@simitgroup/simpleapp-generator 1.6.4-e-alpha → 1.6.4-g-alpha

package/ReleaseNote.md

@@ -1,3 +1,16 @@
+[1.6.5g]
+1. change simpleapp document controller use document name instead of document type
+2. allow use header x-apikey(match env X_APIKEY), x-apisecret (match env X_APISECRET), to by pass access token. which will use robotuser in user context
+3. add support of x-guest-accesstoken (submit by external user source, like parent/student app), it store into usercontext as guestinfo, since appuser = robotuser
+4. Fix document search properties to restrict (required field and sorts)
+
+
+[1.6.5f]
+1. added webhook db
+2. support audit trail
+3. support upload avatar to cloudapi
+4. added html input for simpleapp
+
 [1.2.0]
 1. lot of house keeping
 2. frontend more stable login using keycloak

package/dist/buildinschemas/index.d.ts

@@ -7,6 +7,5 @@ export { docnoformat } from './docnoformat';
 export { systemmessage } from './systemmessage';
 export { keyvaluepair } from './keyvaluepair';
 export { webhook } from './webhook';
-export { webhookhistory } from './webhookhistory';
 export { documentevent } from './documentevent';
 //# sourceMappingURL=index.d.ts.map

package/dist/buildinschemas/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/buildinschemas/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAC,MAAM,EAAC,MAAM,UAAU,CAAA;AAC/B,OAAO,EAAC,YAAY,EAAC,MAAM,gBAAgB,CAAA;AAC3C,OAAO,EAAC,MAAM,EAAC,MAAM,UAAU,CAAA;AAC/B,OAAO,EAAC,UAAU,EAAC,MAAM,cAAc,CAAA;AAEvC,OAAO,EAAC,cAAc,EAAC,MAAM,kBAAkB,CAAA;AAC/C,OAAO,EAAC,WAAW,EAAC,MAAM,eAAe,CAAA;AACzC,OAAO,EAAC,aAAa,EAAC,MAAM,iBAAiB,CAAA;AAC7C,OAAO,EAAC,YAAY,EAAC,MAAM,gBAAgB,CAAA;AAC3C,OAAO,EAAC,OAAO,EAAC,MAAM,WAAW,CAAA;AACjC,OAAO,EAAC,cAAc,EAAE,MAAM,kBAAkB,CAAA;AAChD,OAAO,EAAC,aAAa,EAAC,MAAM,iBAAiB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/buildinschemas/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAC,MAAM,EAAC,MAAM,UAAU,CAAA;AAC/B,OAAO,EAAC,YAAY,EAAC,MAAM,gBAAgB,CAAA;AAC3C,OAAO,EAAC,MAAM,EAAC,MAAM,UAAU,CAAA;AAC/B,OAAO,EAAC,UAAU,EAAC,MAAM,cAAc,CAAA;AAEvC,OAAO,EAAC,cAAc,EAAC,MAAM,kBAAkB,CAAA;AAC/C,OAAO,EAAC,WAAW,EAAC,MAAM,eAAe,CAAA;AACzC,OAAO,EAAC,aAAa,EAAC,MAAM,iBAAiB,CAAA;AAC7C,OAAO,EAAC,YAAY,EAAC,MAAM,gBAAgB,CAAA;AAC3C,OAAO,EAAC,OAAO,EAAC,MAAM,WAAW,CAAA;AACjC,OAAO,EAAC,aAAa,EAAC,MAAM,iBAAiB,CAAA"}

package/dist/buildinschemas/index.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.documentevent = exports.webhookhistory = exports.webhook = exports.keyvaluepair = exports.systemmessage = exports.docnoformat = exports.autoincreament = exports.permission = exports.branch = exports.organization = exports.tenant = void 0;
+exports.documentevent = exports.webhook = exports.keyvaluepair = exports.systemmessage = exports.docnoformat = exports.autoincreament = exports.permission = exports.branch = exports.organization = exports.tenant = void 0;
 var tenant_1 = require("./tenant");
 Object.defineProperty(exports, "tenant", { enumerable: true, get: function () { return tenant_1.tenant; } });
 var organization_1 = require("./organization");
@@ -20,8 +20,6 @@ var keyvaluepair_1 = require("./keyvaluepair");
 Object.defineProperty(exports, "keyvaluepair", { enumerable: true, get: function () { return keyvaluepair_1.keyvaluepair; } });
 var webhook_1 = require("./webhook");
 Object.defineProperty(exports, "webhook", { enumerable: true, get: function () { return webhook_1.webhook; } });
-var webhookhistory_1 = require("./webhookhistory");
-Object.defineProperty(exports, "webhookhistory", { enumerable: true, get: function () { return webhookhistory_1.webhookhistory; } });
 var documentevent_1 = require("./documentevent");
 Object.defineProperty(exports, "documentevent", { enumerable: true, get: function () { return documentevent_1.documentevent; } });
 //# sourceMappingURL=index.js.map

