@7365admin1/core 2.12.0 → 2.13.0

package/dist/index.mjs

@@ -4759,7 +4759,8 @@ function useMemberRepo() {
     try {
       const data = await collection.find({
         role: { $in: roles },
-        type,
+        // type,
+        // ...(type && { type }),
         status: "active"
       }).toArray();
       setCache(cacheKey, data, 15 * 60).then(() => {
@@ -6880,7 +6881,7 @@ function useMemberService() {
       throw new BadRequestError29("No owner role found.");
     }
     const roles = owner.map((r) => r._id?.toString() ?? "");
-    const ownerMembers = await getByRoles(roles, type);
+    const ownerMembers = await getByRoles(roles, type = "");
     if (!ownerMembers.length) {
       throw new BadRequestError29("No owner members found.");
     }
@@ -14674,7 +14675,7 @@ function MPerson(value) {
   return {
     _id: value._id,
     name: value.name,
-    contact: value.contact,
+    contact: value.contact ?? "",
     block: value.block,
     level: value.level,
     unit: value.unit,
@@ -15136,7 +15137,8 @@ function usePersonRepo() {
         $or: [
           { name: { $regex: search, $options: "i" } },
           { email: { $regex: search, $options: "i" } },
-          { nric: { $regex: search, $options: "i" } }
+          { nric: { $regex: search, $options: "i" } },
+          { "plates.plateNumber": { $regex: search, $options: "i" } }
         ]
       },
       ...ObjectId44.isValid(org) && { org: new ObjectId44(org) },
@@ -18561,7 +18563,7 @@ function useVisitorTransactionService() {
         } else {
           const payload = {
             name: value.name || "",
-            contact: value.contact,
+            contact: value.contact ?? "",
             nric,
             type: value.type,
             companyName: value.company ? [value.company] : [],
@@ -23717,16 +23719,26 @@ function useDocumentManagementRepo() {
     site = ""
   }) {
     page = page > 0 ? page - 1 : 0;
+    try {
+      site = new ObjectId70(site);
+    } catch (error) {
+      throw new BadRequestError119("Invalid site ID format.");
+    }
     sort = Object.keys(sort).length > 0 ? sort : { _id: -1 };
     const cacheOptions = {
       page,
       limit,
       status,
+      site: site?.toString(),
       sort: JSON.stringify(sort)
     };
     const query = {
       ...status ? { $and: [{ status }, { status: { $ne: "deleted" } }] } : { status: { $ne: "deleted" } }
     };
+    if (site) {
+      query.site = site;
+      cacheOptions.site = site;
+    }
     if (search) {
       query.$or = [
         { name: { $regex: search, $options: "i" } },
@@ -27400,11 +27412,11 @@ var EAccessCardTypes = /* @__PURE__ */ ((EAccessCardTypes2) => {
   EAccessCardTypes2["QR"] = "QRCODE";
   return EAccessCardTypes2;
 })(EAccessCardTypes || {});
-var EAccessCardUserTypes = /* @__PURE__ */ ((EAccessCardUserTypes4) => {
-  EAccessCardUserTypes4["RESIDENT"] = "Resident/Tenant";
-  EAccessCardUserTypes4["CONTRACTOR"] = "Contractor";
-  EAccessCardUserTypes4["VISITOR"] = "Visitor";
-  return EAccessCardUserTypes4;
+var EAccessCardUserTypes = /* @__PURE__ */ ((EAccessCardUserTypes3) => {
+  EAccessCardUserTypes3["RESIDENT"] = "Resident/Tenant";
+  EAccessCardUserTypes3["CONTRACTOR"] = "Contractor";
+  EAccessCardUserTypes3["VISITOR"] = "Visitor";
+  return EAccessCardUserTypes3;
 })(EAccessCardUserTypes || {});
 var AccessTypeProps = /* @__PURE__ */ ((AccessTypeProps2) => {
   AccessTypeProps2["NORMAL"] = "Normal";
@@ -27505,6 +27517,114 @@ import {
   useAtlas as useAtlas74
 } from "@7365admin1/node-server-utils";
 import { ObjectId as ObjectId83 } from "mongodb";
+
+// src/utils/access-management.ts
+import fs2 from "fs";
+import path2 from "path";
+import axios from "axios";
+import crypto from "crypto";
+var ALGORITHM = "aes-256-gcm";
+var SECRET_KEY = crypto.createSecretKey(
+  new Uint8Array(crypto.createHash("sha256").update("acm-secret-key").digest())
