
        .map((key) => key.replace(/^PosMaster\.Profile\./, "Profile."));
      posMasterProfileFields.push(...new Set(extractedProfileFields));
      // Remove Profile fields then add back normalized "Profile.xxx" form
      propertyKey = propertyKey.filter(
        (key) => !key.startsWith("Profile.") && !key.startsWith("PosMaster.Profile."),
      );
      propertyKey.push(...posMasterProfileFields);
    }
    // join PosMaster กับ Profile เมื่อมีการขอ Profile fields
    if (tbMain === "PosMaster" && posMasterProfileFields.length > 0) {
      // Always join via current_holder (not next_holder) because PosMaster has two relations
      // to Profile and relationMap["Profile"] would resolve to next_holder (last defined in entity)
      queryBuilder.leftJoin("PosMaster.current_holder", "Profile");
    }
    // join กับ posMaster/employeePosMaster/employeeTempPosMaster เพื่อกรองตามสิทธิ์การเข้าถึง
    if ((tbMain === "Profile" || tbMain === "ProfileEmployee") && posMasterCondition !== "1=1") {
      if (tbMain === "Profile") {
        queryBuilder.leftJoin("Profile.current_holders", "posMaster");
      } else if (tbMain === "ProfileEmployee") {
        // Use the correct relation based on posMasterAlias
        if (posMasterAlias === "employeeTempPosMaster") {
          queryBuilder.leftJoin("ProfileEmployee.current_holderTemps", "employeeTempPosMaster");
        } else {
          queryBuilder.leftJoin("ProfileEmployee.current_holders", "employeePosMaster");
        }
      }
    }
    // // เพิ่ม Main.id เพราะจะใช้ pk ในการแมบและนับจำนวน
    // if (!propertyKey.includes(`${Main}.id`)) {
    //   propertyKey.push(`${Main}.id`);
    // }
-    // add PK - ensure propertyKey is never empty
+    // add FK
    let pk: string = "";
    const primaryColumns = metadata.primaryColumns;
    primaryColumns.forEach((col) => {
@ -550,27 +122,13 @@ export class ApiWebServiceController extends Controller {
      }
    });
-    let items: any[] = [];
+    const [items, total] = await queryBuilder
-    let total = 0;
+      .select(propertyKey)
-
+      .where(condition)
-    if (tbMain === "OrgRoot") {
+      .orderBy(propertyKey[0], "ASC")
-      // Organization API should always return full hierarchy regardless of page/pageSize.
+      .skip(offset)
-      [items, total] = await queryBuilder
+      .take(pageSize)
-        .select(propertyKey)
+      .getManyAndCount();
        .where(condition)
        .andWhere(posMasterCondition)
        .orderBy(propertyKey[0] || `${tbMain}.${pk}`, "ASC")
        .getManyAndCount();
    } else {
      [items, total] = await queryBuilder
        .select(propertyKey)
        .where(condition)
        .andWhere(posMasterCondition)
        .orderBy(propertyKey[0] || `${tbMain}.${pk}`, "ASC")
        .skip(offset)
        .take(pageSize)
        .getManyAndCount();
    }
    // ลบ Main.id
    // const results = items.map(({ id, ...x }) => x);
@ -583,229 +141,11 @@ export class ApiWebServiceController extends Controller {
    // split object id ออกก่อน return
    const data = items.map((item) => {
-      const { [pk]: removedPk, ...rest } = item;
+      const { [pk]: removedPk, ...x } = item;
-
+      return x;
      // สำหรับ Profile: แปลงฟิลด์ที่มาจาก join กลับเป็นชื่อเดิม
      if (tbMain === "Profile") {
        const flattened: any = { ...rest };
        Object.entries(this.PROFILE_FIELD_REPLACEMENTS).forEach(([nameField, config]) => {
          const alias = `${tbMain}_${config.joinRelation}`;
          if (rest[alias] && rest[alias][config.joinField] !== undefined) {
            flattened[nameField] = rest[alias][config.joinField];
            delete flattened[alias];
          }
        });
        return flattened;
      }
      // สำหรับ Position: แปลงฟิลด์ที่มาจาก join กลับเป็นชื่อเดิม
      if (tbMain === "Position" || tbMain === "PosMaster") {
        const flattened: any = { ...rest };
        Object.entries(this.POSITION_FIELD_REPLACEMENTS).forEach(([nameField, config]) => {
          // Remove the original ID field
          delete flattened[config.propertyName];
          // Add the name field from joined table
          const alias = `Position_${config.joinRelation}`;
          if (rest[alias] && rest[alias][config.joinField] !== undefined) {
            flattened[nameField] = rest[alias][config.joinField];
          }
          // Remove the joined table object
          delete flattened[alias];
        });
        // Remove Position object if exists
        if (flattened["Position"]) {
          delete flattened["Position"];
        }
        return flattened;
      }
      // สำหรับ ProfileEmployee: แปลงฟิลด์ที่มาจาก join กลับเป็นชื่อเดิม
      if (tbMain === "ProfileEmployee") {
        const flattened: any = { ...rest };
        Object.entries(this.PROFILEEMPLOYEE_FIELD_REPLACEMENTS).forEach(([nameField, config]) => {
          // Remove the original ID field
          delete flattened[config.propertyName];
          // Add the name field from joined table
          const alias = `${tbMain}_${config.joinRelation}`;
          if (rest[alias] && rest[alias][config.joinField] !== undefined) {
            flattened[nameField] = rest[alias][config.joinField];
          }
          // Remove the joined table object
          delete flattened[alias];
        });
        return flattened;
      }
      // สำหรับ PosMaster: แปลงฟิลด์ Profile ที่มาจาก join กลับเป็นฟิลด์ระดับบน
      if (tbMain === "PosMaster" && posMasterProfileFields.length > 0) {
        const flattened: any = { ...rest };
        const profileFieldNames = posMasterProfileFields
          .filter((field) => field.startsWith("Profile."))
          .map((field) => field.replace("Profile.", ""));
        // Extract only requested Profile fields and add top-level aliases
        if (rest["Profile"]) {
          profileFieldNames.forEach((fieldName) => {
            if (rest["Profile"][fieldName] !== undefined) {
              flattened[`profile_${fieldName}`] = rest["Profile"][fieldName];
            }
          });
          // Remove the nested Profile object
          delete flattened["Profile"];
        }
        return flattened;
      }
      // สำหรับ OrgRoot: เก็บ primary key ไว้ใช้ group ข้อมูล แล้วแยก children ภายหลัง
      if (tbMain === "OrgRoot") {
        return { __rootPk: removedPk, ...rest };
      }
      return rest;
    });
-    let responseData: any[] = data;
+    // console.log("queryBuilder ===> ", queryBuilder.getQuery());
    let responseTotal = total;
    // สำหรับ Organization: รวมข้อมูลให้เหลือ 1 root ต่อ 1 object และจัด children ตาม hierarchy
    if (tbMain === "OrgRoot") {
      const rootVisibleFields = Array.from(selectedFieldsByTable["OrgRoot"] || []);
      const child1VisibleFields = Array.from(selectedFieldsByTable["OrgChild1"] || []);
      const child2VisibleFields = Array.from(selectedFieldsByTable["OrgChild2"] || []);
      const child3VisibleFields = Array.from(selectedFieldsByTable["OrgChild3"] || []);
      const child4VisibleFields = Array.from(selectedFieldsByTable["OrgChild4"] || []);
      const pickVisibleFields = (obj: any, fields: string[]) => {
        const out: any = {};
        fields.forEach((field) => {
          if (obj[field] !== undefined) {
            out[field] = obj[field];
          }
        });
        return out;
      };
      const rootMap = new Map<string, any>();
      data.forEach((row: any) => {
        if (!row.__rootPk || rootMap.has(row.__rootPk)) {
          return;
        }
        const rootNode = {
          ...pickVisibleFields(row, rootVisibleFields),
          children: [],
        };
        rootMap.set(row.__rootPk, rootNode);
      });
      const rootIds = Array.from(rootMap.keys());
      if (rootIds.length > 0) {
        const buildSelect = (alias: string, required: string[], visible: string[]) =>
          Array.from(new Set([...required, ...visible])).map((field) => `${alias}.${field}`);
        const [child1Rows, child2Rows, child3Rows, child4Rows] = await Promise.all([
          AppDataSource.getRepository(OrgChild1)
            .createQueryBuilder("OrgChild1")
            .select(buildSelect("OrgChild1", ["id", "orgRootId"], child1VisibleFields))
            .where("OrgChild1.orgRootId IN (:...rootIds)", { rootIds })
            .orderBy("OrgChild1.id", "ASC")
            .getMany(),
          AppDataSource.getRepository(OrgChild2)
            .createQueryBuilder("OrgChild2")
            .select(
              buildSelect("OrgChild2", ["id", "orgRootId", "orgChild1Id"], child2VisibleFields),
            )
            .where("OrgChild2.orgRootId IN (:...rootIds)", { rootIds })
            .orderBy("OrgChild2.id", "ASC")
            .getMany(),
          AppDataSource.getRepository(OrgChild3)
            .createQueryBuilder("OrgChild3")
            .select(
              buildSelect(
                "OrgChild3",
                ["id", "orgRootId", "orgChild1Id", "orgChild2Id"],
                child3VisibleFields,
              ),
            )
            .where("OrgChild3.orgRootId IN (:...rootIds)", { rootIds })
            .orderBy("OrgChild3.id", "ASC")
            .getMany(),
          AppDataSource.getRepository(OrgChild4)
            .createQueryBuilder("OrgChild4")
            .select(
              buildSelect(
                "OrgChild4",
                ["id", "orgRootId", "orgChild1Id", "orgChild2Id", "orgChild3Id"],
                child4VisibleFields,
              ),
            )
            .where("OrgChild4.orgRootId IN (:...rootIds)", { rootIds })
            .orderBy("OrgChild4.id", "ASC")
            .getMany(),
        ]);
        const child1Map = new Map<string, any>();
        const child2Map = new Map<string, any>();
        const child3Map = new Map<string, any>();
        child1Rows.forEach((row) => {
          const node = {
            ...pickVisibleFields(row, child1VisibleFields),
            children: [],
          };
          child1Map.set(row.id, node);
          const rootNode = rootMap.get(row.orgRootId);
          if (rootNode) {
            rootNode.children.push(node);
          }
        });
        child2Rows.forEach((row) => {
          const node = {
            ...pickVisibleFields(row, child2VisibleFields),
            children: [],
          };
          child2Map.set(row.id, node);
          const parent = child1Map.get(row.orgChild1Id);
          if (parent) {
            parent.children.push(node);
          }
        });
        child3Rows.forEach((row) => {
          const node = {
            ...pickVisibleFields(row, child3VisibleFields),
            children: [],
          };
          child3Map.set(row.id, node);
          const parent = child2Map.get(row.orgChild2Id);
          if (parent) {
            parent.children.push(node);
          }
        });
        child4Rows.forEach((row) => {
          const node = {
            ...pickVisibleFields(row, child4VisibleFields),
          };
          const parent = child3Map.get(row.orgChild3Id);
          if (parent) {
            if (!Array.isArray(parent.children)) {
              parent.children = [];
            }
            parent.children.push(node);
          }
        });
      }
      responseData = Array.from(rootMap.values());
      responseTotal = responseData.length;
    }
    // save api history after query success
    const history = {
@ -855,6 +195,6 @@ export class ApiWebServiceController extends Controller {
    //   return flattenedItem;
    // });
-    return new HttpSuccess({ data: responseData, total: responseTotal });
+    return new HttpSuccess({ data: data, total });
  }
 }
--- a/src/controllers/AuthRoleController.ts
+++ b/src/controllers/AuthRoleController.ts
@ -123,25 +123,18 @@ export class AuthRoleController extends Controller {
    // เช็คว่าถ้ามีค่า current_holderId ให้ลบ key สิทธิ์ใน redis
    if (posMaster.current_holderId) {
-      let redisClient;
+      const redisClient = await this.redis.createClient({
-      try {
+        host: REDIS_HOST,
-        redisClient = await this.redis.createClient({
+        port: REDIS_PORT,
-          host: REDIS_HOST,
+      });
          port: REDIS_PORT,
        });
-        redisClient.del("role_" + posMaster.current_holderId, (err: Error) => {
+      redisClient.del("role_" + posMaster.current_holderId, (err: Error, response: Response) => {
-          if (err) console.error("Redis delete role error:", err);
+        if (err) throw err;
-        });
+      });
-        redisClient.del("menu_" + posMaster.current_holderId, (err: Error) => {
+      redisClient.del("menu_" + posMaster.current_holderId, (err: Error, response: Response) => {
-          if (err) console.error("Redis delete menu error:", err);
+        if (err) throw err;
-        });
+      });
      } finally {
        if (redisClient) {
          redisClient.quit();
        }
      }
    }
    return new HttpSuccess();
@ -267,45 +260,20 @@ export class AuthRoleController extends Controller {
      return newAttr;
    });
    const before = structuredClone(record);
    await Promise.all([
      this.authRoleRepo.save(record, { data: req }),
      setLogDataDiff(req, { before, after: record }),
      ...newAttrs.map((attr) => this.authRoleAttrRepo.save(attr)),
    ]);
-    const queryRunner = AppDataSource.createQueryRunner();
+    const redisClient = await this.redis.createClient({
-    await queryRunner.connect();
+      host: REDIS_HOST,
-    await queryRunner.startTransaction();
+      port: REDIS_PORT,
    });
-    try {
+    await redisClient.flushdb(function (err: any, succeeded: any) {
-      await queryRunner.manager.save(AuthRole, record);
+      console.log(succeeded); // will be true if successfull
-      await Promise.all(
+    });
        newAttrs.map((attr) => queryRunner.manager.save(AuthRoleAttr, attr))
      );
      await queryRunner.commitTransaction();
      setLogDataDiff(req, { before, after: record });
    } catch (error) {
      await queryRunner.rollbackTransaction();
      console.error("Error saving auth role:", error);
      throw new HttpError(
        HttpStatusCode.INTERNAL_SERVER_ERROR,
        "เกิดข้อผิดพลาดในการบันทึกข้อมูลบทบาท กรุณาลองใหม่ในภายหลัง"
      );
    } finally {
      await queryRunner.release();
    }
    let redisClient;
    try {
      redisClient = await this.redis.createClient({
        host: REDIS_HOST,
        port: REDIS_PORT,
      });
      await redisClient.flushdb(function (err: any, succeeded: any) {
        console.log(succeeded); // will be true if successfull
      });
    } finally {
      if (redisClient) {
        redisClient.quit();
      }
    }
    return new HttpSuccess();
  }
--- a/src/controllers/CommandController.ts
+++ b/src/controllers/CommandController.ts
--- a/src/controllers/CommandOperatorController.ts
+++ b/src/controllers/CommandOperatorController.ts
@ -9,7 +9,7 @@ import {
  Path,
  Request,
  Response,
-  Get,
+  Get
 } from "tsoa";
 import { LessThan, MoreThan } from "typeorm";
 import { AppDataSource } from "../database/data-source";
@ -37,7 +37,9 @@ export class CommandOperatorController extends Controller {
   * @param commandId คีย์คำสั่ง
   */
  @Get("{commandId}")
-  async getCommandOperatorByCommandId(@Path() commandId: string) {
+  async getCommandOperatorByCommandId(
    @Path() commandId: string
  ) {
    const command = await this.commandRepo.findOne({
      where: { id: commandId },
      select: { id: true },
@ -59,7 +61,10 @@ export class CommandOperatorController extends Controller {
   * @param operatorId คีย์เจ้าหน้าที่ดำเนินการ
   */
  @Get("swap/{direction}/{operatorId}")
-  async swapCommandOperator(@Path() direction: string, @Path() operatorId: string) {
+  async swapCommandOperator(
    @Path() direction: string,
    @Path() operatorId: string,
  ) {
    const source = await this.commandOperatorRepo.findOne({
      where: { id: operatorId },
    });
@ -101,7 +106,10 @@ export class CommandOperatorController extends Controller {
    source.orderNo = dest.orderNo;
    dest.orderNo = temp;
-    await Promise.all([this.commandOperatorRepo.save(source), this.commandOperatorRepo.save(dest)]);
+    await Promise.all([
      this.commandOperatorRepo.save(source),
      this.commandOperatorRepo.save(dest),
    ]);
    return new HttpSuccess();
  }
@ -133,29 +141,35 @@ export class CommandOperatorController extends Controller {
    const nextOrderNo = (lastOrderNo?.orderNo ?? 1) + 1;
    const now = new Date();
-    const operator = Object.assign(new CommandOperator(), {
+    const operator = Object.assign(
-      ...body,
+      new CommandOperator(),
-      commandId: command.id,
+      {
-      orderNo: nextOrderNo,
+        ...body,
-      createdUserId: request.user.sub,
+        commandId: command.id,
-      createdFullName: request.user.name,
+        orderNo: nextOrderNo,
-      createdAt: now,
+        createdUserId: request.user.sub,
-      lastUpdateUserId: request.user.sub,
+        createdFullName: request.user.name,
-      lastUpdateFullName: request.user.name,
+        createdAt: now,
-      lastUpdatedAt: now,
+        lastUpdateUserId: request.user.sub,
-    });
+        lastUpdateFullName: request.user.name,
        lastUpdatedAt: now,
      }
    );
    await this.commandOperatorRepo.save(operator);
    return new HttpSuccess();
  }
-  /**
+   /**
   * API ลบเจ้าหน้าที่ดำเนินการที่คำสั่ง
   * @summary API ลบเจ้าหน้าที่ดำเนินการที่คำสั่ง
   * @param commandId คีย์คำสั่ง
   * @param operatorId คีย์เจ้าหน้าที่ดำเนินการ
   */
  @Delete("{commandId}/{operatorId}")
-  public async deleteCommandOperator(@Path() commandId: string, @Path() operatorId: string) {
+  public async deleteCommandOperator(
    @Path() commandId: string,
    @Path() operatorId: string,
  ) {
    const queryRunner = AppDataSource.createQueryRunner();
    await queryRunner.connect();
    await queryRunner.startTransaction();
@ -201,9 +215,10 @@ export class CommandOperatorController extends Controller {
      return new HttpSuccess(true);
    } catch (error) {
      await queryRunner.rollbackTransaction();
-      console.error("Delete command operator error:", error);
+      throw error;
    } finally {
      await queryRunner.release();
    }
  }
 }
--- a/src/controllers/EmployeePositionController.ts
+++ b/src/controllers/EmployeePositionController.ts
@ -1058,11 +1058,11 @@ export class EmployeePositionController extends Controller {
    let checkChildConditions: any = {};
    let keywordAsInt: any;
    let searchShortName = "1=1";
-    let searchShortName0 = `CONCAT_WS(" ",orgRoot.orgRootShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName0 = `CONCAT(orgRoot.orgRootShortName," ",posMaster.posMasterNo)`;
-    let searchShortName1 = `CONCAT_WS(" ",orgChild1.orgChild1ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName1 = `CONCAT(orgChild1.orgChild1ShortName," ",posMaster.posMasterNo)`;
-    let searchShortName2 = `CONCAT_WS(" ",orgChild2.orgChild2ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName2 = `CONCAT(orgChild2.orgChild2ShortName," ",posMaster.posMasterNo)`;
-    let searchShortName3 = `CONCAT_WS(" ",orgChild3.orgChild3ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName3 = `CONCAT(orgChild3.orgChild3ShortName," ",posMaster.posMasterNo)`;
-    let searchShortName4 = `CONCAT_WS(" ",orgChild4.orgChild4ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName4 = `CONCAT(orgChild4.orgChild4ShortName," ",posMaster.posMasterNo)`;
    let _data = await new permission().PermissionOrgList(request, "SYS_ORG_EMP");
    if (body.type === 0) {
      typeCondition = {
@ -1072,7 +1072,7 @@ export class EmployeePositionController extends Controller {
        checkChildConditions = {
          orgChild1Id: IsNull(),
        };
-        searchShortName = `CONCAT_WS(" ",orgRoot.orgRootShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgRoot.orgRootShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
      } else {
      }
    } else if (body.type === 1) {
@ -1083,7 +1083,7 @@ export class EmployeePositionController extends Controller {
        checkChildConditions = {
          orgChild2Id: IsNull(),
        };
-        searchShortName = `CONCAT_WS(" ",orgChild1.orgChild1ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild1.orgChild1ShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
      } else {
      }
    } else if (body.type === 2) {
@ -1094,7 +1094,7 @@ export class EmployeePositionController extends Controller {
        checkChildConditions = {
          orgChild3Id: IsNull(),
        };
-        searchShortName = `CONCAT_WS(" ",orgChild2.orgChild2ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild2.orgChild2ShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
      } else {
      }
    } else if (body.type === 3) {
@ -1105,14 +1105,14 @@ export class EmployeePositionController extends Controller {
        checkChildConditions = {
          orgChild4Id: IsNull(),
        };
-        searchShortName = `CONCAT_WS(" ",orgChild3.orgChild3ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild3.orgChild3ShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
      } else {
      }
    } else if (body.type === 4) {
      typeCondition = {
        orgChild4Id: body.id,
      };
-      searchShortName = `CONCAT_WS(" ",orgChild4.orgChild4ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+      searchShortName = `CONCAT(orgChild4.orgChild4ShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
    }
    let findPosition: any;
    let masterId = new Array();
@ -1190,8 +1190,8 @@ export class EmployeePositionController extends Controller {
        _data.child1 != undefined && _data.child1 != null
          ? _data.child1[0] != null
            ? `posMaster.orgChild1Id IN (:...child1)`
-            : // : `posMaster.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
+            // : `posMaster.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
-              `posMaster.orgChild1Id is null`
+            : `posMaster.orgChild1Id is null`
          : "1=1",
        {
          child1: _data.child1,
@ -1226,24 +1226,23 @@ export class EmployeePositionController extends Controller {
        {
          child4: _data.child4,
        },
-      );
+      )
    if (body.keyword != null && body.keyword != "") {
-      query
+      query.orWhere(
-        .orWhere(
+        new Brackets((qb) => {
-          new Brackets((qb) => {
+          qb.andWhere(
-            qb.andWhere(
+            body.keyword != null && body.keyword != ""
-              body.keyword != null && body.keyword != ""
+              ? body.isAll == false
-                ? body.isAll == false
+                ? searchShortName
-                  ? searchShortName
+                : `CASE WHEN posMaster.orgChild1 is null THEN ${searchShortName0} WHEN posMaster.orgChild2 is null THEN ${searchShortName1} WHEN posMaster.orgChild3 is null THEN ${searchShortName2} WHEN posMaster.orgChild4 is null THEN ${searchShortName3} ELSE ${searchShortName4} END LIKE '%${body.keyword}%'`
-                  : `CASE WHEN posMaster.orgChild1 is null THEN ${searchShortName0} WHEN posMaster.orgChild2 is null THEN ${searchShortName1} WHEN posMaster.orgChild3 is null THEN ${searchShortName2} WHEN posMaster.orgChild4 is null THEN ${searchShortName3} ELSE ${searchShortName4} END LIKE '%${body.keyword}%'`
+              : "1=1",
-                : "1=1",
+          )
-            )
+            .andWhere(checkChildConditions)
-              .andWhere(checkChildConditions)
+            .andWhere(typeCondition)
-              .andWhere(typeCondition)
+            .andWhere(revisionCondition);
-              .andWhere(revisionCondition);
+        }),
-          }),
+      )
        )
        .orWhere(
          new Brackets((qb) => {
            qb.andWhere(
@ -1288,7 +1287,7 @@ export class EmployeePositionController extends Controller {
              .andWhere(typeCondition)
              .andWhere(revisionCondition);
          }),
-        );
+        )
    }
    let [posMaster, total] = await query
@ -1707,50 +1706,50 @@ export class EmployeePositionController extends Controller {
    const type0LastPosMasterNo =
      requestBody.type == 0
        ? await this.employeePosMasterRepository.find({
-            where: {
+          where: {
-              orgRootId: requestBody.id,
+            orgRootId: requestBody.id,
-              orgChild1Id: IsNull(),
+            orgChild1Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type1LastPosMasterNo =
      requestBody.type == 1
        ? await this.employeePosMasterRepository.find({
-            where: {
+          where: {
-              orgChild1Id: requestBody.id,
+            orgChild1Id: requestBody.id,
-              orgChild2Id: IsNull(),
+            orgChild2Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type2LastPosMasterNo =
      requestBody.type == 2
        ? await this.employeePosMasterRepository.find({
-            where: {
+          where: {
-              orgChild2Id: requestBody.id,
+            orgChild2Id: requestBody.id,
-              orgChild3Id: IsNull(),
+            orgChild3Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type3LastPosMasterNo =
      requestBody.type == 3
        ? await this.employeePosMasterRepository.find({
-            where: {
+          where: {
-              orgChild3Id: requestBody.id,
+            orgChild3Id: requestBody.id,
-              orgChild4Id: IsNull(),
+            orgChild4Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type4LastPosMasterNo =
      requestBody.type == 4
        ? await this.employeePosMasterRepository.find({
-            where: {
+          where: {
-              orgChild4Id: requestBody.id,
+            orgChild4Id: requestBody.id,
-            },
+          },
-          })
+        })
        : [];
    const allLastPosMasterNo = [
@ -2414,7 +2413,7 @@ export class EmployeePositionController extends Controller {
   */
  @Post("profile/delete/{id}")
  async deleteEmpHolder(@Path() id: string, @Request() request: RequestWithUser) {
-    await new permission().PermissionUpdate(request, "SYS_ORG_EMP");
+    await new permission().PermissionDelete(request, "SYS_ORG_EMP");
    const dataMaster = await this.employeePosMasterRepository.findOne({
      where: { id: id },
      relations: ["positions", "orgRevision"],
@ -2473,7 +2472,7 @@ export class EmployeePositionController extends Controller {
    @Body() requestBody: { draftPositionId: string; publishPositionId: string },
    @Request() request: RequestWithUser,
  ) {
-    await new permission().PermissionUpdate(request, "SYS_ORG_EMP");
+    await new permission().PermissionDelete(request, "SYS_ORG_EMP");
    const findDraft = await this.orgRevisionRepository.findOne({
      where: {
        orgRevisionIsDraft: true,
--- a/src/controllers/EmployeeTempPositionController.ts
+++ b/src/controllers/EmployeeTempPositionController.ts
@ -908,8 +908,8 @@ export class EmployeeTempPositionController extends Controller {
        _data.child1 != undefined && _data.child1 != null
          ? _data.child1[0] != null
            ? `posMaster.orgChild1Id IN (:...child1)`
-            : // : `posMaster.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
+            // : `posMaster.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
-              `posMaster.orgChild1Id is null`
+            : `posMaster.orgChild1Id is null`
          : "1=1",
        {
          child1: _data.child1,
@ -944,24 +944,23 @@ export class EmployeeTempPositionController extends Controller {
        {
          child4: _data.child4,
        },
-      );
+      )
    if (body.keyword != null && body.keyword != "") {
-      query
+      query.orWhere(
-        .orWhere(
+        new Brackets((qb) => {
-          new Brackets((qb) => {
+          qb.andWhere(
-            qb.andWhere(
+            body.keyword != null && body.keyword != ""
-              body.keyword != null && body.keyword != ""
+              ? body.isAll == false
-                ? body.isAll == false
+                ? searchShortName
-                  ? searchShortName
+                : `CASE WHEN posMaster.orgChild1 is null THEN ${searchShortName0} WHEN posMaster.orgChild2 is null THEN ${searchShortName1} WHEN posMaster.orgChild3 is null THEN ${searchShortName2} WHEN posMaster.orgChild4 is null THEN ${searchShortName3} ELSE ${searchShortName4} END LIKE '%${body.keyword}%'`
-                  : `CASE WHEN posMaster.orgChild1 is null THEN ${searchShortName0} WHEN posMaster.orgChild2 is null THEN ${searchShortName1} WHEN posMaster.orgChild3 is null THEN ${searchShortName2} WHEN posMaster.orgChild4 is null THEN ${searchShortName3} ELSE ${searchShortName4} END LIKE '%${body.keyword}%'`
+              : "1=1",
-                : "1=1",
+          )
-            )
+            .andWhere(checkChildConditions)
-              .andWhere(checkChildConditions)
+            .andWhere(typeCondition)
-              .andWhere(typeCondition)
+            .andWhere(revisionCondition);
-              .andWhere(revisionCondition);
+        }),
-          }),
+      )
        )
        .orWhere(
          new Brackets((qb) => {
            qb.andWhere(
@ -1006,7 +1005,7 @@ export class EmployeeTempPositionController extends Controller {
              .andWhere(typeCondition)
              .andWhere(revisionCondition);
          }),
-        );
+        )
    }
    let [posMaster, total] = await query
@ -1422,50 +1421,50 @@ export class EmployeeTempPositionController extends Controller {
    const type0LastPosMasterNo =
      requestBody.type == 0
        ? await this.employeeTempPosMasterRepository.find({
-            where: {
+          where: {
-              orgRootId: requestBody.id,
+            orgRootId: requestBody.id,
-              orgChild1Id: IsNull(),
+            orgChild1Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type1LastPosMasterNo =
      requestBody.type == 1
        ? await this.employeeTempPosMasterRepository.find({
-            where: {
+          where: {
-              orgChild1Id: requestBody.id,
+            orgChild1Id: requestBody.id,
-              orgChild2Id: IsNull(),
+            orgChild2Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type2LastPosMasterNo =
      requestBody.type == 2
        ? await this.employeeTempPosMasterRepository.find({
-            where: {
+          where: {
-              orgChild2Id: requestBody.id,
+            orgChild2Id: requestBody.id,
-              orgChild3Id: IsNull(),
+            orgChild3Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type3LastPosMasterNo =
      requestBody.type == 3
        ? await this.employeeTempPosMasterRepository.find({
-            where: {
+          where: {
-              orgChild3Id: requestBody.id,
+            orgChild3Id: requestBody.id,
-              orgChild4Id: IsNull(),
+            orgChild4Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type4LastPosMasterNo =
      requestBody.type == 4
        ? await this.employeeTempPosMasterRepository.find({
-            where: {
+          where: {
-              orgChild4Id: requestBody.id,
+            orgChild4Id: requestBody.id,
-            },
+          },
-          })
+        })
        : [];
    const allLastPosMasterNo = [
@ -2119,7 +2118,7 @@ export class EmployeeTempPositionController extends Controller {
   */
  @Post("profile/delete/{id}")
  async deleteEmpHolder(@Path() id: string, @Request() request: RequestWithUser) {
-    await new permission().PermissionUpdate(request, "SYS_ORG_TEMP");
+    await new permission().PermissionDelete(request, "SYS_ORG_TEMP");
    const dataMaster = await this.employeeTempPosMasterRepository.findOne({
      where: { id: id },
      relations: ["positions", "orgRevision"],
@ -2180,7 +2179,7 @@ export class EmployeeTempPositionController extends Controller {
    @Body() requestBody: { draftPositionId: string; publishPositionId: string },
    @Request() request: RequestWithUser,
  ) {
-    await new permission().PermissionUpdate(request, "SYS_ORG_TEMP");
+    await new permission().PermissionDelete(request, "SYS_ORG_TEMP");
    const findDraft = await this.orgRevisionRepository.findOne({
      where: {
        orgRevisionIsDraft: true,
--- a/src/controllers/ExRetirementController.ts
+++ b/src/controllers/ExRetirementController.ts
@ -15,7 +15,6 @@ import {
 import HttpError from "../interfaces/http-error";
 import HttpStatusCode from "../interfaces/http-status";
 import { addLogSequence } from "../interfaces/utils";
 import HttpSuccess from "../interfaces/http-success";
 interface CachedToken {
  token: string;
@ -89,8 +88,7 @@ export class ExRetirementController extends Controller {
          },
        });
-        // return res.data;
+        return res.data;
        return new HttpSuccess(res.data.data);
      } catch (error: any) {
        if (error.response?.status === 500 && retryCount < maxRetries - 1) {
          TokenCache.delete(`${clientId}:${clientSecret}`);
@ -237,19 +235,16 @@ export async function PostRetireToExprofile(
        continue;
      }
-      // เช็ค request ก่อนเรียก addLogSequence (สำหรับ cronjob ที่ส่ง null)
+      addLogSequence(request, {
-      if (request) {
+        action: "request",
-        addLogSequence(request, {
+        status: "error",
-          action: "request",
+        description: "unconnected to exprofile api",
-          status: "error",
+        request: {
-          description: "unconnected to exprofile api",
+          method: "POST",
-          request: {
+          url: API_URL_BANGKOK + "/importData",
-            method: "POST",
+          response: JSON.stringify(error),
-            url: API_URL_BANGKOK + "/importData",
+        },
-            response: JSON.stringify(error),
+      });
          },
        });
      }
      throw new HttpError(HttpStatusCode.INTERNAL_SERVER_ERROR, "ไม่สามารถติดต่อ API ได้");
    }
--- a/src/controllers/ImportDataController.ts
+++ b/src/controllers/ImportDataController.ts
@ -1,4 +1,4 @@
-import { Controller, Post, Route, Security, Tags, Request, UploadedFile, Path } from "tsoa";
+import { Controller, Post, Route, Security, Tags, Request, UploadedFile } from "tsoa";
 import { AppDataSource } from "../database/data-source";
 import { In, IsNull, LessThanOrEqual, Not, Between } from "typeorm";
 import HttpSuccess from "../interfaces/http-success";
@ -105,7 +105,6 @@ import { positionOfficer } from "../entities/mis/positionOfficer";
 import { ProvinceMaster } from "../entities/ProvinceMaster";
 import { SubDistrictMaster } from "../entities/SubDistrictMaster";
 import { DistrictMaster } from "../entities/DistrictMaster";
 import { RequestWithUser } from "../middlewares/user";
@Route("api/v1/org/upload")
@Tags("UPLOAD")
@Security("bearerAuth")
@ -6816,523 +6815,4 @@ export class ImportDataController extends Controller {
  //     await repo.save(entities);
  //     return entities;
  //   }
  /**
   * @summary Import ข้อมูลประวัติตำแหน่งเงินเดือนของข้าราชการเข้าตาราง ProfileSalaryTemp
   * @param profileId Id โปรไฟล์ข้าราชการ
   * @param file Excel file with salary history data
   */
  @Post("office-profileSalaryTemp/{profileId}")
  @UseInterceptors(FileInterceptor("file"))
  async UploadProfileSalaryTemp(
    @Path() profileId: string,
    @Request() req: RequestWithUser,
    @UploadedFile() file: Express.Multer.File,
  ) {
    if (!profileId) {
      throw new Error("profileId is required");
    }
    // อ่านไฟล์ Excel ก่อน (นอก transaction)
    const workbook = xlsx.read(file.buffer, { type: "buffer" });
    const sheetName = workbook.SheetNames[0];
    const sheet = workbook.Sheets[sheetName];
    const getExcel = xlsx.utils.sheet_to_json(sheet, { header: 1 }) as any[][];
    let salaryTemps: ProfileSalaryTemp[] = [];
    let dateTime = new Date();
    // เริ่มจาก index 1 เพื่อข้าม header row
    for (let i = 1; i < getExcel.length; i++) {
      const row = getExcel[i];
      // ข้าม empty rows
      if (!row || row.length === 0) {
        continue;
      }
      // ข้ามแถวที่ไม่มีลำดับ (row[0] เป็น null, undefined หรือค่าว่าง)
      if (!row[0]) {
        continue;
      }
      const salaryTemp = new ProfileSalaryTemp();
      // ฟังก์ชันแปลงวันที่จาก Excel รองรับทั้ง string format และ serial number
      const parseExcelDate = (value: any): Date | null => {
        if (!value) return null;
        // กรณี 1: Excel serial number (ตัวเลข)
        if (typeof value === "number") {
          // Excel serial number = จำนวนวันตั้งแต่ 1 ม.ค. 1900
          // แปลงเป็น JavaScript Date (epoch 1970)
          let jsDate = new Date(Math.round((value - 25569) * 86400 * 1000));
          // ตรวจสอบและแปลงปี พ.ศ. เป็น ค.ศ. (ถ้าปี > 2500)
          if (jsDate.getFullYear() > 2500) {
            const newYear = jsDate.getFullYear() - 543;
            jsDate = new Date(
              newYear,
              jsDate.getMonth(),
              jsDate.getDate(),
              jsDate.getHours(),
              jsDate.getMinutes(),
              jsDate.getSeconds(),
              jsDate.getMilliseconds(),
            );
          }
          return jsDate;
        }
        // กรณี 2: String format (dd/mm/yyyy หรือ d/m/yyyy)
        const dateStr = value.toString().trim();
        // ตรวจสอบว่าเป็น serial number ที่เป็น string หรือไม่
        if (/^\d+$/.test(dateStr)) {
          const serialNum = parseInt(dateStr);
          let jsDate = new Date(Math.round((serialNum - 25569) * 86400 * 1000));
          // ตรวจสอบและแปลงปี พ.ศ. เป็น ค.ศ. (ถ้าปี > 2500)
          if (jsDate.getFullYear() > 2500) {
            const newYear = jsDate.getFullYear() - 543;
            jsDate = new Date(
              newYear,
              jsDate.getMonth(),
              jsDate.getDate(),
              jsDate.getHours(),
              jsDate.getMinutes(),
              jsDate.getSeconds(),
              jsDate.getMilliseconds(),
            );
          }
          return jsDate;
        }
        // String format ปกติ (dd/mm/yyyy)
        const dateParts = dateStr.split("/");
        if (dateParts.length === 3) {
          // แปลงเป็นตัวเลขแล้วค่อยจัดรูปแบบใหม่ เพื่อรองรับทั้ง 1 หลักและ 2 หลัก
          const day = parseInt(dateParts[0].trim()).toString().padStart(2, "0");
          const month = parseInt(dateParts[1].trim()).toString().padStart(2, "0");
          let year = parseInt(dateParts[2].trim());
          if (year > 2500) {
            year -= 543;
          }
          const result = new Date(`${year}-${month}-${day}`);
          return result;
        }
        return null;
      };
      // Index 1: วันที่คำสั่งมีผล
      let commandDateAffect: Date | null = null;
      if (row[1]) {
        commandDateAffect = parseExcelDate(row[1]);
      }
      // Index 25: วันที่ลงนาม
      let commandDateSign: Date | null = null;
      if (row[25]) {
        commandDateSign = parseExcelDate(row[25]);
      }
      // Map ข้อมูลจาก Excel ไปยัง ProfileSalaryTemp ตามลำดับ column
      // ข้อมูลระบบ
      salaryTemp.profileId = profileId;
      salaryTemp.profileEmployeeId = null as any;
      // Index 0: ลำดับ
      salaryTemp.order = row[0] ? parseInt(row[0].toString()) : (null as any);
      // Index 1: วันที่คำสั่งมีผล
      salaryTemp.commandDateAffect = commandDateAffect as any;
      // Index 2: ตำแหน่งในสายงาน
      salaryTemp.positionName = row[2] || null;
      // Index 3: ตำแหน่งประเภท
      salaryTemp.positionType = row[3] || null;
      // Index 4: ระดับ
      salaryTemp.positionLevel = row[4] || null;
      // Index 5: ระดับซี
      salaryTemp.positionCee = row[5] || null;
      // Index 6: สายงาน
      salaryTemp.positionLine = row[6] || null;
      // Index 7: ด้าน/สาขา
      salaryTemp.positionPathSide = row[7] || null;
      // Index 8: ตำแหน่งทางการบริหาร
      salaryTemp.positionExecutive = row[8] || null;
      // Index 9: ด้านทางการบริหาร
      salaryTemp.positionExecutiveField = row[9] || null;
      // Index 10: เงินเดือน
      salaryTemp.amount = row[10] || 0;
      // Index 11: เงินค่าตอบแทนรายเดือน
      salaryTemp.mouthSalaryAmount = row[11] || 0;
      // Index 12: เงินประจำตำแหน่ง
      salaryTemp.positionSalaryAmount = row[12] || 0;
      // Index 13: เงินค่าตอบแทนพิเศษ
      salaryTemp.amountSpecial = row[13] || 0;
      // Index 14: หน่วยงาน
      salaryTemp.orgRoot = row[14] || null;
      // Index 15: ส่วนราชการระดับ 1
      salaryTemp.orgChild1 = row[15] || null;
      // Index 16: ส่วนราชการระดับ 2
      salaryTemp.orgChild2 = row[16] || null;
      // Index 17: ส่วนราชการระดับ 3
      salaryTemp.orgChild3 = row[17] || null;
      // Index 18: ส่วนราชการระดับ 4
      salaryTemp.orgChild4 = row[18] || null;
      // Index 19: ตัวย่อเลขที่ตำแหน่ง
      salaryTemp.posNoAbb = row[19] || null;
      // Index 20: เลขที่ตำแหน่ง
      salaryTemp.posNo = row[20] ? row[20].toString() : null;
      // Index 21: หน่วยงานที่ออกคำสั่ง
      salaryTemp.posNumCodeSit = row[21] || null;
      // Index 22: ตัวย่อหน่วยงานที่ออกคำสั่ง
      salaryTemp.posNumCodeSitAbb = row[22] || null;
      // Index 23: เลขที่คำสั่ง
      salaryTemp.commandNo = row[23] || null;
      // Index 24: ปีเลขที่คำสั่ง (แปลงเป็น ค.ศ.)
