@opengis/fastify-table 1.0.92 → 1.0.93

package/crud/controllers/insert.js

@@ -1,58 +1,58 @@
-import dataInsert from '../funcs/dataInsert.js';
-import getToken from '../funcs/getToken.js';
-import checkXSS from './utils/checkXSS.js';
-import getTemplate from '../../table/controllers/utils/getTemplate.js';
-import getAccess from '../funcs/getAccess.js';
-
-export default async function insert(req) {
-  const { actions = [] } = await getAccess(req, req.params.table) || {};
-  if (!actions.includes('edit')) {
-    return { message: 'access restricted', status: 403 };
-  }
-  if (!req.params?.table) {
-    return { message: 'table is required', status: 400 };
-  }
-  const loadTemplate = await getTemplate('table', req.params.table);
-  const { table, public: ispublic } = loadTemplate || req.params || {};
-  if (!table) {
-    return { message: 'table not found', status: 404 };
-  }
-
-  const { funcs = {}, user = {}, params = {} } = req;
-  const tokenDataString = await getToken({
-    funcs, uid: user.uid, token: params.table, mode: 'a', json: 0,
-  });
-
-  const { form, add } = JSON.parse(tokenDataString || '{}');
-
-  const formData = form || loadTemplate?.form ? (await getTemplate('form', form || loadTemplate?.form) || {}) : {};
-
-  const xssCheck = checkXSS({ body: req.body, schema: formData?.schema });
-
-  if (xssCheck.error && formData?.xssCheck !== false) {
-    req.log.warn({ name: 'injection/xss', msg: xssCheck.error, table }, req);
-    return { message: 'Дані містять заборонені символи. Приберіть їх та спробуйте ще раз', status: 409 };
-  }
-
-  const { uid } = funcs.config?.auth?.disable || ispublic ? { uid: '1' } : user || {};
-  Object.assign(req.body, { uid, editor_id: uid });
-  const res = await dataInsert({
-    table: add || table, data: req.body, uid,
-  });
-
-  const extraKeys = Object.keys(formData)?.filter((key) => formData?.[key]?.type === 'DataTable' && formData?.[key]?.table && formData?.[key]?.parent_id && req.body[key].length);
-  if (extraKeys?.length) {
-    res.extra = {};
-    await Promise.all(extraKeys?.map(async (key) => {
-      const extraRows = await Promise.all(req.body[key].map(async (row) => {
-        const extraRes = await dataInsert({
-          table: formData[key].table, data: { ...row, [formData[key].parent_id]: req.body[formData[key].parent_id] }, uid,
-        });
-        return extraRes?.rows?.[0];
-      }));
-      Object.assign(res.extra, { [key]: extraRows.filter((el) => el) });
-    }));
-  }
-
-  return { rows: res.rows, extra: res.extra };
-}
+import dataInsert from '../funcs/dataInsert.js';
+import getToken from '../funcs/getToken.js';
+import checkXSS from './utils/checkXSS.js';
+import getTemplate from '../../table/controllers/utils/getTemplate.js';
+import getAccess from '../funcs/getAccess.js';
+
+export default async function insert(req) {
+  const { actions = [] } = await getAccess(req, req.params.table) || {};
+  if (!actions.includes('edit')) {
+    return { message: 'access restricted', status: 403 };
+  }
+  if (!req.params?.table) {
+    return { message: 'table is required', status: 400 };
+  }
+  const loadTemplate = await getTemplate('table', req.params.table);
+  const { table, public: ispublic } = loadTemplate || req.params || {};
+  if (!table) {
+    return { message: 'table not found', status: 404 };
+  }
+
+  const { funcs = {}, user = {}, params = {} } = req;
+  const tokenDataString = await getToken({
+    funcs, uid: user.uid, token: params.table, mode: 'a', json: 0,
+  });
+
+  const { form, add } = JSON.parse(tokenDataString || '{}');
+
+  const formData = form || loadTemplate?.form ? (await getTemplate('form', form || loadTemplate?.form) || {}) : {};
+
+  const xssCheck = checkXSS({ body: req.body, schema: formData?.schema });
+
+  if (xssCheck.error && formData?.xssCheck !== false) {
+    req.log.warn({ name: 'injection/xss', msg: xssCheck.error, table }, req);
+    return { message: 'Дані містять заборонені символи. Приберіть їх та спробуйте ще раз', status: 409 };
+  }
+
+  const { uid } = funcs.config?.auth?.disable || ispublic ? { uid: '1' } : user || {};
+  Object.assign(req.body, { uid, editor_id: uid });
+  const res = await dataInsert({
+    table: add || table, data: req.body, uid,
+  });
+
+  const extraKeys = Object.keys(formData)?.filter((key) => formData?.[key]?.type === 'DataTable' && formData?.[key]?.table && formData?.[key]?.parent_id && req.body[key].length);
+  if (extraKeys?.length) {
+    res.extra = {};
+    await Promise.all(extraKeys?.map(async (key) => {
+      const extraRows = await Promise.all(req.body[key].map(async (row) => {
+        const extraRes = await dataInsert({
+          table: formData[key].table, data: { ...row, [formData[key].parent_id]: req.body[formData[key].parent_id] }, uid,
+        });
+        return extraRes?.rows?.[0];
+      }));
+      Object.assign(res.extra, { [key]: extraRows.filter((el) => el) });
+    }));
+  }
+
+  return { rows: res.rows, extra: res.extra };
+}