+);
+function decryptAcmUrl(encryptedText) {
+  const [ivB64, authTagB64, encryptedB64] = encryptedText.split(":");
+  const iv = Buffer.from(ivB64, "base64");
+  const authTag = Buffer.from(authTagB64, "base64");
+  const encrypted = Buffer.from(encryptedB64, "base64");
+  const decipher = crypto.createDecipheriv(
+    ALGORITHM,
+    SECRET_KEY,
+    new Uint8Array(iv)
+  );
+  decipher.setAuthTag(new Uint8Array(authTag));
+  const decrypted = Buffer.concat([
+    decipher.update(encrypted),
+    decipher.final()
+  ]);
+  return decrypted.toString("utf8");
+}
+var minifyXml = (xml) => {
+  return xml.replace(/>\s+</g, "><").replace(/\n/g, "").replace(/\r/g, "").replace(/\t/g, "").trim();
+};
+var readTemplate = (name, params) => {
+  const template = fs2.readFileSync(
+    path2.join(__dirname, `../src/public/xml-templates/${name}.xml`),
+    "utf-8"
+  );
+  if (!params)
+    return minifyXml(template);
+  const replacedTemplate = Object.entries(params).reduce(
+    (acc, [key, value]) => acc.replace(`{{${key}}}`, value),
+    template
+  );
+  return minifyXml(replacedTemplate);
+};
+async function sendCommand(command, url) {
+  try {
+    const decrypt = decryptAcmUrl(url);
+    const response = await axios.post(decrypt, {
+      command
+    });
+    if (response.status === 200 || response.status === 201)
+      return response.data;
+  } catch (error) {
+    return Promise.reject(error);
+  }
+}
+var formatDoorAccessLevels = (data) => {
+  const doorAccessLevels = data.RESULT.TRACKID.SUB_RESULT.ACCESS_LEVEL;
+  return doorAccessLevels.map((door) => {
+    return {
+      name: door._.trim(),
+      // Remove any leading/trailing spaces
+      no: door.$.NO
+      // Extract the number
+    };
+  });
+};
+var formatLiftAccessLevels = (data, search) => {
+  const liftAccessLevels = data.RESULT.TRACKID.SUB_RESULT.LIFT_ACCESS_LEVEL;
+  const result = liftAccessLevels.map((level) => {
+    return {
+      name: level._.trim(),
+      no: level.$.NO
+    };
+  });
+  if (search) {
+    return result.filter(
+      (item) => item.name.toLowerCase().includes(search.toLowerCase())
+    );
+  }
+  return result;
+};
+var formatAccessGroup = (data, search) => {
+  const accessGroup = data.RESULT.TRACKID.SUB_RESULT.ACCESS_GROUP;
+  const result = accessGroup.map((ag) => {
+    return {
+      no: ag._.trim(),
+      name: ag.$.NAME
+    };
+  });
+  if (search) {
+    return result.filter(
+      (item) => item.name.toLowerCase().includes(search.toLowerCase())
+    );
+  }
+  return result;
+};
+var formatEntryPassDate = (date) => {
+  if (!date)
+    return null;
+  const newDate = new Date(date);
+  const year = newDate.getFullYear();
+  const month = String(newDate.getMonth() + 1).padStart(2, "0");
+  const day = String(newDate.getDate()).padStart(2, "0");
+  return `${year}${month}${day}`;
+};
+
+// src/repositories/access-management.repo.ts
+import { parseStringPromise } from "xml2js";
 function UseAccessManagementRepo() {
   function collection() {
     const db = useAtlas74.getDb();
@@ -28290,6 +28410,255 @@ function UseAccessManagementRepo() {
       await session?.endSession();
     }
   }
+  async function accessandLiftCardsRepo(params) {
+    try {
+      const { accessLevel, liftAccessLevel, site, userType, type } = params;
+      const siteId = new ObjectId83(site);
+      const query = {
+        site: { $in: [siteId] },
+        userType,
+        type,
+        userId: null,
+        assignedUnit: null,
+        accessLevel,
+        liftAccessLevel,
+        isActivated: true
+      };
+      const result = await collection().aggregate([
+        {
+          $match: query
+        },
+        {
+          $facet: {
+            counts: [{ $count: "count" }]
+          }
+        }
+      ], { allowDiskUse: true }).toArray();
+      return result;