package/dist/buildinschemas/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/buildinschemas/index.ts"],"names":[],"mappings":";;;AAAA,mCAA+B;AAAvB,gGAAA,MAAM,OAAA;AACd,+CAA2C;AAAnC,4GAAA,YAAY,OAAA;AACpB,mCAA+B;AAAvB,gGAAA,MAAM,OAAA;AACd,2CAAuC;AAA/B,wGAAA,UAAU,OAAA;AAClB,8BAA8B;AAC9B,mDAA+C;AAAvC,gHAAA,cAAc,OAAA;AACtB,6CAAyC;AAAjC,0GAAA,WAAW,OAAA;AACnB,iDAA6C;AAArC,8GAAA,aAAa,OAAA;AACrB,+CAA2C;AAAnC,4GAAA,YAAY,OAAA;AACpB,qCAAiC;AAAzB,kGAAA,OAAO,OAAA;AACf,mDAAgD;AAAxC,gHAAA,cAAc,OAAA;AACtB,iDAA6C;AAArC,8GAAA,aAAa,OAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/buildinschemas/index.ts"],"names":[],"mappings":";;;AAAA,mCAA+B;AAAvB,gGAAA,MAAM,OAAA;AACd,+CAA2C;AAAnC,4GAAA,YAAY,OAAA;AACpB,mCAA+B;AAAvB,gGAAA,MAAM,OAAA;AACd,2CAAuC;AAA/B,wGAAA,UAAU,OAAA;AAClB,8BAA8B;AAC9B,mDAA+C;AAAvC,gHAAA,cAAc,OAAA;AACtB,6CAAyC;AAAjC,0GAAA,WAAW,OAAA;AACnB,iDAA6C;AAArC,8GAAA,aAAa,OAAA;AACrB,+CAA2C;AAAnC,4GAAA,YAAY,OAAA;AACpB,qCAAiC;AAAzB,kGAAA,OAAO,OAAA;AACf,iDAA6C;AAArC,8GAAA,aAAa,OAAA"}

package/dist/buildinschemas/systemmessage.js

@@ -28,15 +28,15 @@ exports.systemmessage = {
         "orgId": { "type": "integer", "default": 1 },
         "branchId": { "type": "integer", "default": 1 },
         "uid": { "type": "string", "format": "uuid" },
+        "messageType": { "type": "string", minLength: 3 },
         "messageTitle": {
             "type": "string",
             "minLength": 3
         },
         "read": { "type": "boolean", "default": false },
-        "url": { "type": "string" },
-        "description": {
+        "body": {
             "type": "string",
-            "format": "text"
+            "format": "html"
         }
     }
 };

package/dist/buildinschemas/systemmessage.js.map

@@ -1 +1 @@
-{"version":3,"file":"systemmessage.js","sourceRoot":"","sources":["../../src/buildinschemas/systemmessage.ts"],"names":[],"mappings":";;;AAAA,kCAA4D;AAE/C,QAAA,aAAa,GAC1B;IACI,MAAM,EAAE,QAAQ;IAChB,oBAAoB,EAAE;QACpB,cAAc,EAAE,QAAQ;QACxB,cAAc,EAAE,eAAe;QAC/B,eAAe,EAAE,oBAAa,CAAC,MAAM;QACrC,eAAe,EAAE,cAAc;QAC/B,cAAc,EAAC,CAAC;gBACd,QAAQ,EAAC,SAAS;gBAClB,YAAY,EAAC,UAAU;gBACvB,cAAc,EAAC,CAAC,MAAM,CAAC;gBACvB,cAAc,EAAC,eAAe;gBAC9B,QAAQ,EAAC,kBAAW,CAAC,GAAG;gBACxB,aAAa,EAAC,mCAAmC;aAClD,CAAE;KACJ;IACD,YAAY,EAAE;QACZ,KAAK,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAC,QAAQ,EAAC,MAAM,EAAE;QAC3C,SAAS,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;QAC/B,SAAS,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;QAC/B,WAAW,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;QACjC,WAAW,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;QACjC,UAAU,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC,EAAE;QAC/C,OAAO,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC,EAAE;QAC5C,UAAU,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC,EAAE;QAC/C,KAAK,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAC,QAAQ,EAAC,MAAM,EAAE;QAC3C,cAAc,EAAE;YACd,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAE,CAAC;SACf;QACD,MAAM,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAC;QAC9C,KAAK,EAAC,EAAE,MAAM,EAAE,QAAQ,EAAC;QACzB,aAAa,EAAE;YACb,MAAM,EAAE,QAAQ;YAChB,QAAQ,EAAE,MAAM;SACjB;KACF;CACF,CAAA"}
+{"version":3,"file":"systemmessage.js","sourceRoot":"","sources":["../../src/buildinschemas/systemmessage.ts"],"names":[],"mappings":";;;AAAA,kCAA4D;AAE/C,QAAA,aAAa,GAC1B;IACI,MAAM,EAAE,QAAQ;IAChB,oBAAoB,EAAE;QACpB,cAAc,EAAE,QAAQ;QACxB,cAAc,EAAE,eAAe;QAC/B,eAAe,EAAE,oBAAa,CAAC,MAAM;QACrC,eAAe,EAAE,cAAc;QAC/B,cAAc,EAAC,CAAC;gBACd,QAAQ,EAAC,SAAS;gBAClB,YAAY,EAAC,UAAU;gBACvB,cAAc,EAAC,CAAC,MAAM,CAAC;gBACvB,cAAc,EAAC,eAAe;gBAC9B,QAAQ,EAAC,kBAAW,CAAC,GAAG;gBACxB,aAAa,EAAC,mCAAmC;aAClD,CAAE;KACJ;IACD,YAAY,EAAE;QACZ,KAAK,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAC,QAAQ,EAAC,MAAM,EAAE;QAC3C,SAAS,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;QAC/B,SAAS,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;QAC/B,WAAW,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;QACjC,WAAW,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;QACjC,UAAU,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC,EAAE;QAC/C,OAAO,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC,EAAE;QAC5C,UAAU,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC,EAAE;QAC/C,KAAK,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAC,QAAQ,EAAC,MAAM,EAAE;QAC3C,aAAa,EAAC,EAAC,MAAM,EAAC,QAAQ,EAAC,SAAS,EAAC,CAAC,EAAC;QAC3C,cAAc,EAAE;YACd,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAE,CAAC;SACf;QACD,MAAM,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAC;QAC9C,MAAM,EAAE;YACN,MAAM,EAAE,QAAQ;YAChB,QAAQ,EAAE,MAAM;SACjB;KACF;CACF,CAAA"}