      let commandYearValue: number | null = null;
      if (row[24]) {
        commandYearValue = parseInt(row[24].toString());
        // ถ้าปีเป็น พ.ศ. (มากกว่า 2500) ให้แปลงเป็น ค.ศ.
        if (commandYearValue > 2500) {
          commandYearValue -= 543;
        }
      }
      salaryTemp.commandYear = commandYearValue as any;
      // Index 25: วันที่ลงนาม (แปลงแล้ว)
      salaryTemp.commandDateSign = commandDateSign as any;
      // Index 26: ประเภทคำสั่ง
      salaryTemp.commandName = row[26] || null;
      // Index 27: หมายเหตุ
      salaryTemp.remark = row[27] || null;
      // Index 28: commandId
      salaryTemp.commandId = row[28] || null;
      // Index 29: commandCode
      salaryTemp.commandCode = row[29] || null;
      // ข้อมูลระบบ
      salaryTemp.isDelete = false;
      salaryTemp.isEdit = false;
      salaryTemp.isGovernment = false;
      salaryTemp.isEntry = false;
      salaryTemp.createdAt = dateTime;
      salaryTemp.createdUserId = req.user?.sub || "";
      salaryTemp.createdFullName = req.user?.name || "System Administrator";
      salaryTemp.lastUpdatedAt = dateTime;
      salaryTemp.lastUpdateUserId = req.user?.sub || "";
      salaryTemp.lastUpdateFullName = req.user?.name || "System Administrator";
      // 12,15,16 isGovernment = false & dateGovernment = salaryTemp.commandDateAffect
      if (["12", "15", "16"].includes(salaryTemp.commandCode ?? "")) {
        salaryTemp.isGovernment = false;
        salaryTemp.dateGovernment = salaryTemp.commandDateAffect;
      }
      // 1,2,3,4,10,11,20 isGovernment = true & dateGovernment = salaryTemp.commandDateAffect
      else if (["1", "2", "3", "4", "10", "11", "20"].includes(salaryTemp.commandCode ?? "")) {
        salaryTemp.isGovernment = true;
        salaryTemp.dateGovernment = salaryTemp.commandDateAffect;
      }
      salaryTemps.push(salaryTemp);
    }
    // ใช้ Transaction เพื่อความปลอดภัย
    await AppDataSource.transaction(async (transactionalEntityManager) => {
      // ล้างข้อมูลทั้งหมดในตาราง profileSalaryTemp ของ profileId นั้น
      await transactionalEntityManager.delete(ProfileSalaryTemp, { profileId });
      // Insert ข้อมูลใหม่
      await transactionalEntityManager.save(ProfileSalaryTemp, salaryTemps);
    });
    return new HttpSuccess({ message: "Import ข้อมูลเรียบร้อย", count: salaryTemps.length });
  }
  /**
   * @summary Import ข้อมูลประวัติตำแหน่งเงินเดือนของลูกจ้างประจำเข้าตาราง ProfileSalaryTemp
   * @param profileEmployeeId Id โปรไฟล์ลูกจ้างประจำ
   * @param file Excel file with salary history data
   */
  @Post("employee-profileSalaryTemp/{profileEmployeeId}")
  @UseInterceptors(FileInterceptor("file"))
  async UploadProfileEmployeeSalaryTemp(
    @Path() profileEmployeeId: string,
    @Request() req: RequestWithUser,
    @UploadedFile() file: Express.Multer.File,
  ) {
    if (!profileEmployeeId) {
      throw new Error("profileEmployeeId is required");
    }
    // อ่านไฟล์ Excel ก่อน (นอก transaction)
    const workbook = xlsx.read(file.buffer, { type: "buffer" });
    const sheetName = workbook.SheetNames[0];
    const sheet = workbook.Sheets[sheetName];
    const getExcel = xlsx.utils.sheet_to_json(sheet, { header: 1 }) as any[][];
    let salaryTemps: ProfileSalaryTemp[] = [];
    let dateTime = new Date();
    // เริ่มจาก index 1 เพื่อข้าม header row
    for (let i = 1; i < getExcel.length; i++) {
      const row = getExcel[i];
      // ข้าม empty rows
      if (!row || row.length === 0) {
        continue;
      }
      // ข้ามแถวที่ไม่มีลำดับ (row[0] เป็น null, undefined หรือค่าว่าง)
      if (!row[0]) {
        continue;
      }
      const salaryTemp = new ProfileSalaryTemp();
      // ฟังก์ชันแปลงวันที่จาก Excel รองรับทั้ง string format และ serial number
      const parseExcelDate = (value: any): Date | null => {
        if (!value) return null;
        // กรณี 1: Excel serial number (ตัวเลข)
        if (typeof value === "number") {
          // Excel serial number = จำนวนวันตั้งแต่ 1 ม.ค. 1900
          // แปลงเป็น JavaScript Date (epoch 1970)
          let jsDate = new Date(Math.round((value - 25569) * 86400 * 1000));
          // ตรวจสอบและแปลงปี พ.ศ. เป็น ค.ศ. (ถ้าปี > 2500)
          if (jsDate.getFullYear() > 2500) {
            const newYear = jsDate.getFullYear() - 543;
            jsDate = new Date(
              newYear,
              jsDate.getMonth(),
              jsDate.getDate(),
              jsDate.getHours(),
              jsDate.getMinutes(),
              jsDate.getSeconds(),
              jsDate.getMilliseconds(),
            );
          }
          return jsDate;
        }
        // กรณี 2: String format (dd/mm/yyyy หรือ d/m/yyyy)
        const dateStr = value.toString().trim();
        // ตรวจสอบว่าเป็น serial number ที่เป็น string หรือไม่
        if (/^\d+$/.test(dateStr)) {
          const serialNum = parseInt(dateStr);
          let jsDate = new Date(Math.round((serialNum - 25569) * 86400 * 1000));
          // ตรวจสอบและแปลงปี พ.ศ. เป็น ค.ศ. (ถ้าปี > 2500)
          if (jsDate.getFullYear() > 2500) {
            const newYear = jsDate.getFullYear() - 543;
            jsDate = new Date(
              newYear,
              jsDate.getMonth(),
              jsDate.getDate(),
              jsDate.getHours(),
              jsDate.getMinutes(),
              jsDate.getSeconds(),
              jsDate.getMilliseconds(),
            );
          }
          return jsDate;
        }
        // String format ปกติ (dd/mm/yyyy)
        const dateParts = dateStr.split("/");
        if (dateParts.length === 3) {
          // แปลงเป็นตัวเลขแล้วค่อยจัดรูปแบบใหม่ เพื่อรองรับทั้ง 1 หลักและ 2 หลัก
          const day = parseInt(dateParts[0].trim()).toString().padStart(2, "0");
          const month = parseInt(dateParts[1].trim()).toString().padStart(2, "0");
          let year = parseInt(dateParts[2].trim());
          if (year > 2500) {
            year -= 543;
          }
          const result = new Date(`${year}-${month}-${day}`);
          return result;
        }
        return null;
      };
      // Index 1: วันที่คำสั่งมีผล
      let commandDateAffect: Date | null = null;
      if (row[1]) {
        commandDateAffect = parseExcelDate(row[1]);
      }
      // Index 25: วันที่ลงนาม
      let commandDateSign: Date | null = null;
      if (row[25]) {
        commandDateSign = parseExcelDate(row[25]);
      }
      // Map ข้อมูลจาก Excel ไปยัง ProfileSalaryTemp ตามลำดับ column
      // ข้อมูลระบบ
      salaryTemp.profileEmployeeId = profileEmployeeId;
      salaryTemp.profileId = null as any;
      // Index 0: ลำดับ
      salaryTemp.order = row[0] ? parseInt(row[0].toString()) : (null as any);
      // Index 1: วันที่คำสั่งมีผล
      salaryTemp.commandDateAffect = commandDateAffect as any;
      // Index 2: ตำแหน่งในสายงาน
      salaryTemp.positionName = row[2] || null;
      // Index 3: ตำแหน่งประเภท
      salaryTemp.positionType = row[3] || null;
      // Index 4: ระดับ
      salaryTemp.positionLevel = row[4] || null;
      // Index 5: ระดับซี
      salaryTemp.positionCee = row[5] || null;
      // Index 6: สายงาน
      salaryTemp.positionLine = row[6] || null;
      // Index 7: ด้าน/สาขา
      salaryTemp.positionPathSide = row[7] || null;
      // Index 8: ตำแหน่งทางการบริหาร
      salaryTemp.positionExecutive = row[8] || null;
      // Index 9: ด้านทางการบริหาร
      salaryTemp.positionExecutiveField = row[9] || null;
      // Index 10: เงินเดือน
      salaryTemp.amount = row[10] || 0;
      // Index 11: เงินค่าตอบแทนรายเดือน
      salaryTemp.mouthSalaryAmount = row[11] || 0;
      // Index 12: เงินประจำตำแหน่ง
      salaryTemp.positionSalaryAmount = row[12] || 0;
      // Index 13: เงินค่าตอบแทนพิเศษ
      salaryTemp.amountSpecial = row[13] || 0;
      // Index 14: หน่วยงาน
      salaryTemp.orgRoot = row[14] || null;
      // Index 15: ส่วนราชการระดับ 1
      salaryTemp.orgChild1 = row[15] || null;
      // Index 16: ส่วนราชการระดับ 2
      salaryTemp.orgChild2 = row[16] || null;
      // Index 17: ส่วนราชการระดับ 3
      salaryTemp.orgChild3 = row[17] || null;
      // Index 18: ส่วนราชการระดับ 4
      salaryTemp.orgChild4 = row[18] || null;
      // Index 19: ตัวย่อเลขที่ตำแหน่ง
      salaryTemp.posNoAbb = row[19] || null;
      // Index 20: เลขที่ตำแหน่ง
      salaryTemp.posNo = row[20] ? row[20].toString() : null;
      // Index 21: หน่วยงานที่ออกคำสั่ง
      salaryTemp.posNumCodeSit = row[21] || null;
      // Index 22: ตัวย่อหน่วยงานที่ออกคำสั่ง
      salaryTemp.posNumCodeSitAbb = row[22] || null;
      // Index 23: เลขที่คำสั่ง
      salaryTemp.commandNo = row[23] || null;
      // Index 24: ปีเลขที่คำสั่ง (แปลงเป็น ค.ศ.)
      let commandYearValue: number | null = null;
      if (row[24]) {
        commandYearValue = parseInt(row[24].toString());
        // ถ้าปีเป็น พ.ศ. (มากกว่า 2500) ให้แปลงเป็น ค.ศ.
        if (commandYearValue > 2500) {
          commandYearValue -= 543;
        }
      }
      salaryTemp.commandYear = commandYearValue as any;
      // Index 25: วันที่ลงนาม (แปลงแล้ว)
      salaryTemp.commandDateSign = commandDateSign as any;
      // Index 26: ประเภทคำสั่ง
      salaryTemp.commandName = row[26] || null;
      // Index 27: หมายเหตุ
      salaryTemp.remark = row[27] || null;
      // Index 28: commandId
      salaryTemp.commandId = row[28] || null;
      // Index 29: commandCode
      salaryTemp.commandCode = row[29] || null;
      // ข้อมูลระบบ
      salaryTemp.isDelete = false;
      salaryTemp.isEdit = false;
      salaryTemp.isGovernment = false;
      salaryTemp.isEntry = false;
      salaryTemp.createdAt = dateTime;
      salaryTemp.createdUserId = req.user?.sub || "";
      salaryTemp.createdFullName = req.user?.name || "System Administrator";
      salaryTemp.lastUpdatedAt = dateTime;
      salaryTemp.lastUpdateUserId = req.user?.sub || "";
      salaryTemp.lastUpdateFullName = req.user?.name || "System Administrator";
      // 12,15,16 isGovernment = false & dateGovernment = salaryTemp.commandDateAffect
      if (["12", "15", "16"].includes(salaryTemp.commandCode ?? "")) {
        salaryTemp.isGovernment = false;
        salaryTemp.dateGovernment = salaryTemp.commandDateAffect;
      }
      // 1,2,3,4,10,11,20 isGovernment = true & dateGovernment = salaryTemp.commandDateAffect
      else if (["1", "2", "3", "4", "10", "11", "20"].includes(salaryTemp.commandCode ?? "")) {
        salaryTemp.isGovernment = true;
        salaryTemp.dateGovernment = salaryTemp.commandDateAffect;
      }
      salaryTemps.push(salaryTemp);
    }
    // ใช้ Transaction เพื่อความปลอดภัย
    await AppDataSource.transaction(async (transactionalEntityManager) => {
      // ล้างข้อมูลทั้งหมดในตาราง profileSalaryTemp ของ profileEmployeeId นั้น
      await transactionalEntityManager.delete(ProfileSalaryTemp, { profileEmployeeId });
      // Insert ข้อมูลใหม่
      await transactionalEntityManager.save(ProfileSalaryTemp, salaryTemps);
    });
    return new HttpSuccess({ message: "Import ข้อมูลเรียบร้อย", count: salaryTemps.length });
  }
 }
--- a/src/controllers/KeycloakSyncController.ts
+++ b/src/controllers/KeycloakSyncController.ts
@ -315,81 +315,4 @@ export class KeycloakSyncController extends Controller {
      ...result,
    });
  }
  /**
   * Sync profiles with missing empType for a specific month (Admin only)
   *
   * @summary Find profiles updated in specified month with missing empType in Keycloak and sync them (ADMIN)
   *
   * @description
   * This endpoint will:
   * - List profiles from Profile table where lastUpdatedAt falls within the specified month
   * - For each profile, check Keycloak if empType attribute is empty/null
   * - If empType is empty, sync the profile using existing sync logic
   * - Return summary of sync results
   *
   * Features:
   * - Dry run mode (dryRun=true) to check without syncing
   * - Configurable concurrency for parallel processing
   * - Rate limiting to avoid overwhelming Keycloak
   * - Detailed error reporting
   * - Idempotent (can be safely re-run)
   *
   * @param {request} request  Request body containing month parameter
   * @param dryRun - If true, only check without syncing (default: false)
   * @param concurrency - Number of parallel operations (default: 5)
   * @param rateLimit - Requests per second limit (default: 10)
   */
  @Post("sync-missing-emptype")
  @Response<HttpError>(HttpStatus.BAD_REQUEST, "Invalid month format")
  @Response<HttpError>(HttpStatus.INTERNAL_SERVER_ERROR, "Sync operation failed")
  async syncMissingEmpType(
    @Body() request: {
      month: string;
      profileType?: "PROFILE" | "PROFILE_EMPLOYEE";
    },
    @Query() dryRun: boolean = false,
    @Query() concurrency: number = 5,
    @Query() rateLimit: number = 10,
  ) {
    const { month, profileType = "PROFILE" } = request;
    // Validate month format (YYYY-MM)
    const monthRegex = /^\d{4}-\d{2}$/;
    if (!monthRegex.test(month)) {
      throw new HttpError(HttpStatus.BAD_REQUEST, "รูปแบบเดือนไม่ถูกต้อง ต้องเป็น YYYY-MM");
    }
    // Validate profileType
    if (!["PROFILE", "PROFILE_EMPLOYEE"].includes(profileType)) {
      throw new HttpError(
        HttpStatus.BAD_REQUEST,
        "profileType ต้องเป็น PROFILE หรือ PROFILE_EMPLOYEE เท่านั้น",
      );
    }
    // Validate concurrency
    if (concurrency < 1 || concurrency > 20) {
      throw new HttpError(HttpStatus.BAD_REQUEST, "concurrency ต้องอยู่ระหว่าง 1 ถึง 20");
    }
    // Validate rateLimit
    if (rateLimit < 1 || rateLimit > 50) {
      throw new HttpError(HttpStatus.BAD_REQUEST, "rateLimit ต้องอยู่ระหว่าง 1 ถึง 50");
    }
    // Execute sync
    const result = await this.keycloakAttributeService.syncMissingEmpTypeByMonth({
      month,
      profileType,
      dryRun,
      concurrency,
      rateLimit,
    });
    return new HttpSuccess({
      message: `Sync ${dryRun ? "check " : ""}เสร็จสิ้น`,
      ...result,
    });
  }
 }
--- a/src/controllers/OrganizationController.ts
+++ b/src/controllers/OrganizationController.ts
@ -61,17 +61,12 @@ import {
  BatchSavePosMasterHistoryOfficer,
  CreatePosMasterHistoryEmployee,
  CreatePosMasterHistoryOfficer,
  SavePosMasterHistoryOfficer,
 } from "../services/PositionService";
 import { orgStructureCache } from "../utils/OrgStructureCache";
 import { OrgIdMapping, AllOrgMappings, SavePosMasterHistory } from "../interfaces/OrgMapping";
 import { OrgPermissionData, NodeLevel } from "../interfaces/OrgTypes";
-import {
+import { formatPosMaster, generateLabelName, filterPosMasters } from "../utils/org-formatting";
  formatPosMaster,
  generateLabelName,
  filterPosMasters,
  getPosMasterNo,
  getOrgFullName,
 } from "../utils/org-formatting";
@Route("api/v1/org")
@Tags("Organization")
@ -214,7 +209,6 @@ export class OrganizationController extends Controller {
      await sendToQueueOrgDraft(msg);
      return new HttpSuccess("Draft is being created... Processing in the background.");
    } catch (error: any) {
      console.error("Error creating draft organization:", error);
      throw error;
    }
  }
@ -2530,7 +2524,6 @@ export class OrganizationController extends Controller {
      await sendToQueueOrg(msg);
      return new HttpSuccess();
    } catch (error: any) {
      console.error("Error publishing draft organization:", error);
      throw error;
    }
  }
@ -2539,18 +2532,11 @@ export class OrganizationController extends Controller {
   * Cronjob
   */
  async cronjobRevision() {
    console.log("[CronJob] cronjobRevision START");
    const startTime = Date.now();
    const today = new Date();
    today.setUTCHours(0, 0, 0, 0); // Set time to the beginning of the day
    const tomorrow = new Date(today);
    tomorrow.setDate(tomorrow.getDate() + 1);
    console.log(
      `[CronJob] Searching for draft revision with publishDate between ${today.toISOString()} and ${tomorrow.toISOString()}`,
    );
    const orgRevisionDraft = await this.orgRevisionRepository
      .createQueryBuilder("orgRevision")
      .where("orgRevision.orgRevisionIsDraft = true")
@ -2559,14 +2545,8 @@ export class OrganizationController extends Controller {
      .getOne();
    if (!orgRevisionDraft) {
      console.log("[CronJob] No draft revision found to publish");
      return new HttpSuccess();
    }
    console.log(
      `[CronJob] Found draft revision: ${orgRevisionDraft.id}, name: ${orgRevisionDraft.orgRevisionName}, publishDate: ${orgRevisionDraft.orgPublishDate}`,
    );
    // if (orgRevisionPublish) {
    //   orgRevisionPublish.orgRevisionIsDraft = false;
    //   orgRevisionPublish.orgRevisionIsCurrent = false;
@ -2595,10 +2575,7 @@ export class OrganizationController extends Controller {
        lastUpdatedAt: new Date(),
      },
    };
    console.log(`[CronJob] Sending to RabbitMQ queue - revisionId: ${orgRevisionDraft.id}`);
    sendToQueueOrg(msg);
    console.log(`[CronJob] Sent to queue successfully - Total time: ${Date.now() - startTime}ms`);
    return new HttpSuccess();
  }
@ -5809,7 +5786,6 @@ export class OrganizationController extends Controller {
      .leftJoin("orgRoot.posMasters", "posMasters")
      .leftJoin("posMasters.current_holder", "current_holder")
      .orderBy("orgRoot.orgRootOrder", "ASC")
      .addOrderBy("posMasters.posMasterOrder", "ASC")
      .getMany();
    const orgRootIds = orgRootData.map((orgRoot) => orgRoot.id) || null;
@ -5850,7 +5826,6 @@ export class OrganizationController extends Controller {
            .leftJoin("orgChild1.posMasters", "posMasters")
            .leftJoin("posMasters.current_holder", "current_holder")
            .orderBy("orgChild1.orgChild1Order", "ASC")
            .addOrderBy("posMasters.posMasterOrder", "ASC")
            .getMany()
        : [];
@ -5892,7 +5867,6 @@ export class OrganizationController extends Controller {
            .leftJoin("orgChild2.posMasters", "posMasters")
            .leftJoin("posMasters.current_holder", "current_holder")
            .orderBy("orgChild2.orgChild2Order", "ASC")
            .addOrderBy("posMasters.posMasterOrder", "ASC")
            .getMany()
        : [];
@ -5934,7 +5908,6 @@ export class OrganizationController extends Controller {
            .leftJoin("orgChild3.posMasters", "posMasters")
            .leftJoin("posMasters.current_holder", "current_holder")
            .orderBy("orgChild3.orgChild3Order", "ASC")
            .addOrderBy("posMasters.posMasterOrder", "ASC")
            .getMany()
        : [];
@ -5971,7 +5944,6 @@ export class OrganizationController extends Controller {
            .leftJoin("orgChild4.posMasters", "posMasters")
            .leftJoin("posMasters.current_holder", "current_holder")
            .orderBy("orgChild4.orgChild4Order", "ASC")
            .addOrderBy("posMasters.posMasterOrder", "ASC")
            .getMany()
        : [];
@ -7853,11 +7825,7 @@ export class OrganizationController extends Controller {
        profileEmp.lastUpdatedAt = new Date();
        profileEmp.isActive = false;
-        if (
+        if (profileEmp.keycloak != null && profileEmp.keycloak != "" && profileEmp.isDelete === false) {
          profileEmp.keycloak != null &&
          profileEmp.keycloak != "" &&
          profileEmp.isDelete === false
        ) {
          const delUserKeycloak = await deleteUser(profileEmp.keycloak, token);
          if (delUserKeycloak) {
            // profileEmp.keycloak = "";
@ -8155,8 +8123,6 @@ export class OrganizationController extends Controller {
      if (!orgRootDraft) return new HttpError(HttpStatusCode.NOT_FOUND, "ไม่พบข้อมูลโครงสร้างร่าง");
      let createdCurrentRoot = false;
      // if current record not found, create new one
      if (!orgRootCurrent) {
        // Create new current record using draft's ID
@ -8168,7 +8134,6 @@ export class OrganizationController extends Controller {
        const savedRoot = await queryRunner.manager.save(OrgRoot, newCurrentRoot);
        orgRootCurrent = savedRoot; // Use saved record for sync
        createdCurrentRoot = true;
      }
      // Part 1: Differential sync of organization structure (bottom-up)
@ -8194,7 +8159,11 @@ export class OrganizationController extends Controller {
        mapping: OrgIdMapping;
        counts: { deleted: number; updated: number; inserted: number };
      };
-      if (createdCurrentRoot && orgRootCurrent && orgRootDraft) {
+      if (
        orgRootCurrent &&
        orgRootDraft &&
        orgRootCurrent.ancestorDNA === orgRootDraft.ancestorDNA
      ) {
        // Manually created - set up mapping directly
        const rootMapping: OrgIdMapping = {
          byAncestorDNA: new Map([[orgRootDraft.ancestorDNA, orgRootCurrent.id]]),
@ -8212,7 +8181,6 @@ export class OrganizationController extends Controller {
          this.orgRootRepository,
          drafRevisionId,
          currentRevisionId,
          rootDnaId,
          allMappings,
          orgRootDraft?.id,
          orgRootCurrent?.id,
@ -8228,7 +8196,6 @@ export class OrganizationController extends Controller {
        this.child1Repository,
        drafRevisionId,
        currentRevisionId,
        rootDnaId,
        allMappings,
        orgRootDraft?.id,
        orgRootCurrent?.id,
@ -8243,7 +8210,6 @@ export class OrganizationController extends Controller {
        this.child2Repository,
        drafRevisionId,
        currentRevisionId,
        rootDnaId,
        allMappings,
        orgRootDraft?.id,
        orgRootCurrent?.id,
@ -8258,7 +8224,6 @@ export class OrganizationController extends Controller {
        this.child3Repository,
        drafRevisionId,
        currentRevisionId,
        rootDnaId,
        allMappings,
        orgRootDraft?.id,
        orgRootCurrent?.id,
@ -8273,7 +8238,6 @@ export class OrganizationController extends Controller {
        this.child4Repository,
        drafRevisionId,
        currentRevisionId,
        rootDnaId,
        allMappings,
        orgRootDraft?.id,
        orgRootCurrent?.id,
@ -8316,7 +8280,6 @@ export class OrganizationController extends Controller {
      if (posMasterDraft.length <= 0) {
        // Fetch current positions
        const posMasterCurrent = await this.posMasterRepository.find({
          relations: ["orgRoot", "orgChild1", "orgChild2", "orgChild3", "orgChild4"],
          where: [
            { orgRevisionId: currentRevisionId, orgRootId: In(currentOrgIds.orgRoot) },
            { orgRevisionId: currentRevisionId, orgChild1Id: In(currentOrgIds.orgChild1) },
@ -8339,34 +8302,7 @@ export class OrganizationController extends Controller {
          const deleteHistoryOps = posMasterCurrent.map((pos) => ({
            posMasterDnaId: pos.ancestorDNA,
            profileId: null,
-            pm: {
+            pm: null,
              prefix: null,
              firstName: null,
              lastName: null,
              position: null,
              posType: null,
              posLevel: null,
              posExecutive: null,
              profileId: null,
              shortName: pos
                ? [
                    pos.orgChild4?.orgChild4ShortName,
                    pos.orgChild3?.orgChild3ShortName,
                    pos.orgChild2?.orgChild2ShortName,
                    pos.orgChild1?.orgChild1ShortName,
                    pos.orgRoot?.orgRootShortName,
                  ].find((s: string | undefined) => typeof s === "string" && s.trim().length > 0) ??
                  null
                : null,
              posMasterNoPrefix: pos.posMasterNoPrefix ?? null,
              posMasterNo: pos.posMasterNo != null ? String(pos.posMasterNo) : null,
              posMasterNoSuffix: pos.posMasterNoSuffix ?? null,
              rootDnaId: pos?.orgRoot?.ancestorDNA ?? null,
              child1DnaId: pos?.orgChild1?.ancestorDNA ?? null,
              child2DnaId: pos?.orgChild2?.ancestorDNA ?? null,
              child3DnaId: pos?.orgChild3?.ancestorDNA ?? null,
              child4DnaId: pos?.orgChild4?.ancestorDNA ?? null,
            } as SavePosMasterHistory,
          }));
          await BatchSavePosMasterHistoryOfficer(queryRunner, deleteHistoryOps);
        }
@ -8401,7 +8337,6 @@ export class OrganizationController extends Controller {
      if (nextHolderIds.length > 0) {
        // FIX: Fetch positions first before updating (to avoid race condition)
        const posMastersToUpdate = await queryRunner.manager.find(PosMaster, {
          relations: ["orgRoot", "orgChild1", "orgChild2", "orgChild3", "orgChild4"],
          where: {
            orgRevisionId: currentRevisionId,
            current_holderId: In(nextHolderIds),
@ -8414,34 +8349,7 @@ export class OrganizationController extends Controller {
          .map((pos) => ({
            posMasterDnaId: pos.ancestorDNA,
            profileId: null,
-            pm: {
+            pm: null,
              prefix: null,
              firstName: null,
              lastName: null,
              position: null,
              posType: null,
              posLevel: null,
              posExecutive: null,
              profileId: null,
              shortName: pos
                ? [
                    pos.orgChild4?.orgChild4ShortName,
                    pos.orgChild3?.orgChild3ShortName,
                    pos.orgChild2?.orgChild2ShortName,
                    pos.orgChild1?.orgChild1ShortName,
                    pos.orgRoot?.orgRootShortName,
                  ].find((s: string | undefined) => typeof s === "string" && s.trim().length > 0) ??
                  null
                : null,
              posMasterNoPrefix: pos.posMasterNoPrefix ?? null,
              posMasterNo: pos.posMasterNo != null ? String(pos.posMasterNo) : null,
              posMasterNoSuffix: pos.posMasterNoSuffix ?? null,
              rootDnaId: pos?.orgRoot?.ancestorDNA ?? null,
              child1DnaId: pos?.orgChild1?.ancestorDNA ?? null,
              child2DnaId: pos?.orgChild2?.ancestorDNA ?? null,
              child3DnaId: pos?.orgChild3?.ancestorDNA ?? null,
              child4DnaId: pos?.orgChild4?.ancestorDNA ?? null,
            } as SavePosMasterHistory,
          }));
        await BatchSavePosMasterHistoryOfficer(queryRunner, historyOps);
@ -8458,7 +8366,6 @@ export class OrganizationController extends Controller {
      // 2.2 Fetch current positions for comparison
      const posMasterCurrent = await this.posMasterRepository.find({
        relations: ["orgRoot", "orgChild1", "orgChild2", "orgChild3", "orgChild4"],
        where: [
          { orgRevisionId: currentRevisionId, orgRootId: In(currentOrgIds.orgRoot) },
          { orgRevisionId: currentRevisionId, orgChild1Id: In(currentOrgIds.orgChild1) },
@ -8488,49 +8395,19 @@ export class OrganizationController extends Controller {
        const deleteHistoryOps = toDelete.map((pos) => ({
          posMasterDnaId: pos.ancestorDNA,
          profileId: null,
-          pm: {
+          pm: null,
            prefix: null,
            firstName: null,
            lastName: null,
            position: null,
            posType: null,
            posLevel: null,
            posExecutive: null,
            profileId: null,
            shortName: pos
              ? [
                  pos.orgChild4?.orgChild4ShortName,
                  pos.orgChild3?.orgChild3ShortName,
                  pos.orgChild2?.orgChild2ShortName,
                  pos.orgChild1?.orgChild1ShortName,
                  pos.orgRoot?.orgRootShortName,
                ].find((s: string | undefined) => typeof s === "string" && s.trim().length > 0) ??