+    } catch (error) {
+      throw new Error(error.message);
+    }
+  }
+  async function replaceCardRepo(params) {
+    const session = useAtlas74.getClient()?.startSession();
+    try {
+      session?.startTransaction();
+      const siteId = new ObjectId83(params.site);
+      const userId = new ObjectId83(params.userId);
+      const cardId = new ObjectId83(params.cardId);
+      const quantity = 1;
+      const cardCredentials = await collection().findOneAndUpdate(
+        { _id: cardId },
+        { $set: { replacementStatus: "Issuance" } },
+        { returnDocument: "after" }
+      );
+      const unit = [cardCredentials?.assignedUnit];
+      const date = /* @__PURE__ */ new Date();
+      const endDate = new Date(date.setFullYear(date.getFullYear() + 10));
+      const res = await collection().aggregate([{ $sort: { cardNo: -1 } }, { $limit: 2 }]).toArray();
+      const prevCard = res && res?.[1]?.cardNo || "-1";
+      const currentCard = res && res?.[0]?.cardNo || "0";
+      let availableCardNo = [];
+      let num = parseInt(prevCard, 10) + 1;
+      while (availableCardNo.length < (unit.length > 0 ? unit.length : quantity)) {
+        if (num === parseInt(currentCard, 10)) {
+          num++;
+        }
+        availableCardNo.push(num);
+        num++;
+      }
+      const cardNumbers = availableCardNo.map((no) => no.toString().padStart(10, "0"));
+      const accessCards = [];
+      const convertedUnits = unit.map((obj) => new ObjectId83(obj));
+      for (let j = 0; j < (unit.length > 0 ? unit.length : quantity); j++) {
+        accessCards.push(
+          new MAccessCard({
+            userId,
+            site: siteId,
+            type: cardCredentials?.type,
+            accessLevel: cardCredentials?.accessLevel,
+            accessGroup: cardCredentials?.accessGroup,
+            accessType: cardCredentials?.accessType,
+            cardNo: cardNumbers[j],
+            pin: "123456",
+            qrData: "092222",
+            startDate: /* @__PURE__ */ new Date(),
+            endDate,
+            isActivated: true,
+            isAntiPassBack: false,
+            isLiftCard: cardCredentials?.isLiftCard ? true : false,
+            liftAccessLevel: cardCredentials?.liftAccessLevel,
+            userType: cardCredentials?.userType,
+            doorName: cardCredentials?.doorName,
+            liftName: cardCredentials?.liftName,
+            assignedUnit: convertedUnits[j],
+            replacementStatus: "Issuance",
+            createdAt: /* @__PURE__ */ new Date(),
+            updatedAt: /* @__PURE__ */ new Date()
+          })
+        );
+      }
+      const commands = accessCards.map((item, index) => {
+        let ag = null;
+        if (item.accessGroup !== void 0) {
+          if (item.accessGroup?.length > 0) {
+            ag = item.accessGroup.map((g) => `<GROUP_NAME>${g}</GROUP_NAME>`).join("\n  ");
+          }
+        }
+        const command = {
+          commandId1: index * 2 + 1,
+          commandId2: index * 2 + 2,
+          staffName: `STAFF-${item._id.toString().slice(-10)}`,
+          staffNo1: `STAFF-${item._id.toString().slice(-10)}`,
+          staffNo2: `STAFF-${item._id.toString().slice(-10)}`,
+          dateOfJoin: formatEntryPassDate(item.startDate),
+          accessLevel: item.accessLevel ?? "0",
+          cardNo: item.cardNo,
+          pin: typeof item.pin === "string" && item.pin.trim() !== "" ? item.pin : "123456",
+          startDate: formatEntryPassDate(item.startDate),
+          endDate: formatEntryPassDate(item.endDate),
+          cardType: 0,
+          isActivated: item.isActivated ? 1 : 0,
+          isAntiPassBack: item.isAntiPassBack ? 1 : 0,
+          isLiftCard: item.isLiftCard ? 1 : 0,
+          isLiftActivate: item.isLiftCard ? 1 : 0,
+          liftAccessLevel: item.liftAccessLevel || 1,
