@tomei/sso 0.33.7 → 0.33.8
Sign up to get free protection for your applications and to get access to all the features.
- package/.commitlintrc.json +22 -22
- package/.eslintrc +16 -16
- package/.eslintrc.js +35 -35
- package/.gitlab-ci.yml +16 -16
- package/.husky/commit-msg +15 -15
- package/.husky/pre-commit +7 -7
- package/.prettierrc +4 -4
- package/Jenkinsfile +57 -57
- package/README.md +23 -23
- package/__tests__/unit/components/group/group.spec.ts +79 -79
- package/__tests__/unit/components/group-object-privilege/group-object-privilege.spec.ts +88 -88
- package/__tests__/unit/components/group-privilege/group-privilege.spec.ts +68 -68
- package/__tests__/unit/components/group-reporting-user/group-reporting-user.spec.ts +66 -66
- package/__tests__/unit/components/group-system-access/group-system-access.spec.ts +83 -83
- package/__tests__/unit/components/login-user/l.spec.ts +746 -746
- package/__tests__/unit/components/login-user/login.spec.ts +1064 -1064
- package/__tests__/unit/components/password-hash/password-hash.service.spec.ts +31 -31
- package/__tests__/unit/components/system/system.spec.ts +254 -254
- package/__tests__/unit/components/system-privilege/system-privilege.spec.ts +83 -83
- package/__tests__/unit/components/user-group/user-group.spec.ts +86 -86
- package/__tests__/unit/components/user-object-privilege/user-object-privilege.spec.ts +78 -78
- package/__tests__/unit/components/user-privilege/user-privilege.spec.ts +72 -72
- package/__tests__/unit/components/user-system-access/user-system-access.spec.ts +89 -89
- package/__tests__/unit/redis-client/redis.service.spec.ts +23 -23
- package/__tests__/unit/session/session.service.spec.ts +47 -47
- package/__tests__/unit/system-privilege/system-privilage.spec.ts +91 -91
- package/coverage/clover.xml +1452 -1452
- package/coverage/coverage-final.json +47 -47
- package/coverage/lcov-report/base.css +224 -224
- package/coverage/lcov-report/block-navigation.js +87 -87
- package/coverage/lcov-report/components/group/group.repository.ts.html +117 -117
- package/coverage/lcov-report/components/group/group.ts.html +327 -327
- package/coverage/lcov-report/components/group/index.html +130 -130
- package/coverage/lcov-report/components/group-object-privilege/group-object-privilege.repository.ts.html +117 -117
- package/coverage/lcov-report/components/group-object-privilege/group-object-privilege.ts.html +321 -321
- package/coverage/lcov-report/components/group-object-privilege/index.html +130 -130
- package/coverage/lcov-report/components/group-privilege/group-privilege.repository.ts.html +117 -117
- package/coverage/lcov-report/components/group-privilege/group-privilege.ts.html +303 -303
- package/coverage/lcov-report/components/group-privilege/index.html +130 -130
- package/coverage/lcov-report/components/group-reporting-user/group-reporting-user.repository.ts.html +117 -117
- package/coverage/lcov-report/components/group-reporting-user/group-reporting-user.ts.html +327 -327
- package/coverage/lcov-report/components/group-reporting-user/index.html +130 -130
- package/coverage/lcov-report/components/group-system-access/group-system-access.repository.ts.html +117 -117
- package/coverage/lcov-report/components/group-system-access/group-system-access.ts.html +309 -309