package/dist/buildinschemas/user.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"user.d.ts","sourceRoot":"","sources":["../../src/buildinschemas/user.ts"],"names":[],"mappings":"AAAA,OAAO,EAAC,UAAU,EAA2B,MAAM,SAAS,CAAA;AAE5D,eAAO,MAAM,IAAI,EAAC,UAqDjB,CAAA"}
+{"version":3,"file":"user.d.ts","sourceRoot":"","sources":["../../src/buildinschemas/user.ts"],"names":[],"mappings":"AAAA,OAAO,EAAC,UAAU,EAA2B,MAAM,SAAS,CAAA;AAE5D,eAAO,MAAM,IAAI,EAAC,UA4DjB,CAAA"}

package/dist/buildinschemas/user.js

@@ -47,6 +47,13 @@ exports.user = {
         },
         fullName: { type: "string", minLength: 3 },
         email: { type: "string", minLength: 10, format: "email" },
+        mobileNo: {
+            type: "string",
+            anyOf: [
+                { "const": "" },
+                { "format": "tel", "examples": ["0123456789"] }
+            ]
+        },
         active: { type: "boolean", default: true },
         description: { type: "string" },
         lastActivity: { type: "string", description: "capture ISO8601 last api call" },

package/dist/buildinschemas/user.js.map

@@ -1 +1 @@
-{"version":3,"file":"user.js","sourceRoot":"","sources":["../../src/buildinschemas/user.ts"],"names":[],"mappings":";;;AAAA,kCAA4D;AAE/C,QAAA,IAAI,GAAa;IAC1B,IAAI,EAAE,QAAQ;IACd,oBAAoB,EAAC;QACjB,YAAY,EAAC,MAAM;QACnB,YAAY,EAAC,MAAM;QACnB,QAAQ,EAAC,MAAM;QACf,iBAAiB,EAAC,IAAI;QACtB,aAAa,EAAC,oBAAa,CAAC,MAAM;QAClC,SAAS,EAAC,OAAO;QACjB,aAAa,EAAC,UAAU;QACxB,aAAa,EAAC,CAAC,WAAW,CAAC;QAC3B,4BAA4B,EAAC,CAAC,KAAK,CAAC;QACpC,cAAc,EAAC;YACX,EAAC,QAAQ,EAAC,eAAe;gBACzB,YAAY,EAAC,gBAAgB;gBAC7B,cAAc,EAAC,EAAE;gBACjB,QAAQ,EAAC,kBAAW,CAAC,GAAG;gBACxB,cAAc,EAAC,kBAAkB;gBACjC,aAAa,EAAC,qBAAqB;aAClC;YACD,EAAC,QAAQ,EAAC,kBAAkB;gBAC5B,YAAY,EAAC,gBAAgB;gBAC7B,cAAc,EAAC,EAAE;gBACjB,QAAQ,EAAC,kBAAW,CAAC,GAAG;gBACxB,QAAQ,EAAC,kBAAkB;gBAC3B,aAAa,EAAC,qBAAqB;aAClC;SACJ;KACF;IACH,UAAU,EAAE;QACR,GAAG,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACnB,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACvB,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACvB,SAAS,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzB,SAAS,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzB,QAAQ,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC/C,KAAK,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC5C,QAAQ,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC/C,GAAG,EAAE;YACH,IAAI,EAAE,QAAQ;YACd,KAAK,EAAC,CAAC,EAAC,QAAQ,EAAC,MAAM,EAAC,EAAC,EAAC,KAAK,EAAC,EAAE,EAAC,CAAC;YACpC,WAAW,EAAC,iEAAiE;SAC9E;QACD,QAAQ,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC,SAAS,EAAC,CAAC,EAAC;QACtC,KAAK,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC,SAAS,EAAC,EAAE,EAAC,MAAM,EAAE,OAAO,EAAC;QACpD,MAAM,EAAE,EAAC,IAAI,EAAE,SAAS,EAAC,OAAO,EAAC,IAAI,EAAC;QACtC,WAAW,EAAE,EAAC,IAAI,EAAC,QAAQ,EAAC;QAC5B,YAAY,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC,WAAW,EAAC,+BAA+B,EAAC;QAC1E,cAAc,EAAE;YACd,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,UAAU,CAAC,EAAE;SACtD;KACF;CACN,CAAA"}
+{"version":3,"file":"user.js","sourceRoot":"","sources":["../../src/buildinschemas/user.ts"],"names":[],"mappings":";;;AAAA,kCAA4D;AAE/C,QAAA,IAAI,GAAa;IAC1B,IAAI,EAAE,QAAQ;IACd,oBAAoB,EAAC;QACjB,YAAY,EAAC,MAAM;QACnB,YAAY,EAAC,MAAM;QACnB,QAAQ,EAAC,MAAM;QACf,iBAAiB,EAAC,IAAI;QACtB,aAAa,EAAC,oBAAa,CAAC,MAAM;QAClC,SAAS,EAAC,OAAO;QACjB,aAAa,EAAC,UAAU;QACxB,aAAa,EAAC,CAAC,WAAW,CAAC;QAC3B,4BAA4B,EAAC,CAAC,KAAK,CAAC;QACpC,cAAc,EAAC;YACX,EAAC,QAAQ,EAAC,eAAe;gBACzB,YAAY,EAAC,gBAAgB;gBAC7B,cAAc,EAAC,EAAE;gBACjB,QAAQ,EAAC,kBAAW,CAAC,GAAG;gBACxB,cAAc,EAAC,kBAAkB;gBACjC,aAAa,EAAC,qBAAqB;aAClC;YACD,EAAC,QAAQ,EAAC,kBAAkB;gBAC5B,YAAY,EAAC,gBAAgB;gBAC7B,cAAc,EAAC,EAAE;gBACjB,QAAQ,EAAC,kBAAW,CAAC,GAAG;gBACxB,QAAQ,EAAC,kBAAkB;gBAC3B,aAAa,EAAC,qBAAqB;aAClC;SACJ;KACF;IACH,UAAU,EAAE;QACR,GAAG,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACnB,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACvB,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACvB,SAAS,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzB,SAAS,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzB,QAAQ,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC/C,KAAK,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC5C,QAAQ,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC/C,GAAG,EAAE;YACH,IAAI,EAAE,QAAQ;YACd,KAAK,EAAC,CAAC,EAAC,QAAQ,EAAC,MAAM,EAAC,EAAC,EAAC,KAAK,EAAC,EAAE,EAAC,CAAC;YACpC,WAAW,EAAC,iEAAiE;SAC9E;QACD,QAAQ,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC,SAAS,EAAC,CAAC,EAAC;QACtC,KAAK,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC,SAAS,EAAC,EAAE,EAAC,MAAM,EAAE,OAAO,EAAC;QACpD,QAAQ,EAAE;YACR,IAAI,EAAE,QAAQ;YACd,KAAK,EAAC;gBACJ,EAAC,OAAO,EAAC,EAAE,EAAC;gBACZ,EAAC,QAAQ,EAAE,KAAK,EAAC,UAAU,EAAE,CAAC,YAAY,CAAC,EAAC;aAC7C;SACF;QACD,MAAM,EAAE,EAAC,IAAI,EAAE,SAAS,EAAC,OAAO,EAAC,IAAI,EAAC;QACtC,WAAW,EAAE,EAAC,IAAI,EAAC,QAAQ,EAAC;QAC5B,YAAY,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC,WAAW,EAAC,+BAA+B,EAAC;QAC1E,cAAc,EAAE;YACd,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,UAAU,CAAC,EAAE;SACtD;KACF;CACN,CAAA"}