+          liftAccessStartDate: formatEntryPassDate(item.liftAccessStartDate) || "19770510",
+          liftAccessEndDate: formatEntryPassDate(item.liftAccessEndDate) || "19770510",
+          accessGroup: ag
+        };
+        return readTemplate(`${item.accessLevel !== null ? "add-card" : "add-card-lift"}`, { ...command });
+      }).flat();
+      const response = await sendCommand(commands.join("").toString(), params.acm_url);
+      const result = await parseStringPromise(response, { explicitArray: false });
+      if (result && result.RESULT.$.STCODE !== "0") {
+        throw new Error("Command failed, server error.");
+      }
+      const card = await collection().insertMany(accessCards);
+      await session?.commitTransaction();
+      return card;
+    } catch (error) {
+      await session?.abortTransaction();
+      throw new Error(error.message);
+    } finally {
+      await session?.endSession();
+    }
+  }
+  async function updateNFCStatusRepo(params) {
+    const session = useAtlas74.getClient()?.startSession();
+    try {
+      session?.startTransaction();
+      const results = [];
+      for (let nfc of params.nfcList) {
+        nfc._id = new ObjectId83(nfc._id);
+        const card = await collection().findOne({ _id: nfc._id }, { session });
+        if (card) {
+          const updateFields = {
+            status: nfc.status,
+            vmsRemarks: nfc?.vmsRemarks,
+            userId: null,
+            updatedAt: nfc?.updatedAt ?? /* @__PURE__ */ new Date()
+          };
+          if (nfc.status !== "Returned") {
+            updateFields.isActivated = false;
+          } else {
+            updateFields.isActivated = true;
+          }
+          const res = await collection().updateOne({ _id: card._id }, { $set: updateFields }, { session });
+          results.push({ nfcId: nfc._id, modifiedCount: res.modifiedCount });
+        }
+      }
+      await session?.commitTransaction();
+      return results;
+    } catch (error) {
+      await session?.abortTransaction();
+      throw new Error(error.message);
+    } finally {
+      await session?.endSession();
+    }
+  }
+  async function doorAndLiftDropdownRepo(params) {
+    try {
+      const { site, type, userType } = params;
+      const id = new ObjectId83(site);
+      const res = collection().aggregate([
+        {
+          $match: {
+            site: { $in: [id] },
+            type,
+            userType,
+            isActivated: true,
+            assignedUnit: null,
+            userId: null,
+            $or: [
+              { $and: [{ doorName: { $ne: null } }, { doorName: { $ne: "" } }, { accessLevel: { $ne: null } }] },
+              { $and: [{ liftName: { $ne: null } }, { liftName: { $ne: "" } }, { liftAccessLevel: { $ne: null } }] }
+            ]
+          }
+        },
+        {
+          $facet: {
+            totalCount: [{ $count: "count" }],
+            accessData: [
+              {
+                $group: {
+                  _id: null,
+                  accessLevels: {
+                    $addToSet: {
+                      $cond: [
+                        { $and: [{ $ne: ["$doorName", null] }, { $ne: ["$doorName", ""] }, { $ne: ["$accessLevel", null] }] },
+                        { name: "$doorName", no: "$accessLevel" },
+                        "$$REMOVE"
+                      ]
+                    }
+                  },
+                  liftAccessLevels: {
+                    $addToSet: {
+                      $cond: [
+                        { $and: [{ $ne: ["$liftName", null] }, { $ne: ["$liftName", ""] }, { $ne: ["$liftAccessLevel", null] }] },
+                        { name: "$liftName", no: "$liftAccessLevel" },
+                        "$$REMOVE"
+                      ]
+                    }
+                  }
+                }
+              },
+              {
