@ozdao/prometheus-framework 0.2.126 → 0.2.127

package/dist/organizations.server.js

@@ -15,17 +15,17 @@ const ownership_schema = require("./ownership.schema-DN0SlQL6.js");
 const credentials_schema = require("./credentials.schema-B-KD_ozQ.js");
 const controllerFactory$6 = (db) => {
   const Department = db.department;
-  const readOne = (req, res2) => {
+  const readOne = (req, res) => {
     Department.findOne({ _id: req.params._id }).populate("members.user").populate("subdepartments").then((department) => {
       if (!department) {
-        return res2.status(404).send({ message: "Отдел не найден" });
+        return res.status(404).send({ message: "Отдел не найден" });
       }
-      res2.send(department);
+      res.send(department);
     }).catch((err) => {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     });
   };
-  const read = (req, res2) => {
+  const read = (req, res) => {
     let query = {};
     let options = {};
     if (req.query.organization) {
@@ -36,43 +36,43 @@ const controllerFactory$6 = (db) => {
     }
     Department.find(query, null, options).populate("members.user").populate("subdepartments").then((departments) => {
       if (!departments) {
-        return res2.status(404).send({ message: "Departments not found" });
+        return res.status(404).send({ message: "Departments not found" });
       }
-      res2.send(departments);
+      res.send(departments);
     }).catch((err) => {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     });
   };
-  const create = async (req, res2) => {
+  const create = async (req, res) => {
     try {
       const newDepartment = new Department({
         ...req.body,
         organization: req.params._id
       });
       const data = await newDepartment.save();
-      res2.send(data);
+      res.send(data);
     } catch (err) {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     }
   };
-  const update = (req, res2) => {
+  const update = (req, res) => {
     Department.findOneAndUpdate({ _id: req.body._id }, req.body, { new: true }).then((department) => {
       if (!department) {
-        return res2.status(404).send({ message: "Department not found" });
+        return res.status(404).send({ message: "Department not found" });
       }
-      res2.send(department);
+      res.send(department);
     }).catch((err) => {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     });
   };
-  const deleteDepartment = (req, res2) => {
+  const deleteDepartment = (req, res) => {
     Department.findOneAndRemove({ _id: req.body._id, organization: req.params._id }).then((department) => {
       if (!department) {
-        return res2.status(404).send({ message: "Department not found" });
+        return res.status(404).send({ message: "Department not found" });
       }
-      res2.send({ message: "Department deleted successfully" });
+      res.send({ message: "Department deleted successfully" });
     }).catch((err) => {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     });
   };
   return {
@@ -95,7 +95,7 @@ const controllerFactory$5 = (db) => {
   const Membership = db.membership;
   db.user;
   db.role;
-  const read = async (req, res2) => {
+  const read = async (req, res) => {
     const sortParam = req.query.sortParam || "numberOfProducts";
     const sortOrder = req.query.sortOrder || "desc";
     const sort = {
@@ -175,11 +175,11 @@ const controllerFactory$5 = (db) => {
           ];
           console.log(userLocation);
         } else {
-          return res2.status(400).send({ message: "Unable to geocode the provided location." });
+          return res.status(400).send({ message: "Unable to geocode the provided location." });
         }
       } catch (err) {
         console.log(err);
-        return res2.status(500).send({ message: "Error occurred while geocoding." });
+        return res.status(500).send({ message: "Error occurred while geocoding." });
       }
       const radius = city ? 500 : state ? 1e3 : 5e3;
       matchConditions.push({
@@ -349,13 +349,13 @@ const controllerFactory$5 = (db) => {
     try {
       console.log(stages);
       const organizations = await Organization.aggregate(stages);
-      res2.status(200).send(organizations);
+      res.status(200).send(organizations);
     } catch (err) {
       console.log(err);
-      return res2.status(500).send({ message: err });