package/dist/buildinschemas/webhook.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"webhook.d.ts","sourceRoot":"","sources":["../../src/buildinschemas/webhook.ts"],"names":[],"mappings":"AAAA,OAAO,EAAC,UAAU,EAA2B,MAAM,SAAS,CAAA;AAE5D,eAAO,MAAM,OAAO,EAAC,UA8CpB,CAAA"}
+{"version":3,"file":"webhook.d.ts","sourceRoot":"","sources":["../../src/buildinschemas/webhook.ts"],"names":[],"mappings":"AAAA,OAAO,EAAC,UAAU,EAA2B,MAAM,SAAS,CAAA;AAE5D,eAAO,MAAM,OAAO,EAAC,UA4DpB,CAAA"}

package/dist/buildinschemas/webhook.js

@@ -8,10 +8,10 @@ exports.webhook = {
         documentType: 'webhook',
         documentName: 'webhook',
         isolationType: type_1.IsolationType.tenant,
-        uniqueKey: 'documentName',
-        documentTitle: 'documentName'
+        uniqueKey: 'title',
+        documentTitle: 'title'
     },
-    required: ["documentName", "url"],
+    required: ["title", "url"],
     properties: {
         _id: { type: 'string' },
         created: { type: 'string' },
@@ -21,8 +21,10 @@ exports.webhook = {
         tenantId: { type: 'integer', default: 1, minimum: 0 },
         orgId: { type: 'integer', default: 1, minimum: 0 },
         branchId: { type: 'integer', default: 1, minimum: 0 },
-        documentName: { type: "string", minLength: 3, },
+        title: { type: "string", minLength: 3, },
         url: { type: "string", format: 'uri' },
+        serverSubscriptionId: { type: "string" },
+        serverSubscriptionSecret: { type: "string" },
         requestMethod: {
             type: "string",
             enum: ['post', 'get', 'patch', 'put', 'delete', 'head'],
@@ -32,6 +34,13 @@ exports.webhook = {
             enum: ['none', 'basic'],
             description: "apikey authentication use none + headers props"
         },
+        basicAuth: {
+            type: "object",
+            properties: {
+                user: { type: "string" },
+                password: { type: "string" }
+            }
+        },
         headers: {
             type: "array",
             items: {
@@ -45,7 +54,13 @@ exports.webhook = {
         },
         description: { type: "string", format: "text" },
         active: { type: "boolean", default: true },
-        setting: { type: "string", format: "text" }
+        eventTypes: {
+            type: "array",
+            minItems: 1,
+            items: {
+                type: "string"
+            }
+        }
     }
 };
 //# sourceMappingURL=webhook.js.map