package/crud/controllers/update.js

@@ -1,61 +1,61 @@
-import dataUpdate from '../funcs/dataUpdate.js';
-import dataInsert from '../funcs/dataInsert.js';
-import pgClients from '../../pg/pgClients.js';
-import getToken from '../funcs/getToken.js';
-import checkXSS from './utils/checkXSS.js';
-import getTemplate from '../../table/controllers/utils/getTemplate.js';
-import getAccess from '../funcs/getAccess.js';
-
-export default async function update(req) {
-  const { actions = [], scope, my } = await getAccess(req, req.params.table, req.params.id) || {};
-  if (!actions.includes('edit') || (scope === 'my' && !my)) {
-    return { message: 'access restricted', status: 403 };
-  }
-  if (!req.params?.table) {
-    return { message: 'table is required', status: 400 };
-  }
-  if (!req.params?.id) {
-    return { message: 'id is required', status: 404 };
-  }
-  const loadTemplate = await getTemplate('table', req.params.table);
-  const { table, public: ispublic } = loadTemplate || req.params || {};
-  const { id } = req.params || {};
-
-  const { funcs = {}, user = {}, params = {} } = req;
-  const uid = funcs.config?.auth?.disable || ispublic ? '1' : user.uid;
-  const tokenDataString = await getToken({
-    funcs, uid, token: params.table, mode: 'w', json: 0,
-  });
-
-  const tokenData = JSON.parse(tokenDataString || '{}');
-
-  const formData = tokenData?.form || loadTemplate?.form ? await getTemplate('form', tokenData.form || loadTemplate?.form) : {};
-
-  const xssCheck = checkXSS({ body: req.body, schema: formData?.schema });
-
-  if (xssCheck.error && formData?.xssCheck !== false) {
-    req.log.warn({ name: 'injection/xss', msg: xssCheck.error, table }, req);
-    return { message: 'Дані містять заборонені символи. Приберіть їх та спробуйте ще раз', status: 409 };
-  }
-
-  const res = await dataUpdate({
-    table: tokenData?.table || table, id: tokenData?.id || id, data: req.body, uid,
-  });
-
-  const extraKeys = Object.keys(formData)?.filter((key) => formData?.[key]?.type === 'DataTable' && formData?.[key]?.table && formData?.[key]?.parent_id && req.body[key].length);
-  if (extraKeys?.length) {
-    res.extra = {};
-    await Promise.all(extraKeys?.map(async (key) => {
-      // delete old extra data
-      await pgClients.client.query(`delete from ${formData[key].table} where ${formData[key].parent_id}=$1`, [req.body[formData[key].parent_id]]); // rewrite?
-      // insert new extra data
-      const extraRows = await Promise.all(req.body[key].map(async (row) => {
-        const extraRes = await dataInsert({ table: formData[key].table, data: { ...row, [formData[key].parent_id]: req.body[formData[key].parent_id] }, uid });
-        return extraRes?.rows?.[0];
-      }));
-      Object.assign(res.extra, { [key]: extraRows.filter((el) => el) });
-    }));
-  }
-
-  return res;
-}
+import dataUpdate from '../funcs/dataUpdate.js';
+import dataInsert from '../funcs/dataInsert.js';
+import pgClients from '../../pg/pgClients.js';
+import getToken from '../funcs/getToken.js';
+import checkXSS from './utils/checkXSS.js';
+import getTemplate from '../../table/controllers/utils/getTemplate.js';
+import getAccess from '../funcs/getAccess.js';
+
+export default async function update(req) {
+  const { actions = [], scope, my } = await getAccess(req, req.params.table, req.params.id) || {};
+  if (!actions.includes('edit') || (scope === 'my' && !my)) {
+    return { message: 'access restricted', status: 403 };