                null
              : null,
            posMasterNoPrefix: pos.posMasterNoPrefix ?? null,
            posMasterNo: pos.posMasterNo != null ? String(pos.posMasterNo) : null,
            posMasterNoSuffix: pos.posMasterNoSuffix ?? null,
            rootDnaId: pos?.orgRoot?.ancestorDNA ?? null,
            child1DnaId: pos?.orgChild1?.ancestorDNA ?? null,
            child2DnaId: pos?.orgChild2?.ancestorDNA ?? null,
            child3DnaId: pos?.orgChild3?.ancestorDNA ?? null,
            child4DnaId: pos?.orgChild4?.ancestorDNA ?? null,
          } as SavePosMasterHistory,
        }));
        await BatchSavePosMasterHistoryOfficer(queryRunner, deleteHistoryOps);
      }
      // 2.4 Process draft positions (UPDATE or INSERT)
-      const toUpdate: Partial<PosMaster>[] = [];
+      const toUpdate: PosMaster[] = [];
      const toInsert: any[] = [];
      // Track draft PosMaster ID to current PosMaster ID mapping for position sync
      // Type: Map<draftPosMasterId, [currentPosMasterId, nextHolderId]>
      const posMasterMapping: Map<string, [string, string | null | undefined]> = new Map();
      // Collect positions where next_holderId is null for batch history saving
      const nullHolderDraftPosIds: string[] = [];
      for (const draftPos of posMasterDraft) {
        const current = currentByDNA.get(draftPos.ancestorDNA);
@ -8543,9 +8420,7 @@ export class OrganizationController extends Controller {
        if (current) {
          // UPDATE existing position
-          toUpdate.push({
+          Object.assign(current, {
            id: current.id,
            ancestorDNA: current.ancestorDNA,
            createdAt: draftPos.createdAt,
            createdUserId: draftPos.createdUserId,
            createdFullName: draftPos.createdFullName,
@ -8556,14 +8431,12 @@ export class OrganizationController extends Controller {
            posMasterNoSuffix: draftPos.posMasterNoSuffix,
            posMasterNo: draftPos.posMasterNo,
            posMasterOrder: draftPos.posMasterOrder,
            orgRevisionId: currentRevisionId,
            orgRootId,
            orgChild1Id,
            orgChild2Id,
            orgChild3Id,
            orgChild4Id,
            current_holderId: draftPos.next_holderId,
            next_holderId: draftPos.next_holderId,
            isSit: draftPos.isSit,
            reason: draftPos.reason,
            isDirector: draftPos.isDirector,
@ -8573,9 +8446,10 @@ export class OrganizationController extends Controller {
            isCondition: draftPos.isCondition,
            conditionReason: draftPos.conditionReason,
          });
          toUpdate.push(current);
          if (draftPos.next_holderId === null) {
-            nullHolderDraftPosIds.push(draftPos.id);
+            await SavePosMasterHistoryOfficer(queryRunner, draftPos.ancestorDNA, null, null);
          }
          // Track mapping for position sync
@ -8601,7 +8475,7 @@ export class OrganizationController extends Controller {
      // Batch save updates and inserts
      if (toUpdate.length > 0) {
-        await queryRunner.manager.save(PosMaster, toUpdate);
+        await queryRunner.manager.save(toUpdate);
      }
      if (toInsert.length > 0) {
        const saved = await queryRunner.manager.save(toInsert);
@ -8618,62 +8492,6 @@ export class OrganizationController extends Controller {
        }
      }
      // 2.4.1 Save PosMasterHistory for positions where next_holderId was cleared (null)
      // These need org relations to populate shortName, rootDnaId, child*DnaId fields
      if (nullHolderDraftPosIds.length > 0) {
        const nullHolderCurrentPosIds = nullHolderDraftPosIds
          .map((draftPosId) => posMasterMapping.get(draftPosId)?.[0] ?? null)
          .filter((currentPosId): currentPosId is string => currentPosId !== null);
        const nullHolderPosMasters = await queryRunner.manager.find(PosMaster, {
          where: { id: In(nullHolderCurrentPosIds) },
          relations: ["orgRoot", "orgChild1", "orgChild2", "orgChild3", "orgChild4"],
        });
        const nullHolderMap = new Map(nullHolderPosMasters.map((pm) => [pm.id, pm as any]));
        const nullHolderHistoryOps = posMasterDraft
          .filter((d) => nullHolderDraftPosIds.includes(d.id))
          .map((draftPos) => {
            const currentPosId = posMasterMapping.get(draftPos.id)?.[0] ?? null;
            const pmWithRelations = currentPosId ? nullHolderMap.get(currentPosId) : null;
            return {
              posMasterDnaId: draftPos.ancestorDNA,
              profileId: null as string | null,
              pm: {
                prefix: null,
                firstName: null,
                lastName: null,
                position: null,
                posType: null,
                posLevel: null,
                posExecutive: null,
                profileId: null,
                shortName: pmWithRelations
                  ? [
                      pmWithRelations.orgChild4?.orgChild4ShortName,
                      pmWithRelations.orgChild3?.orgChild3ShortName,
                      pmWithRelations.orgChild2?.orgChild2ShortName,
                      pmWithRelations.orgChild1?.orgChild1ShortName,
                      pmWithRelations.orgRoot?.orgRootShortName,
                    ].find(
                      (s: string | undefined) => typeof s === "string" && s.trim().length > 0,
                    ) ?? null
                  : null,
                posMasterNoPrefix: draftPos.posMasterNoPrefix ?? null,
                posMasterNo: draftPos.posMasterNo != null ? String(draftPos.posMasterNo) : null,
                posMasterNoSuffix: draftPos.posMasterNoSuffix ?? null,
                rootDnaId: pmWithRelations?.orgRoot?.ancestorDNA ?? null,
                child1DnaId: pmWithRelations?.orgChild1?.ancestorDNA ?? null,
                child2DnaId: pmWithRelations?.orgChild2?.ancestorDNA ?? null,
                child3DnaId: pmWithRelations?.orgChild3?.ancestorDNA ?? null,
                child4DnaId: pmWithRelations?.orgChild4?.ancestorDNA ?? null,
              } as SavePosMasterHistory,
            };
          });
        await BatchSavePosMasterHistoryOfficer(queryRunner, nullHolderHistoryOps);
      }
      // 2.5 Sync positions table for all affected posMasters (BATCH operation for performance)
      const positionSyncStats = await this.syncAllPositionsBatch(
        queryRunner,
@ -8722,99 +8540,6 @@ export class OrganizationController extends Controller {
    return mapping.byDraftId.get(draftId) ?? null;
  }
  private resolveRequiredOrgId(
    draftId: string | null | undefined,
    mapping: OrgIdMapping,
    fieldName: string,
    entityName: string,
    entityDna: string,
    rootDnaId: string,
  ): string | null {
    if (!draftId) return null;
    const mappedId = mapping.byDraftId.get(draftId) ?? null;
    if (mappedId) return mappedId;
    throw new HttpError(
      HttpStatusCode.INTERNAL_SERVER_ERROR,
      `ไม่สามารถ map ${fieldName} ของ ${entityName} (${entityDna}) ใน rootDnaId ${rootDnaId} ได้`,
    );
  }
  private getMappedParentIds(
    entityClass: any,
    draftNode: any,
    parentMappings: AllOrgMappings | undefined,
    rootDnaId: string,
  ): Partial<{
    orgRootId: string | null;
    orgChild1Id: string | null;
    orgChild2Id: string | null;
    orgChild3Id: string | null;
  }> {
    if (entityClass === OrgRoot) {
      return {};
    }
    if (!parentMappings) {
      throw new HttpError(
        HttpStatusCode.INTERNAL_SERVER_ERROR,
        `ไม่พบข้อมูล mapping ของโครงสร้างสำหรับ rootDnaId ${rootDnaId}`,
      );
    }
    const mappedParentIds: Partial<{
      orgRootId: string | null;
      orgChild1Id: string | null;
      orgChild2Id: string | null;
      orgChild3Id: string | null;
    }> = {};
    mappedParentIds.orgRootId = this.resolveRequiredOrgId(
      draftNode.orgRootId,
      parentMappings.orgRoot,
      "orgRootId",
      entityClass.name,
      draftNode.ancestorDNA,
      rootDnaId,
    );
    if (entityClass === OrgChild2 || entityClass === OrgChild3 || entityClass === OrgChild4) {
      mappedParentIds.orgChild1Id = this.resolveRequiredOrgId(
        draftNode.orgChild1Id,
        parentMappings.orgChild1,
        "orgChild1Id",
        entityClass.name,
        draftNode.ancestorDNA,
        rootDnaId,
      );
    }
    if (entityClass === OrgChild3 || entityClass === OrgChild4) {
      mappedParentIds.orgChild2Id = this.resolveRequiredOrgId(
        draftNode.orgChild2Id,
        parentMappings.orgChild2,
        "orgChild2Id",
        entityClass.name,
        draftNode.ancestorDNA,
        rootDnaId,
      );
    }
    if (entityClass === OrgChild4) {
      mappedParentIds.orgChild3Id = this.resolveRequiredOrgId(
        draftNode.orgChild3Id,
        parentMappings.orgChild3,
        "orgChild3Id",
        entityClass.name,
        draftNode.ancestorDNA,
        rootDnaId,
      );
    }
    return mappedParentIds;
  }
  /**
   * Helper function: Cascade delete positions before deleting org node
   */
@ -8853,7 +8578,6 @@ export class OrganizationController extends Controller {
    repository: any,
    draftRevisionId: string,
    currentRevisionId: string,
    rootDnaId: string,
    parentMappings?: AllOrgMappings,
    draftOrgRootId?: string,
    currentOrgRootId?: string,
@ -8926,9 +8650,53 @@ export class OrganizationController extends Controller {
        ...draft,
        id: current.id,
        orgRevisionId: currentRevisionId,
        ...this.getMappedParentIds(entityClass, draft, parentMappings, rootDnaId),
      };
      // Map parent IDs based on entity level
      if (entityClass === OrgChild1 && draft.orgRootId && parentMappings) {
        updateData.orgRootId =
          parentMappings.orgRoot.byDraftId.get(draft.orgRootId) ?? draft.orgRootId;
      } else if (entityClass === OrgChild2) {
        if (draft.orgRootId && parentMappings) {
          updateData.orgRootId =
            parentMappings.orgRoot.byDraftId.get(draft.orgRootId) ?? draft.orgRootId;
        }
        if (draft.orgChild1Id && parentMappings) {
          updateData.orgChild1Id =
            parentMappings.orgChild1.byDraftId.get(draft.orgChild1Id) ?? draft.orgChild1Id;
        }
      } else if (entityClass === OrgChild3) {
        if (draft.orgRootId && parentMappings) {
          updateData.orgRootId =
            parentMappings.orgRoot.byDraftId.get(draft.orgRootId) ?? draft.orgRootId;
        }
        if (draft.orgChild1Id && parentMappings) {
          updateData.orgChild1Id =
            parentMappings.orgChild1.byDraftId.get(draft.orgChild1Id) ?? draft.orgChild1Id;
        }
        if (draft.orgChild2Id && parentMappings) {
          updateData.orgChild2Id =
            parentMappings.orgChild2.byDraftId.get(draft.orgChild2Id) ?? draft.orgChild2Id;
        }
      } else if (entityClass === OrgChild4) {
        if (draft.orgRootId && parentMappings) {
          updateData.orgRootId =
            parentMappings.orgRoot.byDraftId.get(draft.orgRootId) ?? draft.orgRootId;
        }
        if (draft.orgChild1Id && parentMappings) {
          updateData.orgChild1Id =
            parentMappings.orgChild1.byDraftId.get(draft.orgChild1Id) ?? draft.orgChild1Id;
        }
        if (draft.orgChild2Id && parentMappings) {
          updateData.orgChild2Id =
            parentMappings.orgChild2.byDraftId.get(draft.orgChild2Id) ?? draft.orgChild2Id;
        }
        if (draft.orgChild3Id && parentMappings) {
          updateData.orgChild3Id =
            parentMappings.orgChild3.byDraftId.get(draft.orgChild3Id) ?? draft.orgChild3Id;
        }
      }
      await queryRunner.manager.update(entityClass, current.id, updateData);
      mapping.byAncestorDNA.set(draft.ancestorDNA, current.id);
@ -8942,9 +8710,77 @@ export class OrganizationController extends Controller {
        ...draft,
        id: undefined,
        orgRevisionId: currentRevisionId,
        ...this.getMappedParentIds(entityClass, draft, parentMappings, rootDnaId),
      });
      // Map parent IDs based on entity level
      if (entityClass === OrgChild1 && draft.orgRootId) {
        if (draft.orgRootId === draftOrgRootId) {
          newNode.orgRootId = currentOrgRootId;
        } else if (parentMappings) {
          newNode.orgRootId = parentMappings.orgRoot.byDraftId.get(draft.orgRootId);
        }
      } else if (entityClass === OrgChild2) {
        if (draft.orgRootId) {
          if (draft.orgRootId === draftOrgRootId) {
            newNode.orgRootId = currentOrgRootId;
          } else if (parentMappings) {
            newNode.orgRootId = parentMappings.orgRoot.byDraftId.get(draft.orgRootId);
          }
        }
        if (draft.orgChild1Id && parentMappings) {
          const mappedChild1Id = parentMappings.orgChild1.byDraftId.get(draft.orgChild1Id);
          if (mappedChild1Id) {
            newNode.orgChild1Id = mappedChild1Id;
          }
        }
      } else if (entityClass === OrgChild3) {
        if (draft.orgRootId) {
          if (draft.orgRootId === draftOrgRootId) {
            newNode.orgRootId = currentOrgRootId;
          } else if (parentMappings) {
            newNode.orgRootId = parentMappings.orgRoot.byDraftId.get(draft.orgRootId);
          }
        }
        if (draft.orgChild1Id && parentMappings) {
          const mappedChild1Id = parentMappings.orgChild1.byDraftId.get(draft.orgChild1Id);
          if (mappedChild1Id) {
            newNode.orgChild1Id = mappedChild1Id;
          }
        }
        if (draft.orgChild2Id && parentMappings) {
          const mappedChild2Id = parentMappings.orgChild2.byDraftId.get(draft.orgChild2Id);
          if (mappedChild2Id) {
            newNode.orgChild2Id = mappedChild2Id;
          }
        }
      } else if (entityClass === OrgChild4) {
        if (draft.orgRootId) {
          if (draft.orgRootId === draftOrgRootId) {
            newNode.orgRootId = currentOrgRootId;
          } else if (parentMappings) {
            newNode.orgRootId = parentMappings.orgRoot.byDraftId.get(draft.orgRootId);
          }
        }
        if (draft.orgChild1Id && parentMappings) {
          const mappedChild1Id = parentMappings.orgChild1.byDraftId.get(draft.orgChild1Id);
          if (mappedChild1Id) {
            newNode.orgChild1Id = mappedChild1Id;
          }
        }
        if (draft.orgChild2Id && parentMappings) {
          const mappedChild2Id = parentMappings.orgChild2.byDraftId.get(draft.orgChild2Id);
          if (mappedChild2Id) {
            newNode.orgChild2Id = mappedChild2Id;
          }
        }
        if (draft.orgChild3Id && parentMappings) {
          const mappedChild3Id = parentMappings.orgChild3.byDraftId.get(draft.orgChild3Id);
          if (mappedChild3Id) {
            newNode.orgChild3Id = mappedChild3Id;
          }
        }
      }
      const saved = await queryRunner.manager.save(newNode);
      mapping.byAncestorDNA.set(draft.ancestorDNA, saved.id);
@ -9000,7 +8836,6 @@ export class OrganizationController extends Controller {
        where: {
          posMasterId: In(currentPosMasterIds),
        },
        relations: ["posType", "posLevel", "posExecutive"],
      }),
    ]);
@ -9028,12 +8863,6 @@ export class OrganizationController extends Controller {
    const allToInsert: Array<any> = [];
    const profileUpdates: Map<string, any> = new Map();
    // Collect position and posMaster data for delete history tracking
    const deleteHistoryData: Array<{
      position: any;
      posMaster: PosMaster;
    }> = [];
    // Create a map for quick lookup of draft PosMasters with relations
    const draftPosMasterMap = new Map(draftPosMasters.map((pm: PosMaster) => [pm.id, pm]));
@ -9053,11 +8882,6 @@ export class OrganizationController extends Controller {
      if (draftPositions.length === 0) {
        allToDelete.push(...currentPositions.map((p: any) => p.id));
        allToDeleteHistory.push(...currentPositions.map((p: any) => p.ancestorDNA));
        // Collect data for history tracking
        const pm = draftPosMasterMap.get(draftPosMasterId) as PosMaster;
        for (const pos of currentPositions) {
          deleteHistoryData.push({ position: pos, posMaster: pm });
        }
        continue;
      }
@ -9066,13 +8890,10 @@ export class OrganizationController extends Controller {
      const draftOrderNos = new Set(draftPositions.map((p: any) => p.orderNo));
      // Mark for deletion: current positions not in draft (by orderNo)
      const pm = draftPosMasterMap.get(draftPosMasterId) as PosMaster;
      for (const currentPos of currentPositions) {
        if (!draftOrderNos.has(currentPos.orderNo)) {
          allToDelete.push(currentPos.id);
          allToDeleteHistory.push(currentPos.ancestorDNA);
          // Collect data for history tracking
          deleteHistoryData.push({ position: currentPos, posMaster: pm });
        }
      }
@ -9112,27 +8933,13 @@ export class OrganizationController extends Controller {
        const draftPosMaster = draftPosMasterMap.get(draftPosMasterId) as any;
        // Collect profile update for the selected position
        // อัพเดท org และ posMasterNo ตลอดไม่ต้องดัก isSit
        if (nextHolderId != null && draftPos.positionIsSelected) {
          const _null: any = null;
          profileUpdates.set(nextHolderId, {
            posMasterNo: draftPosMaster
              ? getPosMasterNo(draftPosMaster as PosMaster) ?? _null
              : _null,
            org: draftPosMaster ? getOrgFullName(draftPosMaster as PosMaster) ?? _null : _null,
          });
        }
        // ถ้าไม่ใช่ตำแหน่งนั่งทับ (isSit = false) ถึงจะอัพเดทตำแหน่งในทะเบียนประวัติ
        if (nextHolderId != null && draftPos.positionIsSelected && !draftPosMaster?.isSit) {
-          const existing = profileUpdates.get(nextHolderId) || {};
+          profileUpdates.set(nextHolderId, {
-          existing.position = draftPos.positionName;
+            position: draftPos.positionName,
-          existing.posTypeId = draftPos.posTypeId;
+            posTypeId: draftPos.posTypeId,
-          existing.posLevelId = draftPos.posLevelId;
+            posLevelId: draftPos.posLevelId,
-          existing.positionField = draftPos.positionField ?? null;
+          });
          existing.posExecutive = (draftPos as any).posExecutive?.posExecutiveName ?? null;
          existing.positionArea = draftPos.positionArea ?? null;
          existing.positionExecutiveField = draftPos.positionExecutiveField ?? null;
          profileUpdates.set(nextHolderId, existing);
          if (draftPosMaster && draftPosMaster.ancestorDNA) {
            // Find the selected position from draft positions
            const selectedPos =
@ -9180,36 +8987,10 @@ export class OrganizationController extends Controller {
    // Bulk DELETE
    if (allToDelete.length > 0) {
      await queryRunner.manager.delete(Position, allToDelete);
-      const deleteOps = deleteHistoryData.map(({ position, posMaster }) => ({
+      const deleteOps = allToDeleteHistory.map((ancestorDNA) => ({
-        posMasterDnaId: position.ancestorDNA,
+        posMasterDnaId: ancestorDNA,
        profileId: null,
-        pm: {
+        pm: null,
          prefix: null,
          firstName: null,
          lastName: null,
          position: null,
          posType: null,
          posLevel: null,
          posExecutive: null,
          profileId: null,
          rootDnaId: posMaster?.orgRoot?.ancestorDNA ?? null,
          child1DnaId: posMaster?.orgChild1?.ancestorDNA ?? null,
          child2DnaId: posMaster?.orgChild2?.ancestorDNA ?? null,
          child3DnaId: posMaster?.orgChild3?.ancestorDNA ?? null,
          child4DnaId: posMaster?.orgChild4?.ancestorDNA ?? null,
          shortName: posMaster
            ? [
                posMaster.orgChild4?.orgChild4ShortName,
                posMaster.orgChild3?.orgChild3ShortName,
                posMaster.orgChild2?.orgChild2ShortName,
                posMaster.orgChild1?.orgChild1ShortName,
                posMaster.orgRoot?.orgRootShortName,
              ].find((s) => typeof s === "string" && s.trim().length > 0) ?? null
            : null,
          posMasterNoPrefix: posMaster?.posMasterNoPrefix ?? null,
          posMasterNo: posMaster?.posMasterNo != null ? String(posMaster.posMasterNo) : null,
          posMasterNoSuffix: posMaster?.posMasterNoSuffix ?? null,
        },
      }));
      await BatchSavePosMasterHistoryOfficer(queryRunner, deleteOps);
      deletedCount = allToDelete.length;
--- a/src/controllers/OrganizationDotnetController.ts
+++ b/src/controllers/OrganizationDotnetController.ts
@ -26,7 +26,6 @@ import { OrgRoot } from "../entities/OrgRoot";
 import { Position } from "../entities/Position";
 import { PosMaster } from "../entities/PosMaster";
 import { PosMasterHistory } from "../entities/PosMasterHistory";
 import { PosMasterEmployeeHistory } from "../entities/PosMasterEmployeeHistory";
 import { Profile } from "../entities/Profile";
 import { ProfileEducation } from "../entities/ProfileEducation";
 import { ProfileEmployee } from "../entities/ProfileEmployee";
@ -58,7 +57,6 @@ export class OrganizationDotnetController extends Controller {
  private positionRepository = AppDataSource.getRepository(Position);
  private posMasterRepository = AppDataSource.getRepository(PosMaster);
  private posMasterHistoryRepository = AppDataSource.getRepository(PosMasterHistory);
  private posMasterEmployeeHistoryRepository = AppDataSource.getRepository(PosMasterEmployeeHistory);
  private empPosMasterRepository = AppDataSource.getRepository(EmployeePosMaster);
  private insigniaRepo = AppDataSource.getRepository(ProfileInsignia);
  private employeePosDictRepository = AppDataSource.getRepository(EmployeePosDict);
@ -2352,131 +2350,6 @@ export class OrganizationDotnetController extends Controller {
    return new HttpSuccess(mapProfile);
  }
  /**
   * API Get Profile For Process Check In
   * @summary API Get Profile For Process Check In
   * @param {string} keycloakId  keycloakId profile
   */
  @Get("check-keycloak/{keycloakId}")
  async GetProfileForProcessCheckInAsync(@Path() keycloakId: string) {
    try {
      /* =========================
       * 1. Load profile (Officer)
       * ========================= */
      const profile = await this.profileRepo.findOne({
        where: { keycloak: keycloakId },
        relations: {
          current_holders: {
            orgRevision: true,
            orgRoot: true,
            orgChild1: true,
            orgChild2: true,
            orgChild3: true,
            orgChild4: true,
          },
        },
      });
      // Employee
      if (!profile) {
        const empProfile = await this.profileEmpRepo.findOne({
          where: { keycloak: keycloakId },
          relations: {
            current_holders: {
              orgRevision: true,
              orgRoot: true,
              orgChild1: true,
              orgChild2: true,
              orgChild3: true,
              orgChild4: true,
            },
          },
        });
        if (!empProfile) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
        const currentHolder = empProfile.current_holders?.find(
          (x) =>
            x.orgRevision?.orgRevisionIsDraft === false &&
            x.orgRevision?.orgRevisionIsCurrent === true,
        );
        const mapProfile = {
          profileType: "EMPLOYEE",
          id: empProfile.id,
          keycloak: empProfile.keycloak,
          prefix: empProfile.prefix,
          firstName: empProfile.firstName,
          lastName: empProfile.lastName,
          citizenId: empProfile.citizenId,
          gender: empProfile.gender,
          root: currentHolder?.orgRoot?.orgRootName ?? null,
          rootId: currentHolder?.orgRootId ?? null,
          rootDnaId: currentHolder?.orgRoot?.ancestorDNA ?? null,
          child1: currentHolder?.orgChild1?.orgChild1Name ?? null,
          child1Id: currentHolder?.orgChild1Id ?? null,
          child1DnaId: currentHolder?.orgChild1?.ancestorDNA ?? null,
          child2: currentHolder?.orgChild2?.orgChild2Name ?? null,
          child2Id: currentHolder?.orgChild2Id ?? null,
          child2DnaId: currentHolder?.orgChild2?.ancestorDNA ?? null,
          child3: currentHolder?.orgChild3?.orgChild3Name ?? null,
          child3Id: currentHolder?.orgChild3Id ?? null,
          child3DnaId: currentHolder?.orgChild3?.ancestorDNA ?? null,
          child4: currentHolder?.orgChild4?.orgChild4Name ?? null,
          child4Id: currentHolder?.orgChild4Id ?? null,
          child4DnaId: currentHolder?.orgChild4?.ancestorDNA ?? null,
        };
        return new HttpSuccess(mapProfile);
      }
      /* =========================================
       * 2. current holder (Officer)
       * ========================================= */
      const currentHolder = profile.current_holders?.find(
        (x) =>
          x.orgRevision?.orgRevisionIsDraft === false && x.orgRevision?.orgRevisionIsCurrent === true,
      );
      /* =========================================
       * 3. map response
       * ========================================= */
      const mapProfile = {
        profileType: "OFFICER",
        id: profile.id,
        keycloak: profile.keycloak,
        prefix: profile.prefix,
        firstName: profile.firstName,
        lastName: profile.lastName,
        citizenId: profile.citizenId,
        gender: profile.gender,
        root: currentHolder?.orgRoot?.orgRootName ?? null,
        rootId: currentHolder?.orgRootId ?? null,
        rootDnaId: currentHolder?.orgRoot?.ancestorDNA ?? null,
        child1: currentHolder?.orgChild1?.orgChild1Name ?? null,
        child1Id: currentHolder?.orgChild1Id ?? null,
        child1DnaId: currentHolder?.orgChild1?.ancestorDNA ?? null,
        child2: currentHolder?.orgChild2?.orgChild2Name ?? null,
        child2Id: currentHolder?.orgChild2Id ?? null,
        child2DnaId: currentHolder?.orgChild2?.ancestorDNA ?? null,
        child3: currentHolder?.orgChild3?.orgChild3Name ?? null,
        child3Id: currentHolder?.orgChild3Id ?? null,
        child3DnaId: currentHolder?.orgChild3?.ancestorDNA ?? null,
        child4: currentHolder?.orgChild4?.orgChild4Name ?? null,
        child4Id: currentHolder?.orgChild4Id ?? null,
        child4DnaId: currentHolder?.orgChild4?.ancestorDNA ?? null,
      };
      return new HttpSuccess(mapProfile);
    } catch (error: any) {
      // Log เฉพาะ unexpected errors (ไม่ใช่ HttpError)
      if (!(error instanceof HttpError)) {
        console.error(`[check-keycloak] Unexpected error: keycloakId=${keycloakId}`, error);
      }
      throw error;
    }
  }
  /**
   * API Get Profile For Logs
   *
@ -6924,273 +6797,229 @@ export class OrganizationDotnetController extends Controller {
    return new HttpSuccess(profile_);
  }
-  /**
+  // /**
-   * รายชื่อลูกจ้างประจำ ตามสิทธิ์ admin
+  //  * รายชื่อขรก. ตามสิทธิ์ admin
-   * @summary รายชื่อลูกจ้างประจำ ตามสิทธิ์ admin
+  //  *
-   */
+  //  * @summary รายชื่อขรก. ตามสิทธิ์ admin
-  @Post("employee-by-admin-rolev2")
+  //  *
-  async GetEmployeesByAdminRoleV2(
+  //  */
-    @Request() req: RequestWithUser,
+  // @Post("employee-by-admin-rolev2")
-    @Body()
+  // async GetEmployeesByAdminRoleV2(
-    body: {
+  //   @Request() req: RequestWithUser,
-      node: number;
+  //   @Body()
-      nodeId: string;
+  //   body: {
-      role: string;
+  //     node: number;
-      isRetirement?: boolean;
+  //     nodeId: string;
-      reqNode?: number;
+  //     role: string;
-      reqNodeId?: string;
+  //     isRetirement?: boolean;
-      date: Date;
+  //     reqNode?: number;
-    },
+  //     reqNodeId?: string;
-  ) {
+  //     date?: Date;
-    let typeCondition: any = {};
+  //   },
-    if (body.role === "CHILD" || body.role === "BROTHER") {
+  // ) {
-      if (body.role === "CHILD") {
+  //   let typeCondition: any = {};
-        switch (body.node) {
+  //   if (body.role === "CHILD" || body.role === "PARENT" || body.role === "BROTHER") {
-          case 0:
+  //     if (body.role === "CHILD") {
-            typeCondition = {
+  //       switch (body.node) {
-              rootDnaId: body.nodeId,
+  //         case 0:
-            };
+  //           typeCondition = {
-            break;
+  //             rootDnaId: body.nodeId,
-          case 1:
+  //           };
-            typeCondition = {
+  //           break;
-              child1DnaId: body.nodeId,
+  //         case 1:
-            };
+  //           typeCondition = {
-            break;
+  //             child1DnaId: body.nodeId,
-          case 2:
+  //           };
-            typeCondition = {
+  //           break;
-              child2DnaId: body.nodeId,
+  //         case 2:
-            };
+  //           typeCondition = {
-            break;
+  //             child2DnaId: body.nodeId,
-          case 3:
+  //           };
-            typeCondition = {
+  //           break;
-              child3DnaId: body.nodeId,
+  //         case 3:
-            };
+  //           typeCondition = {
-            break;
+  //             child3DnaId: body.nodeId,
-          case 4:
+  //           };
-            typeCondition = {
+  //           break;
-              child4DnaId: body.nodeId,
+  //         case 4:
-            };
+  //           typeCondition = {
-            break;
+  //             child4DnaId: body.nodeId,
-          default:
+  //           };
-            typeCondition = {};
+  //           break;
-            break;
+  //         default:
-        }
+  //           typeCondition = {};
-      } else if (body.role === "BROTHER") {
+  //           break;
-        switch (body.node) {
+  //       }
-          case 0:
+  //     } else if (body.role === "BROTHER") {
-            typeCondition = {
+  //       switch (body.node) {
-              rootDnaId: body.nodeId,
+  //         case 0:
-            };
+  //           typeCondition = {
-            break;
+  //             rootDnaId: body.nodeId,
-          case 1:
+  //           };
-            typeCondition = {
+  //           break;
-              rootDnaId: body.nodeId,
+  //         case 1:
-            };
+  //           typeCondition = {
-            break;
+  //             rootDnaId: body.nodeId,
-          case 2:
+  //           };
-            typeCondition = {
+  //           break;
-              child1DnaId: body.nodeId,
+  //         case 2:
-            };
+  //           typeCondition = {
-            break;
+  //             child1DnaId: body.nodeId,
-          case 3:
+  //           };
-            typeCondition = {
+  //           break;
-              child2DnaId: body.nodeId,
+  //         case 3:
-            };
+  //           typeCondition = {
-            break;
+  //             child2DnaId: body.nodeId,
-          case 4:
+  //           };
-            typeCondition = {
+  //           break;
-              child3DnaId: body.nodeId,
+  //         case 4:
-            };
+  //           typeCondition = {
-            break;
+  //             child3DnaId: body.nodeId,
-          default:
+  //           };
-            typeCondition = {};
+  //           break;
-            break;
+  //         default:
-        }
+  //           typeCondition = {};
-      }
+  //           break;
-    } else if (body.role === "OWNER" || body.role === "ROOT" || body.role === "PARENT") {
+  //       }
-      switch (body.reqNode) {
+  //     } else if (body.role === "PARENT") {
-        case 0:
+  //       typeCondition = {
-          typeCondition = {
+  //         rootDnaId: body.nodeId,
-            rootDnaId: body.reqNodeId,
+  //         child1DnaId: Not(IsNull()),
-          };
+  //       };
-          break;
+  //     }
-        case 1:
+  //   } else if (body.role === "OWNER" || body.role === "ROOT") {
-          typeCondition = {
+  //     switch (body.reqNode) {
-            child1DnaId: body.reqNodeId,
+  //       case 0:
-          };
+  //         typeCondition = {
-          break;
+  //           rootDnaId: body.reqNodeId,
-        case 2:
+  //         };
-          typeCondition = {
+  //         break;
-            child2DnaId: body.reqNodeId,
+  //       case 1:
-          };
+  //         typeCondition = {
-          break;
+  //           child1DnaId: body.reqNodeId,
-        case 3:
+  //         };
-          typeCondition = {
+  //         break;
-            child3DnaId: body.reqNodeId,
+  //       case 2:
-          };
+  //         typeCondition = {
-          break;
+  //           child2DnaId: body.reqNodeId,
-        case 4:
+  //         };
-          typeCondition = {
+  //         break;
-            child4DnaId: body.reqNodeId,
+  //       case 3:
-          };
+  //         typeCondition = {
-          break;
+  //           child3DnaId: body.reqNodeId,
-        default:
+  //         };
-          typeCondition = {};
+  //         break;
-          break;
+  //       case 4:
-      }
+  //         typeCondition = {
-    } else if (body.role === "NORMAL") {
+  //           child4DnaId: body.reqNodeId,
-      switch (body.node) {
+  //         };
-        case 0:
+  //         break;
-          typeCondition = {
+  //       default:
-            rootDnaId: body.nodeId,
+  //         typeCondition = {};
-            child1DnaId: IsNull(),
+  //         break;
-          };
+  //     }
-          break;
+  //   } else if (body.role === "NORMAL") {
-        case 1:
+  //     switch (body.node) {
-          typeCondition = {
+  //       case 0:
-            child1DnaId: body.nodeId,
+  //         typeCondition = {
-            child2DnaId: IsNull(),
+  //           rootDnaId: body.nodeId,
-          };
+  //           child1DnaId: IsNull(),
-          break;
+  //         };
-        case 2:
+  //         break;
-          typeCondition = {
+  //       case 1:
-            child2DnaId: body.nodeId,
+  //         typeCondition = {
-            child3DnaId: IsNull(),
+  //           child1DnaId: body.nodeId,
-          };
+  //           child2DnaId: IsNull(),
-          break;
+  //         };
-        case 3:
+  //         break;
-          typeCondition = {
+  //       case 2:
-            child3DnaId: body.nodeId,
+  //         typeCondition = {
-            child4DnaId: IsNull(),
+  //           child2DnaId: body.nodeId,
-          };
+  //           child3DnaId: IsNull(),
-          break;
+  //         };
-        case 4:
+  //         break;
-          typeCondition = {
+  //       case 3:
-            child4DnaId: body.nodeId,
+  //         typeCondition = {
-          };
+  //           child3DnaId: body.nodeId,
-          break;
+  //           child4DnaId: IsNull(),
-        default:
+  //         };
-          typeCondition = {};
+  //         break;
-          break;
+  //       case 4:
-      }
+  //         typeCondition = {
-    }
+  //           child4DnaId: body.nodeId,
-    // set เวลาเป็น 23:59:59 ของวันนั้น
+  //         };
-    const date = body.date ? new Date(body.date.toISOString().slice(0, 10)) : new Date();
+  //         break;
-    date.setHours(23, 59, 59, 999);
+  //       default:
  //         typeCondition = {};
  //         break;
  //     }
  //   }
  //   const date = body.date ? new Date(body.date) : new Date();
  //   // set เวลาเป็น 23:59:59 ของวันนั้น
  //   date.setHours(23, 59, 59, 999);
-    let posEmpHis = await this.posMasterEmployeeHistoryRepository.find({
+  //   let profile = await this.posMasterEmployeeHistoryRepository.find({
-      where: {
+  //     where: {
-        ...typeCondition,
+  //       ...typeCondition,
-        createdAt: LessThanOrEqual(date),
+  //       createdAt: LessThanOrEqual(date),
-      },
+  //       // firstName: Not("") && Not(IsNull()),
-      select: [
+  //       // lastName: Not("") && Not(IsNull()),
-        "profileEmployeeId",
+  //     },
-        "prefix",
+  //     order: {
-        "firstName",
+  //       firstName: "ASC",
-        "lastName",
+  //       lastName: "ASC",
-        "shortName",
+  //       createdAt: "DESC", // ให้ createdAt ล่าสุดอยู่ข้างบน
-        "posMasterNo",
+  //     },
-        "position",
+  //   });
        "posType",
        "posLevel",
        "ancestorDNA",
        "rootDnaId",
        "child1DnaId",
        "child2DnaId",
        "child3DnaId",
        "child4DnaId",
        "createdAt",
      ],
      order: {
        firstName: "ASC",
        lastName: "ASC",
        createdAt: "DESC",
      },
    });
-    // group1: group by ancestorDNA แล้วเลือก create_at ล่าสุด
+  //   // group by ancestorDNA แล้วเลือก create_at ล่าสุด
-    const grouped1 = new Map<string, PosMasterEmployeeHistory>();
+  //   const grouped = new Map<string, PosMasterEmployeeHistory>();
-    for (const item of posEmpHis) {
+  //   for (const item of profile) {
-      const key = `${item.ancestorDNA}`;
+  //     const key = `${item.shortName}-${item.posMasterNo}`;
-      if (!grouped1.has(key)) {
+  //     if (!grouped.has(key)) {
-        grouped1.set(key, item);
+  //       grouped.set(key, item);
-      } else {
+  //     } else {
-        // ถ้าเจอซ้ำ ให้เลือก createdAt ล่าสุด
+  //       // ถ้าเจอซ้ำ ให้เลือก createdAt ล่าสุด
-        const exist = grouped1.get(key);
+  //       const exist = grouped.get(key);
-        if (exist && item.createdAt > exist.createdAt) {
+  //       if (exist && item.createdAt > exist.createdAt) {
-          grouped1.set(key, item);
+  //         grouped.set(key, item);
-        }
+  //       }
-      }
+  //     }
-    }
+  //   }
    // group2: group by shortName-posMasterNo จากค่าที่ได้จาก group1
    const grouped2 = new Map<string, PosMasterEmployeeHistory>();
    for (const item of Array.from(grouped1.values())) {
      const key = `${item.shortName}-${item.posMasterNo}`;
      if (!grouped2.has(key)) {
        grouped2.set(key, item);
      } else {
        // ถ้าเจอซ้ำ ให้เลือก createdAt ล่าสุด
        const exist = grouped2.get(key);
        if (exist && item.createdAt > exist.createdAt) {
          grouped2.set(key, item);
        }
      }
    }
    // group3: group by firstName-lastName จากค่าที่ได้จาก group2
    const grouped3 = new Map<string, PosMasterEmployeeHistory>();
    for (const item of Array.from(grouped2.values())) {
      const key = `${item.firstName}-${item.lastName}`;
      if (!grouped3.has(key)) {
        grouped3.set(key, item);
      } else {
        // ถ้าเจอซ้ำ ให้เลือก createdAt ล่าสุด
        const exist = grouped3.get(key);
        if (exist && item.createdAt > exist.createdAt) {
          grouped3.set(key, item);
        }
      }
    }
-    const profileEmployeeIds = Array.from(grouped3.values())
+  //   const profile_ = await Promise.all(
-      .filter((x) => x.profileEmployeeId != null)
+  //     Array.from(grouped.values())
-      .map((x) => x.profileEmployeeId);
+  //       .filter((x) => x.profileId != null)
  //       .map(async (item: PosMasterEmployeeHistory) => {
  //         let profile = await this.profileRepo.findOne({
  //           where: { id: item.profileId },
  //         });
-    const profileEmployees = await this.profileEmpRepo.find({
+  //         return {
-      where: { id: In(profileEmployeeIds) },
+  //           id: item.profileId,
-      select: ["id", "citizenId", "dateStart", "dateAppoint", "keycloak"],