package/dist/buildinschemas/webhook.js.map

@@ -1 +1 @@
-{"version":3,"file":"webhook.js","sourceRoot":"","sources":["../../src/buildinschemas/webhook.ts"],"names":[],"mappings":";;;AAAA,kCAA4D;AAE/C,QAAA,OAAO,GAAc;IAC9B,IAAI,EAAE,QAAQ;IACd,oBAAoB,EAAC;QACnB,YAAY,EAAC,SAAS;QACtB,YAAY,EAAC,SAAS;QACtB,aAAa,EAAC,oBAAa,CAAC,MAAM;QAClC,SAAS,EAAC,cAAc;QACxB,aAAa,EAAC,cAAc;KAC7B;IACD,QAAQ,EAAC,CAAC,cAAc,EAAC,KAAK,CAAC;IAC/B,UAAU,EAAE;QACV,GAAG,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACnB,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACvB,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACvB,SAAS,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzB,SAAS,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzB,QAAQ,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC/C,KAAK,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC5C,QAAQ,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC/C,YAAY,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC,SAAS,EAAC,CAAC,GAAE;QACzC,GAAG,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAC,KAAK,EAAC;QACnC,aAAa,EAAC;YACZ,IAAI,EAAE,QAAQ;YACd,IAAI,EAAC,CAAC,MAAM,EAAC,KAAK,EAAC,OAAO,EAAC,KAAK,EAAC,QAAQ,EAAC,MAAM,CAAC;SAClD;QACD,cAAc,EAAC;YACb,IAAI,EAAC,QAAQ;YACb,IAAI,EAAC,CAAC,MAAM,EAAC,OAAO,CAAC;YACrB,WAAW,EAAC,gDAAgD;SAC7D;QACD,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAC;gBACJ,IAAI,EAAC,QAAQ;gBACb,WAAW,EAAC,cAAc;gBAC1B,UAAU,EAAC;oBACT,IAAI,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;oBACpB,KAAK,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;iBACtB;aACF;SACF;QAED,WAAW,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC,MAAM,EAAC,MAAM,EAAC;QAC3C,MAAM,EAAE,EAAC,IAAI,EAAE,SAAS,EAAE,OAAO,EAAC,IAAI,EAAC;QACvC,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC,MAAM,EAAC,MAAM,EAAC;KACtC;CACJ,CAAA"}
+{"version":3,"file":"webhook.js","sourceRoot":"","sources":["../../src/buildinschemas/webhook.ts"],"names":[],"mappings":";;;AAAA,kCAA4D;AAE/C,QAAA,OAAO,GAAc;IAC9B,IAAI,EAAE,QAAQ;IACd,oBAAoB,EAAC;QACnB,YAAY,EAAC,SAAS;QACtB,YAAY,EAAC,SAAS;QACtB,aAAa,EAAC,oBAAa,CAAC,MAAM;QAClC,SAAS,EAAC,OAAO;QACjB,aAAa,EAAC,OAAO;KACtB;IACD,QAAQ,EAAC,CAAC,OAAO,EAAC,KAAK,CAAC;IACxB,UAAU,EAAE;QACV,GAAG,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACnB,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACvB,OAAO,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACvB,SAAS,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzB,SAAS,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzB,QAAQ,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC/C,KAAK,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC5C,QAAQ,EAAE,EAAC,IAAI,EAAC,SAAS,EAAC,OAAO,EAAC,CAAC,EAAC,OAAO,EAAC,CAAC,EAAE;QAC/C,KAAK,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC,SAAS,EAAC,CAAC,GAAE;QAClC,GAAG,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAC,KAAK,EAAC;QACnC,oBAAoB,EAAE,EAAC,IAAI,EAAC,QAAQ,EAAC;QACrC,wBAAwB,EAAE,EAAC,IAAI,EAAC,QAAQ,EAAC;QACzC,aAAa,EAAC;YACZ,IAAI,EAAE,QAAQ;YACd,IAAI,EAAC,CAAC,MAAM,EAAC,KAAK,EAAC,OAAO,EAAC,KAAK,EAAC,QAAQ,EAAC,MAAM,CAAC;SAClD;QACD,cAAc,EAAC;YACb,IAAI,EAAC,QAAQ;YACb,IAAI,EAAC,CAAC,MAAM,EAAC,OAAO,CAAC;YACrB,WAAW,EAAC,gDAAgD;SAC7D;QACD,SAAS,EAAC;YACR,IAAI,EAAC,QAAQ;YACb,UAAU,EAAC;gBACT,IAAI,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;gBACpB,QAAQ,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;aACzB;SACF;QACD,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAC;gBACJ,IAAI,EAAC,QAAQ;gBACb,WAAW,EAAC,cAAc;gBAC1B,UAAU,EAAC;oBACT,IAAI,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;oBACpB,KAAK,EAAC,EAAC,IAAI,EAAC,QAAQ,EAAC;iBACtB;aACF;SACF;QAED,WAAW,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC,MAAM,EAAC,MAAM,EAAC;QAC3C,MAAM,EAAE,EAAC,IAAI,EAAE,SAAS,EAAE,OAAO,EAAC,IAAI,EAAC;QACvC,UAAU,EAAC;YACT,IAAI,EAAC,OAAO;YACZ,QAAQ,EAAC,CAAC;YACV,KAAK,EAAC;gBACJ,IAAI,EAAC,QAAQ;aACd;SAAC;KACL;CACJ,CAAA"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@simitgroup/simpleapp-generator",
-  "version": "1.6.4e-alpha",
+  "version": "1.6.4g-alpha",
   "description": "frontend nuxtjs and backend nests code generator using jsonschema",
   "main": "dist/index.js",
   "scripts": {

package/src/buildinschemas/index.ts

@@ -8,5 +8,4 @@ export {docnoformat} from './docnoformat'
 export {systemmessage} from './systemmessage'
 export {keyvaluepair} from './keyvaluepair'
 export {webhook} from './webhook'
-export {webhookhistory } from './webhookhistory'
 export {documentevent} from './documentevent'