- package/coverage/lcov-report/components/group-system-access/index.html +130 -130
- package/coverage/lcov-report/components/login-history/index.html +115 -115
- package/coverage/lcov-report/components/login-history/login-history.repository.ts.html +117 -117
- package/coverage/lcov-report/components/login-user/index.html +130 -130
- package/coverage/lcov-report/components/login-user/login-user.ts.html +5007 -5007
- package/coverage/lcov-report/components/login-user/user.repository.ts.html +117 -117
- package/coverage/lcov-report/components/password-hash/index.html +115 -115
- package/coverage/lcov-report/components/password-hash/password-hash.service.ts.html +126 -126
- package/coverage/lcov-report/components/system/index.html +130 -130
- package/coverage/lcov-report/components/system/system.repository.ts.html +117 -117
- package/coverage/lcov-report/components/system/system.ts.html +909 -909
- package/coverage/lcov-report/components/system-privilege/index.html +130 -130
- package/coverage/lcov-report/components/system-privilege/system-privilege.repository.ts.html +120 -120
- package/coverage/lcov-report/components/system-privilege/system-privilege.ts.html +390 -390
- package/coverage/lcov-report/components/user-group/index.html +130 -130
- package/coverage/lcov-report/components/user-group/user-group.repository.ts.html +117 -117
- package/coverage/lcov-report/components/user-group/user-group.ts.html +354 -354
- package/coverage/lcov-report/components/user-object-privilege/index.html +130 -130
- package/coverage/lcov-report/components/user-object-privilege/user-object-privilege.repository.ts.html +117 -117
- package/coverage/lcov-report/components/user-object-privilege/user-object-privilege.ts.html +312 -312
- package/coverage/lcov-report/components/user-privilege/index.html +130 -130
- package/coverage/lcov-report/components/user-privilege/user-privilege.repository.ts.html +117 -117
- package/coverage/lcov-report/components/user-privilege/user-privilege.ts.html +306 -306
- package/coverage/lcov-report/components/user-system-access/index.html +130 -130
- package/coverage/lcov-report/components/user-system-access/user-system-access.repository.ts.html +117 -117
- package/coverage/lcov-report/components/user-system-access/user-system-access.ts.html +312 -312
- package/coverage/lcov-report/enum/group-type.enum.ts.html +108 -108
- package/coverage/lcov-report/enum/index.html +160 -160
- package/coverage/lcov-report/enum/index.ts.html +93 -93
- package/coverage/lcov-report/enum/user-status.enum.ts.html +105 -105
- package/coverage/lcov-report/enum/yn.enum.ts.html +96 -96
- package/coverage/lcov-report/index.html +370 -370
- package/coverage/lcov-report/models/group-object-privilege.entity.ts.html +333 -333
- package/coverage/lcov-report/models/group-privilege.entity.ts.html +315 -315
- package/coverage/lcov-report/models/group-reporting-user.entity.ts.html +339 -339
- package/coverage/lcov-report/models/group-system-access.entity.ts.html +324 -324
- package/coverage/lcov-report/models/group.entity.ts.html +435 -435
- package/coverage/lcov-report/models/index.html +310 -310
- package/coverage/lcov-report/models/login-history.entity.ts.html +252 -252
- package/coverage/lcov-report/models/staff.entity.ts.html +411 -411
