@7365admin1/core 2.47.0 → 2.48.0

package/dist/index.mjs

@@ -2748,6 +2748,7 @@ var APP_POOL_MAINTENANCE = process.env.APP_POOL_MAINTENANCE ?? "http://localhost
 var ENCRYPTION_KEY = process.env.ENCRYPTION_KEY ?? "";
 var DOMAIN = process.env.DOMAIN ?? "localhost";
 var OPEN_AI_API_KEY = process.env.OPEN_AI_API_KEY;
+var STORAGE_API = process.env.STORAGE_API;
 
 // src/services/auth.service.ts
 import jwt from "jsonwebtoken";
@@ -5155,6 +5156,39 @@ function useVerificationRepoV2() {
       throw new InternalServerError11("Error updating verification status.");
     }
   }
+  async function countPendingOrgInvites(orgId) {
+    try {
+      orgId = new ObjectId18(orgId);
+    } catch (error) {
+      throw new BadRequestError19("Invalid organization ID format.");
+    }
+    const query = {
+      status: "pending" /* PENDING */,
+      type: { $in: ["user-invite", "member-invite"] },
+      "metadata.org": orgId
+    };
+    const cacheKey = makeCacheKey10(namespace_collection, {
+      status: "pending" /* PENDING */,
+      type: JSON.stringify(["user-invite", "member-invite"]),
+      org: orgId.toString()
+    });
+    const cachedData = await getCache(cacheKey);
+    if (typeof cachedData === "number") {
+      logger13.info(`Cache hit for key: ${cacheKey}`);
+      return cachedData;
+    }
+    try {
+      const count = await collection.countDocuments(query);
+      setCache(cacheKey, count, 15 * 60).then(() => {
+        logger13.info(`Cache set for key: ${cacheKey}`);
+      }).catch((err) => {
+        logger13.error(`Failed to set cache for key: ${cacheKey}`, err);
+      });
+      return count;
+    } catch (error) {
+      throw new InternalServerError11("Failed to count pending invitations.");
+    }
+  }
   return {
     createIndex,
     createTextIndex,
@@ -5163,7 +5197,8 @@ function useVerificationRepoV2() {
     getByVerificationCode,
     getVerificationById,
     getVerifications,
-    updateStatusById
+    updateStatusById,
+    countPendingOrgInvites
   };
 }
 
@@ -5241,6 +5276,46 @@ function useVerificationService() {
       throw error;
     }
   }
+  async function createSimpleUserInvite({
+    email,
+    metadata
+  }) {
+    const type = "user-invite";
+    const value = {
+      type,
+      email,
+      metadata,
+      expireAt: new Date(
+        (/* @__PURE__ */ new Date()).getTime() + 72 * 60 * 60 * 1e3
+      ).toISOString(),
+      createdAt: (/* @__PURE__ */ new Date()).toISOString()
+    };
+    if (value.metadata?.org) {
+      await getOrgById(value.metadata?.org);
+    }
+    if (value.metadata?.siteId) {
+      await getSiteById(value.metadata?.siteId);
+    }
+    const res = await add(value);
+    const dir = __dirname;
+    const filePath = getDirectory(dir, "./public/handlebars/user-invite");
+    const link = `${APP_MAIN}/verify/invitation/${res}`;
+    const emailContent = compileHandlebar({
+      context: {
+        email,
+        validity: VERIFICATION_USER_INVITE_DURATION,
+        link
+      },
+      filePath
+    });
+    mailer.sendMail({
+      to: email,
+      subject: "User Invite",
+      html: emailContent,
+      sender: "iService365"
+    });
+    return res;
+  }
   const {
     add: _add,
     updateVerificationStatusById: _updateVerificationStatusById,
@@ -5534,7 +5609,8 @@ function useVerificationService() {
     cancelUserInvitation,
     updateStatusById,
     signUp,
-    checkExpiredInvitation
+    checkExpiredInvitation,
+    createSimpleUserInvite
   };
 }
 