package/src/buildinschemas/systemmessage.ts

@@ -27,15 +27,15 @@ export const systemmessage:SchemaType =
       "orgId": { "type": "integer", "default": 1 },
       "branchId": { "type": "integer", "default": 1 },      
       "uid": { "type": "string","format":"uuid" },
+      "messageType":{"type":"string",minLength:3},
       "messageTitle": {
         "type": "string",
         "minLength": 3
       },
       "read": { "type": "boolean", "default": false},    
-      "url":{ "type": "string"},    
-      "description": {
+      "body": {
         "type": "string",
-        "format": "text"
+        "format": "html"
       }
     }
   }

package/src/buildinschemas/user.ts

@@ -45,6 +45,13 @@ export const user:SchemaType ={
         },
         fullName: {type: "string",minLength:3},
         email: {type: "string",minLength:10,format: "email"},
+        mobileNo: {
+          type: "string",
+          anyOf:[
+            {"const":""},
+            {"format": "tel","examples": ["0123456789"]}          
+          ]
+        },
         active: {type: "boolean",default:true},
         description: {type:"string"},
         lastActivity: {type: "string",description:"capture ISO8601 last api call"},

package/src/buildinschemas/webhook.ts

@@ -6,10 +6,10 @@ export const webhook:SchemaType = {
       documentType:'webhook',
       documentName:'webhook',
       isolationType:IsolationType.tenant,      
-      uniqueKey:'documentName',
-      documentTitle:'documentName'     
+      uniqueKey:'title',
+      documentTitle:'title'     
     },        
-    required:["documentName","url"],
+    required:["title","url"],
     properties: {     
       _id:{type:'string'},
       created:{type:'string'},
@@ -19,8 +19,10 @@ export const webhook:SchemaType = {
       tenantId: {type:'integer',default:1,minimum:0 },
       orgId: {type:'integer',default:1,minimum:0 },
       branchId: {type:'integer',default:1,minimum:0 },
-      documentName:{type:"string",minLength:3,},
-      url: {type: "string", format:'uri'},      
+      title:{type:"string",minLength:3,},
+      url: {type: "string", format:'uri'},     
+      serverSubscriptionId :{type:"string"},
+      serverSubscriptionSecret :{type:"string"},
       requestMethod:{
         type: "string", 
         enum:['post','get','patch','put','delete','head'],
@@ -29,7 +31,14 @@ export const webhook:SchemaType = {
         type:"string",
         enum:['none','basic'],
         description:"apikey authentication use none + headers props"
-      },  
+      },
+      basicAuth:{
+        type:"object",
+        properties:{
+          user:{type:"string"},
+          password:{type:"string"}
+        }
+      },
       headers: {
         type: "array",
         items:{
@@ -44,7 +53,12 @@ export const webhook:SchemaType = {
 
       description: {type: "string",format:"text"},
       active: {type: "boolean", default:true},
-      setting:{type:"string",format:"text"}
+      eventTypes:{
+        type:"array",
+        minItems:1,
+        items:{
+          type:"string"
+        }}
     }
 }
 

package/templates/basic/nest/controller.ts.eta

@@ -56,9 +56,9 @@ import {UserContext} from '../commons/user.context'
 }
 %>
 <% let superadmindoctype = ['tenant','globaluser'] %>
-const doctype = '<%= it.doctype %>'.toUpperCase();
-@ApiTags(doctype)
-@Controller(doctype.toLowerCase())
+const apiname = '<%= it.typename %>'.toUpperCase();
+@ApiTags(apiname)
+@Controller(apiname.toLowerCase())
 export class <%= it.typename %>Controller extends SimpleAppAbstractController<
   <%= it.typename %>Service,  
   schemas.<%= it.typename%>,

package/templates/nest/.env._eta

@@ -13,6 +13,8 @@ HTTP_PORT=<%=it.configs.backendPort%>
 
 BPMN_PATH=./src/simpleapp/workflows/bpmn/
 
+X_APIKEY=
+X_APISECRET=
 
 OAUTH2_BASEURL=<%=it.configs.oauthSetting ? it.configs.oauthSetting.oauthBaseUrl : ''%>
 
@@ -31,6 +33,11 @@ AUTH_SECRET_KEY=<%=it.configs.oauthSetting ? it.configs.oauthSetting.oauthAuthSe
 BACKEND_URL=http://localhost:<%=it.configs.backendPort%>
 
 
+WEBHOOK_SERVER_URL=
+WEBHOOK_SERVER_APP_ID=
+WEBHOOK_SERVER_APIKEY=
+
+
 ADMIN_EMAIL= 
 TEST_OAUTH2_USERNAME=
 TEST_OAUTH2_PASSWORD=

package/templates/nest/src/app.module.ts.eta

@@ -25,6 +25,7 @@ import {
   RoleGuard,
   PolicyEnforcementMode,
 } from 'nest-keycloak-connect';
+import { CustomKeycloakGuard } from './simpleapp/generate/commons/customkeycloak.guard';
 import {RolesGuard} from './simpleapp/generate/commons/roles/roles.guard'
 import { ConfigModule } from '@nestjs/config';
 import { ServeStaticModule } from '@nestjs/serve-static';
@@ -92,11 +93,17 @@ import { EventEmitterModule } from '@nestjs/event-emitter';
     ]),    
       ],
   controllers: [AppController],
-  providers: [AppService,AppResolver,  {
-    provide: APP_INTERCEPTOR,
-    useClass: ResponseInterceptor,  
-  },
-    {provide: APP_GUARD,useClass: AuthGuard,},
+  providers: [
+    AppService,
+    CustomKeycloakGuard,
+    ResourceGuard,
+    AppResolver,  
+    {
+      provide: APP_INTERCEPTOR,
+      useClass: ResponseInterceptor,  
+    },
+  {provide: APP_GUARD,useClass: CustomKeycloakGuard,},
+    // {provide: APP_GUARD,useClass: AuthGuard,},
     {provide: APP_GUARD,useClass: ResourceGuard,},
     {provide: APP_GUARD,useClass: RolesGuard,}
   ],       