+      return res.status(500).send({ message: err });
     }
   };
-  const fetch = async (req, res2) => {
+  const fetch = async (req, res) => {
     const Organization2 = db.organization;
     let query = {};
     console.log(req.query);
@@ -374,14 +374,14 @@ const controllerFactory$5 = (db) => {
     try {
       const organizations = await Organization2.find(query, null, options);
       if (!organizations || organizations.length === 0) {
-        return res2.status(404).send({ message: "Organizations not found." });
+        return res.status(404).send({ message: "Organizations not found." });
       }
-      res2.status(200).send(organizations);
+      res.status(200).send(organizations);
     } catch (err) {
-      return res2.status(500).send({ message: err });
+      return res.status(500).send({ message: err });
     }
   };
-  const create = async (req, res2) => {
+  const create = async (req, res) => {
     if (req.body._id === null) {
       delete req.body._id;
     }
@@ -396,13 +396,13 @@ const controllerFactory$5 = (db) => {
         label: "owner"
       });
       const savedMembership = await membership.save();
-      res2.status(201).json(savedOrganization);
+      res.status(201).json(savedOrganization);
     } catch (error) {
       console.error("Error:", error);
-      res2.status(500).send(error);
+      res.status(500).send(error);
     }
   };
-  const update = async (req, res2) => {
+  const update = async (req, res) => {
     try {
       const organizationId = req.params._id;
       const updatedData = req.body;
@@ -411,17 +411,17 @@ const controllerFactory$5 = (db) => {
         runValidators: true
       });
       if (!organization) {
-        return res2.status(404).json({ message: "Organization not found" });
+        return res.status(404).json({ message: "Organization not found" });
       }
-      res2.status(200).json({ message: "Organization updated successfully", organization });
+      res.status(200).json({ message: "Organization updated successfully", organization });
     } catch (error) {
-      res2.status(500).json({ error: error.message });
+      res.status(500).json({ error: error.message });
     }
   };
-  const deleteOrganization = async (req, res2) => {
+  const deleteOrganization = async (req, res) => {
     Organization.findOneAndRemove({ _id: req.params._id }).then((organization) => {
       if (!organization) {
-        return res2.status(404).send({ message: "Organization not found" });
+        return res.status(404).send({ message: "Organization not found" });
       }
       Membership.deleteMany({ target: req.params._id }).then(() => {
         const newToken = jwt.sign({
@@ -431,12 +431,12 @@ const controllerFactory$5 = (db) => {
           expiresIn: 86400
           // 24 hours
         });
-        res2.send({ newToken });
+        res.send({ newToken });
       }).catch((err) => {
-        res2.status(500).send({ message: "Error deleting memberships: " + err.message });
+        res.status(500).send({ message: "Error deleting memberships: " + err.message });
       });
     }).catch((err) => {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     });
   };
   return {
@@ -453,7 +453,7 @@ const ObjectId = require$$0.Types.ObjectId;
 const queryProcessorGlobals = queryProcessor.queryProcessor;
 const controllerFactory$4 = (db) => {
   const Membership = db.membership;
-  const read = async (req, res2) => {
+  const read = async (req, res) => {
     try {
       let search = req.query.search;
       let regexPattern = "";
@@ -504,16 +504,16 @@ const controllerFactory$4 = (db) => {
         )
       ]);
       if (!memberships || memberships.length === 0) {
-        return res2.status(404).send({ errorCode: "MEMBERSHIPS_NOT_FOUND" });
+        return res.status(404).send({ errorCode: "MEMBERSHIPS_NOT_FOUND" });
       }
       console.log("membership is", memberships[0].user);
-      res2.send(memberships);
+      res.send(memberships);
     } catch (err) {
       console.log(err);
-      res2.status(500).send({ errorCode: "SERVER_ERROR" });
+      res.status(500).send({ errorCode: "SERVER_ERROR" });
     }
   };
-  const create = async (req, res2) => {
+  const create = async (req, res) => {
     const newMembership = new Membership({
       user: req.body.user,
       type: req.body.type,
@@ -522,35 +522,35 @@ const controllerFactory$4 = (db) => {