@@ -6780,7 +6856,16 @@ function useUserController() {
   async function updateUserFieldById(req, res, next) {
     const validation = Joi13.object({
       _id: Joi13.string().hex().required(),
-      field: Joi13.string().valid("name", "email", "contact", "nric", "dateOfBirth", "profile", "gender", "defaultOrg").required(),
+      field: Joi13.string().valid(
+        "name",
+        "email",
+        "contact",
+        "nric",
+        "dateOfBirth",
+        "profile",
+        "gender",
+        "defaultOrg"
+      ).required(),
       value: Joi13.when("field", {
         switch: [
           { is: "email", then: Joi13.string().email().required() },
@@ -7384,6 +7469,7 @@ import Joi16 from "joi";
 function useVerificationController() {
   const {
     createUserInvite: _createUserInvite,
+    createSimpleUserInvite: _createSimpleUserInvite,
     createServiceProviderInvite: _createServiceProviderInvite,
     createForgetPassword: _createForgetPassword,
     verify: _verify,
@@ -7434,6 +7520,58 @@ function useVerificationController() {
       return;
     }
   }
+  async function createSimpleUserInvite(req, res, next) {
+    const payload = { ...req.body };
+    const validation = Joi16.object({
+      email: Joi16.string().email().required(),
+      app: Joi16.string().optional().allow("", null),
+      role: Joi16.string().hex().optional().allow("", null),
+      name: Joi16.string().optional().allow("", null),
+      org: Joi16.string().hex().optional().allow("", null),
+      siteId: Joi16.string().hex().optional().allow("", null),
+      siteName: Joi16.string().optional().allow("", null)
+    });
+    const { error } = validation.validate(payload);
+    if (error) {
+      logger22.log({
+        level: "error",
+        message: `${error.message}`
+      });
+      next(new BadRequestError31(error.message));
+      return;
+    }
+    const email = req.body.email ?? "";
+    const app = req.body.app ?? "";
+    const role = req.body.role ?? "";
+    const name = req.body.name ?? "";
+    const org = req.body.org ?? "";
+    const siteId = req.body.siteId ?? "";
+    const siteName = req.body.siteName ?? "";
+    try {
+      await _createSimpleUserInvite({
+        email,
+        metadata: {
+          app,
+          role,
+          name,
+          org,
+          siteId,
+          siteName
+        }
+      });
+      res.status(201).json({
+        message: "Successfully invited user."
+      });
+      return;
+    } catch (error2) {
+      logger22.log({
+        level: "error",
+        message: `${error2.message}`
+      });
+      next(error2);
+      return;
+    }
+  }
   async function createServiceProviderInvite(req, res, next) {
     const payload = req.body;
     const validation = Joi16.object({
@@ -7575,7 +7713,8 @@ function useVerificationController() {
     createServiceProviderInvite,
     createForgetPassword,
     verify,
-    cancelUserInvitation
+    cancelUserInvitation,
+    createSimpleUserInvite
   };
 }
 
@@ -19545,7 +19684,7 @@ function useVehicleController() {
         next(new BadRequestError84("Spreadsheet file is required."));
         return;
       }
-      const { originalname, path: path5 } = req.file;
+      const { originalname, path: path4 } = req.file;
       const lowerName = originalname.toLowerCase();
       const rowSchema = Joi46.object({
         fullName: Joi46.string().trim().required(),
@@ -19584,7 +19723,7 @@ function useVehicleController() {
       let rows = [];
       if (lowerName.endsWith(".xlsx") || lowerName.endsWith(".xls")) {
         const workbook = new ExcelJS.Workbook();
-        await workbook.xlsx.readFile(path5);
+        await workbook.xlsx.readFile(path4);
         const worksheet = workbook.worksheets[0];
         if (!worksheet) {
           next(
@@ -19610,7 +19749,7 @@ function useVehicleController() {
       } else if (lowerName.endsWith(".csv")) {
         rows = await new Promise((resolve, reject) => {
           const parsed = [];
-          fs.createReadStream(path5).pipe(csv()).on("data", (row) => parsed.push(row)).on("end", () => resolve(parsed)).on("error", reject);
+          fs.createReadStream(path4).pipe(csv()).on("data", (row) => parsed.push(row)).on("end", () => resolve(parsed)).on("error", reject);
         });
       } else {
         next(
@@ -19649,7 +19788,7 @@ function useVehicleController() {
         validationErrors: invalidRows,
         data
       });
-      fs.unlink(path5, () => {
+      fs.unlink(path4, () => {
       });
     } catch (error) {
       logger65.log({ level: "error", message: error.message });
@@ -24102,7 +24241,6 @@ import {
   compileHandlebar as compileHandlebar3,
   getDirectory as getDirectory3
 } from "@7365admin1/node-server-utils";
-import path2 from "path";
 function usePersonService() {
   const MailerConfig = {
     host: MAILER_TRANSPORT_HOST,
@@ -24317,13 +24455,8 @@ function usePersonService() {
         value.status = "active";
       }
       await _reviewResidentPerson(id, value, session);
-      const logoPath = path2.join(
-        __dirname,
-        "public",
-        "images",
-        "seven-365.svg"
-      );
-      const statusIconPath = path2.join(__dirname, "public", "icons");
+      const logoPath = `${STORAGE_API}/seven-365.svg`;
+      const statusIconPath = STORAGE_API;
       let title = "";
       let message2 = "";
       let hideLogin = true;
@@ -31929,9 +32062,8 @@ function useEventManagementController() {
     }
   }
   async function updateEventManagementById(req, res, next) {
-    const _id = req.params.id;
-    const payload = { _id, ...req.body };
-    const { error } = schemaUpdateEventManagement.validate(payload, {
+    const payload = { _id: req.params.id, ...req.body };
+    const { error, value } = schemaUpdateEventManagement.validate(payload, {
       abortEarly: false
     });
     if (error) {
@@ -31940,8 +32072,9 @@ function useEventManagementController() {
       next(new BadRequestError137(messages));
       return;
     }
+    const { _id, ...rest } = value;
     try {
-      const result = await _updateEventManagementById(_id, req.body);
+      const result = await _updateEventManagementById(_id, rest);
       res.status(200).json({ message: result });
       return;
     } catch (error2) {
@@ -33286,7 +33419,7 @@ import { ObjectId as ObjectId90 } from "mongodb";
 