package/templates/nest/src/main.ts.eta

@@ -49,9 +49,39 @@ async function bootstrap() {
         },
       },
       'oauth2',
+    ).
+    addApiKey(
+      {
+        in: 'header',
+        name: 'x-apikey',
+        type: 'apiKey',
+        description: 'optional only use for specal case',
+      },
+      'x-apikey',
+    ).addApiKey(
+      {
+        in: 'header',
+        name: 'x-apisecret',
+        type: 'apiKey',
+        description: 'optional only use for specal case',
+      },
+      'x-apisecret',
+    )
+    .addApiKey(
+      {
+        in: 'header',
+        name: 'x-guest-accesstoken',
+        type: 'apiKey',
+        description: 'optional only use for specal case',
+      },
+      'x-guest-accesstoken',
     )
+    
     .addSecurityRequirements('x-org')
     .addSecurityRequirements('oauth2')
+    .addSecurityRequirements('x-apikey')
+    .addSecurityRequirements('x-apisecret')    
+    .addSecurityRequirements('x-guest-accesstoken')    
     .build();
   const document = SwaggerModule.createDocument(app, config);
   SwaggerModule.setup('api', app, document, {

package/templates/nest/src/simpleapp/generate/apischemas/simpleapp.apischema.ts.eta

@@ -7,16 +7,36 @@
 
 import { ApiProperty } from '@nestjs/swagger';
 export class ApiKeyValuePair {
-    @ApiProperty({"type":Object,"required":false,"examples":['{"field1":"1"}'],"default":""} )
-    field1: any
+  @ApiProperty({
+    type: Object,
+    required: false,
+    examples: ['{"field1":"1"}'],
+    default: '',
+  })
+  field1: any;
+}
+export class ApiSearchBody {
+  @ApiProperty({
+    type: Object,
+    required: false,
+    examples: ['{"field1":"1"}'],
+    default: { field1: 'ok', field2: true },
+  })
+  filter?: Object;
+  @ApiProperty({
+    type: [String],
+    required: false,
+    examples: ['["field1","field2"]'],
+    default: ['field1', 'field2'],
+  })
+  fields?: string[];
+  @ApiProperty({
+    type: () => [[String]],
+    required: false,
+    examples: ['[[ "field1", "asc" ]]'],
+    default: [['field1', 'asc']],
+  })
+  sorts?: string[][];
+  @ApiProperty({ type: () => Object, required: false })
+  lookup: Object;
 }
-export class ApiSearchBody{            
-    @ApiProperty({ "type":Object, "required":false, "examples":['{"field1":"1"}'] ,"default":{"field1":"ok","field2":true,}} )
-    filter:  Object;
-    @ApiProperty({"type":[Object],"required":true,"examples":['["field1","field2"]'],"default":["field1","field2"]} )
-    fields:  [Object];
-    @ApiProperty({"type":()=>[Object],"required":true,"examples":['[[ "field1", "asc" ]]'],"default":[[ 'field1', 'asc' ]]} )
-    sorts:  [Object];
-    @ApiProperty({type: () => Object,required: false,})
-    lookup: Object
-}

package/templates/nest/src/simpleapp/generate/commons/audittrail.service.ts.eta

@@ -1,4 +1,4 @@
-/**
+  /**
  * This file was automatically generated by simpleapp generator. Every
  * MODIFICATION OVERRIDE BY GENERATEOR
  * last change 2023-10-28
@@ -12,36 +12,41 @@ import * as types from 'src/simpleapp/generate/types';
 
 @Injectable()
 export class AuditTrail {
-
-  constructor( @InjectModel('Documentevent') private doc: Model<types.Documentevent>) {}
-
-
+  constructor(
+    @InjectModel('Documentevent') private doc: Model<types.Documentevent>,
+  ) {}
 
   // addEvent(data: any) {
   //   console.log('Add event into db:', data);
   // }
-  async addEvent(appuser:UserContext,documentName:string,id:string,eventType:string,data:any){
-      
-
-      
-      const eventdata:types.Documentevent = {
-        _id:crypto.randomUUID(),
-        documentName:documentName,
-        documentId:id,
-        eventType:eventType,
-        eventdata:data
-      }
-      Object.assign(eventdata, appuser.getCreateFilter());  
-        console.log('add event',documentName,id,eventType)
-        console.log('Add event into db:', eventdata);
-        const newdoc = new this.doc(eventdata);
-        const dbsession = appuser.getDBSession();
-        const result = await newdoc.save({ session: dbsession });
-
-        
+  async addEvent(
+    appuser: UserContext,
+    documentName: string,
+    id: string,
+    eventType: string,
+    data: any,
+  ) {
+    const eventdata: types.Documentevent = {
+      _id: crypto.randomUUID(),
+      documentName: documentName,
+      documentId: id,
+      eventType: eventType,
+      eventdata: data,
+    };
+    Object.assign(eventdata, appuser.getCreateFilter());
+    // console.log('add event', documentName, id, eventType);
+    // console.log('Add event into db:', eventdata);
+    const newdoc = new this.doc(eventdata);
+    const dbsession = appuser.getDBSession();
+    const result = await newdoc.save({ session: dbsession });
   }
 