+  //           prefix: item.prefix,
-    });
+  //           firstName: item.firstName,
  //           lastName: item.lastName,
  //           citizenId: profile?.citizenId ?? null,
  //           dateStart: profile?.dateStart ?? null,
  //           dateAppoint: profile?.dateAppoint ?? null,
  //           keycloak: profile?.keycloak ?? null,
  //           posNo: item.shortName,
  //           position: item.position,
  //           positionLevel: item.posLevel,
  //           positionType: item.posType,
  //           // oc: Oc,
  //           orgRootId: item.rootDnaId,
  //           orgChild1Id: item.child1DnaId,
  //           orgChild2Id: item.child2DnaId,
  //           orgChild3Id: item.child3DnaId,
  //           orgChild4Id: item.child4DnaId,
  //         };
  //       }),
  //   );
-    const profileEmployeeMap = new Map(profileEmployees.map((p) => [p.id, p]));
+  //   return new HttpSuccess(profile_);
-
+  // }
    const profile_ = Array.from(grouped3.values())
      .filter((x) => x.profileEmployeeId != null)
      .map((item: PosMasterEmployeeHistory) => {
        const profileEmp = profileEmployeeMap.get(item.profileEmployeeId);
        return {
          id: item.profileEmployeeId,
          prefix: item.prefix,
          firstName: item.firstName,
          lastName: item.lastName,
          citizenId: profileEmp?.citizenId ?? null,
          dateStart: profileEmp?.dateStart ?? null,
          dateAppoint: profileEmp?.dateAppoint ?? null,
          keycloak: profileEmp?.keycloak ?? null,
          posNo: `${item.shortName} ${item.posMasterNo}`,
          position: item.position,
          positionLevel: item.posLevel,
          positionType: item.posType,
          orgRootId: item.rootDnaId,
          orgChild1Id: item.child1DnaId,
          orgChild2Id: item.child2DnaId,
          orgChild3Id: item.child3DnaId,
          orgChild4Id: item.child4DnaId,
        };
      });
    return new HttpSuccess(
      (profile_ ?? []).sort((a, b) => a.posNo.localeCompare(b.posNo, undefined, { numeric: true })),
    );
  }
  /**
   * 4.	API Update รอบการลงเวลา ในตาราง profile
@ -8652,7 +8481,6 @@ export class OrganizationDotnetController extends Controller {
            break;
        }
      } else if (body.role === "BROTHER") {
        // nodeId ที่รับมาเป็น DNA ของระดับพ่อแม่ (สูงกว่า 1 ระดับ) จึงต้อง query ด้วย field ของระดับพ่อแม่
        switch (body.node) {
          case 0:
            typeCondition = {
@ -8765,29 +8593,13 @@ export class OrganizationDotnetController extends Controller {
      where: {
        ...typeCondition,
        createdAt: LessThanOrEqual(date),
        // firstName: Not("") && Not(IsNull()),
        // lastName: Not("") && Not(IsNull()),
      },
      select: [
        "profileId",
        "prefix",
        "firstName",
        "lastName",
        "shortName",
        "posMasterNo",
        "position",
        "posType",
        "posLevel",
        "ancestorDNA",
        "rootDnaId",
        "child1DnaId",
        "child2DnaId",
        "child3DnaId",
        "child4DnaId",
        "createdAt",
      ],
      order: {
        firstName: "ASC",
        lastName: "ASC",
-        createdAt: "DESC",
+        createdAt: "DESC", // ให้ createdAt ล่าสุดอยู่ข้างบน
      },
    });
@ -8834,41 +8646,36 @@ export class OrganizationDotnetController extends Controller {
      }
    }
-    const profileIds = Array.from(grouped3.values())
+    const profile_ = await Promise.all(
-      .filter((x) => x.profileId != null)
+      Array.from(grouped3.values())
-      .map((x) => x.profileId);
+        .filter((x) => x.profileId != null)
        .map(async (item: PosMasterHistory) => {
          let profile = await this.profileRepo.findOne({
            where: { id: item.profileId },
          });
-    const profiles = await this.profileRepo.find({
+          return {
-      where: { id: In(profileIds) },
+            id: item.profileId,
-      select: ["id", "citizenId", "dateStart", "dateAppoint", "keycloak"],
+            prefix: item.prefix,
-    });
+            firstName: item.firstName,
-
+            lastName: item.lastName,
-    const profileMap = new Map(profiles.map((p) => [p.id, p]));
+            citizenId: profile?.citizenId ?? null,
-
+            dateStart: profile?.dateStart ?? null,
-    const profile_ = Array.from(grouped3.values())
+            dateAppoint: profile?.dateAppoint ?? null,
-      .filter((x) => x.profileId != null)
+            keycloak: profile?.keycloak ?? null,
-      .map((item: PosMasterHistory) => {
+            posNo: `${item.shortName} ${item.posMasterNo}`,
-        const profile = profileMap.get(item.profileId);
+            position: item.position,
-        return {
+            positionLevel: item.posLevel,
-          id: item.profileId,
+            positionType: item.posType,
-          prefix: item.prefix,
+            // oc: Oc,
-          firstName: item.firstName,
+            orgRootId: item.rootDnaId,
-          lastName: item.lastName,
+            orgChild1Id: item.child1DnaId,
-          citizenId: profile?.citizenId ?? null,
+            orgChild2Id: item.child2DnaId,
-          dateStart: profile?.dateStart ?? null,
+            orgChild3Id: item.child3DnaId,
-          dateAppoint: profile?.dateAppoint ?? null,
+            orgChild4Id: item.child4DnaId,
-          keycloak: profile?.keycloak ?? null,
+          };
-          posNo: `${item.shortName} ${item.posMasterNo}`,
+        }),
-          position: item.position,
+    );
          positionLevel: item.posLevel,
          positionType: item.posType,
          orgRootId: item.rootDnaId,
          orgChild1Id: item.child1DnaId,
          orgChild2Id: item.child2DnaId,
          orgChild3Id: item.child3DnaId,
          orgChild4Id: item.child4DnaId,
        };
      });
    return new HttpSuccess(
      (profile_ ?? []).sort((a, b) => a.posNo.localeCompare(b.posNo, undefined, { numeric: true })),
@ -8891,16 +8698,7 @@ export class OrganizationDotnetController extends Controller {
  ) {
    const profile = await this.profileRepo.findOne({
      where: { id: requestBody.profileId },
-      relations: {
+      relations: ["current_holders", "current_holders.orgRevision"],
        current_holders: {
          orgRevision: true,
          orgRoot: true,
          orgChild1: true,
          orgChild2: true,
          orgChild3: true,
          orgChild4: true
        }
      }
    });
    if (!profile) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูลโปรไฟล์");
@ -8935,21 +8733,10 @@ export class OrganizationDotnetController extends Controller {
        "orgChild2.ancestorDNA AS child2DnaId",
        "orgChild3.ancestorDNA AS child3DnaId",
        "orgChild4.ancestorDNA AS child4DnaId",
        "authRoleAttr.attrPrivilege AS attrPrivilege",
      ])
      .distinct(true)
      // ต้องมี posMasterAssign
      .innerJoin("posMasterAssign", "assign", "assign.posMasterId = pm.id")
      // INNER JOIN เพื่อเอาเฉพาะที่มี attrPrivilege
      .innerJoin("pm.authRole", "authRole")
      .innerJoin(
        "authRole.authRoles", "authRoleAttr",
        "authRoleAttr.authSysId = :authSysId AND authRoleAttr.attrIsList = :attrIsList",
        { 
          attrIsList: true,
          authSysId: assign.id
        }
      )
      // join เพื่อเอา ancestorDNA
      .leftJoin("pm.orgRoot", "orgRoot")
      .leftJoin("pm.orgChild1", "orgChild1")
@ -8971,123 +8758,6 @@ export class OrganizationDotnetController extends Controller {
      })
      .getRawMany();
-    // ────────────────────────────────────────────────────────
+    return new HttpSuccess(posMasters);
    // กรองตามสิทธิ์ (NORMAL, CHILD, BROTHER)
    // ROOT และ PARENT ให้ผ่านทุกคน เพราะ filter orgRootId อยู่แล้ว
    // ────────────────────────────────────────────────────────
    // 1. หา User Node
    const userNode = currentHolder.orgChild4Id ? 4
      : currentHolder.orgChild3Id ? 3
      : currentHolder.orgChild2Id ? 2
      : currentHolder.orgChild1Id ? 1
      : 0;
    // 2. หา User DNA แต่ละระดับ
    const userDna = {
      root: currentHolder.orgRoot?.ancestorDNA ?? null,
      child1: currentHolder.orgChild1?.ancestorDNA ?? null,
      child2: currentHolder.orgChild2?.ancestorDNA ?? null,
      child3: currentHolder.orgChild3?.ancestorDNA ?? null,
      child4: currentHolder.orgChild4?.ancestorDNA ?? null,
    };
    // 3. กรอง posMasters ตามสิทธิ์
    const filteredPosMasters = posMasters.filter((staff) => {
      const privilege = staff.attrPrivilege;
      // ROOT และ PARENT: ให้ผ่านทุกคน เพราะ filter orgRootId อยู่แล้ว
      if (privilege === "ROOT" || privilege === "PARENT" || privilege === "OWNER") {
        return true;
      }
      // หา Staff Node
      const staffNode = staff.orgChild4Id ? 4
        : staff.orgChild3Id ? 3
        : staff.orgChild2Id ? 2
        : staff.orgChild1Id ? 1
        : 0;
      // หา Staff DNA
      const staffDna = {
        root: staff.rootDnaId,
        child1: staff.child1DnaId,
        child2: staff.child2DnaId,
        child3: staff.child3DnaId,
        child4: staff.child4DnaId,
      };
      // NORMAL: Node เท่ากัน + DNA เหมือนกันทุกตัว
      if (privilege === "NORMAL") {
        return (
          staffNode === userNode &&
          staffDna.root === userDna.root &&
          (staffNode < 1 || staffDna.child1 === userDna.child1) &&
          (staffNode < 2 || staffDna.child2 === userDna.child2) &&
          (staffNode < 3 || staffDna.child3 === userDna.child3) &&
          (staffNode < 4 || staffDna.child4 === userDna.child4)
        );
      }
      // CHILD: Staff เห็น User ที่อยู่ในกิ่งลูก
      if (privilege === "CHILD") {
        // Staff ต้องอยู่บนกว่าหรือเท่ากับ User
        if (staffNode > userNode) return false;
        switch (staffNode) {
          case 0:
            if (staffDna.root !== userDna.root) return false;
            break;
          case 1:
            if (staffDna.root !== userDna.root) return false;
            if (staffDna.child1 !== userDna.child1) return false;
            break;
          case 2:
            if (staffDna.root !== userDna.root) return false;
            if (staffDna.child1 !== userDna.child1) return false;
            if (staffDna.child2 !== userDna.child2) return false;
            break;
          case 3:
            if (staffDna.root !== userDna.root) return false;
            if (staffDna.child1 !== userDna.child1) return false;
            if (staffDna.child2 !== userDna.child2) return false;
            if (staffDna.child3 !== userDna.child3) return false;
            break;
          case 4:
            if (staffDna.root !== userDna.root) return false;
            if (staffDna.child1 !== userDna.child1) return false;
            if (staffDna.child2 !== userDna.child2) return false;
            if (staffDna.child3 !== userDna.child3) return false;
            if (staffDna.child4 !== userDna.child4) return false;
            break;
        }
        return true;
      }
      // BROTHER: Staff เห็น User ที่อยู่ในกิ่งข้างบนและลูก
      if (privilege === "BROTHER") {
        if (userNode < staffNode - 1 || userNode > 4) return false;
        if (staffNode === 0 || staffNode === 1) {
          if (staffDna.root !== userDna.root) return false;
        } /*else if (staffNode === 1) {
          if (staffDna.root !== userDna.root) return false;
          if (staffDna.child1 !== userDna.child1) return false;
        }*/ else if (staffNode === 2) {
          if (staffDna.child1 !== userDna.child1) return false;
          // if (staffDna.child2 !== userDna.child2 && userDna.child2 !== null) return false;
        } else if (staffNode === 3) {
          if (staffDna.child2 !== userDna.child2) return false;
          // if (staffDna.child3 !== userDna.child3 && userDna.child3 !== null) return false;
        } else if (staffNode === 4) {
          if (staffDna.child3 !== userDna.child3) return false;
          // if (staffDna.child4 !== userDna.child4 && userDna.child4 !== null) return false;
        }
        return true;
      }
      // กรณีอื่นๆ ให้ผ่าน
      return true;
    });
    return new HttpSuccess(filteredPosMasters);
  }
 }
--- a/src/controllers/PermissionController.ts
+++ b/src/controllers/PermissionController.ts
--- a/src/controllers/PosMasterActController.ts
+++ b/src/controllers/PosMasterActController.ts
@ -24,10 +24,6 @@ import Extension from "../interfaces/extension";
 import { ProfileActposition } from "../entities/ProfileActposition";
 import { RequestWithUser } from "../middlewares/user";
 import { escape } from "querystring";
 import { promisify } from "util";
 const REDIS_HOST = process.env.REDIS_HOST;
 const REDIS_PORT = process.env.REDIS_PORT;
@Route("api/v1/org/pos/act")
@Tags("PosMasterAct")
@ -41,7 +37,6 @@ export class PosMasterActController extends Controller {
  private posMasterActRepository = AppDataSource.getRepository(PosMasterAct);
  private posMasterRepository = AppDataSource.getRepository(PosMaster);
  private actpositionRepository = AppDataSource.getRepository(ProfileActposition);
  private redis = require("redis");
  /**
   * API เพิ่มรักษาการในตำแหน่ง
@ -97,6 +92,7 @@ export class PosMasterActController extends Controller {
    return new HttpSuccess(posMasterAct);
  }
  /**
   * API ค้นหาตำแหน่งในระบบสมัครสอบ ขรก.
   *
@ -129,7 +125,9 @@ export class PosMasterActController extends Controller {
      throw new HttpError(HttpStatusCode.NOT_FOUND, "ไม่พบข้อมูลประเภทตำแหน่งนี้");
    }
-    let posId: any[] = posMasterMain.posMasterActs.map((x) => x.posMasterChildId);
+    let posId: any[] = posMasterMain.posMasterActs.map(
      (x) => x.posMasterChildId
    );
    posId.push(body.posmasterId);
    const query = await AppDataSource.getRepository(PosMaster)
@ -174,31 +172,31 @@ export class PosMasterActController extends Controller {
            posMasterMain.orgRootId == null
              ? "posMaster.orgRootId IS NULL"
              : "posMaster.orgRootId = :orgRootId",
-            { orgRootId: posMasterMain.orgRootId },
+            { orgRootId: posMasterMain.orgRootId }
          )
          .andWhere(
            posMasterMain.orgChild1Id == null
              ? "posMaster.orgChild1Id IS NULL"
              : "posMaster.orgChild1Id = :orgChild1Id",
-            { orgChild1Id: posMasterMain.orgChild1Id },
+            { orgChild1Id: posMasterMain.orgChild1Id }
          )
          .andWhere(
            posMasterMain.orgChild2Id == null
              ? "posMaster.orgChild2Id IS NULL"
              : "posMaster.orgChild2Id = :orgChild2Id",
-            { orgChild2Id: posMasterMain.orgChild2Id },
+            { orgChild2Id: posMasterMain.orgChild2Id }
          )
          .andWhere(
            posMasterMain.orgChild3Id == null
              ? "posMaster.orgChild3Id IS NULL"
              : "posMaster.orgChild3Id = :orgChild3Id",
-            { orgChild3Id: posMasterMain.orgChild3Id },
+            { orgChild3Id: posMasterMain.orgChild3Id }
          )
          .andWhere(
            posMasterMain.orgChild4Id == null
              ? "posMaster.orgChild4Id IS NULL"
              : "posMaster.orgChild4Id = :orgChild4Id",
-            { orgChild4Id: posMasterMain.orgChild4Id },
+            { orgChild4Id: posMasterMain.orgChild4Id }
          );
      }
    } else {
@ -212,7 +210,7 @@ export class PosMasterActController extends Controller {
        new Brackets((qb) => {
          qb.where(
            `CONCAT(current_holder.prefix, current_holder.firstName, ' ', current_holder.lastName) LIKE :keyword`,
-            { keyword: `%${keyword}%` },
+            { keyword: `%${keyword}%` }
          )
            .orWhere(`current_holder.citizenId LIKE :keyword`, {
              keyword: `%${keyword}%`,
@ -230,7 +228,7 @@ export class PosMasterActController extends Controller {
                ' ',
                posMaster.posMasterNo
              ) LIKE :keyword`,
-              { keyword: `%${keyword}%` },
+              { keyword: `%${keyword}%` }
            )
            .orWhere(`posLevel.posLevelName LIKE :keyword`, {
              keyword: `%${keyword}%`,
@ -240,8 +238,8 @@ export class PosMasterActController extends Controller {
            })
            .orWhere(`current_holder.position LIKE :keyword`, {
              keyword: `%${keyword}%`,
-            });
+            })
-        }),
+        })
      );
    }
@ -282,6 +280,7 @@ export class PosMasterActController extends Controller {
    return new HttpSuccess({ data: data, total });
  }
  /**
   * API ลบรักษาการในตำแหน่ง
   *
@ -296,7 +295,6 @@ export class PosMasterActController extends Controller {
      where: {
        id: id,
      },
      relations: ["posMasterChild", "posMasterChild.current_holder"],
    });
    try {
      result = await this.posMasterActRepository.delete({ id: id });
@ -321,22 +319,6 @@ export class PosMasterActController extends Controller {
        await this.posMasterActRepository.save(p);
      });
    }
    // ลบ Redis cache ของคนที่เป็น acting
    if (posMasterAct != null && posMasterAct.posMasterChild?.current_holderId) {
      const profileId = posMasterAct.posMasterChild.current_holderId;
      const redisClient = await this.redis.createClient({
        host: REDIS_HOST,
        port: REDIS_PORT,
      });
      const delAsync = promisify(redisClient.del).bind(redisClient);
      await delAsync("role_" + profileId);
      await delAsync("menu_" + profileId);
      redisClient.quit();
    }
    return new HttpSuccess();
  }
@ -708,12 +690,12 @@ export class PosMasterActController extends Controller {
          x.posMasterChild?.orgRoot?.orgRootShortName,
        ].find((name) => !!name) && x.posMasterChild?.posMasterNo
          ? `${[
-              x.posMasterChild?.orgChild4?.orgChild4ShortName,
+            x.posMasterChild?.orgChild4?.orgChild4ShortName,
-              x.posMasterChild?.orgChild3?.orgChild3ShortName,
+            x.posMasterChild?.orgChild3?.orgChild3ShortName,
-              x.posMasterChild?.orgChild2?.orgChild2ShortName,
+            x.posMasterChild?.orgChild2?.orgChild2ShortName,
-              x.posMasterChild?.orgChild1?.orgChild1ShortName,
+            x.posMasterChild?.orgChild1?.orgChild1ShortName,
-              x.posMasterChild?.orgRoot?.orgRootShortName,
+            x.posMasterChild?.orgRoot?.orgRootShortName,
-            ].find((name) => !!name)} ${x.posMasterChild.posMasterNo}`
+          ].find((name) => !!name)} ${x.posMasterChild.posMasterNo}`
          : x.posMasterChild?.posMasterNo || null;
      const orgShortNameAct =
        [
@ -786,9 +768,6 @@ export class PosMasterActController extends Controller {
      throw new HttpError(HttpStatusCode.NOT_FOUND, "ไม่พบข้อมูลรักษาการในตำแหน่งของหน่วยงานนี้");
    }
    // เก็บรวบรวม profileIds ทั้งหมดเพื่อ clear cache หลังจากบันทึกเสร็จ
    const profileIdsToClearCache = new Set<string>();
    await Promise.all(
      posMasterActs.map(async (posMasterAct) => {
        const orgShortName =
@ -803,8 +782,6 @@ export class PosMasterActController extends Controller {
        const profileId = posMasterAct.posMasterChild?.current_holderId;
        if (profileId) {
          profileIdsToClearCache.add(profileId);
          const existingActivePositions = await this.actpositionRepository.find({
            select: [
              "id",
@ -813,7 +790,7 @@ export class PosMasterActController extends Controller {
              "lastUpdateFullName",
              "lastUpdatedAt",
              "dateEnd",
-              "isDeleted",
+              "isDeleted"
            ],
            where: { profileId, status: true, isDeleted: false },
          });
@ -857,24 +834,6 @@ export class PosMasterActController extends Controller {
      }),
    );
    // Clear Redis cache หลังจากบันทึกข้อมูลเสร็จแล้ว
    // ทำงานนอก loop เพื่อ clear รอบเดียว ไม่ใช่ทุก iteration
    if (profileIdsToClearCache.size > 0) {
      await Promise.all(
        Array.from(profileIdsToClearCache).map(async (profileId) => {
          const redisClient = await this.redis.createClient({
            host: REDIS_HOST,
            port: REDIS_PORT,
          });
          const delAsync = promisify(redisClient.del).bind(redisClient);
          await delAsync("role_" + profileId);
          await delAsync("menu_" + profileId);
          redisClient.quit();
        }),
      );
    }
    return new HttpSuccess();
  }
 }
--- a/src/controllers/PositionController.ts
+++ b/src/controllers/PositionController.ts
@ -39,7 +39,6 @@ import { AuthRole } from "../entities/AuthRole";
 import { RequestWithUser } from "../middlewares/user";
 import permission from "../interfaces/permission";
 import { resolveNodeLevel, setLogDataDiff } from "../interfaces/utils";
 import { getPosMasterNo, getOrgFullName } from "../utils/org-formatting";
 import { PosMasterAssign } from "../entities/PosMasterAssign";
 import { Assign } from "../entities/Assign";
 import { ProfileEmployee } from "../entities/ProfileEmployee";
@ -1257,15 +1256,7 @@ export class PositionController extends Controller {
  ) {
    await new permission().PermissionUpdate(request, "SYS_ORG");
    const posMaster = await this.posMasterRepository.findOne({
-      relations: [
+      relations: ["positions", "orgRevision"],
        "positions",
        "orgRevision",
        "orgRoot",
        "orgChild1",
        "orgChild2",
        "orgChild3",
        "orgChild4",
      ],
      where: { id: id },
    });
    if (!posMaster) {
@ -1460,24 +1451,10 @@ export class PositionController extends Controller {
      }),
    );
    // อัพเดท org และ posMasterNo ตลอดไม่ต้องดัก isSit
    if (posMaster.orgRevision?.orgRevisionIsCurrent == true && posMaster.current_holderId) {
      const _profile = await this.profileRepository.findOne({
        where: { id: posMaster.current_holderId },
      });
      if (_profile) {
        _profile.posMasterNo = getPosMasterNo(posMaster);
        _profile.org = getOrgFullName(posMaster);
        await this.profileRepository.save(_profile);
      }
    }
    // ถ้าไม่ใช่ตำแหน่งนั่งทับ (isSit = false) ถึงจะอัพเดทตำแหน่งในทะเบียนประวัติ
    if (posMaster.orgRevision?.orgRevisionIsCurrent == true && !posMaster.isSit) {
      const _position = requestBody.positions.find((p) => p.positionIsSelected == true);
      if (_position) {
        const _posExecutive = _position.posExecutiveId
          ? await this.posExecutiveRepository.findOne({ where: { id: _position.posExecutiveId } })
          : null;
        const current_holderId: any = posMaster.current_holderId;
        const _profile = await this.profileRepository.findOne({
          where: { id: current_holderId },
@ -1486,10 +1463,6 @@ export class PositionController extends Controller {
          _profile.position = _position.posDictName ?? _null;
          _profile.posTypeId = _position.posTypeId;
          _profile.posLevelId = _position.posLevelId;
          _profile.positionField = _position.posDictField ?? _null;
          _profile.posExecutive = _posExecutive?.posExecutiveName ?? _null;
          _profile.positionArea = _position.posDictArea ?? _null;
          _profile.positionExecutiveField = _position.posDictExecutiveField ?? _null;
          await this.profileRepository.save(_profile);
        }
      }
@ -2154,11 +2127,11 @@ export class PositionController extends Controller {
    let checkChildConditions: any = {};
    let keywordAsInt: any;
    let searchShortName = "1=1";
-    let searchShortName0 = `CONCAT_WS(" ",orgRoot.orgRootShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName0 = `CONCAT(orgRoot.orgRootShortName," ",posMaster.posMasterNo)`;
-    let searchShortName1 = `CONCAT_WS(" ",orgChild1.orgChild1ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName1 = `CONCAT(orgChild1.orgChild1ShortName," ",posMaster.posMasterNo)`;
-    let searchShortName2 = `CONCAT_WS(" ",orgChild2.orgChild2ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName2 = `CONCAT(orgChild2.orgChild2ShortName," ",posMaster.posMasterNo)`;
-    let searchShortName3 = `CONCAT_WS(" ",orgChild3.orgChild3ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName3 = `CONCAT(orgChild3.orgChild3ShortName," ",posMaster.posMasterNo)`;
-    let searchShortName4 = `CONCAT_WS(" ",orgChild4.orgChild4ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix)`;
+    let searchShortName4 = `CONCAT(orgChild4.orgChild4ShortName," ",posMaster.posMasterNo)`;
    let _data = await new permission().PermissionOrgList(request, "SYS_ORG");
    if (body.type === 0) {
      typeCondition = {
@ -2168,7 +2141,7 @@ export class PositionController extends Controller {
        checkChildConditions = {
          orgChild1Id: IsNull(),
        };
-        searchShortName = `CONCAT_WS(" ",orgRoot.orgRootShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgRoot.orgRootShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
      }
    } else if (body.type === 1) {
      typeCondition = {
@ -2178,7 +2151,7 @@ export class PositionController extends Controller {
        checkChildConditions = {
          orgChild2Id: IsNull(),
        };
-        searchShortName = `CONCAT_WS(" ",orgChild1.orgChild1ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild1.orgChild1ShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
      }
    } else if (body.type === 2) {
      typeCondition = {
@ -2188,7 +2161,7 @@ export class PositionController extends Controller {
        checkChildConditions = {
          orgChild3Id: IsNull(),
        };
-        searchShortName = `CONCAT_WS(" ",orgChild2.orgChild2ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild2.orgChild2ShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
      }
    } else if (body.type === 3) {
      typeCondition = {
@ -2198,13 +2171,13 @@ export class PositionController extends Controller {
        checkChildConditions = {
          orgChild4Id: IsNull(),
        };
-        searchShortName = `CONCAT_WS(" ",orgChild3.orgChild3ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild3.orgChild3ShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
      }
    } else if (body.type === 4) {
      typeCondition = {
        orgChild4Id: body.id,
      };
-      searchShortName = `CONCAT_WS(" ",orgChild4.orgChild4ShortName,posMaster.posMasterNoPrefix,posMaster.posMasterNo,posMaster.posMasterNoSuffix) like '%${body.keyword}%'`;
+      searchShortName = `CONCAT(orgChild4.orgChild4ShortName," ",posMaster.posMasterNo) like '%${body.keyword}%'`;
    }
    let findPosition: any;
    let masterId = new Array();
@ -2414,16 +2387,16 @@ export class PositionController extends Controller {
            ? "posMaster.orgRootId IN (:...root)"
            : "posMaster.orgRootId is null"
          : "1=1",
-        { root: _data.root },
+        { root: _data.root }
      )
      .andWhere(
        _data.child1 != undefined && _data.child1 != null
          ? _data.child1[0] != null
            ? "posMaster.orgChild1Id IN (:...child1)"
-            : // : `posMaster.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
+            // : `posMaster.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
-              `posMaster.orgChild1Id is null`
+            : `posMaster.orgChild1Id is null`
          : "1=1",
-        { child1: _data.child1 },
+        { child1: _data.child1 }
      )
      .andWhere(
        _data.child2 != undefined && _data.child2 != null
@ -2454,27 +2427,26 @@ export class PositionController extends Controller {
        {
          child4: _data.child4,
        },
-      );
+      )
    // .andWhere(checkChildConditions)
    // .andWhere(typeCondition)
    // .andWhere(revisionCondition);
    if (body.keyword != null && body.keyword != "") {
-      query
+      query.orWhere(
-        .orWhere(
+        new Brackets((qb) => {
-          new Brackets((qb) => {
+          qb.andWhere(
-            qb.andWhere(
+            body.keyword != null && body.keyword != ""
-              body.keyword != null && body.keyword != ""
+              ? body.isAll == false
-                ? body.isAll == false
+                ? searchShortName
-                  ? searchShortName
+                : `CASE WHEN posMaster.orgChild1 is null THEN ${searchShortName0} WHEN posMaster.orgChild2 is null THEN ${searchShortName1} WHEN posMaster.orgChild3 is null THEN ${searchShortName2} WHEN posMaster.orgChild4 is null THEN ${searchShortName3} ELSE ${searchShortName4} END LIKE '%${body.keyword}%'`
-                  : `CASE WHEN posMaster.orgChild1 is null THEN ${searchShortName0} WHEN posMaster.orgChild2 is null THEN ${searchShortName1} WHEN posMaster.orgChild3 is null THEN ${searchShortName2} WHEN posMaster.orgChild4 is null THEN ${searchShortName3} ELSE ${searchShortName4} END LIKE '%${body.keyword}%'`
+              : "1=1",
-                : "1=1",
+          )
-            )
+            .andWhere(checkChildConditions)
-              .andWhere(checkChildConditions)
+            .andWhere(typeCondition)
-              .andWhere(typeCondition)
+            .andWhere(revisionCondition);
-              .andWhere(revisionCondition);
+        }),
-          }),
+      )
        )
        .orWhere(
          new Brackets((qb) => {
            qb.andWhere(
@ -2760,19 +2732,7 @@ export class PositionController extends Controller {
          id: data.id,
          posMasterOrder: requestBody.sortId.indexOf(data.id) + 1,
        }));
-        // Bulk update using CASE WHEN instead of save() per row
+        await this.posMasterRepository.save(sortData_0, { data: request });
        const caseClauses_0 = sortData_0
          .map((d) => `WHEN '${d.id}' THEN ${d.posMasterOrder}`)
          .join(" ");
        const ids_0 = sortData_0.map((d) => `'${d.id}'`).join(",");
        await this.posMasterRepository
          .createQueryBuilder()
          .update(PosMaster)
          .set({
            posMasterOrder: () => `CASE id ${caseClauses_0} END`,
          })
          .where(`id IN (${ids_0})`)
          .execute();
        setLogDataDiff(request, { before, after: sortData_0 });
        break;
      }
@ -2801,19 +2761,7 @@ export class PositionController extends Controller {
          id: data.id,
          posMasterOrder: requestBody.sortId.indexOf(data.id) + 1,
        }));
-        // Bulk update using CASE WHEN instead of save() per row
+        await this.posMasterRepository.save(sortData_1, { data: request });
        const caseClauses_1 = sortData_1
          .map((d) => `WHEN '${d.id}' THEN ${d.posMasterOrder}`)
          .join(" ");
        const ids_1 = sortData_1.map((d) => `'${d.id}'`).join(",");
        await this.posMasterRepository
          .createQueryBuilder()
          .update(PosMaster)
          .set({
            posMasterOrder: () => `CASE id ${caseClauses_1} END`,
          })
          .where(`id IN (${ids_1})`)
          .execute();
        setLogDataDiff(request, { before, after: sortData_1 });
        break;
      }
@ -2842,19 +2790,7 @@ export class PositionController extends Controller {
          id: data.id,
          posMasterOrder: requestBody.sortId.indexOf(data.id) + 1,
        }));
-        // Bulk update using CASE WHEN instead of save() per row
+        await this.posMasterRepository.save(sortData_2, { data: request });
        const caseClauses_2 = sortData_2
          .map((d) => `WHEN '${d.id}' THEN ${d.posMasterOrder}`)
          .join(" ");
        const ids_2 = sortData_2.map((d) => `'${d.id}'`).join(",");
        await this.posMasterRepository
          .createQueryBuilder()
          .update(PosMaster)
          .set({
            posMasterOrder: () => `CASE id ${caseClauses_2} END`,
          })
          .where(`id IN (${ids_2})`)
          .execute();
        setLogDataDiff(request, { before, after: sortData_2 });
        break;
      }
@ -2883,19 +2819,7 @@ export class PositionController extends Controller {
          id: data.id,
          posMasterOrder: requestBody.sortId.indexOf(data.id) + 1,
        }));
-        // Bulk update using CASE WHEN instead of save() per row
+        await this.posMasterRepository.save(sortData_3, { data: request });
        const caseClauses_3 = sortData_3
          .map((d) => `WHEN '${d.id}' THEN ${d.posMasterOrder}`)
          .join(" ");
        const ids_3 = sortData_3.map((d) => `'${d.id}'`).join(",");
        await this.posMasterRepository
          .createQueryBuilder()
          .update(PosMaster)
          .set({
            posMasterOrder: () => `CASE id ${caseClauses_3} END`,
          })
          .where(`id IN (${ids_3})`)
          .execute();
        setLogDataDiff(request, { before, after: sortData_3 });
        break;
      }
@ -2924,19 +2848,7 @@ export class PositionController extends Controller {
          id: data.id,
          posMasterOrder: requestBody.sortId.indexOf(data.id) + 1,
        }));
-        // Bulk update using CASE WHEN instead of save() per row
+        await this.posMasterRepository.save(sortData_4, { data: request });
        const caseClauses_4 = sortData_4
          .map((d) => `WHEN '${d.id}' THEN ${d.posMasterOrder}`)
          .join(" ");
        const ids_4 = sortData_4.map((d) => `'${d.id}'`).join(",");
        await this.posMasterRepository
          .createQueryBuilder()
          .update(PosMaster)
          .set({
            posMasterOrder: () => `CASE id ${caseClauses_4} END`,
          })
          .where(`id IN (${ids_4})`)
          .execute();
        setLogDataDiff(request, { before, after: sortData_4 });
        break;
      }
@ -3043,50 +2955,50 @@ export class PositionController extends Controller {
    const type0LastPosMasterNo =
      requestBody.type == 0
        ? await this.posMasterRepository.find({
-            where: {
+          where: {
-              orgRootId: requestBody.id,
+            orgRootId: requestBody.id,
-              orgChild1Id: IsNull(),
+            orgChild1Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type1LastPosMasterNo =
      requestBody.type == 1
        ? await this.posMasterRepository.find({
-            where: {
+          where: {
-              orgChild1Id: requestBody.id,
+            orgChild1Id: requestBody.id,
-              orgChild2Id: IsNull(),
+            orgChild2Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type2LastPosMasterNo =
      requestBody.type == 2
        ? await this.posMasterRepository.find({
-            where: {
+          where: {
-              orgChild2Id: requestBody.id,
+            orgChild2Id: requestBody.id,
-              orgChild3Id: IsNull(),
+            orgChild3Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type3LastPosMasterNo =
      requestBody.type == 3
        ? await this.posMasterRepository.find({
-            where: {
+          where: {
-              orgChild3Id: requestBody.id,
+            orgChild3Id: requestBody.id,
-              orgChild4Id: IsNull(),
+            orgChild4Id: IsNull(),
-            },
+          },
-          })
+        })
        : [];
    const type4LastPosMasterNo =
      requestBody.type == 4
        ? await this.posMasterRepository.find({
-            where: {
+          where: {
-              orgChild4Id: requestBody.id,
+            orgChild4Id: requestBody.id,
-            },
+          },
-          })
+        })
        : [];
    const allLastPosMasterNo = [
@ -3415,52 +3327,6 @@ export class PositionController extends Controller {
          posMaster.lastUpdatedAt = new Date();
          await this.posMasterRepository.save(posMaster, { data: request });
          setLogDataDiff(request, { before, after: posMaster });
          // อัพเดท org และ posMasterNo ใน profile ตลอดไม่ต้องดัก isSit
          if (posMaster.current_holderId) {
            const orgRevision = await this.orgRevisionRepository.findOne({
              where: { id: posMaster.orgRevisionId },
            });
            if (orgRevision?.orgRevisionIsCurrent) {
              const pmWithOrg = await this.posMasterRepository.findOne({
                where: { id: posMaster.id },
                relations: [
                  "orgRoot",
                  "orgChild1",
                  "orgChild2",
                  "orgChild3",
                  "orgChild4",
                  "positions",
                  "positions.posExecutive",
                ],
              });
              const _profile = await this.profileRepository.findOne({
                where: { id: posMaster.current_holderId },
              });
              if (_profile && pmWithOrg) {
                const _null: any = null;
                _profile.posMasterNo = getPosMasterNo(pmWithOrg) ?? _null;
                _profile.org = getOrgFullName(pmWithOrg) ?? _null;
                // ถ้าไม่ใช่ตำแหน่งนั่งทับ (isSit = false) ถึงจะอัพเดทตำแหน่งในทะเบียนประวัติ
                if (!pmWithOrg.isSit) {
                  const selectedPos = (pmWithOrg as any).positions?.find(
                    (p: any) => p.positionIsSelected === true,
                  );
                  if (selectedPos) {
                    _profile.position = selectedPos.positionName ?? _null;
                    _profile.posTypeId = selectedPos.posTypeId ?? _null;
                    _profile.posLevelId = selectedPos.posLevelId ?? _null;
                    _profile.positionField = selectedPos.positionField ?? _null;
                    _profile.posExecutive =
                      (selectedPos as any).posExecutive?.posExecutiveName ?? _null;
                    _profile.positionArea = selectedPos.positionArea ?? _null;
                    _profile.positionExecutiveField = selectedPos.positionExecutiveField ?? _null;
                  }
                }
                await this.profileRepository.save(_profile);
              }
            }
          }
        }
      }),
    );
@ -3927,7 +3793,7 @@ export class PositionController extends Controller {
    await new permission().PermissionUpdate(request, "SYS_ORG");
    const dataMaster = await this.posMasterRepository.findOne({
      where: { id: requestBody.posMaster },
-      relations: ["positions", "orgRoot", "orgChild1", "orgChild2", "orgChild3", "orgChild4"],
+      relations: ["positions"],
    });
    if (!dataMaster) {
      throw new HttpError(HttpStatusCode.NOT_FOUND, "ไม่พบข้อมูลตำแหน่งนี้");
@ -3959,24 +3825,16 @@ export class PositionController extends Controller {
      if (_profile) {
        let _position = await this.positionRepository.findOne({
          where: { id: requestBody.position, posMasterId: requestBody.posMaster },
          relations: ["posExecutive"],
        });
        if (_position) {
          // อัพเดท org และ posMasterNo ตลอดไม่ต้องดัก isSit
          _profile.posMasterNo = getPosMasterNo(dataMaster);
          _profile.org = getOrgFullName(dataMaster);
          // ถ้าไม่ใช่ตำแหน่งนั่งทับ (isSit = false) ถึงจะอัพเดทตำแหน่งในทะเบียนประวัติ
-          if (!dataMaster.isSit) {
+          if(!dataMaster.isSit){
            _profile.position = _position.positionName;
            _profile.posTypeId = _position.posTypeId;
            _profile.posLevelId = _position.posLevelId;
-            _profile.positionField = _position.positionField ?? _null;
+            await this.profileRepository.save(_profile);
-            _profile.posExecutive = _position.posExecutive?.posExecutiveName ?? _null;