- package/coverage/lcov-report/models/system-privilege.entity.ts.html +354 -354
- package/coverage/lcov-report/models/system.entity.ts.html +423 -423
- package/coverage/lcov-report/models/user-group.entity.ts.html +354 -354
- package/coverage/lcov-report/models/user-object-privilege.entity.ts.html +330 -330
- package/coverage/lcov-report/models/user-privilege.entity.ts.html +315 -315
- package/coverage/lcov-report/models/user-system-access.entity.ts.html +315 -315
- package/coverage/lcov-report/models/user.entity.ts.html +522 -522
- package/coverage/lcov-report/prettify.css +1 -1
- package/coverage/lcov-report/prettify.js +2 -2
- package/coverage/lcov-report/redis-client/index.html +115 -115
- package/coverage/lcov-report/redis-client/redis.service.ts.html +240 -240
- package/coverage/lcov-report/session/index.html +115 -115
- package/coverage/lcov-report/session/session.service.ts.html +246 -246
- package/coverage/lcov-report/sorter.js +196 -196
- package/coverage/lcov.info +2490 -2490
- package/coverage/test-report.xml +128 -128
- package/create-sso-user.sql +39 -39
- package/dist/__tests__/unit/components/group-privilege/group-privilege.test.d.ts +1 -0
- package/dist/__tests__/unit/components/group-privilege/group-privilege.test.js +71 -0
- package/dist/__tests__/unit/components/group-privilege/group-privilege.test.js.map +1 -0
- package/dist/__tests__/unit/components/login-user/login-user.spec.d.ts +0 -0
- package/dist/__tests__/unit/components/login-user/login-user.spec.js +6 -0
- package/dist/__tests__/unit/components/login-user/login-user.spec.js.map +1 -0
- package/dist/src/components/group/group.d.ts +27 -0
- package/dist/src/components/group/group.js +431 -3
- package/dist/src/components/group/group.js.map +1 -1
- package/dist/src/components/group-object-privilege/group-object-privilege.d.ts +3 -0
- package/dist/src/components/group-object-privilege/group-object-privilege.js +106 -0
- package/dist/src/components/group-object-privilege/group-object-privilege.js.map +1 -1
- package/dist/src/components/group-object-privilege/group-object-privilege.repository.d.ts +1 -0
- package/dist/src/components/group-object-privilege/group-object-privilege.repository.js +22 -0
- package/dist/src/components/group-object-privilege/group-object-privilege.repository.js.map +1 -1
- package/dist/src/components/group-privilege/group-privilege.d.ts +2 -0
- package/dist/src/components/group-privilege/group-privilege.js +10 -0
- package/dist/src/components/group-privilege/group-privilege.js.map +1 -1
- package/dist/src/components/group-privilege/group-privilege.repository.d.ts +1 -0
- package/dist/src/components/group-privilege/group-privilege.repository.js +22 -0
- package/dist/src/components/group-privilege/group-privilege.repository.js.map +1 -1
- package/dist/src/components/login-user/login-user.d.ts +1 -1
- package/dist/src/components/system-privilege/system-privilege.d.ts +7 -0
- package/dist/src/components/system-privilege/system-privilege.js +54 -1
- package/dist/src/components/system-privilege/system-privilege.js.map +1 -1
- package/dist/src/components/user-object-privilege/user-object-privilege.js.map +1 -1
- package/dist/src/interfaces/group-object-privilege.interface.d.ts +1 -1
- package/dist/src/interfaces/group-privilege.interface.d.ts +1 -1