-  async addManyEvents(appuser:UserContext,documentName:string,eventType:string,data:any[]){
-    console.log('add many event',documentName,eventType)
+  async addManyEvents(
+    appuser: UserContext,
+    documentName: string,
+    eventType: string,
+    data: any[],
+  ) {
+    console.log('add many event', documentName, eventType);
   }
 }

package/templates/nest/src/simpleapp/generate/commons/customkeycloa.guard.ts.eta

@@ -0,0 +1,43 @@
+/**
+ * This file was automatically generated by simpleapp generator. Every
+ * MODIFICATION OVERRIDE BY GENERATEOR
+ * last change 2024-04-17
+ * Author: Ks Tan
+ */
+import { Injectable, CanActivate, ExecutionContext, UnauthorizedException } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+import { ResourceGuard } from 'nest-keycloak-connect';
+
+@Injectable()
+export class CustomKeycloakGuard implements CanActivate {
+  constructor(private reflector: Reflector, private resourceGuard: ResourceGuard) {}
+
+  async canActivate(context: ExecutionContext): Promise<boolean> {
+    const request = context.switchToHttp().getRequest();
+    
+
+    //graphql no http request, exclude from capability of x-apikey
+    if(request?.headers){
+        const apiKey = request.headers['x-apikey'];
+        const apiSecret = request.headers['x-apisecret'];
+        // validate apikey and apisecret at middleware level, reach here mean approved as robot
+        if (apiKey && apiSecret ) {
+          return true;
+        }
+    }
+
+    // If API key is not present, fall back to Keycloak authentication
+    try {
+      const canActivate = await this.resourceGuard.canActivate(context);
+      return canActivate as boolean;
+    } catch (error) {
+      throw new UnauthorizedException('Invalid API key or Keycloak token');
+    }
+  }
+
+  private validateApiKey(apiKey: string, apiSecret: string): boolean {    
+    // Implement your API key and secret validation logic here
+    // This is just a simple example
+    return apiKey === 'your-valid-api-key' && apiSecret === 'your-valid-api-secret';
+  }
+}

package/templates/nest/src/simpleapp/generate/commons/dicts/documents.ts.eta

@@ -15,7 +15,8 @@ export const alldocuments:any[] = [
         isolationType:'<%=conf['isolationType']%>', 
         documentDate:'<%=conf['documentDate']??""%>', 
         docNumber:<%=conf['generateDocumentNumber']??false%>,
-        docNoPattern: '<%=conf['docNoPattern']%>'
+        docNoPattern: '<%=conf['docNoPattern']%>',
+        webhook:<%~ JSON.stringify(conf['webhook'])%>
         },
     <%}%>
   ]

package/templates/nest/src/simpleapp/generate/commons/middlewares/tenant.middleware.ts.eta

@@ -56,9 +56,9 @@ export class TenantMiddleware implements NestMiddleware {
 
     if (req.baseUrl == '/graphql') {
       let tokenstr: string = req.headers['authorization'] ?? '';
-      tokenstr = tokenstr.replace('Bearer ', '');      
-      const xorg = req.headers['x-org'] ?? this.defaultxorg;      
-      if (tokenstr) {
+      tokenstr = tokenstr.replace('Bearer ', '');
+      const xorg = req.headers['x-org'] ?? this.defaultxorg;
+      if (tokenstr) {        
         await u.setCurrentUserInfo(tokenstr, xorg);
       }
       req['sessionuser'] = u;
@@ -66,6 +66,33 @@ export class TenantMiddleware implements NestMiddleware {
       return;
     }
     this.logger.debug(`running TenantMiddleware for ${req.baseUrl}`);
+
+    
+    //if APIKEY defined, and there is api key and secret supplied. use robot user
+    if(process.env.X_APIKEY &&req.headers['x-apikey'] && req.headers['x-apisecret']){
+    
+      if(req.headers['x-apikey']==process.env.X_APIKEY &&
+        req.headers['x-apisecret']==process.env.X_APISECRET){        
+
+         u.setAsStaticUser(
+            '00000000-0000-0000-0000-000000000000',
+            'robot',
+            'Robot',
+            'robot@a.org',
+            req.headers['x-org']?? this.defaultxorg
+          );
+        if(req.headers['x-guest-accesstoken']) {
+          u.setGuestToken(<string>req.headers['x-guest-accesstoken']);
+        }
+        req['sessionuser'] = u;
+        next();
+        return;
+      }else{
+        this.logger.log('invalid api key/scret');
+        throw new BadRequestException('invalid api key/scret');
+      }
+    }
+
     if (!req.headers['authorization']) {
       this.logger.log('undefine bearer token');
       return res.status(401).send('Undefine bearer token');
@@ -84,8 +111,7 @@ export class TenantMiddleware implements NestMiddleware {
       let tokenstr: string = req.headers['authorization'];
       tokenstr = tokenstr.replace('Bearer ', '');
 
-      const xorg = req.headers['x-org'] ?? this.defaultxorg;
-
+      const xorg = req.headers['x-org'] ?? this.defaultxorg;      
       await u.setCurrentUserInfo(tokenstr, xorg);
       if (u.getId() == '' && this.requireXorg(req.baseUrl)) {
         this.logger.log('access deny of no user:', req.baseUrl);