+            setLogDataDiff(request, { before, after: _profile });
            _profile.positionArea = _position.positionArea ?? _null;
            _profile.positionExecutiveField = _position.positionExecutiveField ?? _null;
          }
          await this.profileRepository.save(_profile);
          setLogDataDiff(request, { before, after: _profile });
        }
      }
      dataMaster.current_holderId = requestBody.profileId;
@ -4003,7 +3861,7 @@ export class PositionController extends Controller {
   */
  @Post("profile/delete/{id}")
  async deleteHolder(@Path() id: string, @Request() request: RequestWithUser) {
-    await new permission().PermissionUpdate(request, "SYS_ORG");
+    await new permission().PermissionDelete(request, "SYS_ORG");
    const dataMaster = await this.posMasterRepository.findOne({
      where: { id: id },
      relations: ["positions", "orgRevision"],
@ -5311,9 +5169,9 @@ export class PositionController extends Controller {
  }
  /**
-   * API รายการตำแหน่งติดเงื่อนไข
+   * API รายการอัตรากำลัง
   *
-   * @summary รายการตำแหน่งติดเงื่อนไข
+   * @summary ORG_070 - รายการอัตรากำลัง (ADMIN) #56
   *
   */
  @Post("master/position-condition")
@ -5324,7 +5182,7 @@ export class PositionController extends Controller {
      id: string;
      revisionId: string;
      type: number;
-      isAll: boolean; // true คือเลือกเฉพาะตำแหน่งติดเงื่อนไข / false คือเลือกตำแหน่งทั้งหมด
+      isAll: boolean;
      page: number;
      pageSize: number;
      keyword?: string;
@ -5344,7 +5202,7 @@ export class PositionController extends Controller {
    let level: any = resolveNodeLevel(orgDna);
    const cannotViewRootPosMaster =
-      _data.privilege === "PARENT" ||
+      (_data.privilege === "PARENT") ||
      (_data.privilege === "BROTHER" && level > 1) ||
      (_data.privilege === "CHILD" && level > 0) ||
      (_data.privilege === "NORMAL" && level != 0);
@ -5376,46 +5234,46 @@ export class PositionController extends Controller {
      typeCondition = {
        ...(cannotViewRootPosMaster ? { orgRootId: null } : { orgRootId: body.id }),
      };
-      // if (!body.isAll) {
+      if (!body.isAll) {
-      //   checkChildConditions = {
+        checkChildConditions = {
-      //     orgChild1Id: IsNull(),
+          orgChild1Id: IsNull(),
-      //   };
+        };
-      //   searchShortName = `CONCAT(orgRoot.orgRootShortName," ",COALESCE(posMaster.posMasterNoPrefix, ""),posMaster.posMasterNo,COALESCE(posMaster.posMasterNoSuffix, "")) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgRoot.orgRootShortName," ",COALESCE(posMaster.posMasterNoPrefix, ""),posMaster.posMasterNo,COALESCE(posMaster.posMasterNoSuffix, "")) like '%${body.keyword}%'`;
-      // } else {
+      } else {
-      // }
+      }
    } else if (body.type === 1) {
      typeCondition = {
        ...(cannotViewChild1PosMaster ? { orgChild1Id: null } : { orgChild1Id: body.id }),
      };
-      // if (!body.isAll) {
+      if (!body.isAll) {
-      //   checkChildConditions = {
+        checkChildConditions = {
-      //     orgChild2Id: IsNull(),
+          orgChild2Id: IsNull(),
-      //   };
+        };
-      //   searchShortName = `CONCAT(orgChild1.orgChild1ShortName," ",COALESCE(posMaster.posMasterNoPrefix, ""),posMaster.posMasterNo,COALESCE(posMaster.posMasterNoSuffix, "")) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild1.orgChild1ShortName," ",COALESCE(posMaster.posMasterNoPrefix, ""),posMaster.posMasterNo,COALESCE(posMaster.posMasterNoSuffix, "")) like '%${body.keyword}%'`;
-      // } else {
+      } else {
-      // }
+      }
    } else if (body.type === 2) {
      typeCondition = {
        ...(cannotViewChild2PosMaster ? { orgChild2Id: null } : { orgChild2Id: body.id }),
      };
-      // if (!body.isAll) {
+      if (!body.isAll) {
-      //   checkChildConditions = {
+        checkChildConditions = {
-      //     orgChild3Id: IsNull(),
+          orgChild3Id: IsNull(),
-      //   };
+        };
-      //   searchShortName = `CONCAT(orgChild2.orgChild2ShortName," ",COALESCE(posMaster.posMasterNoPrefix, ""),posMaster.posMasterNo,COALESCE(posMaster.posMasterNoSuffix, "")) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild2.orgChild2ShortName," ",COALESCE(posMaster.posMasterNoPrefix, ""),posMaster.posMasterNo,COALESCE(posMaster.posMasterNoSuffix, "")) like '%${body.keyword}%'`;
-      // } else {
+      } else {
-      // }
+      }
    } else if (body.type === 3) {
      typeCondition = {
        ...(cannotViewChild3PosMaster ? { orgChild3Id: null } : { orgChild3Id: body.id }),
      };
-      // if (!body.isAll) {
+      if (!body.isAll) {
-      //   checkChildConditions = {
+        checkChildConditions = {
-      //     orgChild4Id: IsNull(),
+          orgChild4Id: IsNull(),
-      //   };
+        };
-      //   searchShortName = `CONCAT(orgChild3.orgChild3ShortName," ",COALESCE(posMaster.posMasterNoPrefix, ""),posMaster.posMasterNo,COALESCE(posMaster.posMasterNoSuffix, "")) like '%${body.keyword}%'`;
+        searchShortName = `CONCAT(orgChild3.orgChild3ShortName," ",COALESCE(posMaster.posMasterNoPrefix, ""),posMaster.posMasterNo,COALESCE(posMaster.posMasterNoSuffix, "")) like '%${body.keyword}%'`;
-      // } else {
+      } else {
-      // }
+      }
    } else if (body.type === 4) {
      typeCondition = {
        ...(cannotViewChild4PosMaster ? { orgChild4Id: null } : { orgChild4Id: body.id }),
@ -5488,7 +5346,7 @@ export class PositionController extends Controller {
          (masterId.length > 0
            ? { id: In(masterId) }
            : { posMasterNo: Like(`%${body.keyword}%`) })),
-        ...(!body.isAll && { isCondition: true }),
+        current_holderId: IsNull(),
      },
    ];
    let [posMaster, total] = await AppDataSource.getRepository(PosMaster)
@ -5557,15 +5415,15 @@ export class PositionController extends Controller {
        new Brackets((qb) => {
          qb.andWhere(
            body.keyword != null && body.keyword != ""
-              ? `CASE WHEN posMaster.orgChild1 is null THEN ${searchShortName0} WHEN posMaster.orgChild2 is null THEN ${searchShortName1} WHEN posMaster.orgChild3 is null THEN ${searchShortName2} WHEN posMaster.orgChild4 is null THEN ${searchShortName3} ELSE ${searchShortName4} END LIKE '%${body.keyword}%'`
+              ? body.isAll == false
                ? searchShortName
                : `CASE WHEN posMaster.orgChild1 is null THEN ${searchShortName0} WHEN posMaster.orgChild2 is null THEN ${searchShortName1} WHEN posMaster.orgChild3 is null THEN ${searchShortName2} WHEN posMaster.orgChild4 is null THEN ${searchShortName3} ELSE ${searchShortName4} END LIKE '%${body.keyword}%'`
              : "1=1",
          )
            .andWhere(checkChildConditions)
            .andWhere(typeCondition)
-            .andWhere(revisionCondition);
+            .andWhere(revisionCondition)
-          if (!body.isAll) {
+            .andWhere({ current_holderId: IsNull() });
            qb.andWhere({ isCondition: true });
          }
        }),
      )
      .orWhere(
@ -5575,10 +5433,8 @@ export class PositionController extends Controller {
          )
            .andWhere(checkChildConditions)
            .andWhere(typeCondition)
-            .andWhere(revisionCondition);
+            .andWhere(revisionCondition)
-          if (!body.isAll) {
+            .andWhere({ current_holderId: IsNull() });
            qb.andWhere({ isCondition: true });
          }
        }),
      )
      .orderBy("orgRoot.orgRootOrder", "ASC")
--- a/src/controllers/ProfileController.ts
+++ b/src/controllers/ProfileController.ts
--- a/src/controllers/ProfileEmployeeController.ts
+++ b/src/controllers/ProfileEmployeeController.ts
@ -81,8 +81,9 @@ import { ProfileAssistance } from "../entities/ProfileAssistance";
 import { ProfileChangeName } from "../entities/ProfileChangeName";
 import { ProfileChildren } from "../entities/ProfileChildren";
 import { ProfileDuty } from "../entities/ProfileDuty";
-import { CreatePosMasterHistoryEmployee, getTopDegrees } from "../services/PositionService";
+import { getTopDegrees } from "../services/PositionService";
 import { ProfileLeaveService } from "../services/ProfileLeaveService";
 import { PostRetireToExprofile } from "./ExRetirementController";
 import { CommandCode } from "../entities/CommandCode";
@Route("api/v1/org/profile-employee")
@Tags("ProfileEmployee")
@ -1949,84 +1950,35 @@ export class ProfileEmployeeController extends Controller {
    // ประวัติพ้นจากราชการ
    let retires = [];
    const currentDate = new Date();
    // todo: รอข้อสรุป
    // const retire_raw = await this.salaryRepo.findOne({
    //   where: {
    //     profileEmployeeId: id,
    //     commandCode: In(["12", "15", "16"]),
    //   },
    //   order: { order: "desc" },
    // });
-    // commandCode ที่ถือว่าออกจากราชการ
+    // if (retire_raw) {
-    const retireCommandCodes = ["12", "15", "16"];
+    //   const startDate = retire_raw.commandDateAffect;
-    // ดึงข้อมูล profileSalary ทั้งหมดเพื่อหาประวัติพ้นจากราชการ
+    //   // คำนวณจำนวนวันจากวันพ้นสภาพถึงปัจจุบัน
-    const salaries = await this.salaryRepo.find({
+    //   let daysCount = 0;
-      where: { profileEmployeeId: id },
+    //   if (startDate) {
-      order: { order: "ASC" },
+    //     const start = new Date(startDate);
-    });
+    //     daysCount = Math.ceil((currentDate.getTime() - start.getTime()) / (1000 * 60 * 60 * 24));
    //   }
-    // มีคำสั่งพ้นราชการหรือไม่
+    //   const startDateStr = startDate
-    if (
+    //     ? Extension.ToThaiNumber(Extension.ToThaiFullDate2(startDate))
-      salaries.length > 0 &&
+    //     : "-";
      salaries.some((s) => s.commandCode && retireCommandCodes.includes(s.commandCode))
    ) {
      // กรองข้อมูลซ้ำตาม commandDateAffect
      const uniqueSalaries = salaries.filter(
        (item, index, self) =>
          index ===
          self.findIndex(
            (t) => t.commandDateAffect?.getTime() === item.commandDateAffect?.getTime(),
          ),
      );
-      // วนลูปหาคู่ของ "ออกราชการ" และ "กลับเข้าราชการ"
+    //   retires.push({
-      for (let i = 0; i < uniqueSalaries.length; i++) {
+    //     date: `${startDateStr} - ปัจจุบัน`,
-        const current = uniqueSalaries[i];
+    //     detail: retire_raw.commandName ?? "-",
-
+    //     day: daysCount > 0 ? Extension.ToThaiNumber(daysCount.toLocaleString()) : "-"
-        // เป็นคำสั่งออกจากราชการหรือไม่
+    //   });
-        if (current.commandCode && retireCommandCodes.includes(current.commandCode)) {
+    // }
          const startDate = current.commandDateAffect;
          let endDate: Date | null = null;
          let endRecord = null;
          // หาคำสั่งถัดไปที่ไม่ใช่การออกจากราชการ (ถือว่ากลับเข้าราชการ)
          for (let j = i + 1; j < uniqueSalaries.length; j++) {
            const next = uniqueSalaries[j];
            if (next.commandCode && !retireCommandCodes.includes(next.commandCode)) {
              endDate = next.commandDateAffect;
              endRecord = next;
              break;
            }
          }
          // ถ้าไม่เจอคำสั่งกลับเข้า ให้ใช้วันปัจจุบัน
          if (!endDate) {
            endDate = currentDate;
          }
          // คำนวณจำนวนวัน
          let daysCount = 0;
          if (startDate && endDate) {
            const start = new Date(startDate);
            const end = new Date(endDate);
            daysCount = Math.ceil((end.getTime() - start.getTime()) / (1000 * 60 * 60 * 24));
          }
          // สร้าง detail จาก commandName + remark
          const commandName = current.commandName || "";
          const remark = current.remark || "";
          const detail = `${commandName} ${remark}`.trim();
          // แปลงวันที่เป็น format ไทย
          const startDateStr = startDate
            ? Extension.ToThaiNumber(Extension.ToThaiFullDate2(startDate))
            : "-";
          const endDateStr = endDate
            ? Extension.ToThaiNumber(Extension.ToThaiFullDate2(endDate))
            : "-";
          retires.push({
            date: `${startDateStr} - ${endDateStr}`,
            detail: detail || "-",
            day: daysCount > 0 ? Extension.ToThaiNumber(daysCount.toLocaleString()) : "-",
          });
        }
      }
    }
    // กรณีไม่มีข้อมูล
    if (retires.length === 0) {
@ -2853,11 +2805,11 @@ export class ProfileEmployeeController extends Controller {
    } else if (searchField == "posNo") {
      queryLike = `
      CASE 
-        WHEN current_holders.orgChild4Id IS NOT NULL THEN CONCAT_WS(" ", orgChild4.orgChild4ShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        WHEN current_holders.orgChild4Id IS NOT NULL THEN CONCAT(orgChild4.orgChild4ShortName, " ", current_holders.posMasterNo)
-        WHEN current_holders.orgChild3Id IS NOT NULL THEN CONCAT_WS(" ", orgChild3.orgChild3ShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        WHEN current_holders.orgChild3Id IS NOT NULL THEN CONCAT(orgChild3.orgChild3ShortName, " ", current_holders.posMasterNo)
-        WHEN current_holders.orgChild2Id IS NOT NULL THEN CONCAT_WS(" ", orgChild2.orgChild2ShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        WHEN current_holders.orgChild2Id IS NOT NULL THEN CONCAT(orgChild2.orgChild2ShortName, " ", current_holders.posMasterNo)
-        WHEN current_holders.orgChild1Id IS NOT NULL THEN CONCAT_WS(" ", orgChild1.orgChild1ShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        WHEN current_holders.orgChild1Id IS NOT NULL THEN CONCAT(orgChild1.orgChild1ShortName, " ", current_holders.posMasterNo)
-        ELSE CONCAT_WS(" ", orgRoot.orgRootShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        ELSE CONCAT(orgRoot.orgRootShortName, " ", current_holders.posMasterNo)
      END LIKE :keyword
    `;
    }
@ -3212,11 +3164,11 @@ export class ProfileEmployeeController extends Controller {
    } else if (searchField == "posNo") {
      queryLike = `
      CASE 
-        WHEN current_holders.orgChild4Id IS NOT NULL THEN CONCAT_WS(" ", orgChild4.orgChild4ShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        WHEN current_holders.orgChild4Id IS NOT NULL THEN CONCAT(orgChild4.orgChild4ShortName, " ", current_holders.posMasterNo)
-        WHEN current_holders.orgChild3Id IS NOT NULL THEN CONCAT_WS(" ", orgChild3.orgChild3ShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        WHEN current_holders.orgChild3Id IS NOT NULL THEN CONCAT(orgChild3.orgChild3ShortName, " ", current_holders.posMasterNo)
-        WHEN current_holders.orgChild2Id IS NOT NULL THEN CONCAT_WS(" ", orgChild2.orgChild2ShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        WHEN current_holders.orgChild2Id IS NOT NULL THEN CONCAT(orgChild2.orgChild2ShortName, " ", current_holders.posMasterNo)
-        WHEN current_holders.orgChild1Id IS NOT NULL THEN CONCAT_WS(" ", orgChild1.orgChild1ShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        WHEN current_holders.orgChild1Id IS NOT NULL THEN CONCAT(orgChild1.orgChild1ShortName, " ", current_holders.posMasterNo)
-        ELSE CONCAT_WS(" ", orgRoot.orgRootShortName, current_holders.posMasterNoPrefix, current_holders.posMasterNo, current_holders.posMasterNoSuffix)
+        ELSE CONCAT(orgRoot.orgRootShortName, " ", current_holders.posMasterNo)
      END LIKE :keyword
    `;
    }
@ -3368,21 +3320,31 @@ export class ProfileEmployeeController extends Controller {
      .getManyAndCount();
    const data = await Promise.all(
      record.map((_data) => {
-        const holder = _data.current_holders.find((x) => x.orgRevisionId == findRevision.id);
+        const shortName =
-        const numPart = holder ? [holder.posMasterNoPrefix, holder.posMasterNo, holder.posMasterNoSuffix].filter((p) => p !== null && p !== undefined && p !== '').join(' ') : '';
+          _data.current_holders.length == 0
-        const shortName = !holder
+            ? null
-          ? null
+            : _data.current_holders.find((x) => x.orgRevisionId == findRevision.id) != null &&
-          : holder.orgChild4 != null
+                _data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.orgChild4 !=
-            ? `${holder.orgChild4.orgChild4ShortName} ${numPart}`
+                  null
-            : holder.orgChild3 != null
+              ? `${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.orgChild4.orgChild4ShortName} ${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.posMasterNo}`
-              ? `${holder.orgChild3.orgChild3ShortName} ${numPart}`
+              : _data.current_holders.find((x) => x.orgRevisionId == findRevision.id) != null &&
-              : holder.orgChild2 != null
+                  _data.current_holders.find((x) => x.orgRevisionId == findRevision.id)
-                ? `${holder.orgChild2.orgChild2ShortName} ${numPart}`
+                    ?.orgChild3 != null
-                : holder.orgChild1 != null
+                ? `${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.orgChild3.orgChild3ShortName} ${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.posMasterNo}`
-                  ? `${holder.orgChild1.orgChild1ShortName} ${numPart}`
+                : _data.current_holders.find((x) => x.orgRevisionId == findRevision.id) != null &&
-                  : holder.orgRoot != null
+                    _data.current_holders.find((x) => x.orgRevisionId == findRevision.id)
-                    ? `${holder.orgRoot.orgRootShortName} ${numPart}`
+                      ?.orgChild2 != null
-                    : null;
+                  ? `${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.orgChild2.orgChild2ShortName} ${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.posMasterNo}`
                  : _data.current_holders.find((x) => x.orgRevisionId == findRevision.id) != null &&
                      _data.current_holders.find((x) => x.orgRevisionId == findRevision.id)
                        ?.orgChild1 != null
                    ? `${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.orgChild1.orgChild1ShortName} ${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.posMasterNo}`
                    : _data.current_holders.find((x) => x.orgRevisionId == findRevision.id) !=
                          null &&
                        _data.current_holders.find((x) => x.orgRevisionId == findRevision.id)
                          ?.orgRoot != null
                      ? `${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.orgRoot.orgRootShortName} ${_data.current_holders.find((x) => x.orgRevisionId == findRevision.id)?.posMasterNo}`
                      : null;
        const dateEmployment =
          _data.profileEmployeeEmployment.length == 0
            ? null
@ -3846,7 +3808,7 @@ export class ProfileEmployeeController extends Controller {
            holder.orgChild2?.orgChild2ShortName ||
            holder.orgChild1?.orgChild1ShortName ||
            holder.orgRoot?.orgRootShortName;
-          return `${shortName || ""} ${[holder.posMasterNoPrefix, holder.posMasterNo, holder.posMasterNoSuffix].filter((p) => p !== null && p !== undefined && p !== '').join(' ')}`;
+          return `${shortName || ""} ${holder.posMasterNo || ""}`;
        });
        return profile.current_holders.map((holder, index) => {
          const position = holder.positions.find((position) => position.posMasterId === holder.id);
@ -5773,9 +5735,6 @@ export class ProfileEmployeeController extends Controller {
    }
    await this.profileRepo.save(profile);
    if (requestBody.isLeave == true) {
      if (orgRevisionRef) {
        await CreatePosMasterHistoryEmployee(orgRevisionRef.id, request, "DELETE");
      }
      await removeProfileInOrganize(profile.id, "EMPLOYEE");
    }
    let organizeName = "";
@ -5789,6 +5748,20 @@ export class ProfileEmployeeController extends Controller {
      ].filter(Boolean);
      organizeName = names.join(" ");
    }
    PostRetireToExprofile(
      request,
      profile.citizenId ?? "",
      profile.prefix ?? "",
      profile.firstName ?? "",
      profile.lastName ?? "",
      requestBody.dateLeave?.getFullYear().toString() ?? "",
      profile.position,
      profile.posType?.posTypeName ?? "",
      `${profile.posType?.posTypeShortName} ${profile.posLevel?.posLevelName}`,
      requestBody.dateLeave ?? new Date(),
      organizeName,
      "ถึงแก่กรรม",
    );
    return new HttpSuccess();
  }
--- a/src/controllers/ProfileEmployeeTempController.ts
+++ b/src/controllers/ProfileEmployeeTempController.ts
@ -70,6 +70,7 @@ import { deleteUser } from "../keycloak";
 import { ProfileSalaryHistory } from "../entities/ProfileSalaryHistory";
 import { getTopDegrees } from "../services/PositionService";
 import HttpStatusCode from "../interfaces/http-status";
 import { PostRetireToExprofile } from "./ExRetirementController";
@Route("api/v1/org/profile-temp")
@Tags("ProfileEmployee")
@Security("bearerAuth")
@ -3607,6 +3608,20 @@ export class ProfileEmployeeTempController extends Controller {
      ].filter(Boolean);
      organizeName = names.join(" ");
    }
    PostRetireToExprofile(
      request,
      profile.citizenId ?? "",
      profile.prefix ?? "",
      profile.firstName ?? "",
      profile.lastName ?? "",
      requestBody.dateLeave?.getFullYear().toString() ?? "",
      profile.position,
      profile.posType?.posTypeName ?? "",
      `${profile.posType?.posTypeShortName} ${profile.posLevel?.posLevelName}`,
      requestBody.dateLeave ?? new Date(),
      organizeName,
      "ถึงแก่กรรม",
    );
    return new HttpSuccess();
  }
--- a/src/controllers/ProfileGovernmentController.ts
+++ b/src/controllers/ProfileGovernmentController.ts
@ -6,6 +6,8 @@ import HttpError from "../interfaces/http-error";
 import { RequestWithUser } from "../middlewares/user";
 import { Profile } from "../entities/Profile";
 import { ProfileGovernment, UpdateProfileGovernment } from "../entities/ProfileGovernment";
 import { Position } from "../entities/Position";
 import { PosMaster } from "../entities/PosMaster";
 import {
  calculateAge,
  calculateGovAge,
@ -13,6 +15,7 @@ import {
  setLogDataDiff,
 } from "../interfaces/utils";
 import permission from "../interfaces/permission";
 import { OrgRevision } from "../entities/OrgRevision";
 import { In } from "typeorm";
@Route("api/v1/org/profile/government")
@Tags("ProfileGovernment")
@ -20,6 +23,9 @@ import { In } from "typeorm";
 export class ProfileGovernmentHistoryController extends Controller {
  private profileRepo = AppDataSource.getRepository(Profile);
  private govRepo = AppDataSource.getRepository(ProfileGovernment);
  private positionRepo = AppDataSource.getRepository(Position);
  private posMasterRepo = AppDataSource.getRepository(PosMaster);
  private orgRevisionRepository = AppDataSource.getRepository(OrgRevision);
  /**
   *
   * @summary ข้อมูลราชการ
@ -27,6 +33,13 @@ export class ProfileGovernmentHistoryController extends Controller {
   */
  @Get("user")
  public async getGovHistoryUser(@Request() request: { user: Record<string, any> }) {
    const orgRevision = await this.orgRevisionRepository.findOne({
      select: ["id"],
      where: {
        orgRevisionIsDraft: false,
        orgRevisionIsCurrent: true,
      },
    });
    const profile = await this.profileRepo.findOneBy({ keycloak: request.user.sub });
    if (!profile) {
      throw new HttpError(HttpStatus.BAD_REQUEST, "ไม่พบ profile ดังกล่าว");
@ -38,19 +51,79 @@ export class ProfileGovernmentHistoryController extends Controller {
        posLevel: true,
      },
    });
-    if (!record) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
+    const posMaster = await this.posMasterRepo.findOne({
      where: {
        // orgRevision: {
        //   orgRevisionIsCurrent: true,
        //   orgRevisionIsDraft: false,
        // },
        orgRevisionId: orgRevision?.id,
        current_holderId: profile.id,
      },
      order: { createdAt: "DESC" },
      relations: {
        orgRoot: true,
        orgChild1: true,
        orgChild2: true,
        orgChild3: true,
        orgChild4: true,
      },
    });
    const position = await this.positionRepo.findOne({
      where: {
        positionIsSelected: true,
        posMaster: {
          // orgRevision: {
          //   orgRevisionIsCurrent: true,
          //   orgRevisionIsDraft: false,
          // },
          orgRevisionId: orgRevision?.id,
          current_holderId: profile.id,
        },
      },
      order: { createdAt: "DESC" },
      relations: {
        posExecutive: true,
      },
    });
-    // ดึงข้อมูลจาก profile ที่เก็บไว้แล้ว
+    if (!record) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
    const fullNameParts = [
      posMaster == null || posMaster.orgChild4 == null ? null : posMaster.orgChild4.orgChild4Name,
      posMaster == null || posMaster.orgChild3 == null ? null : posMaster.orgChild3.orgChild3Name,
      posMaster == null || posMaster.orgChild2 == null ? null : posMaster.orgChild2.orgChild2Name,
      posMaster == null || posMaster.orgChild1 == null ? null : posMaster.orgChild1.orgChild1Name,
      posMaster == null || posMaster.orgRoot == null ? null : posMaster.orgRoot.orgRootName,
    ];
    const org = fullNameParts.filter((part) => part !== undefined && part !== null).join("\n");
    let orgShortName = "";
    if (posMaster != null) {
      if (posMaster.orgChild1Id === null) {
        orgShortName = posMaster.orgRoot?.orgRootShortName;
      } else if (posMaster.orgChild2Id === null) {
        orgShortName = posMaster.orgChild1?.orgChild1ShortName;
      } else if (posMaster.orgChild3Id === null) {
        orgShortName = posMaster.orgChild2?.orgChild2ShortName;
      } else if (posMaster.orgChild4Id === null) {
        orgShortName = posMaster.orgChild3?.orgChild3ShortName;
      } else {
        orgShortName = posMaster.orgChild4?.orgChild4ShortName;
      }
    }
    //posMaster?.isSit แก้ไขชั่วคราว
    const data = {
-      org: record.org ?? null, //สังกัด
+      org: org, //สังกัด
-      positionField: record.positionField ?? null, //สายงาน
+      positionField: position == null || posMaster?.isSit ? null : position.positionField, //สายงาน
      position: record.position, //ตำแหน่ง
      posLevel: record.posLevel == null ? null : record.posLevel.posLevelName, //ระดับ
-      posMasterNo: record.posMasterNo ?? null, //เลขที่ตำแหน่ง
+      posMasterNo: posMaster == null ? null : `${orgShortName} ${posMaster.posMasterNo}`, //เลขที่ตำแหน่ง
      posType: record.posType == null ? null : record.posType.posTypeName, //ประเภท
-      posExecutive: record.posExecutive ?? null, //ตำแหน่งทางการบริหาร
+      posExecutive:
-      positionArea: record.positionArea ?? null, //ด้าน/สาขา
+        position == null || position.posExecutive == null || posMaster?.isSit
-      positionExecutiveField: record.positionExecutiveField ?? null, //ด้านทางการบริหาร
+          ? null
          : position.posExecutive.posExecutiveName, //ตำแหน่งทางการบริหาร
      positionArea: position == null || posMaster?.isSit ? null : position.positionArea, //ด้าน/สาขา
      positionExecutiveField: position == null || posMaster?.isSit ? null : position.positionExecutiveField, //ด้านทางการบริหาร
      dateLeave: record.birthDate == null ? null : calculateRetireDate(record.birthDate),
      dateRetireLaw: record.dateRetireLaw ?? null,
      // govAge: record.dateStart == null ? null : calculateAge(record.dateStart),
@ -78,6 +151,14 @@ export class ProfileGovernmentHistoryController extends Controller {
    if (_workflow == false)
      await new permission().PermissionOrgUserGet(req, "SYS_REGISTRY_OFFICER", profileId);
    const orgRevision = await this.orgRevisionRepository.findOne({
      select: ["id"],
      where: {
        orgRevisionIsDraft: false,
        orgRevisionIsCurrent: true,
      },
    });
    // ค้นหา profile ก่อน
    const record = await this.profileRepo.findOne({
      where: { id: profileId },
@ -123,10 +204,67 @@ export class ProfileGovernmentHistoryController extends Controller {
    // ใช้ profileSalary จาก query ที่สอง หรือ [] ถ้าไม่เจอ
    record.profileSalary = profileWithSalary?.profileSalary || [];
    const posMaster = await this.posMasterRepo.findOne({
      where: {
        orgRevisionId: orgRevision?.id,
        current_holderId: profileId,
      },
      order: { createdAt: "DESC" },
      relations: {
        orgRoot: true,
        orgChild1: true,
        orgChild2: true,
        orgChild3: true,
        orgChild4: true,
      },
    });
    const position = await this.positionRepo.findOne({
      where: {
        positionIsSelected: true,
        posMaster: {
          orgRevisionId: orgRevision?.id,
          current_holderId: profileId,
        },
      },
      order: { createdAt: "DESC" },
      relations: {
        posExecutive: true,
      },
    });
    // if (!record) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
    const fullNameParts = [
      posMaster == null || posMaster.orgChild4 == null ? null : posMaster.orgChild4.orgChild4Name,
      posMaster == null || posMaster.orgChild3 == null ? null : posMaster.orgChild3.orgChild3Name,
      posMaster == null || posMaster.orgChild2 == null ? null : posMaster.orgChild2.orgChild2Name,
      posMaster == null || posMaster.orgChild1 == null ? null : posMaster.orgChild1.orgChild1Name,
      posMaster == null || posMaster.orgRoot == null ? null : posMaster.orgRoot.orgRootName,
    ];
    const org = fullNameParts.filter((part) => part !== undefined && part !== null).join("\n");
    let orgShortName = "";
    if (posMaster != null) {
      if (posMaster.orgChild1Id === null) {
        orgShortName = posMaster.orgRoot?.orgRootShortName ?? "";
      } else if (posMaster.orgChild2Id === null) {
        orgShortName = posMaster.orgChild1?.orgChild1ShortName ?? "";
      } else if (posMaster.orgChild3Id === null) {
        orgShortName = posMaster.orgChild2?.orgChild2ShortName ?? "";
      } else if (posMaster.orgChild4Id === null) {
        orgShortName = posMaster.orgChild3?.orgChild3ShortName ?? "";
      } else {
        orgShortName = posMaster.orgChild4?.orgChild4ShortName ?? "";
      }
    }
    let _OrgLeave: any = [];
    let _profileSalary: any = null;
    if (record?.isLeave && record?.profileSalary.length > 0) {
      // _OrgLeave = [
      //   record?.profileSalary[0].orgChild4 ? record?.profileSalary[0].orgChild4 : null,
      //   record?.profileSalary[0].orgChild3 ? record?.profileSalary[0].orgChild3 : null,
      //   record?.profileSalary[0].orgChild2 ? record?.profileSalary[0].orgChild2 : null,
      //   record?.profileSalary[0].orgChild1 ? record?.profileSalary[0].orgChild1 : null,
      //   record?.profileSalary[0].orgRoot ? record?.profileSalary[0].orgRoot : null,
      // ];
      if (record.leaveType == "RETIRE") {
        _profileSalary =
          record?.profileSalary.length > 1
@ -150,23 +288,27 @@ export class ProfileGovernmentHistoryController extends Controller {
      }
    }
    const orgLeave = _OrgLeave.filter((x: any) => x !== undefined && x !== null).join("\n");
- 
+    //posMaster?.isSit แก้ไขชั่วคราว
    // ดึงข้อมูลจาก profile ที่เก็บไว้แล้ว
    const data = {
-      org: record?.isLeave == false ? (record.org ?? null) : orgLeave, //สังกัด
+      org: record?.isLeave == false ? org : orgLeave, //สังกัด
-      positionField: record.positionField ?? null, //สายงาน
+      positionField: position == null || posMaster?.isSit ? null : position.positionField, //สายงาน
      position: record?.position, //ตำแหน่ง
      posLevel: record?.posLevel == null ? null : record?.posLevel.posLevelName, //ระดับ
      posMasterNo:
        record?.isLeave == false
-          ? record.posMasterNo ?? null
+          ? posMaster == null
            ? null
            : `${orgShortName} ${posMaster.posMasterNo}`
          : _profileSalary != null
            ? `${_profileSalary.posNoAbb} ${_profileSalary.posNo}`
            : null, //เลขที่ตำแหน่ง
      posType: record?.posType == null ? null : record?.posType.posTypeName, //ประเภท
-      posExecutive: record.posExecutive ?? null, //ตำแหน่งทางการบริหาร
+      posExecutive:
-      positionArea: record.positionArea ?? null, //ด้าน/สาขา
+        position == null || position.posExecutive == null || posMaster?.isSit
-      positionExecutiveField: record.positionExecutiveField ?? null, //ด้านทางการบริหาร
+          ? null
          : position.posExecutive.posExecutiveName, //ตำแหน่งทางการบริหาร
      positionArea: position == null || posMaster?.isSit ? null : position.positionArea, //ด้าน/สาขา
      positionExecutiveField: position == null || posMaster?.isSit ? null : position.positionExecutiveField, //ด้านทางการบริหาร
      dateLeave: record?.birthDate == null ? null : calculateRetireDate(record?.birthDate),
      dateRetireLaw: record?.dateRetireLaw ?? null,
      // govAge: record?.dateStart == null ? null : calculateAge(record?.dateStart),
@ -184,6 +326,14 @@ export class ProfileGovernmentHistoryController extends Controller {
  @Get("admin/{profileId}")
  public async getGovHistoryAdmin(@Path() profileId: string) {
    const orgRevision = await this.orgRevisionRepository.findOne({
      select: ["id"],
      where: {
        orgRevisionIsDraft: false,
        orgRevisionIsCurrent: true,
      },
    });
    // ค้นหา profile ก่อน
    const record = await this.profileRepo.findOne({
      where: { id: profileId },
@ -229,10 +379,67 @@ export class ProfileGovernmentHistoryController extends Controller {
    // ใช้ profileSalary จาก query ที่สอง หรือ [] ถ้าไม่เจอ
    record.profileSalary = profileWithSalary?.profileSalary || [];
    const posMaster = await this.posMasterRepo.findOne({
      where: {
        orgRevisionId: orgRevision?.id,
        current_holderId: profileId,
      },
      order: { createdAt: "DESC" },
      relations: {
        orgRoot: true,
        orgChild1: true,
        orgChild2: true,
        orgChild3: true,
        orgChild4: true,
      },
    });
    const position = await this.positionRepo.findOne({
      where: {
        positionIsSelected: true,
        posMaster: {
          orgRevisionId: orgRevision?.id,
          current_holderId: profileId,
        },
      },
      order: { createdAt: "DESC" },
      relations: {
        posExecutive: true,
      },
    });
    // if (!record) throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูล");
    const fullNameParts = [
      posMaster == null || posMaster.orgChild4 == null ? null : posMaster.orgChild4.orgChild4Name,
      posMaster == null || posMaster.orgChild3 == null ? null : posMaster.orgChild3.orgChild3Name,
      posMaster == null || posMaster.orgChild2 == null ? null : posMaster.orgChild2.orgChild2Name,
      posMaster == null || posMaster.orgChild1 == null ? null : posMaster.orgChild1.orgChild1Name,
      posMaster == null || posMaster.orgRoot == null ? null : posMaster.orgRoot.orgRootName,
    ];
    const org = fullNameParts.filter((part) => part !== undefined && part !== null).join("\n");
    let orgShortName = "";
    if (posMaster != null) {
      if (posMaster.orgChild1Id === null) {
        orgShortName = posMaster.orgRoot?.orgRootShortName;
      } else if (posMaster.orgChild2Id === null) {
        orgShortName = posMaster.orgChild1?.orgChild1ShortName;
      } else if (posMaster.orgChild3Id === null) {
        orgShortName = posMaster.orgChild2?.orgChild2ShortName;
      } else if (posMaster.orgChild4Id === null) {
        orgShortName = posMaster.orgChild3?.orgChild3ShortName;
      } else {
        orgShortName = posMaster.orgChild4?.orgChild4ShortName;
      }
    }
    let _OrgLeave: any = [];
    let _profileSalary: any = null;
    if (record?.isLeave && record?.profileSalary.length > 0) {
      // _OrgLeave = [
      //   record?.profileSalary[0].orgChild4 ? record?.profileSalary[0].orgChild4 : null,
      //   record?.profileSalary[0].orgChild3 ? record?.profileSalary[0].orgChild3 : null,
      //   record?.profileSalary[0].orgChild2 ? record?.profileSalary[0].orgChild2 : null,
      //   record?.profileSalary[0].orgChild1 ? record?.profileSalary[0].orgChild1 : null,
      //   record?.profileSalary[0].orgRoot ? record?.profileSalary[0].orgRoot : null,
      // ];
      if (record.leaveType == "RETIRE") {
        _profileSalary =
          record?.profileSalary.length > 1
@ -256,23 +463,27 @@ export class ProfileGovernmentHistoryController extends Controller {
      }
    }
    const orgLeave = _OrgLeave.filter((x: any) => x !== undefined && x !== null).join("\n");
- 
+    //posMaster?.isSit แก้ไขชั่วคราว
    // ดึงข้อมูลจาก profile ที่เก็บไว้แล้ว
    const data = {
-      org: record?.isLeave == false ? (record.org ?? null) : orgLeave, //สังกัด
+      org: record?.isLeave == false ? org : orgLeave, //สังกัด
-      positionField: record.positionField ?? null, //สายงาน
+      positionField: position == null || posMaster?.isSit  ? null : position.positionField, //สายงาน
      position: record?.position, //ตำแหน่ง
      posLevel: record?.posLevel == null ? null : record?.posLevel.posLevelName, //ระดับ
      posMasterNo:
        record?.isLeave == false
-          ? record.posMasterNo ?? null
+          ? posMaster == null
            ? null
            : `${orgShortName} ${posMaster.posMasterNo}`
          : _profileSalary != null
            ? `${_profileSalary.posNoAbb} ${_profileSalary.posNo}`
            : null, //เลขที่ตำแหน่ง
      posType: record?.posType == null ? null : record?.posType.posTypeName, //ประเภท
-      posExecutive: record.posExecutive ?? null, //ตำแหน่งทางการบริหาร
+      posExecutive:
-      positionArea: record.positionArea ?? null, //ด้าน/สาขา
+        position == null || position.posExecutive == null || posMaster?.isSit
-      positionExecutiveField: record.positionExecutiveField ?? null, //ด้านทางการบริหาร
+          ? null
          : position.posExecutive.posExecutiveName, //ตำแหน่งทางการบริหาร
      positionArea: position == null || posMaster?.isSit ? null : position.positionArea, //ด้าน/สาขา
      positionExecutiveField: position == null  || posMaster?.isSit ? null : position.positionExecutiveField, //ด้านทางการบริหาร
      dateLeave: record?.birthDate == null ? null : calculateRetireDate(record?.birthDate),
      dateRetireLaw: record?.dateRetireLaw ?? null,
      // govAge: record?.dateStart == null ? null : calculateAge(record?.dateStart),
@ -371,4 +582,3 @@ export class ProfileGovernmentHistoryController extends Controller {
    return new HttpSuccess();
  }
 }
--- a/src/controllers/ProfileGovernmentEmployeeController.ts
+++ b/src/controllers/ProfileGovernmentEmployeeController.ts
@ -115,7 +115,7 @@ export class ProfileGovernmentEmployeeController extends Controller {
        record.posType == null && record.posLevel == null
          ? null
          : `${record.posType.posTypeShortName} ${record.posLevel.posLevelName}`, //ระดับ
-      posMasterNo: posMaster == null ? null : `${orgShortName} ${[posMaster.posMasterNoPrefix, posMaster.posMasterNo, posMaster.posMasterNoSuffix].filter((p) => p !== null && p !== undefined && p !== '').join(' ')}`, //เลขที่ตำแหน่ง
+      posMasterNo: posMaster == null ? null : `${orgShortName} ${posMaster.posMasterNo}`, //เลขที่ตำแหน่ง
      posType: record.posType == null ? null : record.posType.posTypeName, //ประเภท