+  }
+  if (!req.params?.table) {
+    return { message: 'table is required', status: 400 };
+  }
+  if (!req.params?.id) {
+    return { message: 'id is required', status: 404 };
+  }
+  const loadTemplate = await getTemplate('table', req.params.table);
+  const { table, public: ispublic } = loadTemplate || req.params || {};
+  const { id } = req.params || {};
+
+  const { funcs = {}, user = {}, params = {} } = req;
+  const uid = funcs.config?.auth?.disable || ispublic ? '1' : user.uid;
+  const tokenDataString = await getToken({
+    funcs, uid, token: params.table, mode: 'w', json: 0,
+  });
+
+  const tokenData = JSON.parse(tokenDataString || '{}');
+
+  const formData = tokenData?.form || loadTemplate?.form ? await getTemplate('form', tokenData.form || loadTemplate?.form) : {};
+
+  const xssCheck = checkXSS({ body: req.body, schema: formData?.schema });
+
+  if (xssCheck.error && formData?.xssCheck !== false) {
+    req.log.warn({ name: 'injection/xss', msg: xssCheck.error, table }, req);
+    return { message: 'Дані містять заборонені символи. Приберіть їх та спробуйте ще раз', status: 409 };
+  }
+
+  const res = await dataUpdate({
+    table: tokenData?.table || table, id: tokenData?.id || id, data: req.body, uid,
+  });
+
+  const extraKeys = Object.keys(formData)?.filter((key) => formData?.[key]?.type === 'DataTable' && formData?.[key]?.table && formData?.[key]?.parent_id && req.body[key].length);
+  if (extraKeys?.length) {
+    res.extra = {};
+    await Promise.all(extraKeys?.map(async (key) => {
+      // delete old extra data
+      await pgClients.client.query(`delete from ${formData[key].table} where ${formData[key].parent_id}=$1`, [req.body[formData[key].parent_id]]); // rewrite?
+      // insert new extra data
+      const extraRows = await Promise.all(req.body[key].map(async (row) => {
+        const extraRes = await dataInsert({ table: formData[key].table, data: { ...row, [formData[key].parent_id]: req.body[formData[key].parent_id] }, uid });
+        return extraRes?.rows?.[0];
+      }));
+      Object.assign(res.extra, { [key]: extraRows.filter((el) => el) });
+    }));
+  }
+
+  return res;
+}

package/crud/funcs/dataDelete.js

@@ -1,19 +1,19 @@
-import getPG from '../../pg/funcs/getPG.js';
-
-import getMeta from '../../pg/funcs/getMeta.js';
-import logChanges from './utils/logChanges.js';
-
-export default async function dataDelete({
-  table, id, pg: pg1, uid,
-}) {
-  const pg = pg1 || getPG({ name: 'client' });
-  const { pk } = await getMeta(table);
-  if (!pg.tlist?.includes(table)) return 'table not exist';
-  const delQuery = `delete from ${table} WHERE ${pk} = $1 returning *`;
-  //  console.log(updateDataset);
-  const res = await pg.one(delQuery, [id]) || {};
-  await logChanges({
-    pg, table, id, uid, type: 'DELETE',
-  });
-  return res;
-}
+import getPG from '../../pg/funcs/getPG.js';
+
+import getMeta from '../../pg/funcs/getMeta.js';
+import logChanges from './utils/logChanges.js';
+
+export default async function dataDelete({
+  table, id, pg: pg1, uid,
+}) {
+  const pg = pg1 || getPG({ name: 'client' });
+  const { pk } = await getMeta(table);
+  if (!pg.tlist?.includes(table)) return 'table not exist';
+  const delQuery = `delete from ${table} WHERE ${pk} = $1 returning *`;
+  //  console.log(updateDataset);
+  const res = await pg.one(delQuery, [id]) || {};
+  await logChanges({
+    pg, table, id, uid, type: 'DELETE',
+  });
+  return res;
+}