 // src/utils/access-management.ts
 import fs2 from "fs";
-import path3 from "path";
+import path2 from "path";
 import axios from "axios";
 import { parseStringPromise } from "xml2js";
 import crypto from "crypto";
@@ -33316,7 +33449,7 @@ var minifyXml = (xml) => {
 };
 var readTemplate = (name, params) => {
   const template = fs2.readFileSync(
-    path3.join(__dirname, `../dist/public/xml-templates/${name}.xml`),
+    path2.join(__dirname, `../dist/public/xml-templates/${name}.xml`),
     "utf-8"
   );
   if (!params)
@@ -33447,9 +33580,9 @@ import { parseStringPromise as parseStringPromise2 } from "xml2js";
 // src/utils/rsa-encryption.ts
 import * as crypto2 from "crypto";
 import fs3 from "fs";
-import path4 from "path";
-var pub = path4.resolve(process.cwd(), "./src/public/rsa-keys/new_rsa_512_pub.pem");
-var priv = path4.resolve(process.cwd(), "./src/public/rsa-keys/new_rsa_512_priv.pem");
+import path3 from "path";
+var pub = path3.resolve(process.cwd(), "./src/public/rsa-keys/new_rsa_512_pub.pem");
+var priv = path3.resolve(process.cwd(), "./src/public/rsa-keys/new_rsa_512_priv.pem");
 var EncryptionCredentials = class {
 };
 EncryptionCredentials.RAW_PUBLIC_KEY = fs3.readFileSync(pub, "utf8");
@@ -44659,14 +44792,15 @@ async function hrmLabsAuthentication({
       showPassword: false
     },
     {
-      headers: { "Content-Type": "application/json" }
+      headers: { "Content-Type": "application/json" },
+      validateStatus: () => true
     }
   );
   if (res.data?.success && res.data.data?.token) {
     return res.data.data.token;
   }
   throw new Error(
-    "HRMLabs Authentication failed. Please check your credentials."
+    res.status === 401 || res.status === 403 ? "HRMLabs Authentication failed. Please check your credentials." : `HRMLabs Authentication failed with status ${res.status}.`
   );
 }
 async function fetchAttendanceData({
@@ -46890,7 +47024,7 @@ function useHrmLabsAttendanceSrvc() {
     } catch (error) {
       logger168.error(error.message || error);
       console.log("Error fetching attendance data:", error);
-      throw new Error(error?.message || "Internal Server Error!");
+      return { success: false, message: error?.message || "Internal Server Error!", items: [], pages: 0, pageRange: "0-0 of 0", count: {} };
     }
   }
   async function getAttendanceDataCount(payload) {
@@ -47004,7 +47138,7 @@ function useHrmLabsAttendanceSrvc() {
     } catch (error) {
       logger168.error(error.message || error);
       console.log("Error fetching attendance data count:", error);
-      throw new Error(error?.message || "Internal Server Error!");
+      return { success: false, message: error?.message || "Internal Server Error!", totalCount: null };
     }
   }
   async function getAllAttendance(payload) {
@@ -47176,7 +47310,7 @@ function useHrmLabsAttendanceSrvc() {
     } catch (error) {
       logger168.error(error.message || error);
       console.log("Error fetching attendance data:", error);
-      throw new Error(error?.message || "Internal Server Error!");
+      return { success: false, message: error?.message || "Internal Server Error!", items: [], count: {}, countPerJobTitle: {}, totalCount: null, countPerStatus: {} };
     }
   }
   async function getChartAttendanceData(payload) {
@@ -47283,7 +47417,7 @@ function useHrmLabsAttendanceSrvc() {
     } catch (error) {
       logger168.error(error.message || error);
       console.log("Error fetching attendance data:", error);
-      throw new Error(error?.message || "Internal Server Error!");
+      return { success: false, message: error?.message || "Internal Server Error!", chartCount: null };
     }
   }
   return {
@@ -48941,7 +49075,8 @@ function useVerificationServiceV2() {
     add: _add,
     updateVerificationStatusById: _updateVerificationStatusById,
     getByVerificationCode: _getByVerificationCode,
-    updateStatusById: _updateStatusById
+    updateStatusById: _updateStatusById,
+    countPendingOrgInvites: _countPendingOrgInvites
   } = useVerificationRepoV2();
   const {
     getUserByEmailStatus: _getUserByEmailStatus,
@@ -48949,6 +49084,8 @@ function useVerificationServiceV2() {