      dateLeave: record.birthDate == null ? null : calculateRetireDate(record.birthDate),
      dateRetireLaw: record.dateRetireLaw ?? null,
@ -281,7 +281,7 @@ export class ProfileGovernmentEmployeeController extends Controller {
        record?.isLeave == false
          ? posMaster == null
            ? null
-            : `${orgShortName} ${[posMaster.posMasterNoPrefix, posMaster.posMasterNo, posMaster.posMasterNoSuffix].filter((p) => p !== null && p !== undefined && p !== '').join(' ')}`
+            : `${orgShortName} ${posMaster.posMasterNo}`
          : posNoLeave /*record && record?.profileSalary.length > 0 
          ? `${record?.profileSalary[0].posNoAbb} ${record?.profileSalary[0].posNo}` 
          : null*/, //เลขที่ตำแหน่ง
@ -441,7 +441,7 @@ export class ProfileGovernmentEmployeeController extends Controller {
        record?.isLeave == false
          ? posMaster == null
            ? null
-            : `${orgShortName} ${[posMaster.posMasterNoPrefix, posMaster.posMasterNo, posMaster.posMasterNoSuffix].filter((p) => p !== null && p !== undefined && p !== '').join(' ')}`
+            : `${orgShortName} ${posMaster.posMasterNo}`
          : posNoLeave /*record && record.profileSalary.length > 0 
            ? `${record?.profileSalary[0].posNoAbb} ${record?.profileSalary[0].posNo}` 
            : null*/, //เลขที่ตำแหน่ง
--- a/src/controllers/ProfileSalaryController.ts
+++ b/src/controllers/ProfileSalaryController.ts
--- a/src/controllers/ProfileSalaryEmployeeController.ts
+++ b/src/controllers/ProfileSalaryEmployeeController.ts
@ -27,7 +27,6 @@ import { Profile } from "../entities/Profile";
 import { In, LessThan, IsNull, MoreThan } from "typeorm";
 import permission from "../interfaces/permission";
 import { setLogDataDiff } from "../interfaces/utils";
 import { normalizeDurationSumSimple } from "../utils/tenure";
 import { Command } from "../entities/Command";
 import { OrgRoot } from "../entities/OrgRoot";
 import Extension from "../interfaces/extension";
@ -161,14 +160,6 @@ export class ProfileSalaryEmployeeController extends Controller {
      _position.length > 1
        ? _position.slice(1).map((curr: any, index: number) => ({
            days: curr.days_diff ? Number(curr.days_diff) : 0,
            // Use stored procedure's calculated values (calendar arithmetic)
            year:
              curr.Years !== null && curr.Years !== undefined ? Math.floor(Number(curr.Years)) : 0,
            month:
              curr.Months !== null && curr.Months !== undefined
                ? Math.floor(Number(curr.Months))
                : 0,
            day: curr.Days !== null && curr.Days !== undefined ? Math.floor(Number(curr.Days)) : 0,
            name: _position[index]?.positionName,
          }))
        : [];
@ -179,25 +170,14 @@ export class ProfileSalaryEmployeeController extends Controller {
        if (existing) {
          existing.days += curr.days;
          existing.year += curr.year;
          existing.month += curr.month;
          existing.day += curr.day;
        } else {
-          existing = {
+          existing = { name: curr.name, days: curr.days };
            name: curr.name,
            days: curr.days,
            year: curr.year,
            month: curr.month,
            day: curr.day,
          };
          acc.push(existing);
        }
-        // Normalize the summed values using calendar arithmetic
+        existing.year = Math.floor(existing.days / 365.2524);
-        const normalized = normalizeDurationSumSimple(existing.year, existing.month, existing.day);
+        existing.month = Math.floor((existing.days / 30.4375) % 12);
-        existing.year = normalized.years;
+        existing.day = Math.floor(existing.days % 30.4375);
        existing.month = normalized.months;
        existing.day = normalized.days;
        return acc;
      },
@ -213,14 +193,6 @@ export class ProfileSalaryEmployeeController extends Controller {
      _posLevel.length > 1
        ? _posLevel.slice(1).map((curr: any, index: number) => ({
            days: curr.days_diff ? Number(curr.days_diff) : 0,
            // Use stored procedure's calculated values (calendar arithmetic)
            year:
              curr.Years !== null && curr.Years !== undefined ? Math.floor(Number(curr.Years)) : 0,
            month:
              curr.Months !== null && curr.Months !== undefined
                ? Math.floor(Number(curr.Months))
                : 0,
            day: curr.Days !== null && curr.Days !== undefined ? Math.floor(Number(curr.Days)) : 0,
            name:
              !_posLevel[index]?.positionType && _posLevel[index]?.positionCee
                ? `ระดับ ${_posLevel[index]?.positionCee.trim()}`
@ -234,25 +206,14 @@ export class ProfileSalaryEmployeeController extends Controller {
        if (existing) {
          existing.days += curr.days;
          existing.year += curr.year;
          existing.month += curr.month;
          existing.day += curr.day;
        } else {
-          existing = {
+          existing = { name: curr.name, days: curr.days };
            name: curr.name,
            days: curr.days,
            year: curr.year,
            month: curr.month,
            day: curr.day,
          };
          acc.push(existing);
        }
-        // Normalize the summed values using calendar arithmetic
+        existing.year = Math.floor(existing.days / 365.2524);
-        const normalized = normalizeDurationSumSimple(existing.year, existing.month, existing.day);
+        existing.month = Math.floor((existing.days / 30.4375) % 12);
-        existing.year = normalized.years;
+        existing.day = Math.floor(existing.days % 30.4375);
        existing.month = normalized.months;
        existing.day = normalized.days;
        return acc;
      },
@ -290,14 +251,6 @@ export class ProfileSalaryEmployeeController extends Controller {
      _position.length > 1
        ? _position.slice(1).map((curr: any, index: number) => ({
            days: curr.days_diff ? Number(curr.days_diff) : 0,
            // Use stored procedure's calculated values (calendar arithmetic)
            year:
              curr.Years !== null && curr.Years !== undefined ? Math.floor(Number(curr.Years)) : 0,
            month:
              curr.Months !== null && curr.Months !== undefined
                ? Math.floor(Number(curr.Months))
                : 0,
            day: curr.Days !== null && curr.Days !== undefined ? Math.floor(Number(curr.Days)) : 0,
            name: _position[index]?.positionName,
          }))
        : [];
@ -308,25 +261,14 @@ export class ProfileSalaryEmployeeController extends Controller {
        if (existing) {
          existing.days += curr.days;
          existing.year += curr.year;
          existing.month += curr.month;
          existing.day += curr.day;
        } else {
-          existing = {
+          existing = { name: curr.name, days: curr.days };
            name: curr.name,
            days: curr.days,
            year: curr.year,
            month: curr.month,
            day: curr.day,
          };
          acc.push(existing);
        }
-        // Normalize the summed values using calendar arithmetic
+        existing.year = Math.floor(existing.days / 365.2524);
-        const normalized = normalizeDurationSumSimple(existing.year, existing.month, existing.day);
+        existing.month = Math.floor((existing.days / 30.4375) % 12);
-        existing.year = normalized.years;
+        existing.day = Math.floor(existing.days % 30.4375);
        existing.month = normalized.months;
        existing.day = normalized.days;
        return acc;
      },
@ -342,14 +284,6 @@ export class ProfileSalaryEmployeeController extends Controller {
      _posLevel.length > 1
        ? _posLevel.slice(1).map((curr: any, index: number) => ({
            days: curr.days_diff ? Number(curr.days_diff) : 0,
            // Use stored procedure's calculated values (calendar arithmetic)
            year:
              curr.Years !== null && curr.Years !== undefined ? Math.floor(Number(curr.Years)) : 0,
            month:
              curr.Months !== null && curr.Months !== undefined
                ? Math.floor(Number(curr.Months))
                : 0,
            day: curr.Days !== null && curr.Days !== undefined ? Math.floor(Number(curr.Days)) : 0,
            name:
              !_posLevel[index]?.positionType && _posLevel[index]?.positionCee
                ? `ระดับ ${_posLevel[index]?.positionCee.trim()}`
@ -363,25 +297,14 @@ export class ProfileSalaryEmployeeController extends Controller {
        if (existing) {
          existing.days += curr.days;
          existing.year += curr.year;
          existing.month += curr.month;
          existing.day += curr.day;
        } else {
-          existing = {
+          existing = { name: curr.name, days: curr.days };
            name: curr.name,
            days: curr.days,
            year: curr.year,
            month: curr.month,
            day: curr.day,
          };
          acc.push(existing);
        }
-        // Normalize the summed values using calendar arithmetic
+        existing.year = Math.floor(existing.days / 365.2524);
-        const normalized = normalizeDurationSumSimple(existing.year, existing.month, existing.day);
+        existing.month = Math.floor((existing.days / 30.4375) % 12);
-        existing.year = normalized.years;
+        existing.day = Math.floor(existing.days % 30.4375);
        existing.month = normalized.months;
        existing.day = normalized.days;
        return acc;
      },
@ -475,17 +398,6 @@ export class ProfileSalaryEmployeeController extends Controller {
      else if (body.commandCode == "19") body.commandName = "ไม่ได้เลื่อนเงินเดือน/ค่าจ้าง";
    }
    Object.assign(data, { ...body, ...meta });
    // 12,15,16 isGovernment = false & dateGovernment = commandDateAffect
    if (["12", "15", "16"].includes(body.commandCode ?? "")) {
      data.isGovernment = false;
      if (body.commandDateAffect) data.dateGovernment = body.commandDateAffect;
    }
    // 1,2,3,4,10,11,20 isGovernment = true & dateGovernment = commandDateAffect
    else if (["1", "2", "3", "4", "10", "11", "20"].includes(body.commandCode ?? "")) {
      data.isGovernment = true;
      if (body.commandDateAffect) data.dateGovernment = body.commandDateAffect;
    }
    const history = new ProfileSalaryHistory();
    Object.assign(history, { ...data, id: undefined });
    const _null: any = null;
@ -620,16 +532,6 @@ export class ProfileSalaryEmployeeController extends Controller {
      else if (body.commandCode == "19") body.commandName = "ไม่ได้เลื่อนเงินเดือน/ค่าจ้าง";
    }
    Object.assign(record, body);
    // 12,15,16 isGovernment = false & dateGovernment = commandDateAffect
    if (["12", "15", "16"].includes(body.commandCode ?? "")) {
      record.isGovernment = false;
      if (body.commandDateAffect) record.dateGovernment = body.commandDateAffect ?? null;
    }
    // 1,2,3,4,10,11,20 isGovernment = true & dateGovernment = commandDateAffect
    else if (["1", "2", "3", "4", "10", "11", "20"].includes(body.commandCode ?? "")) {
      record.isGovernment = true;
      if (body.commandDateAffect) record.dateGovernment = body.commandDateAffect ?? null;
    }
    Object.assign(history, { ...record, id: undefined });
    history.profileSalaryId = salaryId;
--- a/src/controllers/ProfileSalaryTempController.ts
+++ b/src/controllers/ProfileSalaryTempController.ts
@ -133,8 +133,8 @@ export class ProfileSalaryTempController extends Controller {
          _data.child1 != undefined && _data.child1 != null
            ? _data.child1[0] != null
              ? `current_holders.orgChild1Id IN (:...child1)`
-              : // : `current_holders.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
+              // : `current_holders.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
-                `current_holders.orgChild1Id is null`
+              : `current_holders.orgChild1Id is null`
            : "1=1",
          {
            child1: _data.child1,
@ -545,8 +545,8 @@ export class ProfileSalaryTempController extends Controller {
          _data.child1 != undefined && _data.child1 != null
            ? _data.child1[0] != null
              ? `current_holders.orgChild1Id IN (:...child1)`
-              : // : `current_holders.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
+              // : `current_holders.orgChild1Id is ${_data.privilege == "PARENT" ? "not null" : "null"}`
-                `current_holders.orgChild1Id is null`
+              : `current_holders.orgChild1Id is null`
            : "1=1",
          {
            child1: _data.child1,
@ -1233,13 +1233,6 @@ export class ProfileSalaryTempController extends Controller {
      isDelete: false,
    };
    Object.assign(data, { ...body, ...meta });
    // if (["12", "15", "16"].includes(body.commandCode ?? "")) {
    //   data.isGovernment = false;
    //   if (body.commandDateAffect) data.dateGovernment = body.commandDateAffect;
    // } else if (["1", "2", "3", "4", "10", "11", "20"].includes(body.commandCode ?? "")) {
    //   data.isGovernment = true;
    //   if (body.commandDateAffect) data.dateGovernment = body.commandDateAffect;
    // }
    await this.salaryRepo.save(data, { data: req });
    setLogDataDiff(req, { before, after: data });
@ -1440,10 +1433,10 @@ export class ProfileSalaryTempController extends Controller {
              profileEmployeeId: x.profileEmployeeId,
              dateStart: x.commandDateAffect,
              dateEnd: null,
-              posNo: `${x.posNoAbb ?? ""} ${x.posNo ?? ""}`.trim(),
+              posNo: `${x.posNoAbb} ${x.posNo}`,
              position: x.positionName,
              commandId: x.commandId,
-              refCommandNo: [x.commandNo, x.commandYear].filter(Boolean).join("/") || undefined,
+              refCommandNo: `${x.commandNo}/${x.commandYear}`,
              refCommandDate: x.commandDateAffect,
              status: false,
              isDeleted: false,
@ -1463,7 +1456,7 @@ export class ProfileSalaryTempController extends Controller {
              dateStart: x.commandDateAffect,
              dateEnd: null,
              commandId: x.commandId,
-              commandNo: [x.commandNo, x.commandYear].filter(Boolean).join("/") || undefined,
+              commandNo: `${x.commandNo}/${x.commandYear}`,
              commandName: x.commandName ?? "ให้ช่วยราชการ",
              refCommandDate: x.commandDateSign,
              refId: x.refId,
@ -1516,16 +1509,6 @@ export class ProfileSalaryTempController extends Controller {
    const before = structuredClone(record);
    Object.assign(record, body);
    // 12,15,16 isGovernment = false & dateGovernment = commandDateAffect
    if (["12", "15", "16"].includes(body.commandCode ?? "")) {
      record.isGovernment = false;
      if (body.commandDateAffect) record.dateGovernment = body.commandDateAffect;
    }
    // 1,2,3,4,10,11,20 isGovernment = true & dateGovernment = commandDateAffect
    else if (["1", "2", "3", "4", "10", "11", "20"].includes(body.commandCode ?? "")) {
      record.isGovernment = true;
      if (body.commandDateAffect) record.dateGovernment = body.commandDateAffect;
    }
    record.isEdit = true;
    record.lastUpdateUserId = req.user.sub;
--- a/src/controllers/ScriptProfileOrgController.ts
+++ b/src/controllers/ScriptProfileOrgController.ts
@ -38,10 +38,6 @@ export class ScriptProfileOrgController extends Controller {
    process.env.CRONJOB_UPDATE_WINDOW_HOURS || "24",
    10,
  );
  private readonly LEAVE_SERVICE_BATCH_SIZE = parseInt(
    process.env.LEAVE_SERVICE_BATCH_SIZE || "50",
    10,
  );
  /**
   * Script to update profile's organizational structure in leave service and sync to Keycloak
@ -49,7 +45,7 @@ export class ScriptProfileOrgController extends Controller {
   * @summary Update org structure for profiles updated within a certain time window and sync to Keycloak
   */
  @Post("update-org")
-  public async cronjobUpdateOrg(@Request() _request: RequestWithUser) {
+  public async cronjobUpdateOrg(@Request() request: RequestWithUser) {
    // Idempotency check - prevent concurrent runs
    if (this.isRunning) {
      console.log("cronjobUpdateOrg: Job already running, skipping this execution");
@ -180,6 +176,21 @@ export class ScriptProfileOrgController extends Controller {
        });
      }
      // Update profile's org structure in leave service by calling API
      console.log("cronjobUpdateOrg: Calling leave service API", {
        payloadCount: payloads.length,
      });
      await axios.put(`${process.env.API_URL}/leave-beginning/schedule/update-dna`, payloads, {
        headers: {
          "Content-Type": "application/json",
          api_key: process.env.API_KEY,
        },
        timeout: 30000, // 30 second timeout
      });
      console.log("cronjobUpdateOrg: Leave service API call successful");
      // Group profile IDs by type for proper syncing
      const profileIdsByType = this.groupProfileIdsByType(payloads);
@ -245,90 +256,16 @@ export class ScriptProfileOrgController extends Controller {
        syncResults.failed += typeResult.failed;
      }
      // Update profile's org structure in leave service by calling API
      console.log("cronjobUpdateOrg: Calling leave service API with chunking", {
        payloadCount: payloads.length,
        batchSize: this.LEAVE_SERVICE_BATCH_SIZE,
        expectedBatches: Math.ceil(payloads.length / this.LEAVE_SERVICE_BATCH_SIZE),
      });
      const chunks = this.chunkArray(payloads, this.LEAVE_SERVICE_BATCH_SIZE);
      const leaveServiceResults = {
        total: payloads.length,
        success: 0,
        failed: 0,
        batchesCompleted: 0,
        batchesFailed: 0,
      };
      for (let i = 0; i < chunks.length; i++) {
        const chunk = chunks[i];
        const batchNumber = i + 1;
        console.log(
          `cronjobUpdateOrg: Processing leave service batch ${batchNumber}/${chunks.length}`,
          {
            batchSize: chunk.length,
            batchRange: `${i * this.LEAVE_SERVICE_BATCH_SIZE + 1}-${Math.min(
              (batchNumber + 1) * this.LEAVE_SERVICE_BATCH_SIZE,
              payloads.length,
            )}`,
          },
        );
        try {
          await axios.put(
            `${process.env.API_URL}/leave-beginning/schedule/update-dna`,
            chunk,
            {
              headers: {
                "Content-Type": "application/json",
                api_key: process.env.API_KEY,
              },
              timeout: 120000, // 120 second timeout per chunk
            },
          );
          leaveServiceResults.success += chunk.length;
          leaveServiceResults.batchesCompleted++;
          console.log(`cronjobUpdateOrg: Leave service batch ${batchNumber}/${chunks.length} completed`, {
            success: chunk.length,
          });
        } catch (error: any) {
          leaveServiceResults.failed += chunk.length;
          leaveServiceResults.batchesFailed++;
          console.error(
            `cronjobUpdateOrg: Leave service batch ${batchNumber}/${chunks.length} failed`,
            {
              error: error.message,
              batchSize: chunk.length,
              responseStatus: error.response?.status,
              responseData: error.response?.data,
            },
          );
          // Continue processing remaining batches
        }
      }
      console.log("cronjobUpdateOrg: Leave service API call completed", {
        ...leaveServiceResults,
      });
      const duration = Date.now() - startTime;
      console.log("cronjobUpdateOrg: Job completed", {
        duration: `${duration}ms`,
        processed: payloads.length,
        leaveServiceResults,
        syncResults,
      });
      return new HttpSuccess({
        message: "Update org completed",
        processed: payloads.length,
        leaveServiceResults,
        syncResults,
        duration: `${duration}ms`,
      });
--- a/src/controllers/SocketController.ts
+++ b/src/controllers/SocketController.ts
@ -1,6 +1,5 @@
-import { Body, Controller, Post, Request, Route, Security } from "tsoa";
+import { Body, Controller, Post, Route } from "tsoa";
 import { sendWebSocket } from "../services/webSocket";
 import { RequestWithUser } from "../middlewares/user";
@Route("/api/v1/org/through-socket")
 export class SocketController extends Controller {
@ -23,39 +22,4 @@ export class SocketController extends Controller {
      },
    );
  }
  @Post("notify-from-token")
  @Security("bearerAuth")
  async notifyFromToken(
    @Body()
    payload: {
      message: string;
      targetUserId?: string | string[];
      roles?: string | string[];
      error?: boolean;
    },
    @Request() req: RequestWithUser,
  ) {
    const toArray = (value?: string | string[]) => {
      if (Array.isArray(value)) return value.filter(Boolean);
      if (typeof value === "string" && value.trim()) return [value];
      return [] as string[];
    };
    const targetUserIds = toArray(payload.targetUserId);
    const targetRoles = toArray(payload.roles);
    // If caller provides explicit user targets, do not combine with role targeting.
    // This prevents accidental broad notifications when roles include common roles.
    const recipients =
      targetUserIds.length > 0
        ? { userId: targetUserIds, roles: [] as string[] }
        : { userId: [req.user.sub], roles: targetRoles };
    sendWebSocket(
      "socket-notification",
      { success: !payload.error, message: payload.message },
      recipients,
    );
  }
 }
--- a/src/controllers/UserController.ts
+++ b/src/controllers/UserController.ts
@ -580,27 +580,18 @@ export class KeycloakController extends Controller {
          new Brackets((qb) => {
            qb.orWhere(
              body.keyword != null && body.keyword != ""
-                ? `profile.citizenId LIKE :keyword`
+                ? `profile.citizenId like '%${body.keyword}%'`
                : "1=1",
                {
                  keyword: `%${body.keyword}%`,
                }
            )
              .orWhere(
                body.keyword != null && body.keyword != ""
-                  ? `profile.email LIKE :keyword`
+                  ? `profile.email like '%${body.keyword}%'`
                  : "1=1",
                  {
                    keyword: `%${body.keyword}%`,
                  }
              )
              .orWhere(
                body.keyword != null && body.keyword != ""
-                  ? `CONCAT(profile.prefix, profile.firstName," ",profile.lastName) LIKE :keyword`
+                  ? `CONCAT(profile.prefix, profile.firstName," ",profile.lastName)  like '%${body.keyword}%'`
                  : "1=1",
                  {
                    keyword: `%${body.keyword}%`,
                  }
              );
          }),
        )
@ -634,27 +625,18 @@ export class KeycloakController extends Controller {
          new Brackets((qb) => {
            qb.orWhere(
              body.keyword != null && body.keyword != ""
-                ? `profileEmployee.citizenId LIKE :keyword`
+                ? `profileEmployee.citizenId like '%${body.keyword}%'`
                : "1=1",
                {
                  keyword: `%${body.keyword}%`,
                }
            )
              .orWhere(
                body.keyword != null && body.keyword != ""
-                  ? `profileEmployee.email LIKE :keyword`
+                  ? `profileEmployee.email like '%${body.keyword}%'`
                  : "1=1",
                  {
                    keyword: `%${body.keyword}%`,
                  }
              )
              .orWhere(
                body.keyword != null && body.keyword != ""
-                  ? `CONCAT(profileEmployee.prefix, profileEmployee.firstName," ",profileEmployee.lastName) LIKE :keyword`
+                  ? `CONCAT(profileEmployee.prefix, profileEmployee.firstName," ",profileEmployee.lastName)  like '%${body.keyword}%'`
                  : "1=1",
                  {
                    keyword: `%${body.keyword}%`,
                  }
              );
          }),
        )
@ -832,68 +814,6 @@ export class KeycloakController extends Controller {
    if (!result) throw new Error("Failed. Cannot remove group to user.");
  }
  @Post("user/reset-password")
  @Security("bearerAuth", ["admin"])
  async resetUserPassword(@Request() req: RequestWithUser, @Body() body: { keycloak: string }) {
    if (!req.user.role.includes("ADMIN") && !req.user.role.includes("SUPER_ADMIN")) {
      throw new HttpError(HttpStatus.FORBIDDEN, "ไม่มีสิทธิ์ดำเนินการ");
    }
    let profile: Profile | ProfileEmployee | null = await this.profileRepo.findOne({
      where: { keycloak: body.keycloak },
      select: ["id", "keycloak", "birthDate", "firstName", "lastName", "citizenId"],
    });
    let isEmployee = false;
    if (!profile) {
      profile = await this.profileEmpRepo.findOne({
        where: { keycloak: body.keycloak, employeeClass: "PERM" },
        select: ["id", "keycloak", "birthDate", "firstName", "lastName", "citizenId"],
      });
      isEmployee = true;
    }
    if (!profile) {
      throw new HttpError(HttpStatus.NOT_FOUND, "ไม่พบข้อมูลผู้ใช้");
    }
    if (!profile.keycloak) {
      throw new HttpError(HttpStatus.BAD_REQUEST, "ผู้ใช้ไม่ได้เชื่อมต่อกับ Keycloak");
    }
    let newPassword: string;
    const isProduction = process.env.NODE_ENV === "production";
    if (isProduction && profile.birthDate) {
      const _date = new Date(profile.birthDate.toDateString())
        .getDate()
        .toString()
        .padStart(2, "0");
      const _month = (new Date(profile.birthDate.toDateString()).getMonth() + 1)
        .toString()
        .padStart(2, "0");
      const _year = new Date(profile.birthDate.toDateString()).getFullYear() + 543;
      newPassword = `${_date}${_month}${_year}`;
    } else {
      newPassword = "P@ssw0rd";
    }
    const result = await changeUserPassword(profile.keycloak, newPassword);
    if (!result) {
      throw new HttpError(HttpStatus.INTERNAL_SERVER_ERROR, "ไม่สามารถรีเซ็ตรหัสผ่านได้");
    }
    addLogSequence(req, {
      action: "reset-password",
      status: "success",
      description: `รีเซ็ตรหัสผ่านสำหรับ ${profile.firstName} ${profile.lastName} (${profile.citizenId})`,
    });
    const response = new HttpSuccess();
    response.message = "รีเซ็ตรหัสผ่านสำเร็จ";
    return response;
  }
  @Get("user/role/{id}")
  async getRoleUser(@Request() req: RequestWithUser, @Path("id") id: string) {
    const profile = await this.profileRepo.findOne({
--- a/src/controllers/WorkflowController.ts
+++ b/src/controllers/WorkflowController.ts
@ -23,7 +23,6 @@ import { viewDirector } from "../entities/view/viewDirector";
 import { ProfileEmployee } from "../entities/ProfileEmployee";
 import { EmployeePosMaster } from "../entities/EmployeePosMaster";
 import { OrgRoot } from "../entities/OrgRoot";
 import { getPosMasterPositions } from "../services/PositionService";
@Route("api/v1/org/workflow")
@Tags("Workflow")
@Security("bearerAuth")
@ -238,21 +237,11 @@ export class WorkflowController extends Controller {
      savedStates.find((state) => state.id === so.stateId && state.order === 1),
    );
    // add link sysName = REGISTRY_PROFILE or REGISTRY_PROFILE_EMP
    let notiLink = "";
    if (body.sysName === "REGISTRY_PROFILE") {
      notiLink = `${process.env.VITE_URL_MGT}/registry-officer/request-edit/personal/${body.refId}`;
    } else if (body.sysName === "REGISTRY_PROFILE_EMP") {
      notiLink = `${process.env.VITE_URL_MGT}/registry-employee/request-edit/personal/${body.refId}`;
    } else if (body.sysName === "REGISTRY_IDP") {
      notiLink = `${process.env.VITE_URL_MGT}/registry-officer/request-edit-page/${body.refId}`;
    }
    const notificationReceivers = stateOperatorUsersToCreate
      .filter((user) => firstStateOperators.some((op) => op.operator === user.operator))
      .map((user) => ({
        receiverUserId: user.profileType === "OFFICER" ? user.profileId : user.profileEmployeeId,
-        notiLink: notiLink,
+        notiLink: "",
      }));
    // ส่ง notification แบบ fire-and-forget
@ -922,7 +911,7 @@ export class WorkflowController extends Controller {
      },
    });
    if (orgRoot && orgRoot.isDeputy) {
-      roodIds.push(orgRoot.id);
+      roodIds.push(orgRoot.id)
    }
    // 2. Pre-calculate conditions - ย้ายออกมาข้างนอก
@ -1072,48 +1061,12 @@ export class WorkflowController extends Controller {
    ]);
    // 8. ปรับ response mapping (ถ้าจำเป็น)
-    let posMasterPositionMap: Map<string, string> = new Map();
+    const processedData = data.map((x: any) => ({
-
+      ...x,
-    if (body.isAct) {
+      posExecutiveNameOrg:
-      // ดึง posMasterId ทั้งหมด (36 ตัวแรกของ key) เพื่อ query positionName
+        (x.posExecutiveName ?? "") +
-      const posMasterIds = data
+        (x.orgChild4 ?? x.orgChild3 ?? x.orgChild2 ?? x.orgChild1 ?? x.orgRoot ?? ""),
-        .map((x) => x.key?.substring(0, 36))
+    }));
        .filter((id) => id && id.length === 36);
      posMasterPositionMap = await getPosMasterPositions(posMasterIds);
    }
    const processedData = data.map((x: any) => {
      let newPositionSign = x.positionSign;
      if (body.isAct) {
        // ตำแหน่งของคนที่เลือกไปรักษาการ
        let childPosition = "";
        if (x.positionSignChild) {
          childPosition = x.positionSignChild;
        } else if (x.posExecutiveName) {
          childPosition = x.posExecutiveName;
        } else {
          childPosition = `${x.position || ""}${x.posLevel || ""}`.trim();
        }
        // ตำแหน่งที่รักษาการแทน
        const posMasterId = x.key?.substring(0, 36);
        const targetPosition = x.positionSign
          ? x.positionSign
          : posMasterPositionMap.get(posMasterId) || "";
        // สร้าง positionSign ใหม่
        newPositionSign = `${childPosition} รักษาการในตำแหน่ง${targetPosition}`;
      }
      return {
        ...x,
        positionSign: newPositionSign,
        posExecutiveNameOrg:
          (x.posExecutiveName ?? "") +
          (x.orgChild4 ?? x.orgChild3 ?? x.orgChild2 ?? x.orgChild1 ?? x.orgRoot ?? ""),
      };
    });
    return new HttpSuccess({ data: processedData, total });
  }
--- a/src/entities/Issues.ts
+++ b/src/entities/Issues.ts
@ -38,11 +38,11 @@ export class Issues extends EntityBase {
  @Column({
    type: "enum",
-    enum: ["NEW", "IN_PROGRESS", "RESOLVED", "CLOSED", "HELPDESK_IN_PROGRESS", "REPLIED"],
+    enum: ["NEW", "IN_PROGRESS", "RESOLVED", "CLOSED"],
    default: "NEW",
    comment: "สถานะการแก้ไขปัญหา",
  })
-  status: "NEW" | "IN_PROGRESS" | "RESOLVED" | "CLOSED" | "HELPDESK_IN_PROGRESS" | "REPLIED";
+  status: "NEW" | "IN_PROGRESS" | "RESOLVED" | "CLOSED";
  @BeforeInsert()
  async generateCodeIssue() {
@ -77,7 +77,7 @@ export interface IssueResponse {
  menu: string | null;
  org: string | null;
  remark: string | null;
-  status: "NEW" | "IN_PROGRESS" | "RESOLVED" | "CLOSED" | "HELPDESK_IN_PROGRESS" | "REPLIED";
+  status: "NEW" | "IN_PROGRESS" | "RESOLVED" | "CLOSED";
  createdAt: Date;
  lastUpdatedAt: Date;
  createdFullName: string;
@ -90,7 +90,7 @@ export interface CreateIssueRequest {
  title: string;
  description?: string;
  system: string;
-  status?: "NEW" | "IN_PROGRESS" | "RESOLVED" | "CLOSED" | "HELPDESK_IN_PROGRESS" | "REPLIED";
+  status?: "NEW" | "IN_PROGRESS" | "RESOLVED" | "CLOSED";
  menu?: string;
  org?: string;
  email?: string;
@ -98,6 +98,6 @@ export interface CreateIssueRequest {
 }
 export interface UpdateIssueRequest {
-  status?: "NEW" | "IN_PROGRESS" | "RESOLVED" | "CLOSED" | "HELPDESK_IN_PROGRESS" | "REPLIED";
+  status?: "NEW" | "IN_PROGRESS" | "RESOLVED" | "CLOSED";
  remark?: string;
 }
--- a/src/entities/PosMasterEmployeeHistory.ts
+++ b/src/entities/PosMasterEmployeeHistory.ts
@ -99,51 +99,51 @@ export class PosMasterEmployeeHistory extends EntityBase {
  })
  ancestorDNA: string;
-  @Column({
+  // @Column({
-    nullable: true,
+  //   nullable: true,
-    length: 40,
+  //   length: 40,
-    comment: "คีย์นอก(FK)ของตาราง profileEmployee",
+  //   comment: "คีย์นอก(FK)ของตาราง profile",
-    default: null,
+  //   default: null,
-  })
+  // })
-  profileEmployeeId: string;
+  // profileId: string;
-  @Column({
+  // @Column({
-    nullable: true,
+  //   nullable: true,
-    length: 40,
+  //   length: 40,
-    comment: "dna ของตาราง orgRoot",
+  //   comment: "dna ของตาราง orgRoot",
-    default: null,
+  //   default: null,
-  })
+  // })
-  rootDnaId: string;
+  // rootDnaId: string;
-  @Column({
+  // @Column({
-    nullable: true,
+  //   nullable: true,
-    length: 40,
+  //   length: 40,
-    comment: "dna ของตาราง orgChild1",
+  //   comment: "dna ของตาราง orgChild1",
-    default: null,
+  //   default: null,
-  })
+  // })
-  child1DnaId: string;
+  // child1DnaId: string;
-  @Column({
+  // @Column({
-    nullable: true,
+  //   nullable: true,
-    length: 40,
+  //   length: 40,
-    comment: "dna ของตาราง orgChild2",
+  //   comment: "dna ของตาราง orgChild2",
-    default: null,
+  //   default: null,
-  })
+  // })
-  child2DnaId: string;
+  // child2DnaId: string;
-  @Column({
+  // @Column({
-    nullable: true,
+  //   nullable: true,
-    length: 40,
+  //   length: 40,
-    comment: "dna ของตาราง orgChild3",
+  //   comment: "dna ของตาราง orgChild3",
-    default: null,
+  //   default: null,
-  })
+  // })
-  child3DnaId: string;
+  // child3DnaId: string;
-  @Column({
+  // @Column({
-    nullable: true,
+  //   nullable: true,
-    length: 40,
+  //   length: 40,
-    comment: "dna ของตาราง orgChild4",
+  //   comment: "dna ของตาราง orgChild4",
-    default: null,
+  //   default: null,
-  })
+  // })
-  child4DnaId: string;
+  // child4DnaId: string;
 }
--- a/src/entities/Profile.ts
+++ b/src/entities/Profile.ts
@ -140,54 +140,6 @@ export class Profile extends EntityBase {
  })
  posTypeId: string | null;
  @Column({
    nullable: true,
    comment: "สายงาน",
    length: 45,
    default: null,
  })
  positionField: string;
  @Column({
    nullable: true,
    comment: "ตำแหน่งทางการบริหาร",
    length: 255,
    default: null,
  })
  posExecutive?: string;
  @Column({
    nullable: true,
    comment: "ด้าน/สาขา",
    length: 255,
    default: null,
  })
  positionArea?: string;
  @Column({
    nullable: true,
    comment: "ด้านทางการบริหาร",
    length: 255,
    default: null,
  })
  positionExecutiveField?: string;
  @Column({
    nullable: true,
    comment: "เลขที่ตำแหน่ง",
    length: 255,
    default: null,
  })
  posMasterNo?: string;
  @Column({
    nullable: true,
    comment: "สังกัด",
    type: "text",
    default: null,
  })
  org?: string;
  @Column({
    nullable: true,
    length: 255,
--- a/src/entities/TenureLevelEmployee.ts
+++ b/src/entities/TenureLevelEmployee.ts
@ -74,7 +74,7 @@ export class TenureLevelEmployee extends EntityBase {
  positionLevel: string;
 }
-export class CreateTenureLevelEmployee {
+export class CreateTenureLevelOfficer {
  profileEmployeeId: string;
  positionCee: string | null;
  days_diff: number | null;
--- a/src/entities/view/viewDirectorActing.ts
+++ b/src/entities/view/viewDirectorActing.ts
@ -81,8 +81,6 @@ export class viewDirectorActing {
  @ViewColumn()
  posNo: string;
  @ViewColumn()
  posNoAct: string;
  @ViewColumn()
  posLevel: string;
  @ViewColumn()
  posType: string;
@ -128,6 +126,4 @@ export class viewDirectorActing {
  key: string;
  @ViewColumn()
  positionSign: string;
  @ViewColumn()
  positionSignChild: string;
 }
--- a/src/keycloak/index.ts
+++ b/src/keycloak/index.ts
@ -116,34 +116,6 @@ export async function withRetry<T>(
  throw lastError;
 }
 /**
 * Fetch with timeout
 * Aborts request if it takes longer than specified timeout
 */
 async function fetchWithTimeout(
  url: RequestInfo | URL,
  options: RequestInit = {},
  timeout: number = 10000,
 ): Promise<Response> {
  const controller = new AbortController();
  const timeoutId = setTimeout(() => controller.abort(), timeout);
  try {
    const response = await fetch(url, {
      ...options,
      signal: controller.signal,
    });
    clearTimeout(timeoutId);
    return response;
  } catch (error: any) {
    clearTimeout(timeoutId);
    if (error.name === "AbortError") {
      throw new Error(`Request timeout after ${timeout}ms`);
    }
    throw error;
  }
 }
 const KC_URL = process.env.KC_URL;
 const KC_REALMS = process.env.KC_REALMS;
 const KC_CLIENT_ID = process.env.KC_SERVICE_ACCOUNT_CLIENT_ID;
@ -172,12 +144,10 @@ export function isTokenExpired(token: string, beforeExpire: number = 30) {
 /**
 * Get token from keycloak if needed
 * Returns null if Keycloak is unavailable
 */
-export async function getToken(): Promise<string | null> {
+export async function getToken() {
  if (!KC_CLIENT_ID || !KC_SECRET) {
-    console.error("[getToken] KC_CLIENT_ID and KC_SECRET are required");
+    throw new Error("KC_CLIENT_ID and KC_SECRET are required to used this feature.");
    return null;
  }
  if (token && !isTokenExpired(token)) return token;
@ -188,35 +158,22 @@ export async function getToken(): Promise<string | null> {
  body.append("client_secret", KC_SECRET);
  body.append("grant_type", "client_credentials");
-  try {
+  const res = await fetch(`${KC_URL}/realms/${KC_REALMS}/protocol/openid-connect/token`, {
-    const res = await fetchWithTimeout(
+    method: "POST",
-      `${KC_URL}/realms/${KC_REALMS}/protocol/openid-connect/token`,
+    body: body,
-      {
+  }).catch((e) => console.error(e));
        method: "POST",
        body: body,
      },
      10000,
    );
-    if (!res.ok) {
+  if (!res) {
-      console.error(`[getToken] Keycloak token request failed: ${res.status}`);
+    throw new Error("Cannot get token from keycloak.");
      return null;
    }
    const data = (await res.json()) as any;
    if (data && data.access_token) {
      token = data.access_token;
      console.log(`[getToken] Token refreshed successfully`);
      return token;
    }
    console.error("[getToken] No access_token in response");
    return null;
  } catch (error: any) {
    console.error(`[getToken] Failed to get token: ${error.message}`);
    return null;
  }
  const data = (await res.json()) as any;
  if (data && data.access_token) {
    token = data.access_token;
  }
  console.log(`token: ${token}`);
  return token;
 }
 /**
@ -232,16 +189,10 @@ export async function createUser(
  opts?: Record<string, any>,
  token?: string,
 ) {
  const authToken = token || (await getToken());
  if (!authToken) {
    console.error("[createUser] Failed to get Keycloak token");
    return false;
  }
  const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users`, {
    // prettier-ignore
    headers: {
-      "authorization": `Bearer ${authToken}`,
+      "authorization": `Bearer ${token || await getToken()}`,
      "content-type": `application/json`,
    },
    method: "POST",
@ -255,6 +206,7 @@ export async function createUser(
  if (!res) return false;
  if (!res.ok) {
    // return Boolean(console.error("Keycloak Error Response: ", await res.json()));
    return await res.json();
  }
@ -271,16 +223,10 @@ export async function createUser(
 * @returns user if success, false otherwise.