+                $project: {
+                  _id: 0,
+                  accessLevels: 1,
+                  liftAccessLevels: 1
+                }
+              }
+            ]
+          }
+        }
+      ]).toArray();
+      return res;
+    } catch (error) {
+      throw new Error(error.message);
+    }
+  }
+  async function cardReplacementRepo(params) {
+    const session = useAtlas74.getClient()?.startSession();
+    try {
+      const { cardId, remarks } = params;
+      const id = new ObjectId83(cardId);
+      session?.startTransaction();
+      const card = await collection().findOneAndUpdate(
+        { _id: id },
+        { $set: { remarks, replacementStatus: "Pending", requestDate: /* @__PURE__ */ new Date(), isActivated: false } },
+        { returnDocument: "after", session }
+      );
+      await session?.commitTransaction();
+      return card;
+    } catch (error) {
+      await session?.abortTransaction();
+      throw new Error(error.message);
+    } finally {
+      await session?.endSession();
+    }
+  }
   return {
     createIndexes,
     createIndexForEntrypass,
@@ -28300,111 +28669,20 @@ function UseAccessManagementRepo() {
     availableAccessCardsRepo,
     userTypeAccessCardsRepo,
     assignedAccessCardsRepo,
-    acknowlegdeCardRepo
+    acknowlegdeCardRepo,
+    accessandLiftCardsRepo,
+    replaceCardRepo,
+    updateNFCStatusRepo,
+    doorAndLiftDropdownRepo,
+    cardReplacementRepo
   };
 }
 
 // src/controllers/access-management.controller.ts
 import Joi85 from "joi";
 
-// src/utils/access-management.ts
-import fs2 from "fs";
-import path2 from "path";
-import axios from "axios";
-import crypto from "crypto";
-var ALGORITHM = "aes-256-gcm";
-var SECRET_KEY = crypto.createSecretKey(
-  new Uint8Array(crypto.createHash("sha256").update("acm-secret-key").digest())
-);
-function decryptAcmUrl(encryptedText) {
-  const [ivB64, authTagB64, encryptedB64] = encryptedText.split(":");
-  const iv = Buffer.from(ivB64, "base64");
-  const authTag = Buffer.from(authTagB64, "base64");
-  const encrypted = Buffer.from(encryptedB64, "base64");
-  const decipher = crypto.createDecipheriv(
-    ALGORITHM,
-    SECRET_KEY,
-    new Uint8Array(iv)
-  );
-  decipher.setAuthTag(new Uint8Array(authTag));
-  const decrypted = Buffer.concat([
-    decipher.update(encrypted),
-    decipher.final()
-  ]);
-  return decrypted.toString("utf8");
-}
-var minifyXml = (xml) => {
-  return xml.replace(/>\s+</g, "><").replace(/\n/g, "").replace(/\r/g, "").replace(/\t/g, "").trim();
-};
-var readTemplate = (name, params) => {
-  const template = fs2.readFileSync(
-    path2.join(__dirname, `../src/public/xml-templates/${name}.xml`),
-    "utf-8"
-  );
-  if (!params)
-    return minifyXml(template);
-  const replacedTemplate = Object.entries(params).reduce(
-    (acc, [key, value]) => acc.replace(`{{${key}}}`, value),
-    template
-  );
-  return minifyXml(replacedTemplate);
-};
-async function sendCommand(command, url) {
-  try {
-    const decrypt = decryptAcmUrl(url);
-    const response = await axios.post(decrypt, {
-      command
-    });
-    if (response.status === 200 || response.status === 201)
-      return response.data;
-  } catch (error) {
-    return Promise.reject(error);
-  }
-}
-var formatDoorAccessLevels = (data) => {
-  const doorAccessLevels = data.RESULT.TRACKID.SUB_RESULT.ACCESS_LEVEL;
-  return doorAccessLevels.map((door) => {
-    return {
-      name: door._.trim(),
-      // Remove any leading/trailing spaces
-      no: door.$.NO
-      // Extract the number
-    };
-  });
-};
-var formatLiftAccessLevels = (data, search) => {
-  const liftAccessLevels = data.RESULT.TRACKID.SUB_RESULT.LIFT_ACCESS_LEVEL;
-  const result = liftAccessLevels.map((level) => {
-    return {
-      name: level._.trim(),
-      no: level.$.NO
-    };
-  });
-  if (search) {
-    return result.filter(