package/crud/funcs/dataInsert.js

@@ -1,30 +1,30 @@
-import getPG from '../../pg/funcs/getPG.js';
-import getMeta from '../../pg/funcs/getMeta.js';
-import logChanges from './utils/logChanges.js';
-
-export default async function dataInsert({
-  table, data, pg: pg1, uid,
-}) {
-  const pg = pg1 || getPG({ name: 'client' });
-  if (!data) return null;
-  const { columns } = await getMeta(table);
-  if (!columns) return null;
-
-  const names = columns.map((el) => el.name);
-  const filterData = Object.keys(data)
-    .filter((el) => data[el] && names.includes(el)).map((el) => [el, data[el]]);
-
-  const insertQuery = `insert into ${table}
-
-    ( ${filterData?.map((key) => `"${key[0]}"`).join(',')}) 
-
-    values  (${filterData?.map((key, i) => (key[0] === 'geom' ? `st_setsrid(st_geomfromgeojson($${i + 1}::json),4326)` : `$${i + 1}`)).join(',')}) 
-    
-    returning *`;
-
-  const res = await pg.query(insertQuery, [...filterData.map((el) => (typeof el[1] === 'object' && (!Array.isArray(el[1]) || typeof el[1]?.[0] === 'object') ? JSON.stringify(el[1]) : el[1]))]) || {};
-  await logChanges({
-    pg, table, data, id: res.rows?.[0]?.[pg.pk[table]], uid, type: 'INSERT',
-  });
-  return res;
-}
+import getPG from '../../pg/funcs/getPG.js';
+import getMeta from '../../pg/funcs/getMeta.js';
+import logChanges from './utils/logChanges.js';
+
+export default async function dataInsert({
+  table, data, pg: pg1, uid,
+}) {
+  const pg = pg1 || getPG({ name: 'client' });
+  if (!data) return null;
+  const { columns } = await getMeta(table);
+  if (!columns) return null;
+
+  const names = columns.map((el) => el.name);
+  const filterData = Object.keys(data)
+    .filter((el) => data[el] && names.includes(el)).map((el) => [el, data[el]]);
+
+  const insertQuery = `insert into ${table}
+
+    ( ${filterData?.map((key) => `"${key[0]}"`).join(',')}) 
+
+    values  (${filterData?.map((key, i) => (key[0] === 'geom' ? `st_setsrid(st_geomfromgeojson($${i + 1}::json),4326)` : `$${i + 1}`)).join(',')}) 
+    
+    returning *`;
+
+  const res = await pg.query(insertQuery, [...filterData.map((el) => (typeof el[1] === 'object' && (!Array.isArray(el[1]) || typeof el[1]?.[0] === 'object') ? JSON.stringify(el[1]) : el[1]))]) || {};
+  await logChanges({
+    pg, table, data, id: res.rows?.[0]?.[pg.pk[table]], uid, type: 'INSERT',
+  });
+  return res;
+}