 */
 export async function getUser(userId: string, token?: string) {
  const authToken = token || (await getToken());
  if (!authToken) {
    console.error("[getUser] Failed to get Keycloak token");
    return false;
  }
  const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users/${userId}`, {
    // prettier-ignore
    headers: {
-      "authorization": `Bearer ${authToken}`,
+      "authorization": `Bearer ${token || await getToken()}`,
      "content-type": `application/json`,
    },
  }).catch((e) => console.log("Keycloak Error: ", e));
@ -299,16 +245,10 @@ export async function getUser(userId: string, token?: string) {
 * @returns user if success, false otherwise.
 */
 export async function getUserByUsername(citizenId: string, token?: string) {
  const authToken = token || (await getToken());
  if (!authToken) {
    console.error("[getUserByUsername] Failed to get Keycloak token");
    return false;
  }
  const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users?username=${citizenId}`, {
    // prettier-ignore
    headers: {
-      "authorization": `Bearer ${authToken}`,
+      "authorization": `Bearer ${token || await getToken()}`,
      "content-type": `application/json`,
    },
  }).catch((e) => console.log("Keycloak Error: ", e));
@ -439,38 +379,23 @@ export async function getUserCountOrg(first = "", max = "", search = "", userIds
 export async function editUser(userId: string, opts: Record<string, any>) {
  const { password, ...rest } = opts;
  const token = await getToken();
  if (!token) {
    console.error("[editUser] Failed to get Keycloak token");
    return false;
  }
  // Get existing user data to preserve other fields
  const existingUser = await getUser(userId, token);
  if (!existingUser) {
    console.error(`[editUser] User ${userId} not found in Keycloak`);
    return false;
  }
  // Merge existing user data with updated fields
  const updatedUser = {
    ...existingUser,
    ...rest,
    credentials: (password && [{ type: "password", value: opts?.password }]) || undefined,
  };
  const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users/${userId}`, {
    // prettier-ignore
    headers: {
-      "authorization": `Bearer ${token}`,
+      "authorization": `Bearer ${await getToken()}`,
      "content-type": `application/json`,
    },
    method: "PUT",
-    body: JSON.stringify(updatedUser),
+    body: JSON.stringify({
      enabled: true,
      credentials: (password && [{ type: "password", value: opts?.password }]) || undefined,
      ...rest,
    }),
  }).catch((e) => console.log("Keycloak Error: ", e));
  if (!res) return false;
  if (!res.ok) {
    // return Boolean(console.error("Keycloak Error Response: ", await res.json()));
    return await res.json();
  }
@ -494,24 +419,6 @@ export async function updateName(
 ) {
  // const { password, ...rest } = opts;
  // Get existing user data to preserve other fields
  const existingUser = await getUser(userId);
  if (!existingUser) {
    console.error(`[updateName] User ${userId} not found in Keycloak`);
    return false;
  }
  // Merge existing user data with updated name fields
  const updatedUser = {
    ...existingUser,
    firstName,
    lastName,
    attributes: {
      ...(existingUser.attributes || {}),
      prefix,
    },
  };
  const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users/${userId}`, {
    // prettier-ignore
    headers: {
@ -519,7 +426,16 @@ export async function updateName(
      "content-type": `application/json`,
    },
    method: "PUT",
-    body: JSON.stringify(updatedUser),
+    body: JSON.stringify({
      enabled: true,
      // credentials: (password && [{ type: "password", value: opts?.password }]) || undefined,
      // ...rest,
      firstName,
      lastName,
      attributes: {
        prefix,
      },
    }),
  }).catch((e) => console.log("Keycloak Error: ", e));
  if (!res) return false;
@ -570,16 +486,10 @@ export async function enableStatus(userId: string, status: boolean) {
 * @returns user true if success, false otherwise.
 */
 export async function deleteUser(userId: string, token?: string) {
  const authToken = token || (await getToken());
  if (!authToken) {
    console.error("[deleteUser] Failed to get Keycloak token");
    return false;
  }
  const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users/${userId}`, {
    // prettier-ignore
    headers: {
-      "authorization": `Bearer ${authToken}`,
+      "authorization": `Bearer ${token || await getToken()}`,
      "content-type": `application/json`,
    },
    method: "DELETE",
@ -961,16 +871,10 @@ export async function removeUserGroup(userId: string, groupId: string) {
 // Function to change user password
 export async function changeUserPassword(userId: string, newPassword: string) {
  try {
    const token = await getToken();
    if (!token) {
      console.error("[changeUserPassword] Failed to get Keycloak token");
      return false;
    }
    const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users/${userId}/reset-password`, {
      // prettier-ignore
      headers: {
-          "authorization": `Bearer ${token}`,
+          "authorization": `Bearer ${await getToken()}`,
          "content-type": `application/json`,
        },
      method: "PUT",
@ -981,15 +885,6 @@ export async function changeUserPassword(userId: string, newPassword: string) {
      }),
    }).catch((e) => console.log("Keycloak Error: ", e));
    if (!res) {
      console.error("[changeUserPassword] No response from Keycloak");
      return false;
    }
    if (!res.ok) {
      console.error(`[changeUserPassword] Failed to change password: ${res.status}`);
      return false;
    }
    return true;
  } catch (error) {
    console.error("Error changing password:", error);
@ -1000,61 +895,60 @@ export async function changeUserPassword(userId: string, newPassword: string) {
 // Function to reset password
 export async function resetPassword(username: string) {
  try {
-    const token = await getToken();
+    // if (!API_KEY || !AUTH_ACCOUNT_SECRET) {
-    if (!token) {
+    //   throw new Error("KC_CLIENT_ID and KC_SECRET are required to used this feature.");
-      console.error("[resetPassword] Failed to get Keycloak token");
+    // }
-      return false;
+    // const body = new URLSearchParams();
-    }
+    // body.append("client_id", "gettoken");
    // body.append("client_secret", AUTH_ACCOUNT_SECRET?.toString());
    // body.append("grant_type", "client_credentials");
    // const tokenResponse = await fetch(`${process.env.KC_URL}/realms/${process.env.KC_REALMS}/protocol/openid-connect/token`, {
    //   method: "POST",
    //   headers: {
    //     "Content-Type": "application/x-www-form-urlencoded",
    //     api_key: API_KEY,
    //   },
    //   body: body
    // });
    // if (!tokenResponse.ok) {
    //   throw new Error("Failed to get admin token");
    // }
    // const tokenData = await tokenResponse.json();
    // const adminToken = tokenData.access_token;
-    const users = await fetchWithTimeout(
+    const users = await fetch(
      `${KC_URL}/admin/realms/${KC_REALMS}/users?email=${encodeURIComponent(username)}`,
      {
        headers: {
-          authorization: `Bearer ${token}`,
+          authorization: `Bearer ${await getToken()}`,
          // "authorization": `Bearer ${adminToken}`,
          "content-type": `application/json`,
        },
      },
      10000,
    );
    if (!users.ok) {
      const errorText = await users.text();
      console.error(`[resetPassword] Failed to search user. Status: ${users.status}, Error: ${errorText}`);
      return false;
    }
    const usersData = await users.json();
    if (!usersData || usersData.length === 0) {
      console.error(`[resetPassword] User not found with email: ${username}`);
      return false;
    }
    const userId = usersData[0].id;
-
+    const resetResponse = await fetch(
    const resetResponse = await fetchWithTimeout(
      `${KC_URL}/admin/realms/${KC_REALMS}/users/${userId}/execute-actions-email`,
      {
        method: "PUT",
        headers: {
          Authorization: `Bearer ${await getToken()}`,
          // "Authorization": `Bearer ${adminToken}`,
          "Content-Type": "application/json",
        },
        body: JSON.stringify(["UPDATE_PASSWORD"]),
      },
      10000,
    );
    if (!resetResponse.ok) {
      const errorText = await resetResponse.text();
      console.error(`[resetPassword] Failed to send reset email. Status: ${resetResponse.status}, Error: ${errorText}`);
      return false;
    }
    console.log(`[resetPassword] Password reset email sent successfully to: ${username}`);
    return { message: "Password reset email sent" };
-  } catch (error: any) {
+  } catch (error) {
-    console.error(`[resetPassword] Error triggering password reset: ${error.message}`);
+    console.error("Error triggering password reset:", error);
    return false;
  }
 }
@ -1064,14 +958,8 @@ export async function updateUserAttributes(
  attributes: Record<string, string[]>,
 ): Promise<boolean> {
  try {
    const token = await getToken();
    if (!token) {
      console.error("[updateUserAttributes] Failed to get Keycloak token");
      return false;
    }
    // Get existing user data to preserve other attributes
-    const existingUser = await getUser(userId, token);
+    const existingUser = await getUser(userId);
    if (!existingUser) {
      console.error(`User ${userId} not found in Keycloak`);
@ -1096,7 +984,7 @@ export async function updateUserAttributes(
    const res = await fetch(`${KC_URL}/admin/realms/${KC_REALMS}/users/${userId}`, {
      headers: {
-        authorization: `Bearer ${token}`,
+        authorization: `Bearer ${await getToken()}`,
        "content-type": "application/json",
      },
      method: "PUT",
--- a/src/middlewares/authWebService.ts
+++ b/src/middlewares/authWebService.ts
@ -17,17 +17,7 @@ export async function handleWebServiceAuth(request: express.Request) {
  // ตรวจสอบ API Key กับฐานข้อมูล
  const apiKeyData = await AppDataSource.getRepository(ApiKey).findOne({
-    select: {
+    select: { id: true, name: true, keyApi: true },
      id: true,
      name: true,
      keyApi: true,
      accessType: true,
      dnaRootId: true,
      dnaChild1Id: true,
      dnaChild2Id: true,
      dnaChild3Id: true,
      dnaChild4Id: true,
    },
    where: { keyApi: apiKey },
    relations: ["apiNames"],
  });
@ -50,12 +40,6 @@ export async function handleWebServiceAuth(request: express.Request) {
    name: apiKeyData.name,
    type: "web-service",
    accessApi: apiKeyData.apiNames.map((x) => x.id) ?? [],
    accessType: apiKeyData.accessType,
    dnaRootId: apiKeyData.dnaRootId,
    dnaChild1Id: apiKeyData.dnaChild1Id,
    dnaChild2Id: apiKeyData.dnaChild2Id,
    dnaChild3Id: apiKeyData.dnaChild3Id,
    dnaChild4Id: apiKeyData.dnaChild4Id,
  };
 }
--- a/src/middlewares/logs.ts
+++ b/src/middlewares/logs.ts
@ -56,7 +56,6 @@ async function logMiddleware(req: Request, res: Response, next: NextFunction) {
      if (req.url.startsWith("/api/v1/org/profile/")) system = "registry";
      if (req.url.startsWith("/api/v1/org/profile-employee/")) system = "registry";
      if (req.url.startsWith("/api/v1/org/profile-temp/")) system = "registry";
      if (req.url.startsWith("/api/v1/org/ex/")) system = "retirement";
      if (req.url.startsWith("/api/v1/org/commandType/admin")) system = "admin";
      if (req.url.startsWith("/api/v1/org/commandSys/")) system = "admin";
@ -80,17 +79,6 @@ async function logMiddleware(req: Request, res: Response, next: NextFunction) {
      // Get rootId from token
      const rootId = req.app.locals.logData?.orgRootDnaId;
      let _msg = data?.message;
      if (!_msg) {
        if (res.statusCode >= 500) {
          _msg = "ไม่สำเร็จ";
        } else if (res.statusCode >= 400) {
          _msg = "พบข้อผิดพลาด";
        } else if (res.statusCode >= 200) {
          _msg = "สำเร็จ";
        }
      }
      if (level === 1 && res.statusCode < 500) return;
      if (level === 2 && res.statusCode < 400) return;
      if (level === 3 && res.statusCode < 200) return;
@ -106,7 +94,7 @@ async function logMiddleware(req: Request, res: Response, next: NextFunction) {
        method: req.method,
        endpoint: req.url,
        responseCode: String(res.statusCode === 304 ? 200 : res.statusCode),
-        responseDescription: _msg,
+        responseDescription: data?.message,
        input: level === 4 ? JSON.stringify(req.body, null, 2) : undefined,
        output: level === 4 ? JSON.stringify(data, null, 2) : undefined,
        ...req.app.locals.logData,
--- a/src/middlewares/user.ts
+++ b/src/middlewares/user.ts
@ -25,11 +25,5 @@ export type RequestWithUserWebService = Request & {
    id: string;
    name: string;
    accessApi: string[];
    accessType?: string;
    dnaRootId?: string | null;
    dnaChild1Id?: string | null;
    dnaChild2Id?: string | null;
    dnaChild3Id?: string | null;
    dnaChild4Id?: string | null;
  };
 };
--- a/src/migration/1776308026834-add_position_fields_to_profile.ts
+++ b/src/migration/1776308026834-add_position_fields_to_profile.ts
@ -1,37 +0,0 @@
 import { MigrationInterface, QueryRunner } from "typeorm";
 export class AddPositionFieldsToProfile1776308026834 implements MigrationInterface {
    name = 'AddPositionFieldsToProfile1776308026834'
    public async up(queryRunner: QueryRunner): Promise<void> {
        await queryRunner.query(`ALTER TABLE \`profile\` ADD \`positionField\` varchar(45) NULL COMMENT 'สายงาน'`);
        await queryRunner.query(`ALTER TABLE \`profile\` ADD \`posExecutive\` varchar(255) NULL COMMENT 'ตำแหน่งทางการบริหาร'`);
        await queryRunner.query(`ALTER TABLE \`profile\` ADD \`positionArea\` varchar(255) NULL COMMENT 'ด้าน/สาขา'`);
        await queryRunner.query(`ALTER TABLE \`profile\` ADD \`positionExecutiveField\` varchar(255) NULL COMMENT 'ด้านทางการบริหาร'`);
        await queryRunner.query(`ALTER TABLE \`profile\` ADD \`posMasterNo\` varchar(255) NULL COMMENT 'เลขที่ตำแหน่ง'`);
        await queryRunner.query(`ALTER TABLE \`profile\` ADD \`org\` text NULL COMMENT 'สังกัด'`);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` ADD \`positionField\` varchar(45) NULL COMMENT 'สายงาน'`);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` ADD \`posExecutive\` varchar(255) NULL COMMENT 'ตำแหน่งทางการบริหาร'`);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` ADD \`positionArea\` varchar(255) NULL COMMENT 'ด้าน/สาขา'`);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` ADD \`positionExecutiveField\` varchar(255) NULL COMMENT 'ด้านทางการบริหาร'`);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` ADD \`posMasterNo\` varchar(255) NULL COMMENT 'เลขที่ตำแหน่ง'`);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` ADD \`org\` text NULL COMMENT 'สังกัด'`);
    }
    public async down(queryRunner: QueryRunner): Promise<void> {
        await queryRunner.query(`ALTER TABLE \`profileHistory\` DROP COLUMN \`org\``);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` DROP COLUMN \`posMasterNo\``);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` DROP COLUMN \`positionExecutiveField\``);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` DROP COLUMN \`positionArea\``);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` DROP COLUMN \`posExecutive\``);
        await queryRunner.query(`ALTER TABLE \`profileHistory\` DROP COLUMN \`positionField\``);
        await queryRunner.query(`ALTER TABLE \`profile\` DROP COLUMN \`org\``);
        await queryRunner.query(`ALTER TABLE \`profile\` DROP COLUMN \`posMasterNo\``);
        await queryRunner.query(`ALTER TABLE \`profile\` DROP COLUMN \`positionExecutiveField\``);
        await queryRunner.query(`ALTER TABLE \`profile\` DROP COLUMN \`positionArea\``);
        await queryRunner.query(`ALTER TABLE \`profile\` DROP COLUMN \`posExecutive\``);
        await queryRunner.query(`ALTER TABLE \`profile\` DROP COLUMN \`positionField\``);
    }
 }
--- a/src/migration/1778208324657-add_status_enum_to_issues.ts
+++ b/src/migration/1778208324657-add_status_enum_to_issues.ts
@ -1,13 +0,0 @@
 import { MigrationInterface, QueryRunner } from "typeorm";
 export class AddStatusEnumToIssues1778208324657 implements MigrationInterface {
    name = 'AddStatusEnumToIssues1778208324657'
    public async up(queryRunner: QueryRunner): Promise<void> {
        await queryRunner.query(`ALTER TABLE \`issues\` CHANGE \`status\` \`status\` enum ('NEW', 'IN_PROGRESS', 'RESOLVED', 'CLOSED', 'HELPDESK_IN_PROGRESS', 'REPLIED') NOT NULL COMMENT 'สถานะการแก้ไขปัญหา' DEFAULT 'NEW'`);
    }
    public async down(queryRunner: QueryRunner): Promise<void> {
        await queryRunner.query(`ALTER TABLE \`issues\` CHANGE \`status\` \`status\` enum ('NEW', 'IN_PROGRESS', 'RESOLVED', 'CLOSED') NOT NULL COMMENT 'สถานะการแก้ไขปัญหา' DEFAULT 'NEW'`);
    }
 }
--- a/src/migration/1779244154610-update_posMasterEmpHis_add_dna.ts
+++ b/src/migration/1779244154610-update_posMasterEmpHis_add_dna.ts
@ -1,23 +0,0 @@
 import { MigrationInterface, QueryRunner } from "typeorm";
 export class UpdatePosMasterEmpHisAddDna1779244154610 implements MigrationInterface {
    name = 'UpdatePosMasterEmpHisAddDna1779244154610'
    public async up(queryRunner: QueryRunner): Promise<void> {
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` ADD \`profileEmployeeId\` varchar(40) NULL COMMENT 'คีย์นอก(FK)ของตาราง profileEmployee'`);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` ADD \`rootDnaId\` varchar(40) NULL COMMENT 'dna ของตาราง orgRoot'`);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` ADD \`child1DnaId\` varchar(40) NULL COMMENT 'dna ของตาราง orgChild1'`);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` ADD \`child2DnaId\` varchar(40) NULL COMMENT 'dna ของตาราง orgChild2'`);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` ADD \`child3DnaId\` varchar(40) NULL COMMENT 'dna ของตาราง orgChild3'`);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` ADD \`child4DnaId\` varchar(40) NULL COMMENT 'dna ของตาราง orgChild4'`);
    }
    public async down(queryRunner: QueryRunner): Promise<void> {
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` DROP COLUMN \`child4DnaId\``);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` DROP COLUMN \`child3DnaId\``);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` DROP COLUMN \`child2DnaId\``);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` DROP COLUMN \`child1DnaId\``);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` DROP COLUMN \`rootDnaId\``);
        await queryRunner.query(`ALTER TABLE \`posMasterEmployeeHistory\` DROP COLUMN \`profileEmployeeId\``);
    }
 }
--- a/src/scripts/ClearOldOrgRevision.ts
+++ b/src/scripts/ClearOldOrgRevision.ts
@ -1,27 +0,0 @@
 import "dotenv/config";
 import "reflect-metadata";
 import { AppDataSource } from "../database/data-source";
 import { clearOldOrgRevisionData } from "../services/ClearOldOrgRevisionService";
 // "clear:old-org-revision": "ts-node src/scripts/ClearOldOrgRevision.ts",
 const defaultOrgRevisionId = "24dacf63-d289-496c-8102-8b25079dbaf2";
 async function main(): Promise<void> {
  const orgRevisionId = process.argv[2] || defaultOrgRevisionId;
  try {
    await AppDataSource.initialize();
    const result = await clearOldOrgRevisionData(orgRevisionId);
    console.info(JSON.stringify(result, null, 2));
  } catch (error) {
    console.error("[ClearOldOrgRevision] Failed:", error);
    process.exitCode = 1;
  } finally {
    if (AppDataSource.isInitialized) {
      await AppDataSource.destroy();
    }
  }
 }
 void main();
--- a/src/services/ActingPositionService.ts
+++ b/src/services/ActingPositionService.ts
@ -1,186 +0,0 @@
 import { AppDataSource } from "../database/data-source";
 import { AuthRoleAttr } from "../entities/AuthRoleAttr";
 import { PosMasterAct } from "../entities/PosMasterAct";
 export interface ActingPositionData {
  isAct: boolean;
  posMasterActs: Array<{
    privilege: string | null;
    posNo: string | null;
    rootDnaId: string | null;
    child1DnaId: string | null;
    child2DnaId: string | null;
    child3DnaId: string | null;
    child4DnaId: string | null;
  }>;
 }
 export interface ActingPositionWithPrivilegeData extends ActingPositionData {
  privilege?: string | null;
 }
 /**
 * Service สำหรับจัดการข้อมูลตำแหน่งที่รักษาการและ privilege
 */
 export class ActingPositionService {
  private posMasterActRepo = AppDataSource.getRepository(PosMasterAct);
  private authRoleAttrRepo = AppDataSource.getRepository(AuthRoleAttr);
  /**
   * ดึงข้อมูลตำแหน่งที่รักษาการและ privilege
   *
   * @param profileId - ID ของ profile ที่ต้องการตรวจสอบ
   * @param orgRevisionId - ID ของ orgRevision ปัจจุบัน
   * @param action - Action ที่ต้องการตรวจสอบสิทธิ์ (CREATE, DELETE, GET, LIST, UPDATE)
   * @param system - System ID ที่ต้องการตรวจสอบสิทธิ์ (authSysId)
   * @returns ข้อมูลตำแหน่งที่รักษาการและ privilege
   */
  async getActingPositionsWithPrivilege(
    profileId: string,
    orgRevisionId: string | undefined,
    action?: string,
    system?: string
  ): Promise<ActingPositionWithPrivilegeData> {
    // ดึงข้อมูล posMasterAct โดย join กับ posMaster (ตำแหน่งที่ถูกรักษาการ)
    const posMasterActs = await this.posMasterActRepo
      .createQueryBuilder("posMasterAct")
      .leftJoinAndSelect("posMasterAct.posMaster", "posMaster")
      .addSelect([
        "posMaster.authRoleId",  // เพิ่มการดึง authRoleId จากตำแหน่งที่ถูกรักษาการ
        "posMaster.posMasterNo",   // เพิ่มการดึงเลขที่ตำแหน่ง
        "posMaster.posMasterNoPrefix",  // เพิ่มการดึง prefix ของเลขที่ตำแหน่ง
        "posMaster.posMasterNoSuffix"   // เพิ่มการดึง suffix ของเลขที่ตำแหน่ง
      ])
      .leftJoinAndSelect("posMaster.orgRoot", "orgRoot")
      .leftJoinAndSelect("posMaster.orgChild1", "orgChild1")
      .leftJoinAndSelect("posMaster.orgChild2", "orgChild2")
      .leftJoinAndSelect("posMaster.orgChild3", "orgChild3")
      .leftJoinAndSelect("posMaster.orgChild4", "orgChild4")
      .leftJoinAndSelect("posMaster.orgRevision", "orgRevision")
      .leftJoinAndSelect("posMasterAct.posMasterChild", "posMasterChild")
      .leftJoinAndSelect("posMasterChild.current_holder", "profileChild")
      .where("profileChild.id = :profileId", { profileId })
      .andWhere("posMaster.orgRevisionId = :orgRevisionId", { orgRevisionId })
      .andWhere("orgRevision.orgRevisionIsCurrent = true")
      .andWhere("orgRevision.orgRevisionIsDraft = false")
      .getMany();
    if (posMasterActs.length === 0) {
      return {
        isAct: false,
        posMasterActs: [],
      };
    }
    // วนลูปแต่ละ posMasterAct เพื่อดึง privilege ของตำแหน่งที่รักษาการ
    const posMasterActsResponse = await Promise.all(
      posMasterActs.map(async (act) => {
        let privilege: string | null = null;
        let privileges: Record<string, string> = {};
        if (act.posMaster?.authRoleId) {
          // ถ้าระบุ action และ system มา ให้ดึงเฉพาะ privilege ของระบบนั้นๆ
          if (action && system) {
            const roleAttr = await this.authRoleAttrRepo
              .createQueryBuilder("authRoleAttr")
              .select(["authRoleAttr.attrPrivilege", "authRoleAttr.attrIsCreate", "authRoleAttr.attrIsDelete", "authRoleAttr.attrIsGet", "authRoleAttr.attrIsList", "authRoleAttr.attrIsUpdate"])
              .where("authRoleAttr.authRoleId = :authRoleId", {
                authRoleId: act.posMaster.authRoleId,
              })
              .andWhere("authRoleAttr.authSysId = :system", { system })
              .getOne();
            if (roleAttr) {
              // ตรวจสอบสิทธิ์ตาม action
              let hasPermission = false;
              const actionUpper = action.trim().toUpperCase();
              switch (actionUpper) {
                case "CREATE":
                  hasPermission = roleAttr.attrIsCreate;
                  break;
                case "DELETE":
                  hasPermission = roleAttr.attrIsDelete;
                  break;
                case "GET":
                  hasPermission = roleAttr.attrIsGet;
                  break;
                case "LIST":
                  hasPermission = roleAttr.attrIsList;
                  break;
                case "UPDATE":
                  hasPermission = roleAttr.attrIsUpdate;
                  break;
              }
              if (hasPermission) {
                privilege = roleAttr.attrPrivilege;
              }
            }
          } else {
            // ดึงข้อมูล AuthRoleAttr สำหรับทุกระบบ
            const roleAttrs = await this.authRoleAttrRepo
              .createQueryBuilder("authRoleAttr")
              .select(["authRoleAttr.authSysId", "authRoleAttr.attrPrivilege"])
              .where("authRoleAttr.authRoleId = :authRoleId", {
                authRoleId: act.posMaster.authRoleId,
              })
              .getMany();
            privileges = roleAttrs.reduce((acc, attr) => {
              acc[attr.authSysId] = attr.attrPrivilege;
              return acc;
            }, {} as Record<string, string>);
          }
        }
        // จัดรูปแบบเลขที่ตำแหน่งตามรูปแบบ shortName ที่ใช้ในระบบ
        const holder = act.posMaster;
        const posNo = !holder
          ? null
          : holder.orgChild4 != null
            ? `${holder.orgChild4.orgChild4ShortName} ${holder.posMasterNo}`
            : holder.orgChild3 != null
              ? `${holder.orgChild3.orgChild3ShortName} ${holder.posMasterNo}`
              : holder.orgChild2 != null
                ? `${holder.orgChild2.orgChild2ShortName} ${holder.posMasterNo}`
                : holder.orgChild1 != null
                  ? `${holder.orgChild1.orgChild1ShortName} ${holder.posMasterNo}`
                  : holder.orgRoot != null
                    ? `${holder.orgRoot.orgRootShortName} ${holder.posMasterNo}`
                    : null;
        return {
          posNo: posNo,
          privilege: action && system ? privilege : JSON.stringify(privileges),
          rootDnaId: act.posMaster?.orgRoot?.ancestorDNA ?? null,
          child1DnaId: act.posMaster?.orgChild1?.ancestorDNA ?? null,
          child2DnaId: act.posMaster?.orgChild2?.ancestorDNA ?? null,
          child3DnaId: act.posMaster?.orgChild3?.ancestorDNA ?? null,
          child4DnaId: act.posMaster?.orgChild4?.ancestorDNA ?? null,
        };
      })
    );
    // ถ้าระบุ action และ system มา ให้ดึง privilege ของตำแหน่งแรก
    let specificPrivilege: string | null = null;
    if (action && system && posMasterActsResponse.length > 0) {
      specificPrivilege = posMasterActsResponse[0].privilege;
    }
    const response: ActingPositionWithPrivilegeData = {
      isAct: true,
      posMasterActs: posMasterActsResponse,
    };
    // ถ้าระบุ action และ system มา ให้เพิ่ม privilege เข้าไปใน response ด้วย
    if (action && system) {
      response.privilege = specificPrivilege ?? null;
    }
    return response;
  }
 }
 // Export singleton instance
 export const actingPositionService = new ActingPositionService();
--- a/src/services/ClearOldOrgRevisionService.ts
+++ b/src/services/ClearOldOrgRevisionService.ts
@ -1,232 +0,0 @@
 import { EntityManager, EntityTarget, In } from "typeorm";
 import { AppDataSource } from "../database/data-source";
 import { OrgRevision } from "../entities/OrgRevision";
 import { PosMaster } from "../entities/PosMaster";
 import { Position } from "../entities/Position";
 import { OrgRoot } from "../entities/OrgRoot";
 import { OrgChild1 } from "../entities/OrgChild1";
 import { OrgChild2 } from "../entities/OrgChild2";
 import { OrgChild3 } from "../entities/OrgChild3";
 import { OrgChild4 } from "../entities/OrgChild4";
 import { PosMasterAct } from "../entities/PosMasterAct";
 import { PosMasterAssign } from "../entities/PosMasterAssign";
 import { PermissionOrg } from "../entities/PermissionOrg";
 import { PermissionProfile } from "../entities/PermissionProfile";
 import { EmployeePosMaster } from "../entities/EmployeePosMaster";
 import { EmployeeTempPosMaster } from "../entities/EmployeeTempPosMaster";
 import { EmployeePosition } from "../entities/EmployeePosition";
 import { orgStructureCache } from "../utils/OrgStructureCache";
 export interface ClearOldOrgRevisionSummary {
  orgRevisionId: string;
  orgRevisionName: string;
  deleted: {
    positions: number;
    employeePositionsByPosMaster: number;
    employeePositionsByTempPosMaster: number;
    posMasterActsByParent: number;
    posMasterActsByChild: number;
    posMasterAssigns: number;
    posMasters: number;
    employeePosMasters: number;
    employeeTempPosMasters: number;
    permissionOrgs: number;
    permissionProfiles: number;
    orgChild4s: number;
    orgChild3s: number;
    orgChild2s: number;
    orgChild1s: number;
    orgRoots: number;
    orgRevisions: number;
  };
 }
 interface OrgRevisionSnapshot {
  id: string;
  orgRevisionName: string;
  orgRevisionIsCurrent: boolean;
  orgRevisionIsDraft: boolean;
 }
 export async function clearOldOrgRevisionData(
  orgRevisionId: string,
 ): Promise<ClearOldOrgRevisionSummary> {
  const result = await AppDataSource.transaction(async (manager) => {
    const orgRevision = await manager.findOne(OrgRevision, {
      where: { id: orgRevisionId },
      select: ["id", "orgRevisionName", "orgRevisionIsCurrent", "orgRevisionIsDraft"],
    });
    if (!orgRevision) {
      throw new Error(`ไม่พบ orgRevision ที่ต้องการล้างข้อมูล: ${orgRevisionId}`);
    }
    validateOrgRevisionForDeletion(orgRevision);
    const [posMasters, orgRoots, employeePosMasters, employeeTempPosMasters] = await Promise.all([
      manager.find(PosMaster, {
        where: { orgRevisionId },
        select: ["id"],
      }),
      manager.find(OrgRoot, {
        where: { orgRevisionId },
        select: ["id"],
      }),
      manager.find(EmployeePosMaster, {
        where: { orgRevisionId },
        select: ["id"],
      }),
      manager.find(EmployeeTempPosMaster, {
        where: { orgRevisionId },
        select: ["id"],
      }),
    ]);
    const posMasterIds = posMasters.map((item) => item.id);
    const orgRootIds = orgRoots.map((item) => item.id);
    const employeePosMasterIds = employeePosMasters.map((item) => item.id);
    const employeeTempPosMasterIds = employeeTempPosMasters.map((item) => item.id);
    const [
      positionsCount,
      employeePositionsByPosMasterCount,
      employeePositionsByTempPosMasterCount,
      posMasterActsByParentCount,
      posMasterActsByChildCount,
      posMasterAssignsCount,
      permissionOrgsCount,
      permissionProfilesCount,
      orgChild4sCount,
      orgChild3sCount,
      orgChild2sCount,
      orgChild1sCount,
    ] = await Promise.all([
      countByIds(manager, Position, "posMasterId", posMasterIds),
      countByIds(manager, EmployeePosition, "posMasterId", employeePosMasterIds),
      countByIds(manager, EmployeePosition, "posMasterTempId", employeeTempPosMasterIds),
      countByIds(manager, PosMasterAct, "posMasterId", posMasterIds),
      countByIds(manager, PosMasterAct, "posMasterChildId", posMasterIds),
      countByIds(manager, PosMasterAssign, "posMasterId", posMasterIds),
      countByIds(manager, PermissionOrg, "orgRootId", orgRootIds),
      countByIds(manager, PermissionProfile, "orgRootId", orgRootIds),
      manager.count(OrgChild4, { where: { orgRevisionId } }),
      manager.count(OrgChild3, { where: { orgRevisionId } }),
      manager.count(OrgChild2, { where: { orgRevisionId } }),
      manager.count(OrgChild1, { where: { orgRevisionId } }),
    ]);
    if (positionsCount > 0) {
      await manager.delete(Position, { posMasterId: In(posMasterIds) });
    }
    if (employeePositionsByPosMasterCount > 0) {
      await manager.delete(EmployeePosition, { posMasterId: In(employeePosMasterIds) });
    }
    if (employeePositionsByTempPosMasterCount > 0) {
      await manager.delete(EmployeePosition, { posMasterTempId: In(employeeTempPosMasterIds) });