-      (item) => item.name.toLowerCase().includes(search.toLowerCase())
-    );
-  }
-  return result;
-};
-var formatAccessGroup = (data, search) => {
-  const accessGroup = data.RESULT.TRACKID.SUB_RESULT.ACCESS_GROUP;
-  const result = accessGroup.map((ag) => {
-    return {
-      no: ag._.trim(),
-      name: ag.$.NAME
-    };
-  });
-  if (search) {
-    return result.filter(
-      (item) => item.name.toLowerCase().includes(search.toLowerCase())
-    );
-  }
-  return result;
-};
-
 // src/services/access-management.service.ts
-import { parseStringPromise } from "xml2js";
+import { parseStringPromise as parseStringPromise2 } from "xml2js";
 import { useCache as useCache47 } from "@7365admin1/node-server-utils";
 var namespace = "cache:acm";
 function useAccessManagementSvc() {
@@ -28416,7 +28694,12 @@ function useAccessManagementSvc() {
     availableAccessCardsRepo,
     userTypeAccessCardsRepo,
     assignedAccessCardsRepo,
-    acknowlegdeCardRepo
+    acknowlegdeCardRepo,
+    accessandLiftCardsRepo,
+    replaceCardRepo,
+    updateNFCStatusRepo,
+    doorAndLiftDropdownRepo,
+    cardReplacementRepo
   } = UseAccessManagementRepo();
   const addPhysicalCardSvc = async (payload) => {
     try {
@@ -28458,7 +28741,7 @@ function useAccessManagementSvc() {
       }
       const command = readTemplate("door-levels");
       const response = await sendCommand(command, params.acm_url);
-      const res = await parseStringPromise(response, { explicitArray: false });
+      const res = await parseStringPromise2(response, { explicitArray: false });
       const format = await formatDoorAccessLevels(res);
       await setCache({ key, data: format, ttlSeconds: 60, redis });
       redis.lrem(listKey, 0, key).then(() => redis.lpush(listKey, key)).then(() => redis.ltrim(listKey, 0, 9)).catch(console.error);
@@ -28481,7 +28764,7 @@ function useAccessManagementSvc() {
       }
       const command = readTemplate("lift-levels");
       const response = await sendCommand(command, params.acm_url);
-      const res = await parseStringPromise(response, { explicitArray: false });
+      const res = await parseStringPromise2(response, { explicitArray: false });
       const format = await formatLiftAccessLevels(res);
       await setCache({ key, data: format, ttlSeconds: 60, redis });
       redis.lrem(listKey, 0, key).then(() => redis.lpush(listKey, key)).then(() => redis.ltrim(listKey, 0, 9)).catch(console.error);
@@ -28504,7 +28787,7 @@ function useAccessManagementSvc() {
       }
       const command = readTemplate("access-group");
       const response = await sendCommand(command, params.acm_url);
-      const res = await parseStringPromise(response, { explicitArray: false });
+      const res = await parseStringPromise2(response, { explicitArray: false });
       const format = await formatAccessGroup(res);
       await setCache({ key, data: format, ttlSeconds: 60, redis });
       redis.lrem(listKey, 0, key).then(() => redis.lpush(listKey, key)).then(() => redis.ltrim(listKey, 0, 9)).catch(console.error);
@@ -28561,6 +28844,46 @@ function useAccessManagementSvc() {
       throw new Error(err.message);
     }
   };
+  const accessandLiftCardsSvc = async (params) => {
+    try {
+      const response = await accessandLiftCardsRepo({ ...params });
+      return response;
+    } catch (err) {
+      throw new Error(err.message);
+    }
+  };
+  const replaceCardSvc = async (params) => {
+    try {
+      const response = await replaceCardRepo({ ...params });
+      return response;
+    } catch (err) {
+      throw new Error(err.message);
+    }
+  };
+  const updateNFCStatusSvc = async (params) => {
+    try {
+      const response = await updateNFCStatusRepo({ ...params });
+      return response;
+    } catch (err) {
+      throw new Error(err.message);
+    }
+  };
+  const doorAndLiftDropdownSvc = async (params) => {