package/crud/funcs/getAccess.js

@@ -1,53 +1,53 @@
-import getMeta from '../../pg/funcs/getMeta.js';
-import getTemplate from '../../table/controllers/utils/getTemplate.js';
-import config from '../../config.js';
-
-const q = `select a.route_id as id, b.actions, b.scope 
-from admin.routes a 
-left join admin.access b on 
-  a.route_id=b.route_id
-left join admin.roles c on 
-  b.role_id=c.role_id 
-  and c.enabled
-left join admin.user_roles d on 
-  c.role_id=d.role_id 
-  and ( case when 
-            d.expiration is not null 
-            then d.expiration > CURRENT_DATE 
-            else 1=1 
-        end )
-where a.route_id=$1 and $2 in (b.user_uid, d.user_uid)`;
-
-export default async function getAccess(req, template, id = null) {
-  if (config.disableAccessRestriction || true) {
-    return { actions: ['get', 'edit', 'del'], my: true, query: '1=1' };
-  }
-  const { pg, session = {} } = req;
-  const { uid, user_type: userType } = session.passport?.user || {};
-  if (!uid || !template) return null;
-
-  if (!pg.pk?.['admin.access']) return null;
-
-  const { table } = await getTemplate('table', template) || {};
-  if (!table) return null;
-
-  const { scope = 'my', actions = [] } = await pg.one(q, [template, uid]);
-  // console.log(scope, actions);
-
-  const { columns = [] } = await getMeta(table);
-  const columnList = columns.map((el) => el.name || el).join(',');
-
-  const query = userType?.includes('admin') ? '1=1' : {
-    my: `uid='${uid}'`,
-    responsible: columnList.includes('responsible_id')
-      ? `responsible_id='${uid}'`
-      : `uid='${uid}'`,
-    all: '1=1',
-  }[scope];
-
-  const { my } = pg.pk?.[table] && id ? await pg.one(`select uid=$1 as my from ${table} where ${pg.pk?.[table]}=$2`, [uid, id]) : {};
-
-  return {
-    scope, actions, query, my,
-  };
-}
+import getMeta from '../../pg/funcs/getMeta.js';
+import getTemplate from '../../table/controllers/utils/getTemplate.js';
+import config from '../../config.js';
+
+const q = `select a.route_id as id, b.actions, b.scope 
+from admin.routes a 
+left join admin.access b on 
+  a.route_id=b.route_id
+left join admin.roles c on 
+  b.role_id=c.role_id 
+  and c.enabled
+left join admin.user_roles d on 
+  c.role_id=d.role_id 
+  and ( case when 
+            d.expiration is not null 
+            then d.expiration > CURRENT_DATE 
+            else 1=1 
+        end )
+where a.route_id=$1 and $2 in (b.user_uid, d.user_uid)`;
+
+export default async function getAccess(req, template, id = null) {
+  if (config.disableAccessRestriction || true) {
+    return { actions: ['get', 'edit', 'del'], my: true, query: '1=1' };
+  }
+  const { pg, session = {} } = req;
+  const { uid, user_type: userType } = session.passport?.user || {};
+  if (!uid || !template) return null;
+
+  if (!pg.pk?.['admin.access']) return null;
+
+  const { table } = await getTemplate('table', template) || {};
+  if (!table) return null;
+
+  const { scope = 'my', actions = [] } = await pg.one(q, [template, uid]);
+  // console.log(scope, actions);
+
+  const { columns = [] } = await getMeta(table);
+  const columnList = columns.map((el) => el.name || el).join(',');
+
+  const query = userType?.includes('admin') ? '1=1' : {
+    my: `uid='${uid}'`,
+    responsible: columnList.includes('responsible_id')
+      ? `responsible_id='${uid}'`
+      : `uid='${uid}'`,
+    all: '1=1',
+  }[scope];
+
+  const { my } = pg.pk?.[table] && id ? await pg.one(`select uid=$1 as my from ${table} where ${pg.pk?.[table]}=$2`, [uid, id]) : {};
+
+  return {
+    scope, actions, query, my,
+  };
+}

package/crud/funcs/getOpt.js

@@ -1,10 +1,10 @@
-import getRedis from '../../redis/funcs/getRedis.js';
-
-export default async function getOpt(token, funcs) {
-  const rclient = getRedis({ db: 0, funcs });
-
-  const key = `opt:${token}`;
-  const data = await rclient.get(key);
-  if (!data) return null;
-  return JSON.parse(data);
-}
+import getRedis from '../../redis/funcs/getRedis.js';
+
+export default async function getOpt(token, funcs) {
+  const rclient = getRedis({ db: 0, funcs });
+
+  const key = `opt:${token}`;
+  const data = await rclient.get(key);
+  if (!data) return null;
+  return JSON.parse(data);
+}