     });
     try {
       const data = await newMembership.save();
-      res2.send(data);
+      res.send(data);
     } catch (err) {
-      res2.status(500).send({ errorCode: "SERVER_ERROR" });
+      res.status(500).send({ errorCode: "SERVER_ERROR" });
     }
   };
-  const update = async (req, res2) => {
+  const update = async (req, res) => {
     try {
       const membership = await Membership.findByIdAndUpdate(req.body._id, req.body, { new: true });
       if (!membership) {
-        return res2.status(404).send({ errorCode: "MEMBERSHIP_NOT_FOUND" });
+        return res.status(404).send({ errorCode: "MEMBERSHIP_NOT_FOUND" });
       }
-      res2.send(membership);
+      res.send(membership);
     } catch (err) {
-      res2.status(500).send({ errorCode: "SERVER_ERROR" });
+      res.status(500).send({ errorCode: "SERVER_ERROR" });
     }
   };
-  const deleteMembership = async (req, res2) => {
+  const deleteMembership = async (req, res) => {
     console.log(req.body);
     try {
       const membership = await Membership.findOneAndDelete({ _id: new ObjectId(req.body._id) });
       if (!membership) {
-        return res2.status(404).send({ errorCode: "MEMBERSHIP_NOT_FOUND" });
+        return res.status(404).send({ errorCode: "MEMBERSHIP_NOT_FOUND" });
       } else {
         await Membership.deleteOne({ _id: membership._id });
-        res2.status(200).send(membership);
+        res.status(200).send(membership);
       }
     } catch (error) {
       console.log(error);
-      res2.status(500).send({ errorCode: "SERVER_ERROR" });
+      res.status(500).send({ errorCode: "SERVER_ERROR" });
     }
   };
   return {
@@ -567,29 +567,29 @@ const сontrollerFactory = (db) => {
   const User = db.user;
   const Invite = db.invite;
   const Membership = db.membership;
-  const getOneByCode = async (req, res2) => {
+  const getOneByCode = async (req, res) => {
     try {
       const invite = await Invite.findOne({ code: req.params._id });
       if (!invite) {
-        return res2.status(404).send({ message: "Приглашение не найдено" });
+        return res.status(404).send({ message: "Приглашение не найдено" });
       }
-      res2.send(invite);
+      res.send(invite);
     } catch (err) {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     }
   };
-  const read = async (req, res2) => {
+  const read = async (req, res) => {
     try {
       const invites = await Invite.find({ "owner.target": req.params._id });
       if (!invites || invites.length === 0) {
-        return res2.status(200).send([]);
+        return res.status(200).send([]);
       }
-      res2.send(invites);
+      res.send(invites);
     } catch (err) {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     }
   };
-  const create = async (req, res2) => {
+  const create = async (req, res) => {
     const creator = req.body.creator;
     const owner = req.body.owner;
     const list = req.body.invites;
@@ -633,21 +633,21 @@ const сontrollerFactory = (db) => {
           }
         }
       }
-      res2.status(200).json({ message: "Invites sent successfully!" });
+      res.status(200).json({ message: "Invites sent successfully!" });
     } catch (error) {
       console.error(error);
-      res2.status(500).json({ message: "Something went wrong" });
+      res.status(500).json({ message: "Something went wrong" });
     }
   };
-  const deleteInvite = async (req, res2) => {
+  const deleteInvite = async (req, res) => {
     try {
       const invite = await Invite.findOneAndDelete({ _id: req.params._id });
       if (!invite) {
-        return res2.status(404).send({ message: "Invite not found" });
+        return res.status(404).send({ message: "Invite not found" });
       }
-      res2.send({ message: "Invite deleted successfully" });
+      res.send({ message: "Invite deleted successfully" });
     } catch (err) {
-      res2.status(500).send({ message: err.message });
+      res.status(500).send({ message: err.message });
     }
   };
   return {
@@ -658,125 +658,11 @@ const сontrollerFactory = (db) => {
   };
 };
 var invites_controller = сontrollerFactory;
-let AccessController$1 = class AccessController {
-  db = null;
-  rule = null;
-  next = null;
-  entity = null;
-  /**
-   * @param {String} rule - Права на проверку (read, create, ...)
-   * @param {String} entity - Сущность на проверку (departments, post, ...)