   } = useUserRepo();
   const { getById: getOrgById, getByEmail: _getByEmail } = useOrgRepo();
   const { getSiteById } = useSiteRepo();
+  const { getByOrgId: _getSubscriptionByOrgId } = useSubscriptionRepo();
+  const { countByOrg: _countMemberByOrg } = useMemberRepo();
   function errorByType(type, status) {
     if ((type === "user-invite" /* USER_INVITE */ || type === "member-invite" /* MEMBER_INVITE */ || type === "service-provider-invite" /* SERVICE_PROVIDER_INVITE */ || type === "service-provider-create-org" /* SERVICE_PROVIDER_CREATE_ORG */) && status === "expired" /* EXPIRED */) {
       throw new BadRequestError199(
@@ -49212,6 +49349,30 @@ function useVerificationServiceV2() {
       throw error2;
     }
   }
+  async function createOrganizationInvite({
+    email,
+    metadata
+  }) {
+    const orgId = metadata.org?.toString() ?? "";
+    if (!orgId) {
+      throw new BadRequestError199("Organization is required.");
+    }
+    await getOrgById(orgId);
+    const [subscription, memberCount, pendingInviteCount] = await Promise.all([
+      _getSubscriptionByOrgId(orgId),
+      _countMemberByOrg(orgId),
+      _countPendingOrgInvites(orgId)
+    ]);
+    const maxSeats = subscription?.maxSeats ?? 0;
+    if (!maxSeats) {
+      throw new BadRequestError199("No seats configured for organization.");
+    }
+    const usedSeats = memberCount + pendingInviteCount;
+    if (usedSeats >= maxSeats) {
+      throw new BadRequestError199("No available seats for new invitation.");
+    }
+    return createUserInvite({ email, metadata });
+  }
   async function createForgetPassword(email) {
     const value = {
       type: "forget-password" /* FORGET_PASSWORD */,
@@ -49262,6 +49423,7 @@ function useVerificationServiceV2() {
     signUp,
     verify,
     createUserInvite,
+    createOrganizationInvite,
     createServiceProviderInvite,
     createForgetPassword,
     cancelUserInvitation
@@ -49275,6 +49437,7 @@ function useVerificationControllerV2() {
   const {
     verify: _verify,
     createUserInvite: _createUserInvite,
+    createOrganizationInvite: _createOrganizationInvite,
     createServiceProviderInvite: _createServiceProviderInvite,
     createForgetPassword: _createForgetPassword,
     cancelUserInvitation: _cancelUserInvitation
@@ -49371,6 +49534,44 @@ function useVerificationControllerV2() {
       return;
     }
   }
+  async function createOrganizationInvite(req, res, next) {
+    const schema2 = Joi127.object({
+      email: Joi127.string().email().lowercase().required(),
+      role: Joi127.string().hex().length(24).required(),
+      org: Joi127.string().hex().length(24).required(),
+      app: Joi127.string().optional().allow("", null).default("organization"),
+      name: Joi127.string().optional().allow("", null),
+      siteId: Joi127.string().hex().length(24).optional().allow("", null),
+      siteName: Joi127.string().optional().allow("", null)
+    });
+    const { error, value } = schema2.validate(req.body, { abortEarly: false });
+    if (error) {
+      const messages = error.details.map((d) => d.message).join(", ");
+      logger178.log({ level: "error", message: messages });
+      next(new BadRequestError200(messages));
+      return;
+    }
+    try {
+      const { email, app, role, name, org, siteId, siteName } = value;
+      await _createOrganizationInvite({
+        email,
+        metadata: {
+          app,
+          role,
+          name,
+          org,
+          siteId,
+          siteName
+        }
+      });
+      res.status(201).json({ message: "Successfully invited user." });
+      return;
+    } catch (error2) {
+      logger178.log({ level: "error", message: `${error2.message}` });
+      next(error2);
+      return;
+    }
+  }
   async function createForgetPassword(req, res, next) {
     const schema2 = Joi127.object({
       email: Joi127.string().email().lowercase().required()
@@ -49456,6 +49657,7 @@ function useVerificationControllerV2() {
   return {
     verify,
     createUserInvite,
+    createOrganizationInvite,
     createServiceProviderInvite,
     createForgetPassword,
     getVerifications,