- package/dist/src/interfaces/system-privilege-search.interface.d.ts +5 -0
- package/dist/src/interfaces/system-privilege-search.interface.js +3 -0
- package/dist/src/interfaces/system-privilege-search.interface.js.map +1 -0
- package/dist/src/models/group-object-privilege.entity.js +1 -0
- package/dist/src/models/group-object-privilege.entity.js.map +1 -1
- package/dist/src/models/group-privilege.entity.js +1 -0
- package/dist/src/models/group-privilege.entity.js.map +1 -1
- package/dist/src/models/group-reporting-user.entity.js +1 -0
- package/dist/src/models/group-reporting-user.entity.js.map +1 -1
- package/dist/src/models/user-object-privilege.entity.js +1 -0
- package/dist/src/models/user-object-privilege.entity.js.map +1 -1
- package/dist/src/models/user-privilege.entity.js +1 -0
- package/dist/src/models/user-privilege.entity.js.map +1 -1
- package/dist/src/models/user-system-access.entity.js +1 -0
- package/dist/src/models/user-system-access.entity.js.map +1 -1
- package/dist/tsconfig.tsbuildinfo +1 -1
- package/jest.config.js +14 -14
- package/migrations/20240314080602-create-user-table.js +108 -108
- package/migrations/20240314080603-create-user-group-table.js +85 -85
- package/migrations/20240314080604-create-user-user-group-table.js +55 -55
- package/migrations/20240314080605-create-login-history-table.js +53 -53
- package/migrations/20240527064925-create-system-table.js +78 -78
- package/migrations/20240527064926-create-system-privilege-table.js +67 -67
- package/migrations/20240527065342-create-group-table.js +89 -89
- package/migrations/20240527065633-create-group-reporting-user-table.js +76 -76
- package/migrations/20240528011551-create-group-system-access-table.js +72 -72
- package/migrations/20240528023018-user-system-access-table.js +75 -75
- package/migrations/20240528032229-user-privilege-table.js +75 -75
- package/migrations/20240528063003-create-group-privilege-table.js +75 -75
- package/migrations/20240528063051-create-group-object-privilege-table.js +84 -84
- package/migrations/20240528063107-create-user-object-privilege-table.js +83 -83
- package/package.json +89 -89
- package/sampledotenv +7 -7
- package/sonar-project.properties +22 -22
- package/src/components/group/group.ts +1456 -747
- package/src/components/group-object-privilege/group-object-privilege.repository.ts +15 -2
- package/src/components/group-object-privilege/group-object-privilege.ts +183 -0
- package/src/components/group-privilege/group-privilege.repository.ts +12 -2
- package/src/components/group-privilege/group-privilege.ts +11 -0
- package/src/components/system-privilege/system-privilege.ts +86 -2
- package/src/components/user-object-privilege/user-object-privilege.ts +1 -0
- package/src/interfaces/group-object-privilege.interface.ts +14 -14
- package/src/interfaces/group-privilege.interface.ts +1 -1
- package/src/interfaces/system-privilege-search.interface.ts +5 -0
- package/src/models/group-object-privilege.entity.ts +1 -0
- package/src/models/group-privilege.entity.ts +1 -0
- package/src/models/group-reporting-user.entity.ts +1 -0
- package/src/models/group-system-access.entity.ts +81 -81
- package/src/models/user-object-privilege.entity.ts +1 -0
- package/src/models/user-privilege.entity.ts +1 -0