    }
    if (posMasterActsByParentCount > 0) {
      await manager.delete(PosMasterAct, { posMasterId: In(posMasterIds) });
    }
    if (posMasterActsByChildCount > 0) {
      await manager.delete(PosMasterAct, { posMasterChildId: In(posMasterIds) });
    }
    if (posMasterAssignsCount > 0) {
      await manager.delete(PosMasterAssign, { posMasterId: In(posMasterIds) });
    }
    const posMastersCount = posMasterIds.length;
    const employeePosMastersCount = employeePosMasterIds.length;
    const employeeTempPosMastersCount = employeeTempPosMasterIds.length;
    if (posMastersCount > 0) {
      await manager.delete(PosMaster, { orgRevisionId });
    }
    if (employeePosMastersCount > 0) {
      await manager.delete(EmployeePosMaster, { orgRevisionId });
    }
    if (employeeTempPosMastersCount > 0) {
      await manager.delete(EmployeeTempPosMaster, { orgRevisionId });
    }
    if (permissionOrgsCount > 0) {
      await manager.delete(PermissionOrg, { orgRootId: In(orgRootIds) });
    }
    if (permissionProfilesCount > 0) {
      await manager.delete(PermissionProfile, { orgRootId: In(orgRootIds) });
    }
    if (orgChild4sCount > 0) {
      await manager.delete(OrgChild4, { orgRevisionId });
    }
    if (orgChild3sCount > 0) {
      await manager.delete(OrgChild3, { orgRevisionId });
    }
    if (orgChild2sCount > 0) {
      await manager.delete(OrgChild2, { orgRevisionId });
    }
    if (orgChild1sCount > 0) {
      await manager.delete(OrgChild1, { orgRevisionId });
    }
    const orgRootsCount = orgRootIds.length;
    if (orgRootsCount > 0) {
      await manager.delete(OrgRoot, { orgRevisionId });
    }
    await manager.delete(OrgRevision, { id: orgRevisionId });
    return {
      orgRevisionId: orgRevision.id,
      orgRevisionName: orgRevision.orgRevisionName,
      deleted: {
        positions: positionsCount,
        employeePositionsByPosMaster: employeePositionsByPosMasterCount,
        employeePositionsByTempPosMaster: employeePositionsByTempPosMasterCount,
        posMasterActsByParent: posMasterActsByParentCount,
        posMasterActsByChild: posMasterActsByChildCount,
        posMasterAssigns: posMasterAssignsCount,
        posMasters: posMastersCount,
        employeePosMasters: employeePosMastersCount,
        employeeTempPosMasters: employeeTempPosMastersCount,
        permissionOrgs: permissionOrgsCount,
        permissionProfiles: permissionProfilesCount,
        orgChild4s: orgChild4sCount,
        orgChild3s: orgChild3sCount,
        orgChild2s: orgChild2sCount,
        orgChild1s: orgChild1sCount,
        orgRoots: orgRootsCount,
        orgRevisions: 1,
      },
    };
  });
  orgStructureCache.invalidate(orgRevisionId);
  return result;
 }
 function validateOrgRevisionForDeletion(orgRevision: OrgRevisionSnapshot): void {
  if (orgRevision.orgRevisionIsCurrent) {
    throw new Error(`ไม่สามารถลบ orgRevision ปัจจุบันได้: ${orgRevision.id}`);
  }
  if (orgRevision.orgRevisionIsDraft) {
    throw new Error(`ไม่สามารถลบ orgRevision แบบร่างได้ด้วยสคริปต์นี้: ${orgRevision.id}`);
  }
 }
 async function countByIds<Entity extends object>(
  manager: EntityManager,
  entity: EntityTarget<Entity>,
  field: keyof Entity,
  ids: string[],
 ): Promise<number> {
  if (ids.length === 0) {
    return 0;
  }
  const alias = "entity";
  return manager
    .createQueryBuilder(entity, alias)
    .where(`${alias}.${String(field)} IN (:...ids)`, { ids })
    .getCount();
 }
--- a/src/services/KeycloakAttributeService.ts
+++ b/src/services/KeycloakAttributeService.ts
@ -442,223 +442,6 @@ export class KeycloakAttributeService {
    }
  }
  /**
   * Check if Keycloak user has empty/null empType attribute
   * @param keycloakUserId - Keycloak user ID
   * @returns Object with isEmpty flag and currentEmpType value
   */
  async checkEmpTypeEmpty(keycloakUserId: string): Promise<{
    isEmpty: boolean;
    currentEmpType?: string;
  }> {
    try {
      const user = await getUser(keycloakUserId);
      if (!user || !user.attributes) {
        return { isEmpty: true };
      }
      const empType = user.attributes.empType?.[0];
      return {
        isEmpty: !empType || empType.trim() === "",
        currentEmpType: empType || "",
      };
    } catch (error) {
      console.error(`[checkEmpTypeEmpty] Error for user ${keycloakUserId}:`, error);
      return { isEmpty: true }; // Assume empty on error
    }
  }
  /**
   * Sync profiles with missing empType for a specific month
   * @param options - Sync configuration
   * @returns Sync results summary
   */
  async syncMissingEmpTypeByMonth(options: {
    month: string; // "YYYY-MM" format
    profileType?: "PROFILE" | "PROFILE_EMPLOYEE";
    dryRun?: boolean;
    concurrency?: number;
    rateLimit?: number;
  }): Promise<{
    month: string;
    profileType: string;
    totalProfiles: number;
    profilesChecked: number;
    missingEmpType: number;
    syncSuccess: number;
    syncFailed: number;
    skipped: number;
    executionTime: string;
    dryRun: boolean;
  }> {
    const startTime = Date.now();
    const {
      month,
      profileType = "PROFILE",
      dryRun = false,
      concurrency = 5,
      rateLimit = 10,
    } = options;
    const result = {
      month,
      profileType,
      totalProfiles: 0,
      profilesChecked: 0,
      missingEmpType: 0,
      syncSuccess: 0,
      syncFailed: 0,
      skipped: 0,
      executionTime: "",
      dryRun,
    };
    let rateLimiter: RateLimiter | null = null;
    try {
      // Parse month (YYYY-MM) to date range
      const [year, monthNum] = month.split("-").map(Number);
      const startDate = new Date(Date.UTC(year, monthNum - 1, 1, 0, 0, 0));
      const endDate = new Date(Date.UTC(year, monthNum, 0, 23, 59, 59, 999));
      console.log(
        `[syncMissingEmpTypeByMonth] Processing ${profileType} for ${month} (${startDate.toISOString()} to ${endDate.toISOString()})`,
      );
      // Initialize rate limiter if rate limiting is enabled
      if (rateLimit && rateLimit > 0) {
        rateLimiter = new RateLimiter(rateLimit);
        console.log(
          `[syncMissingEmpTypeByMonth] Rate limiting enabled: ${rateLimit} requests/second`,
        );
      }
      // Select repository based on profile type
      const repo = profileType === "PROFILE" ? this.profileRepo : this.profileEmployeeRepo;
      // Query profiles updated within the month
      const profiles = await repo
        .createQueryBuilder("p")
        .where("p.keycloak IS NOT NULL")
        .andWhere("p.keycloak != :empty", { empty: "" })
        .andWhere("p.isDelete = :isDelete", { isDelete: false })
        .andWhere("p.lastUpdatedAt BETWEEN :start AND :end", {
          start: startDate,
          end: endDate,
        })
        .orderBy("p.lastUpdatedAt", "ASC")
        .getMany();
      result.totalProfiles = profiles.length;
      console.log(`[syncMissingEmpTypeByMonth] Found ${profiles.length} profiles to check`);
      if (profiles.length === 0) {
        result.executionTime = `${((Date.now() - startTime) / 1000).toFixed(2)}s`;
        return result;
      }
      // Process profiles in parallel with concurrency limit
      for (let i = 0; i < profiles.length; i += concurrency) {
        const batch = profiles.slice(i, i + concurrency);
        await Promise.all(
          batch.map(async (profile) => {
            // Apply rate limiting if enabled
            if (rateLimiter) {
              await rateLimiter.throttle();
            }
            const keycloakUserId = profile.keycloak;
            if (!keycloakUserId) {
              return {
                profileId: profile.id,
                status: "skipped" as const,
                reason: "No keycloak ID",
              };
            }
            try {
              // Check if empType is empty in Keycloak
              const { isEmpty, currentEmpType } = await this.checkEmpTypeEmpty(keycloakUserId);
              result.profilesChecked++;
              if (!isEmpty) {
                result.skipped++;
                return {
                  profileId: profile.id,
                  status: "skipped" as const,
                  reason: "empType already exists",
                  empType: currentEmpType,
                };
              }
              result.missingEmpType++;
              if (dryRun) {
                return {
                  profileId: profile.id,
                  status: "skipped" as const,
                  reason: "dry run",
                  wouldSync: true,
                };
              }
              // Sync the profile
              const success = await withRetry(
                async () => this.syncOnOrganizationChange(profile.id, profileType),
                3, // maxRetries
                1000, // baseDelay
              );
              if (success) {
                result.syncSuccess++;
                return {
                  profileId: profile.id,
                  status: "synced" as const,
                };
              } else {
                result.syncFailed++;
                return {
                  profileId: profile.id,
                  status: "failed" as const,
                  reason: "Sync returned false",
                };
              }
            } catch (error: any) {
              result.syncFailed++;
              return {
                profileId: profile.id,
                status: "failed" as const,
                reason: error.message || "Unknown error",
              };
            }
          }),
        );
        // Log progress every 50 profiles
        const completed = Math.min(i + concurrency, profiles.length);
        if (completed % 50 === 0 || completed === profiles.length) {
          console.log(
            `[syncMissingEmpTypeByMonth] Progress: ${completed}/${profiles.length} profiles processed`,
          );
        }
      }
      result.executionTime = `${((Date.now() - startTime) / 1000).toFixed(2)}s`;
      console.log(
        `[syncMissingEmpTypeByMonth] Completed: total=${result.totalProfiles}, checked=${result.profilesChecked}, missing=${result.missingEmpType}, synced=${result.syncSuccess}, failed=${result.syncFailed}, skipped=${result.skipped}, elapsed=${result.executionTime}`,
      );
    } catch (error) {
      console.error("[syncMissingEmpTypeByMonth] Error:", error);
      throw error;
    }
    return result;
  }
  /**
   * Clear org DNA attributes in Keycloak for given profiles
   * Sets all org DNA fields to empty strings
@ -768,13 +551,7 @@ export class KeycloakAttributeService {
    maxRetries?: number; // Retry attempts for failed operations
    rateLimit?: number; // Requests per second
    clearProgress?: boolean; // Start fresh, ignore existing progress
-  }): Promise<{
+  }): Promise<{ total: number; success: number; failed: number; details: any[]; resumed?: boolean }> {
    total: number;
    success: number;
    failed: number;
    details: any[];
    resumed?: boolean;
  }> {
    const limit = options?.limit;
    const concurrency = options?.concurrency ?? 5;
    const resume = options?.resume ?? false;
@ -928,10 +705,7 @@ export class KeycloakAttributeService {
          // Save progress after each batch
          SyncProgressManager.save(updatedState);
          // Log progress every 50 items
-          if (
+          if (updatedState.lastSyncedIndex % 50 === 0 || updatedState.lastSyncedIndex === updatedState.totalProfiles) {
            updatedState.lastSyncedIndex % 50 === 0 ||
            updatedState.lastSyncedIndex === updatedState.totalProfiles
          ) {
            SyncProgressManager.logProgress(updatedState);
          }
        },
--- a/src/services/PositionService.ts
+++ b/src/services/PositionService.ts
@ -1,4 +1,4 @@
-import { EntityManager, In } from "typeorm";
+import { In } from "typeorm";
 import { SavePosMasterHistory } from "./../interfaces/OrgMapping";
 import { AppDataSource } from "../database/data-source";
 import { EmployeePosMaster } from "../entities/EmployeePosMaster";
@ -12,185 +12,110 @@ import { Position } from "../entities/Position";
 import { ProfileEducation } from "../entities/ProfileEducation";
 import { RequestWithUser } from "../middlewares/user";
 /**
 * function สำหรับดึงตำแหน่งที่รักษาการแทน
 * ใช้กรณี positionSign ว่าง
 * - ถ้า posType = "อำนวยการ" หรือ "บริหาร" ใช้ posExecutiveName
 * - ถ้า posType อื่นๆ ใช้ positionName + posLevel
 */
 export async function getPosMasterPositions(
  posMasterIds: string[]
 ): Promise<Map<string, string>> {
  if (posMasterIds.length === 0) {
    return new Map();
  }
  const positionRepo = AppDataSource.getRepository(Position);
  // Query รอบที่ 1: หา position ที่มีคนครอง
  const positionsWithHolder = await positionRepo.find({
    where: {
      posMasterId: In(posMasterIds),
      positionIsSelected: true,
    },
    relations: ["posType", "posLevel", "posExecutive"],
  });
  // หา posMasterId ที่ยังไม่ได้ผลลัพธ์
  const foundMasterIds = new Set(positionsWithHolder.map((p) => p.posMasterId));
  const missingMasterIds = posMasterIds.filter((id) => !foundMasterIds.has(id));
  // Query รอบที่ 2: เฉพาะที่ขาด (กรณีไม่มีคนครอง)
  let positionsWithoutHolder: Position[] = [];
  if (missingMasterIds.length > 0) {
    positionsWithoutHolder = await positionRepo.find({
      where: {
        posMasterId: In(missingMasterIds),
      },
      order: { createdAt: "ASC" },
      relations: ["posType", "posLevel", "posExecutive"],
    });
  }
  // รวม positions และสร้าง Map
  const allPositions = [...positionsWithHolder, ...positionsWithoutHolder];
  const positionMap = new Map<string, string>();
  for (const pos of allPositions) {
    const posTypeName = pos.posType?.posTypeName || "";
    let positionText = "";
    if (posTypeName === "อำนวยการ" || posTypeName === "บริหาร") {
      positionText = pos.posExecutive?.posExecutiveName || `${pos.positionName || ""}ระดับ${pos.posLevel?.posLevelName || ""}`.trim();
    } else {
      positionText = `${pos.positionName || ""}${pos.posLevel?.posLevelName || ""}`.trim();
    }
    positionMap.set(pos.posMasterId, positionText);
  }
  return positionMap;
 }
 export async function CreatePosMasterHistoryOfficer(
  posMasterId: string,
  request: RequestWithUser | null,
  type?: string | null,
  positionData?: { positionId?: string } | null,
  manager?: EntityManager,
 ): Promise<boolean> {
  const execute = async (transactionManager: EntityManager) => {
    const repoPosmaster = transactionManager.getRepository(PosMaster);
    const repoHistory = transactionManager.getRepository(PosMasterHistory);
    const repoOrgRevision = transactionManager.getRepository(OrgRevision);
    const repoPosition = transactionManager.getRepository(Position);
    const pm = await repoPosmaster.findOne({
      where: { id: posMasterId },
      relations: [
        "positions",
        "positions.posLevel",
        "positions.posType",
        "positions.posExecutive",
        "orgRoot",
        "orgChild1",
        "orgChild2",
        "orgChild3",
        "orgChild4",
        "current_holder",
        "next_holder",
      ],
    });
    if (!pm || !pm.ancestorDNA) {
      return;
    }
    const checkCurrentRevision = await repoOrgRevision.findOne({
      where: {
        id: pm.orgRevisionId,
        orgRevisionIsCurrent: true,
        orgRevisionIsDraft: false,
      },
    });
    const _null: any = null;
    const h = new PosMasterHistory();
    // query position โดยตรงจาก positionRepository
    let selectedPosition: Position | null = null;
    if (positionData?.positionId) {
      selectedPosition = await repoPosition.findOne({
        where: { id: positionData.positionId },
        relations: { posLevel: true, posType: true, posExecutive: true },
      });
    } else {
      // ใช้ logic เดิม หาจาก pm.positions ที่ positionIsSelected = true
      selectedPosition =
        pm.positions.length > 0
          ? pm.positions.find((p) => p.positionIsSelected === true) ?? null
          : null;
    }
    h.ancestorDNA = pm.ancestorDNA ? pm.ancestorDNA : _null;
    if (!type || type != "DELETE") {
      if (checkCurrentRevision) {
        h.prefix = pm.current_holder?.prefix || _null;
        h.firstName = pm.current_holder?.firstName || _null;
        h.lastName = pm.current_holder?.lastName || _null;
        h.profileId = pm.current_holder?.id || _null;
      } else {
        h.prefix = pm.next_holder?.prefix || _null;
        h.firstName = pm.next_holder?.firstName || _null;
        h.lastName = pm.next_holder?.lastName || _null;
      }
      h.position = selectedPosition?.positionName ?? _null;
      h.posType = selectedPosition?.posType?.posTypeName ?? _null;
      h.posLevel = selectedPosition?.posLevel?.posLevelName ?? _null;
    }
    h.rootDnaId = pm.orgRoot?.ancestorDNA || _null;
    h.child1DnaId = pm.orgChild1?.ancestorDNA || _null;
    h.child2DnaId = pm.orgChild2?.ancestorDNA || _null;
    h.child3DnaId = pm.orgChild3?.ancestorDNA || _null;
    h.child4DnaId = pm.orgChild4?.ancestorDNA || _null;
    h.posMasterNoPrefix = pm.posMasterNoPrefix ?? _null;
    h.posMasterNo = pm.posMasterNo ?? _null;
    h.posMasterNoSuffix = pm.posMasterNoSuffix ?? _null;
    h.posExecutive = selectedPosition?.posExecutive?.posExecutiveName ?? _null;
    h.shortName =
      [
        pm.orgChild4?.orgChild4ShortName,
        pm.orgChild3?.orgChild3ShortName,
        pm.orgChild2?.orgChild2ShortName,
        pm.orgChild1?.orgChild1ShortName,
        pm.orgRoot?.orgRootShortName,
      ].find((s) => typeof s === "string" && s.trim().length > 0) ?? _null;
    const userId = request?.user?.sub ?? "";
    const userName = request?.user?.name ?? "system";
    h.createdUserId = userId;
    h.createdFullName = userName;
    h.lastUpdateUserId = userId;
    h.lastUpdateFullName = userName;
    h.createdAt = new Date();
    h.lastUpdatedAt = new Date();
    await repoHistory.save(h);
  };
  try {
-    if (manager) {
+    await AppDataSource.transaction(async (manager) => {
-      await execute(manager);
+      const repoPosmaster = manager.getRepository(PosMaster);
-      return true;
+      const repoHistory = manager.getRepository(PosMasterHistory);
-    }
+      const repoOrgRevision = manager.getRepository(OrgRevision);
      const repoPosition = manager.getRepository(Position);
-    await AppDataSource.transaction(async (transactionManager) => {
+      const pm = await repoPosmaster.findOne({
-      await execute(transactionManager);
+        where: { id: posMasterId },
        relations: [
          "positions",
          "positions.posLevel",
          "positions.posType",
          "positions.posExecutive",
          "orgRoot",
          "orgChild1",
          "orgChild2",
          "orgChild3",
          "orgChild4",
          "current_holder",
          "next_holder",
        ],
      });
      if (!pm) return false;
      if (!pm.ancestorDNA) return false;
      const checkCurrentRevision = await repoOrgRevision.findOne({
        where: {
          id: pm.orgRevisionId,
          orgRevisionIsCurrent: true,
          orgRevisionIsDraft: false,
        },
      });
      const _null: any = null;
      const h = new PosMasterHistory();
      // query position โดยตรงจาก positionRepository
      let selectedPosition: Position | null = null;
      if (positionData?.positionId) {
        selectedPosition = await repoPosition.findOne({
          where: { id: positionData.positionId },
          relations: { posLevel: true, posType: true, posExecutive: true },
        });
      } else {
        // ใช้ logic เดิม หาจาก pm.positions ที่ positionIsSelected = true
        selectedPosition =
          pm.positions.length > 0
            ? pm.positions.find((p) => p.positionIsSelected === true) ?? null
            : null;
      }
      h.ancestorDNA = pm.ancestorDNA ? pm.ancestorDNA : _null;
      if (!type || type != "DELETE") {
        if (checkCurrentRevision) {
          h.prefix = pm.current_holder?.prefix || _null;
          h.firstName = pm.current_holder?.firstName || _null;
          h.lastName = pm.current_holder?.lastName || _null;
          h.profileId = pm.current_holder?.id || _null;
        } else {
          h.prefix = pm.next_holder?.prefix || _null;
          h.firstName = pm.next_holder?.firstName || _null;
          h.lastName = pm.next_holder?.lastName || _null;
        }
        h.position = selectedPosition?.positionName ?? _null;
        h.posType = selectedPosition?.posType?.posTypeName ?? _null;
        h.posLevel = selectedPosition?.posLevel?.posLevelName ?? _null;
      }
      h.rootDnaId = pm.orgRoot?.ancestorDNA || _null;
      h.child1DnaId = pm.orgChild1?.ancestorDNA || _null;
      h.child2DnaId = pm.orgChild2?.ancestorDNA || _null;
      h.child3DnaId = pm.orgChild3?.ancestorDNA || _null;
      h.child4DnaId = pm.orgChild4?.ancestorDNA || _null;
      h.posMasterNoPrefix = pm.posMasterNoPrefix ?? _null;
      h.posMasterNo = pm.posMasterNo ?? _null;
      h.posMasterNoSuffix = pm.posMasterNoSuffix ?? _null;
      h.posExecutive = selectedPosition?.posExecutive?.posExecutiveName ?? _null;
      h.shortName =
        [
          pm.orgChild4?.orgChild4ShortName,
          pm.orgChild3?.orgChild3ShortName,
          pm.orgChild2?.orgChild2ShortName,
          pm.orgChild1?.orgChild1ShortName,
          pm.orgRoot?.orgRootShortName,
        ].find((s) => typeof s === "string" && s.trim().length > 0) ?? _null;
      const userId = request?.user?.sub ?? "";
      const userName = request?.user?.name ?? "system";
      h.createdUserId = userId;
      h.createdFullName = userName;
      h.lastUpdateUserId = userId;
      h.lastUpdateFullName = userName;
      h.createdAt = new Date();
      h.lastUpdatedAt = new Date();
      await repoHistory.save(h);
    });
    return true;
  } catch (err) {
    if (manager) {
      console.error("CreatePosMasterHistoryOfficer error (external transaction):", err);
      throw err;
    }
    console.error("CreatePosMasterHistoryOfficer transaction error:", err);
    return false;
  }
@ -199,7 +124,6 @@ export async function CreatePosMasterHistoryOfficer(
 export async function CreatePosMasterHistoryEmployee(
  posMasterId: string,
  request: RequestWithUser | null,
  type?: string | null,
 ): Promise<boolean> {
  try {
    await AppDataSource.transaction(async (manager) => {
@ -230,23 +154,15 @@ export async function CreatePosMasterHistoryEmployee(
          ? pm.positions.find((p) => p.positionIsSelected === true) ?? null
          : null;
      h.ancestorDNA = pm.ancestorDNA;
-      if (!type || type != "DELETE") {
+      h.prefix = pm.current_holder?.prefix || _null;
-        h.profileEmployeeId = pm.current_holder?.id || _null;
+      h.firstName = pm.current_holder?.firstName || _null;
-        h.prefix = pm.current_holder?.prefix || _null;
+      h.lastName = pm.current_holder?.lastName || _null;
        h.firstName = pm.current_holder?.firstName || _null;
        h.lastName = pm.current_holder?.lastName || _null;
        h.position = selectedPosition?.positionName ?? _null;
        h.posType = selectedPosition?.posType?.posTypeName ?? _null;
        h.posLevel = selectedPosition?.posLevel?.posLevelName ?? _null;
      }
      h.rootDnaId = pm.orgRoot?.ancestorDNA || _null;
      h.child1DnaId = pm.orgChild1?.ancestorDNA || _null;
      h.child2DnaId = pm.orgChild2?.ancestorDNA || _null;
      h.child3DnaId = pm.orgChild3?.ancestorDNA || _null;
      h.child4DnaId = pm.orgChild4?.ancestorDNA || _null;
      h.posMasterNoPrefix = pm.posMasterNoPrefix ?? _null;
      h.posMasterNo = pm.posMasterNo ?? _null;
      h.posMasterNoSuffix = pm.posMasterNoSuffix ?? _null;
      h.position = selectedPosition?.positionName ?? _null;
      h.posType = selectedPosition?.posType?.posTypeName ?? _null;
      h.posLevel = selectedPosition?.posLevel?.posLevelName ?? _null;
      h.shortName =
        [
          pm.orgChild4?.orgChild4ShortName,
--- a/src/services/RetirementService.ts
+++ b/src/services/RetirementService.ts
@ -1,139 +0,0 @@
 import { AppDataSource } from "../database/data-source";
 import { Profile } from "../entities/Profile";
 import { PostRetireToExprofile } from "../controllers/ExRetirementController";
 import { Between, MoreThanOrEqual } from "typeorm";
 const BATCH_SIZE = 100;
 const CONCURRENT_PER_BATCH = 10; // ส่ง parallel ทีละ 10 คนในแต่ละ batch
 export class RetirementService {
  private profileRepository = AppDataSource.getRepository(Profile);
  /**
   * Cronjob สำหรับส่งข้อมูลผู้เกษียณไปยังระบบพ้นราชการ (Exprofile)
   * ทำงานเวลา 04:30:00 ของทุกวันที่ 1 ตุลาคม
   *
   * รายละเอียด:
   * - Query profiles ที่ leaveDate = วันที่ 1 ตุลาคมของปีนั้น และ leaveType = "RETIRE"
   * - Batch ทีละ 100 records
   * - Concurrent ทีละ 10 คน (parallel) ในแต่ละ batch
   * - ถ้า fail ให้ log error แล้วทำคนต่อไป
   */
  async cronjobPostRetireToExprofile(): Promise<{
    success: number;
    failed: number;
    failedProfiles: Array<{ id: string; name: string; error: string }>;
  }> {
    const result = {
      success: 0,
      failed: 0,
      failedProfiles: [] as Array<{ id: string; name: string; error: string }>,
    };
    try {
      // หาวันที่ 1 ตุลาคมของปีปัจจุบัน
      const now = new Date();
      const currentYear = now.getFullYear();
      // สร้างวันที่ 1 ตุลาคมของปีปัจจุบัน (เวลา 00:00:00)
      const startDate = new Date(currentYear, 9, 1, 0, 0, 0); // Month 9 = October (0-indexed)
      const endDate = new Date(currentYear, 9, 1, 23, 59, 59);
      // Query profiles ที่ leaveDate อยู่ในวันที่ 1 ตุลาคม และ leaveType = "RETIRE"
      const profiles = await this.profileRepository.find({
        where: [
          { leaveDate: Between(startDate, endDate), leaveType: "RETIRE" as any },
          { leaveDate: MoreThanOrEqual(startDate), leaveType: "RETIRE" as any },
        ],
        relations: ["posLevel", "posType"],
      });
      // Filter เอาเฉพาะวันที่ 1 ตุลาคมเท่านั้น
      const filteredProfiles = profiles.filter((p) => {
        if (!p.leaveDate) return false;
        const leaveDate = new Date(p.leaveDate);
        return (
          leaveDate.getFullYear() === currentYear &&
          leaveDate.getMonth() === 9 && // October
          leaveDate.getDate() === 1
        );
      });
      if (filteredProfiles.length === 0) {
        return result;
      }
      // แบ่ง batch ทีละ 100 records
      for (let i = 0; i < filteredProfiles.length; i += BATCH_SIZE) {
        const batch = filteredProfiles.slice(i, i + BATCH_SIZE);
        // แบ่งเป็น chunk เล็กๆ ทีละ CONCURRENT_PER_BATCH เพื่อส่ง parallel
        for (let j = 0; j < batch.length; j += CONCURRENT_PER_BATCH) {
          const chunk = batch.slice(j, j + CONCURRENT_PER_BATCH);
          // ส่ง parallel ในแต่ละ chunk
          await Promise.all(
            chunk.map(async (profile) => {
              try {
                await this.postSingleProfileToExprofile(profile);
                result.success++;
              } catch (error: any) {
                result.failed++;
                const errorInfo = {
                  id: profile.id,
                  name: `${profile.prefix}${profile.firstName} ${profile.lastName}`,
                  error: error.message || String(error),
                };
                result.failedProfiles.push(errorInfo);
              }
            }),
          );
        }
      }
    } catch (error: any) {
      // Log error but don't throw - allow cronjob to complete with partial results
      console.error("[cronjobPostRetireToExprofile] Error:", error);
      // Return current results instead of throwing
      return result;
    }
    return result;
  }
  /**
   * ส่งข้อมูล profile ไปยัง Exprofile
   */
  private async postSingleProfileToExprofile(profile: Profile): Promise<void> {
    if (!profile.leaveDate) {
      return;
    }
    if (!profile.citizenId) {
      return;
    }
    const retireDate = new Date(profile.leaveDate);
    const retireYear = retireDate.getFullYear();
    // Validate date is valid
    if (isNaN(retireYear) || retireYear < 2000) {
      throw new Error(`Invalid leaveDate for profile ${profile.id}: ${profile.leaveDate}`);
    }
    // ส่งไปยัง Exprofile
    await PostRetireToExprofile(
      null,
      profile.citizenId,
      profile.prefix || "",
      profile.firstName || "",
      profile.lastName || "",
      retireYear.toString(),
      profile.position || "",
      profile.posType?.posTypeName || "",
      profile.posLevel?.posLevelName || "",
      retireDate,
      profile.org || "",
      profile.leaveReason || "เกษียณอายุราชการ",
    );
  }
 }
--- a/src/services/rabbitmq.ts
+++ b/src/services/rabbitmq.ts
--- a/src/services/webSocket.ts
+++ b/src/services/webSocket.ts
@ -22,7 +22,7 @@ export function initWebSocket() {
  });
  io.on("connection", (ws) => {
-    // console.log("✅ Client connected to WebSocket");
+    console.log("✅ Client connected to WebSocket");
    ws.on("close", () => {
      console.log("❌ Client disconnected");
--- a/src/utils/org-formatting.ts
+++ b/src/utils/org-formatting.ts
@ -68,47 +68,3 @@ export function filterPosMasters(
 ): PosMaster[] {
  return posMasters.filter((x) => x[childLevelIdKey] == null && x.isDirector === true);
 }
 /**
 * สร้าง orgShortName จาก posMaster (ต้อง load org relations มาก่อน)
 */
 export function getOrgShortName(posMaster: PosMaster): string {
  if (posMaster.orgChild1Id === null) {
    return posMaster.orgRoot?.orgRootShortName ?? "";
  } else if (posMaster.orgChild2Id === null) {
    return posMaster.orgChild1?.orgChild1ShortName ?? "";
  } else if (posMaster.orgChild3Id === null) {
    return posMaster.orgChild2?.orgChild2ShortName ?? "";
  } else if (posMaster.orgChild4Id === null) {
    return posMaster.orgChild3?.orgChild3ShortName ?? "";
  } else {
    return posMaster.orgChild4?.orgChild4ShortName ?? "";
  }
 }
 /**
 * สร้างชื่อสังกัดเต็ม จาก posMaster (join ด้วย \n)
 */
 export function getOrgFullName(posMaster: PosMaster): string {
  const parts = [
    posMaster.orgChild4?.orgChild4Name,
    posMaster.orgChild3?.orgChild3Name,
    posMaster.orgChild2?.orgChild2Name,
    posMaster.orgChild1?.orgChild1Name,
    posMaster.orgRoot?.orgRootName,
  ];
  return parts.filter((part) => part !== undefined && part !== null).join("\n");
 }
 /**
 * สร้างเลขที่ตำแหน่ง เช่น "กทม. กบ. 1234 ช"
 */
 export function getPosMasterNo(posMaster: PosMaster): string {
  const orgShortName = getOrgShortName(posMaster);
  const parts = [
    posMaster.posMasterNoPrefix,
    posMaster.posMasterNo,
    posMaster.posMasterNoSuffix,
  ].filter((part) => part !== null && part !== undefined);
  return `${orgShortName} ${parts.join(' ')}`;
 }
--- a/src/utils/tenure.ts
+++ b/src/utils/tenure.ts
@ -1,37 +0,0 @@
 /**
 * Normalize a duration sum using calendar arithmetic
 * Converts excess days to months using average month length (30.4375 days)
 * and excess months to years. Matches the logic used in stored procedures.
 *
 * @param years Total years from sum
 * @param months Total months from sum
 * @param days Total days from sum
 * @returns Normalized { years, months, days }
 */
 export function normalizeDurationSumSimple(
  years: number,
  months: number,
  days: number,
 ): { years: number; months: number; days: number } {
  const DAYS_PER_MONTH = 30.4375; // Average days per month in Gregorian calendar
  let totalMonths = months;
  let totalDays = days;
  // Convert excess days to months
  if (totalDays >= DAYS_PER_MONTH) {
    const additionalMonths = Math.floor(totalDays / DAYS_PER_MONTH);
    totalMonths += additionalMonths;
    totalDays = totalDays - additionalMonths * DAYS_PER_MONTH;
  }
  // Convert excess months to years
  let totalYears = years;
  if (totalMonths >= 12) {
    const additionalYears = Math.floor(totalMonths / 12);
    totalYears += additionalYears;
    totalMonths = totalMonths % 12;
  }
  return { years: totalYears, months: Math.floor(totalMonths), days: Math.floor(totalDays) };
 }