+    try {
+      const response = await doorAndLiftDropdownRepo({ ...params });
+      return response;
+    } catch (err) {
+      throw new Error(err.message);
+    }
+  };
+  const cardReplacementSvc = async (params) => {
+    try {
+      const response = await cardReplacementRepo({ ...params });
+      return response;
+    } catch (err) {
+      throw new Error(err.message);
+    }
+  };
   return {
     addPhysicalCardSvc,
     addNonPhysicalCardSvc,
@@ -28572,7 +28895,12 @@ function useAccessManagementSvc() {
     availableAccessCardsSvc,
     userTypeAccessCardsSvc,
     assignedAccessCardsSvc,
-    acknowlegdeCardSvc
+    acknowlegdeCardSvc,
+    accessandLiftCardsSvc,
+    replaceCardSvc,
+    updateNFCStatusSvc,
+    doorAndLiftDropdownSvc,
+    cardReplacementSvc
   };
 }
 
@@ -28589,7 +28917,12 @@ function useAccessManagementController() {
     availableAccessCardsSvc,
     userTypeAccessCardsSvc,
     assignedAccessCardsSvc,
-    acknowlegdeCardSvc
+    acknowlegdeCardSvc,
+    accessandLiftCardsSvc,
+    replaceCardSvc,
+    updateNFCStatusSvc,
+    doorAndLiftDropdownSvc,
+    cardReplacementSvc
   } = useAccessManagementSvc();
   const addPhysicalCard = async (req, res) => {
     try {
@@ -28661,7 +28994,7 @@ function useAccessManagementController() {
         accessGroup: Joi85.array().items(Joi85.string().required()).required(),
         userType: Joi85.string().required(),
         doorName: Joi85.string().required(),
-        liftName: Joi85.string().required(),
+        liftName: Joi85.string().optional().allow("", null),
         unit: Joi85.array().items(Joi85.string()).optional().allow(null),
         startDate: Joi85.date().required(),
         endDate: Joi85.date().required(),
@@ -28892,6 +29225,123 @@ function useAccessManagementController() {
       });
     }
   };
+  const accessandLiftCards = async (req, res) => {
+    try {
+      const {
+        accessLevel = null,
+        liftAccessLevel = null,
+        site,
+        userType,
+        type
+      } = req.query;
+      const schema2 = Joi85.object({
+        accessLevel: Joi85.string().optional().allow("", null),
+        liftAccessLevel: Joi85.string().optional().allow("", null),
+        site: Joi85.string().hex().required(),
+        userType: Joi85.string().valid(...Object.values(EAccessCardUserTypes)).required(),
+        type: Joi85.string().valid(...Object.values(EAccessCardTypes)).required()
+      });
+      const { error } = schema2.validate({ accessLevel, liftAccessLevel, site, userType, type });
+      if (error) {
+        return res.status(400).json({ message: error.message });
+      }
+      const result = await accessandLiftCardsSvc({ accessLevel, liftAccessLevel, site, userType, type });
+      return res.status(200).json({ message: "Success", data: result });
+    } catch (error) {
+      return res.status(500).json({
+        data: null,
+        message: error.message
+      });
+    }
+  };
+  const replaceCard = async (req, res) => {
+    try {
+      const { userId, cardId, site, acm_url } = req.body;
+      const schema2 = Joi85.object({
+        userId: Joi85.string().required(),
+        cardId: Joi85.string().required(),
+        site: Joi85.string().required(),
+        acm_url: Joi85.string().required()
+      });
+      const { error } = schema2.validate({ userId, cardId, site, acm_url });
+      if (error) {
+        return res.status(400).json({ message: error.message });
+      }
+      const result = await replaceCardSvc({ userId, cardId, site, acm_url });
+      return res.status(200).json({ message: "Success", data: result });
+    } catch (error) {
+      return res.status(500).json({
+        data: null,
+        message: error.message
+      });
+    }
+  };
+  const updateNFCStatus = async (req, res) => {
+    try {
+      const { nfcList = [], visitorId } = req.body;