- package/src/models/user-system-access.entity.ts +1 -0
- package/tsconfig.build.json +5 -5
- package/tsconfig.json +22 -22
|
@@ -3,9 +3,22 @@ import { RepositoryBase, IRepositoryBase } from '@tomei/general';
|
|
|
3
3
|
|
|
4
4
|
export class GroupObjectPrivilegeRepository
|
|
5
5
|
extends RepositoryBase<GroupObjectPrivilegeModel>
|
|
6
|
-
implements IRepositoryBase<GroupObjectPrivilegeModel>
|
|
7
|
-
{
|
|
6
|
+
implements IRepositoryBase<GroupObjectPrivilegeModel> {
|
|
8
7
|
constructor() {
|
|
9
8
|
super(GroupObjectPrivilegeModel);
|
|
10
9
|
}
|
|
10
|
+
|
|
11
|
+
public async delete(
|
|
12
|
+
where: any,
|
|
13
|
+
transaction?: any
|
|
14
|
+
): Promise<number | undefined> {
|
|
15
|
+
try {
|
|
16
|
+
return await GroupObjectPrivilegeModel.destroy({
|
|
17
|
+
where,
|
|
18
|
+
transaction,
|
|
19
|
+
});
|
|
20
|
+
} catch (error) {
|
|
21
|
+
throw error;
|
|
22
|
+
}
|
|
23
|
+
}
|
|
11
24
|
}
|
|
@@ -2,6 +2,9 @@ import { ClassError, ObjectBase } from '@tomei/general';
|
|
|
2
2
|
import { GroupObjectPrivilegeRepository } from './group-object-privilege.repository';
|
|
3
3
|
import { IGroupObjectPrivilegeAttr } from '../../interfaces/group-object-privilege.interface';
|
|
4
4
|
import { ObjectStatus } from '../../enum/object-status.enum';
|
|
5
|
+
import { LoginUser } from '../login-user/login-user';
|
|
6
|
+
import { ApplicationConfig } from '@tomei/config';
|
|
7
|
+
import { ActionEnum, Activity } from '@tomei/activity-history';
|
|
5
8
|
|
|
6
9
|
export class GroupObjectPrivilege extends ObjectBase {
|
|
7
10
|
TableName = 'sso_GroupObjectPrivilege';
|
|
@@ -79,4 +82,184 @@ export class GroupObjectPrivilege extends ObjectBase {
|
|
|
79
82
|
throw error;
|
|
80
83
|
}
|
|
81
84
|
}
|
|
85
|
+
|
|
86
|
+
public static async create(loginUser: LoginUser, dbTransaction: any, groupObjectPrivilege: GroupObjectPrivilege) {
|
|
87
|
+
try {
|
|
88
|
+
// Part 1: Privilege Checking
|
|
89
|
+
const systemCode = ApplicationConfig.getComponentConfigValue('system-code');
|
|
90
|
+
const isPrivileged = await loginUser.checkPrivileges(
|
|
91
|
+
systemCode,
|
|
92
|
+
'GROUP_OBJECT_PRIVILEGE_CREATE',
|
|
93
|
+
);
|
|
94
|
+
|
|
95
|
+
if (!isPrivileged) {
|
|
96
|
+
throw new ClassError(
|
|
97
|
+
'GroupObjectPrivilege',
|
|
98
|
+
'GroupErrMsg01',
|
|
99
|
+
'You do not have the privilege to create Group Object Privilege',
|
|
100
|
+
);
|
|
101
|
+
}
|
|
102
|
+
|
|
103
|
+
|
|
104
|
+
// Part 2: Validation
|
|
105
|
+
// Make sure below variables exists:
|
|
106
|
+
// Params.groupObjectPrivilege.GroupCode
|
|
107
|
+
if (!groupObjectPrivilege.GroupCode) {
|
|
108
|
+
throw new ClassError(
|
|
109
|
+
'GroupObjectPrivilege',
|
|
110
|
+
'GroupObjectPrivilegeErrMsg01',
|
|
111
|
+
'GroupCode is missing.',
|
|
112
|
+
);
|
|
113
|
+
}
|
|
114
|
+
// Params.groupObjectPrivilege.PrivilegeCode
|
|
115
|
+
if (!groupObjectPrivilege.PrivilegeCode) {
|
|
116
|
+
throw new ClassError(
|
|
117
|
+
'GroupObjectPrivilege',
|
|
118
|
+
'GroupObjectPrivilegeErrMsg02',
|
|
119
|
+
'PrivilegeCode is missing.',
|
|
120
|
+
);
|
|
121
|
+
}
|
|
122
|
+
// Params.groupObjectPrivilege.ObjectId
|
|
123
|
+
if (!groupObjectPrivilege.ObjectId) {
|
|
124
|
+
throw new ClassError(
|
|
125
|
+
'GroupObjectPrivilege',