package/crud/funcs/setOpt.js

@@ -1,16 +1,16 @@
-import { createHash } from 'crypto';
-import getRedis from '../../redis/funcs/getRedis.js';
-
-function md5(string) {
-  return createHash('md5').update(string).digest('hex');
-}
-
-export default async function setOpt(params) {
-  const token = Buffer.from(md5(typeof params === 'object' ? JSON.stringify(params) : params), 'hex').toString('base64').replace(/[+-=]+/g, '');
-  // const token = md5(params);
-  const key = `opt:${token}`;
-
-  const rclient = getRedis({ db: 0, funcs: params.funcs });
-  await rclient.set(key, JSON.stringify(params), 'EX', 60 * 60);
-  return token;
-}
+import { createHash } from 'crypto';
+import getRedis from '../../redis/funcs/getRedis.js';
+
+function md5(string) {
+  return createHash('md5').update(string).digest('hex');
+}
+
+export default async function setOpt(params) {
+  const token = Buffer.from(md5(typeof params === 'object' ? JSON.stringify(params) : params), 'hex').toString('base64').replace(/[+-=]+/g, '');
+  // const token = md5(params);
+  const key = `opt:${token}`;
+
+  const rclient = getRedis({ db: 0, funcs: params.funcs });
+  await rclient.set(key, JSON.stringify(params), 'EX', 60 * 60);
+  return token;
+}