-   */
-  check(rule, entity) {
-    if (this.rule === rule && this.entity === entity) {
-      return this.access.bind(this);
-    } else if (this.next) {
-      this.next.check(rule, entity);
-    } else {
-      console.error("Неудачная попытка вызова посредника verifyAccesses");
-      console.error("Переданные аргументы:", this.rule, this.entity);
-      return async (req, res2, next) => {
-        return res2.status(403).send({ message: "Access Denied. Middleware not founded" });
-      };
-    }
-  }
-};
-var AccessController_1 = AccessController$1;
-const AccessController2 = AccessController_1;
-let ReadDepartments$1 = class ReadDepartments extends AccessController2 {
-  rule = "read";
-  entity = "departments";
-  async access(req, res2, next) {
-    const Department = this.db.department;
-    try {
-      const userId = req.cookies.user._id;
-      const organization = req.query.organization;
-      const departments = await Department.find({
-        organization: { $eq: organization },
-        members: { $elemMatch: { user: userId } }
-      });
-      if (!departments.length) {
-        return res2.status(403).send({
-          message: "Access Denied. Read Departments. Департаменты не найдены"
-        });
-      }
-      let hasAccess = false;
-      departments.forEach((departament) => {
-        const accesses = departament.accesses;
-        if (getNestedProperty(accesses, rulePath)) {
-          hasAccess = true;
-        }
-      });
-      if (hasAccess) {
-        next();
-      } else {
-        return res2.status(403).send({ message: "Access Denied. Read Departments. No access" });
-      }
-    } catch (error) {
-      console.error("[canReadDepartments]", error);
-      return res2.status(500).send({ message: error.message });
-    }
-  }
-  /**
-   * // note: пока не использовался метод
-   * @param {Object} req объект 
-   * @returns 
-   */
-  async departmentsWhereUserIsMember(req) {
-    const Department = this.db.department;
-    try {
-      const userId = req.cookies.user._id;
-      const organization = req.query.organization;
-      const departments = await Department.find({
-        organization: { $eq: organization },
-        members: { $elemMatch: { user: userId } }
-      });
-      return departments;
-    } catch (error) {
-      console.error("[canReadDepartments]", error);
-      return res.status(500).send({ message: error.message });
-    }
-  }
-};
-var ReadDepartments_1 = ReadDepartments$1;
-function getNestedProperty(obj, propertyPath) {
-  const properties = propertyPath.split(".");
-  let value = obj;
-  for (const property of properties) {
-    if (!value.hasOwnProperty(property)) {
-      return void 0;
-    }
-    value = value[property];
-  }
-  return value;
-}
-const ReadDepartments2 = ReadDepartments_1;
-var verifyAccesses = (db) => {
-  const instances = [];
-  const middlewares = [
-    ReadDepartments2
-  ];
-  let nextMiddleware = null;
-  for (let i = middlewares.length - 1; i >= 0; i--) {
-    const Middleware = middlewares[i];
-    const middleware = new Middleware();
-    middleware.db = db;
-    middleware.next = nextMiddleware;
-    instances.unshift(middleware);
-    nextMiddleware = middleware;
-  }
-  return (rule, entity) => instances[0].check(rule, entity);
-};
 const controllerFactory$3 = departments_controller;
-const accessMiddlewaresFactory = verifyAccesses;
 var departments_routes = function(app, db) {
   const controller = controllerFactory$3(db);
-  accessMiddlewaresFactory(db);
   app.get(
     "/api/departments/read",
-    // [
-    //   verifyAccesses('read', 'departments'),
-    // ],
     controller.read
   );
   app.get("/api/departments/get/:_id", controller.readOne);
@@ -878,6 +764,48 @@ var department_model = (mongoose) => {
       default: false
     },
     accesses: {
+      members: {
+        read: {
+          type: Boolean,
+          default: false
+        },
+        edit: {
+          type: Boolean,
+          default: false
+        },
+        delete: {
+          type: Boolean,
+          default: false
+        }
+      },
+      gallery: {
+        read: {
+          type: Boolean,
+          default: false
+        },
+        edit: {
+          type: Boolean,
+          default: false
+        },
+        delete: {
+          type: Boolean,
+          default: false
+        }
+      },
+      leftovers: {
+        read: {
+          type: Boolean,
+          default: false
+        },
+        edit: {
+          type: Boolean,
+          default: false
+        },
+        delete: {
+          type: Boolean,
+          default: false
+        }
+      },
       products: {
         read: {
           type: Boolean,