Merge branch 'dev/front-methapon' into dev/front

Services/client/src/router/index.ts

@@ -31,7 +31,15 @@ const router = createRouter({
       beforeEnter: async (_to, _from, next) => {
         const token = await getToken()
 
-        if (token) return next()
+        if (token) {
+          const roles = getRole()
+
+          if (token && roles.includes('admin')) {
+            return next()
+          }
+
+          return next('/')
+        }
 
         await login(async () => {
           const token = await getToken()

Services/server/src/controllers/cabinetController.ts

@@ -138,7 +138,8 @@ export class CabinetController extends Controller {
             await esClient.update({
               index: DEFAULT_INDEX!,
               id: data._id,
-              doc: { pathname: destination },
+              doc: { pathname: destination, path },
+              refresh: "wait_for",
             });
 
             await minioClient.removeObject(DEFAULT_BUCKET!, current.name);

Services/server/src/controllers/drawerController.ts

@@ -157,7 +157,8 @@ export class DrawerController extends Controller {
             await esClient.update({
               index: DEFAULT_INDEX!,
               id: data._id,
-              doc: { pathname: destination },
+              doc: { pathname: destination, path },
+              refresh: "wait_for",
             });
 
             await minioClient.removeObject(DEFAULT_BUCKET!, current.name);

Services/server/src/controllers/folderController.ts

@@ -164,7 +164,8 @@ export class FolderController extends Controller {
             await esClient.update({
               index: DEFAULT_INDEX!,
               id: data._id,
-              doc: { pathname: destination },
+              doc: { pathname: destination, path },
+              refresh: "wait_for",
             });
 
             await minioClient.removeObject(DEFAULT_BUCKET!, current.name);

Services/server/src/controllers/subFolderController.ts

@@ -165,7 +165,8 @@ export class SubFolderController extends Controller {
             await esClient.update({
               index: DEFAULT_INDEX!,
               id: data._id,
-              doc: { pathname: destination },
+              doc: { pathname: destination, path },
+              refresh: "wait_for",
             });
 
             await minioClient.removeObject(DEFAULT_BUCKET!, current.name);

Services/server/src/utils/auth.ts

@@ -35,7 +35,11 @@ export async function expressAuthentication(
     throw new HttpError(HttpStatusCode.UNAUTHORIZED, "Invalid token provided.");
   }
 
-  if (scopes && !scopes.some((v) => payload.resource_access[payload.azp].roles.includes(v))) {
+  if (
+    scopes &&
+    scopes.length > 0 &&
+    scopes.some((v) => !payload.resource_access[payload.azp].roles.includes(v))
+  ) {
     throw new HttpError(HttpStatusCode.FORBIDDEN, "You are not allowed to perform this action.");
   }