package/crud/funcs/utils/logChanges.js

@@ -1,71 +1,71 @@
-function formatData(fieldType = 'text', value = null) {
-  if (!value) return null;
-  if (fieldType === 'geometry') {
-    return typeof value === 'object' ? `st_astext(st_geomfromgeojson('${JSON.stringify(value)}'::json))` : `st_astext('${value}'::geometry)`;
-  }
-  if (['integer', 'numeric', 'double precision'].includes(fieldType)) {
-    return value || null;
-  }
-  if (fieldType.includes('timestamp') || fieldType === 'date') {
-    if (typeof value === 'object') {
-      return value ? `'${value.toISOString()}'::${fieldType}` : null;
-    }
-    return value ? `'${value}'::${fieldType}` : null;
-  }
-  /* if (fieldType.includes('json') && Array.isArray(value)) {
-    return value;
-  } */
-  if (Array.isArray(value)) {
-    return `'{ ${value.join(',')} }'::${fieldType}`;
-  }
-  return typeof value === 'object' ? JSON.stringify(value) : `'${value || null}'`;
-}
-
-export default async function logChanges({
-  pg, table, id, data, uid = 1, type,
-}) {
-  if (!id) {
-    console.error('param id is required');
-    return null;
-  }
-  if (!table || !pg.pk?.[table]) {
-    console.error('table not found');
-    return null;
-  }
-  if (!pg.pk?.['log.table_changes'] || !pg.pk?.['log.table_changes_data']) {
-    console.error('log table not found');
-    return null;
-  }
-  if (!type) {
-    console.error('invalid type');
-    return null;
-  }
-
-  try {
-    const { change_id: changeId } = await pg.query(`insert into log.table_changes(change_date,change_type,change_user_id,entity_type,entity_id) 
-    values(CURRENT_DATE, $1, $2, $3, $4) returning change_id`, [type, uid, table, id]).then((res) => res.rows?.[0] || {});
-
-    const q = `select ${Object.keys(data || {}).join(',') || '*'} from ${table} where ${pg.pk?.[table]}=$1`;
-    // console.log(q, type, id);
-    const { fields = [] } = await pg.query(`select * from ${table} limit 0`);
-    const old = type !== 'INSERT' ? await pg.query(q, [id]).then((res) => res.rows?.[0] || {}) : {};
-
-    const fieldTypes = fields?.reduce((acc, curr) => Object.assign(acc, { [curr.name]: pg.pgType[curr.dataTypeID] }), {}) || {};
-    const q1 = Object.keys(data || {}).map((el) => `insert into log.table_changes_data(change_id,entity_key,value_old,value_new) 
-      values('${changeId}', '${el}', ${formatData(fieldTypes[el], old[el])}, ${formatData(fieldTypes[el], data[el])}) returning *`).join(';\n');
-    // console.log(q1);
-    const res = await pg.query(q1);
-
-    const newData = type === 'DELETE' ? {} : (Array.isArray(res) ? res : [res]).reduce((acc, curr) => Object.assign(acc, { [curr.rows?.[0].entity_key]: curr.rows?.[0].value_new }), {});
-    // console.log('logChanges OK', type);
-    return {
-      change_id: changeId, entity_type: table, entity_id: id, uid, change_type: type, old, new: newData,
-    };
-  }
-  catch (err) {
-    console.error('logChanges error', type, table, id, data, err.toString());
-    return {
-      error: err.toString(), entity_type: table, entity_id: id, uid, change_type: type,
-    };
-  }
-}
+function formatData(fieldType = 'text', value = null) {
+  if (!value) return null;
+  if (fieldType === 'geometry') {
+    return typeof value === 'object' ? `st_astext(st_geomfromgeojson('${JSON.stringify(value)}'::json))` : `st_astext('${value}'::geometry)`;
+  }
+  if (['integer', 'numeric', 'double precision'].includes(fieldType)) {
+    return value || null;
+  }
+  if (fieldType.includes('timestamp') || fieldType === 'date') {
+    if (typeof value === 'object') {
+      return value ? `'${value.toISOString()}'::${fieldType}` : null;
+    }
+    return value ? `'${value}'::${fieldType}` : null;
+  }
+  /* if (fieldType.includes('json') && Array.isArray(value)) {
+    return value;
+  } */
+  if (Array.isArray(value)) {
+    return `'{ ${value.join(',')} }'::${fieldType}`;
+  }
+  return typeof value === 'object' ? JSON.stringify(value) : `'${value || null}'`;
+}
+
+export default async function logChanges({
+  pg, table, id, data, uid = 1, type,
+}) {
+  if (!id) {
+    console.error('param id is required');
+    return null;
+  }
+  if (!table || !pg.pk?.[table]) {
+    console.error('table not found');
+    return null;
+  }
+  if (!pg.pk?.['log.table_changes'] || !pg.pk?.['log.table_changes_data']) {
+    console.error('log table not found');
+    return null;
+  }
+  if (!type) {
+    console.error('invalid type');
+    return null;
+  }
+
+  try {
+    const { change_id: changeId } = await pg.query(`insert into log.table_changes(change_date,change_type,change_user_id,entity_type,entity_id) 
+    values(CURRENT_DATE, $1, $2, $3, $4) returning change_id`, [type, uid, table, id]).then((res) => res.rows?.[0] || {});
+
+    const q = `select ${Object.keys(data || {}).join(',') || '*'} from ${table} where ${pg.pk?.[table]}=$1`;
+    // console.log(q, type, id);
+    const { fields = [] } = await pg.query(`select * from ${table} limit 0`);
+    const old = type !== 'INSERT' ? await pg.query(q, [id]).then((res) => res.rows?.[0] || {}) : {};
+
+    const fieldTypes = fields?.reduce((acc, curr) => Object.assign(acc, { [curr.name]: pg.pgType[curr.dataTypeID] }), {}) || {};
+    const q1 = Object.keys(data || {}).map((el) => `insert into log.table_changes_data(change_id,entity_key,value_old,value_new) 
+      values('${changeId}', '${el}', ${formatData(fieldTypes[el], old[el])}, ${formatData(fieldTypes[el], data[el])}) returning *`).join(';\n');
+    // console.log(q1);
+    const res = await pg.query(q1);
+
+    const newData = type === 'DELETE' ? {} : (Array.isArray(res) ? res : [res]).reduce((acc, curr) => Object.assign(acc, { [curr.rows?.[0].entity_key]: curr.rows?.[0].value_new }), {});
+    // console.log('logChanges OK', type);
+    return {
+      change_id: changeId, entity_type: table, entity_id: id, uid, change_type: type, old, new: newData,
+    };
+  }
+  catch (err) {
+    console.error('logChanges error', type, table, id, data, err.toString());
+    return {
+      error: err.toString(), entity_type: table, entity_id: id, uid, change_type: type,
+    };
+  }
+}