|
|
126
|
+
'GroupObjectPrivilegeErrMsg03',
|
|
127
|
+
'ObjectId is missing.',
|
|
128
|
+
);
|
|
129
|
+
}
|
|
130
|
+
// Params.groupObjectPrivilege.ObjectType
|
|
131
|
+
if (!groupObjectPrivilege.ObjectType) {
|
|
132
|
+
throw new ClassError(
|
|
133
|
+
'GroupObjectPrivilege',
|
|
134
|
+
'GroupObjectPrivilegeErrMsg04',
|
|
135
|
+
'ObjectType is missing.',
|
|
136
|
+
);
|
|
137
|
+
}
|
|
138
|
+
|
|
139
|
+
// Call GroupObjectPrivilege._Repo findOne
|
|
140
|
+
const existingGroupObjectPrivilege = await GroupObjectPrivilege._Repository.findOne({
|
|
141
|
+
where: {
|
|
142
|
+
GroupCode: groupObjectPrivilege.GroupCode,
|
|
143
|
+
PrivilegeCode: groupObjectPrivilege.PrivilegeCode,
|
|
144
|
+
ObjectId: groupObjectPrivilege.ObjectId,
|
|
145
|
+
ObjectType: groupObjectPrivilege.ObjectType,
|
|
146
|
+
},
|
|
147
|
+
transaction: dbTransaction,
|
|
148
|
+
});
|
|
149
|
+
|
|
150
|
+
// If GroupObjectPrivilege found, throw new ClassError
|
|
151
|
+
if (existingGroupObjectPrivilege) {
|
|
152
|
+
throw new ClassError(
|
|
153
|
+
'GroupObjectPrivilege',
|
|
154
|
+
'GroupObjectPrivilegeErrMsg05',
|
|
155
|
+
'Duplicate GroupObjectPrivilege found.',
|
|
156
|
+
);
|
|
157
|
+
}
|
|
158
|
+
|
|
159
|
+
// Part 3: Create GroupObjectPrivilege
|
|
160
|
+
// Initialise new Group instance and populate the attributes
|
|
161
|
+
const objectAttr = {
|
|
162
|
+
GroupCode: groupObjectPrivilege.GroupCode,
|
|
163
|
+
PrivilegeCode: groupObjectPrivilege.PrivilegeCode,
|
|
164
|
+
ObjectId: groupObjectPrivilege.ObjectId,
|
|
165
|
+
ObjectType: groupObjectPrivilege.ObjectType,
|
|
166
|
+
Status: ObjectStatus.ACTIVE,
|
|
167
|
+
CreatedById: loginUser.UserId,
|
|
168
|
+
CreatedAt: new Date(),
|
|
169
|
+
UpdatedById: loginUser.UserId,
|
|
170
|
+
UpdatedAt: new Date(),
|
|
171
|
+
};
|
|
172
|
+
const newGroupObjectPrivilege = new GroupObjectPrivilege(objectAttr);
|
|
173
|
+
|
|
174
|
+
// Call GroupObjectPrivilege._Repo create method
|
|
175
|
+
const createdObject = await GroupObjectPrivilege._Repository.create(newGroupObjectPrivilege, {
|
|
176
|
+
transaction: dbTransaction,
|
|
177
|
+
});
|
|
178
|
+
newGroupObjectPrivilege.GroupObjectPrivilegeId = createdObject.GroupObjectPrivilegeId;
|
|
179
|
+
|
|
180
|
+
|
|
181
|
+
// Part 4: Record Create Group Activity
|
|
182
|
+
// Initialise EntityValueBefore variable and set to empty object.
|
|
183
|
+
const EntityValueBefore = {};
|
|
184
|
+
// Initialise EntityValueAfter variable and set to new Group instance in Part 3.
|
|
185
|
+
const EntityValueAfter = objectAttr;
|
|
186
|
+
// Instantiate new activity from Activity class
|
|
187
|
+
const activity = new Activity();
|
|
188
|
+
activity.createId();
|
|
189
|
+
activity.Action = ActionEnum.ADD;
|
|
190
|
+
activity.Description = `Create GroupObjectPrivilege for (${newGroupObjectPrivilege.GroupCode})`;
|
|
191
|
+
activity.EntityType = 'GroupObjectPrivilege';
|
|
192
|
+
activity.EntityId = newGroupObjectPrivilege.GroupObjectPrivilegeId.toString();
|
|
193
|
+
activity.EntityValueBefore = JSON.stringify(EntityValueBefore);
|
|
194
|
+
activity.EntityValueAfter = JSON.stringify(EntityValueAfter);
|
|
195
|
+
// Call new activity create method.Make sure to pass the dbTransaction and loginUser.userId.