+      const schema2 = Joi85.object({
+        nfcList: Joi85.array().items({
+          _id: Joi85.string().hex().length(24).required(),
+          status: Joi85.string().required(),
+          vmsRemarks: Joi85.string().allow(null, "").optional(),
+          updatedAt: Joi85.date().optional().allow(null, "")
+        }),
+        visitorId: Joi85.string().optional().allow(null, "")
+      });
+      const { error } = schema2.validate({ nfcList, visitorId });
+      if (error) {
+        return res.status(400).json({ message: error.message });
+      }
+      const result = await updateNFCStatusSvc({ nfcList, visitorId });
+      return res.status(200).json({ message: "Success", data: result });
+    } catch (error) {
+      return res.status(500).json({
+        data: null,
+        message: error.message
+      });
+    }
+  };
+  const doorAndLiftDropdown = async (req, res) => {
+    try {
+      const { site, type, userType } = req.query;
+      const schema2 = Joi85.object({
+        site: Joi85.string().hex().required(),
+        type: Joi85.string().required(),
+        userType: Joi85.string().required()
+      });
+      const { error } = schema2.validate({ site, type, userType });
+      if (error) {
+        return res.status(400).json({ message: error.message });
+      }
+      const result = await doorAndLiftDropdownSvc({ site, type, userType });
+      return res.status(200).json({ message: "Success", data: result });
+    } catch (error) {
+      return res.status(500).json({
+        data: null,
+        message: error.message
+      });
+    }
+  };
+  const cardReplacement = async (req, res) => {
+    try {
+      const { cardId, remarks } = req.body;
+      const schema2 = Joi85.object({
+        cardId: Joi85.string().required(),
+        remarks: Joi85.string().optional().allow("", null)
+      });
+      const { error } = schema2.validate({ cardId, remarks });
+      if (error) {
+        return res.status(400).json({ message: error.message });
+      }
+      const result = await cardReplacementSvc({ cardId, remarks });
+      return res.status(200).json({ message: "Success", data: result });
+    } catch (error) {
+      return res.status(500).json({
+        data: null,
+        message: error.message
+      });
+    }
+  };
   return {
     addPhysicalCard,
     addNonPhysicalCard,
@@ -28903,7 +29353,12 @@ function useAccessManagementController() {
     availableAccessCards,
     userTypeAccessCards,
     assignedAccessCards,
-    acknowlegdeCard
+    acknowlegdeCard,
+    accessandLiftCards,
+    replaceCard,
+    updateNFCStatus,
+    doorAndLiftDropdown,
+    cardReplacement
   };
 }
 
@@ -34587,16 +35042,26 @@ function useOnlineFormRepo() {
     site = ""
   }) {
     page = page > 0 ? page - 1 : 0;
+    try {
+      site = new ObjectId103(site);
+    } catch (error) {
+      throw new BadRequestError168("Invalid site ID format.");
+    }
     sort = Object.keys(sort).length > 0 ? sort : { _id: -1 };
     const cacheOptions = {
       page,
       limit,
       status,
+      site: site?.toString(),
       sort: JSON.stringify(sort)
     };
     const query = {
       ...status ? { $and: [{ status }, { status: { $ne: "deleted" } }] } : { status: { $ne: "deleted" } }
     };
+    if (site) {
+      query.site = site;
+      cacheOptions.site = site;
+    }
     if (search) {
       query.$or = [{ name: { $regex: search, $options: "i" } }];
       cacheOptions.search = search;
@@ -34940,7 +35405,7 @@ function useOnlineFormController() {
   }
   async function deleteOnlineFormById(req, res, next) {
     const validation = Joi106.string().hex().required();
-    const _id = req.params.id;
+    const _id = req.query.id;
     const { error } = validation.validate(_id);
     if (error) {
       logger148.log({ level: "error", message: error.message });