|
|
196
|
+
await activity.create(dbTransaction, loginUser.UserId);
|
|
197
|
+
|
|
198
|
+
// Return new Group instance
|
|
199
|
+
return newGroupObjectPrivilege;
|
|
200
|
+
} catch (error) {
|
|
201
|
+
throw error;
|
|
202
|
+
}
|
|
203
|
+
}
|
|
204
|
+
|
|
205
|
+
public async delete(loginUser: LoginUser, dbTransaction: any) {
|
|
206
|
+
try {
|
|
207
|
+
//Part 1: Privilege Checking
|
|
208
|
+
const systemCode = ApplicationConfig.getComponentConfigValue('system-code');
|
|
209
|
+
const isPrivileged = await loginUser.checkPrivileges(
|
|
210
|
+
systemCode,
|
|
211
|
+
'GROUP_OBJECT_PRIVILEGE_DELETE',
|
|
212
|
+
);
|
|
213
|
+
|
|
214
|
+
if (!isPrivileged) {
|
|
215
|
+
throw new ClassError(
|
|
216
|
+
'GroupObjectPrivilege',
|
|
217
|
+
'GroupErrMsg01',
|
|
218
|
+
'You do not have the privilege to delete Group Object Privilege',
|
|
219
|
+
);
|
|
220
|
+
}
|
|
221
|
+
|
|
222
|
+
// Part 2: Delete GroupObjectPrivilege
|
|
223
|
+
// Call GroupObjectPrivilege._Repo delete method by passing:
|
|
224
|
+
// dbTransaction
|
|
225
|
+
// GroupObjectPrivilege: this.GroupObjectPrivilegeId
|
|
226
|
+
|
|
227
|
+
await GroupObjectPrivilege._Repository.delete(this.GroupObjectPrivilegeId, {
|
|
228
|
+
transaction: dbTransaction,
|
|
229
|
+
});
|
|
230
|
+
|
|
231
|
+
// Part 4: Record Create Group Activity
|
|
232
|
+
// Initialise EntityValueBefore variable and set GroupObjectPrivelege column properties
|
|
233
|
+
const EntityValueBefore = {
|
|
234
|
+
GroupCode: this.GroupCode,
|
|
235
|
+
PrivilegeCode: this.PrivilegeCode,
|
|
236
|
+
ObjectId: this.ObjectId,
|
|
237
|
+
ObjectType: this.ObjectType,
|
|
238
|
+
Status: this.Status,
|
|
239
|
+
CreatedById: this.CreatedById,
|
|
240
|
+
UpdatedById: this.UpdatedById,
|
|
241
|
+
};
|
|
242
|
+
|
|
243
|
+
// Initialise EntityValueAfter variable and set empty object
|
|
244
|
+
const EntityValueAfter = {};
|
|
245
|
+
|
|
246
|
+
// Instantiate new activity from Activity class
|
|
247
|
+
const activity = new Activity();
|
|
248
|
+
activity.createId();
|
|
249
|
+
activity.Action = ActionEnum.DELETE;
|
|
250
|
+
activity.Description = `Delete GroupObjectPrivilege ${this.GroupObjectPrivilegeId}`;
|
|
251
|
+
activity.EntityType = 'GroupObjectPrivilege';
|
|
252
|
+
activity.EntityId = this.GroupObjectPrivilegeId.toString();
|
|
253
|
+
activity.EntityValueBefore = JSON.stringify(EntityValueBefore);
|
|
254
|
+
activity.EntityValueAfter = JSON.stringify(EntityValueAfter);
|
|
255
|
+
|
|
256
|
+
// Call new activity create method.Make sure to pass the dbTransaction and LoginUser.userId.
|
|
257
|
+
await activity.create(dbTransaction, loginUser.UserId);
|
|
258
|
+
|
|
259
|
+
// Return this
|
|
260
|
+
return this;
|
|
261
|
+
} catch (error) {
|
|
262
|
+
throw error;
|
|
263
|
+
}
|
|
264
|
+
}
|
|
82
265
|
}
|
|
@@ -3,9 +3,19 @@ import { RepositoryBase, IRepositoryBase } from '@tomei/general';
|
|
|
3
3
|
|
|
4
4
|
export class GroupPrivilegeRepository
|
|
5
5
|
extends RepositoryBase<GroupPrivilegeModel>
|
|
6
|
-
implements IRepositoryBase<GroupPrivilegeModel>
|
|
7
|
-
{
|
|
6
|
+
implements IRepositoryBase<GroupPrivilegeModel> {
|
|
8
7
|
constructor() {
|
|
9
8
|
super(GroupPrivilegeModel);
|
|
10
9
|
}
|
|
10
|
+
|
|
11
|
+
async delete(GroupCode: string, PrivilegeCode: string, dbTransaction?: any) {
|
|
12
|
+
try {
|
|
13
|
+
return await GroupPrivilegeModel.destroy({
|
|
14
|
+
where: { GroupCode, PrivilegeCode },
|
|
15
|
+
transaction: dbTransaction,
|
|
16
|
+
});
|
|
17
|
+
} catch (error) {
|
|
18
|
+
throw error;
|
|
19
|
+
}
|
|
20
|
+
}
|
|
11
21
|
}
|
|
@@ -48,6 +48,17 @@ export class GroupPrivilege extends ObjectBase {
|
|
|
48
48
|
}
|
|
49
49
|
}
|
|
50
50
|
|
|
51
|
+
setAttributes(GroupPrivilegeAttr: IGroupPrivilegeAttr) {
|
|
52
|
+
this.GroupPrivilegeId = GroupPrivilegeAttr.GroupPrivilegeId;
|
|
53
|
+
this.GroupCode = GroupPrivilegeAttr.GroupCode;
|
|
54
|
+
this.PrivilegeCode = GroupPrivilegeAttr.PrivilegeCode;
|
|
55
|
+
this.Status = GroupPrivilegeAttr.Status;
|
|
56
|
+
this._CreatedAt = GroupPrivilegeAttr.CreatedAt;
|
|
57
|
+
this._UpdatedAt = GroupPrivilegeAttr.UpdatedAt;
|
|
58
|
+
this._CreatedById = GroupPrivilegeAttr.CreatedById;
|
|
59
|
+
this._UpdatedById = GroupPrivilegeAttr.UpdatedById;
|
|
60
|
+
}
|
|
61
|
+
|
|
51
62
|
public static async init(dbTransaction?: any, GroupPrivilegeId?: number) {
|
|
52
63
|
try {
|
|
53
64
|
if (GroupPrivilegeId) {
|
|
@@ -6,6 +6,8 @@ import { LoginUser } from '../login-user/login-user';
|
|
|
6
6
|
import { ApplicationConfig } from '@tomei/config';
|
|
7
7
|
import { System } from '../system/system';
|
|
8
8
|
import { ActionEnum, Activity } from '@tomei/activity-history';
|
|
9
|
+
import { ISystemPrivilegeSearch } from '../../interfaces/system-privilege-search.interface';
|
|
10
|
+
import { Op } from 'sequelize';
|
|
9
11
|
|
|
10
12
|
export class SystemPrivilege extends ObjectBase {
|
|
11
13
|
ObjectType = 'SystemPrivilege';
|
|
@@ -61,6 +63,17 @@ export class SystemPrivilege extends ObjectBase {
|
|
|
61
63
|
}
|
|
62
64
|
}
|
|
63
65
|
|
|
66
|
+
setAttributes(systemPrivilegeAttr: ISystemPrivilegeAttr) {
|
|
67
|
+
this.ObjectId = systemPrivilegeAttr.PrivilegeCode;
|
|
68
|
+
this.SystemCode = systemPrivilegeAttr.SystemCode;
|
|
69
|
+
this.Description = systemPrivilegeAttr.Description;
|
|
70
|
+
this.Status = systemPrivilegeAttr.Status;
|
|
71
|
+
this._CreatedAt = systemPrivilegeAttr.CreatedAt;
|
|
72
|
+
this._UpdatedAt = systemPrivilegeAttr.UpdatedAt;
|
|
73
|
+
this._CreatedById = systemPrivilegeAttr.CreatedById;
|
|
74
|
+
this._UpdatedById = systemPrivilegeAttr.UpdatedById;
|
|
75
|
+
}
|
|
76
|
+
|
|
64
77
|
static async init(dbTransaction: any, PrivilegeCode?: string) {
|
|
65
78
|
try {
|
|
66
79
|
const systemPrivilege = new SystemPrivilege();
|
|
@@ -108,8 +121,10 @@ export class SystemPrivilege extends ObjectBase {
|
|
|
108
121
|
'PRIVILEGE_CREATE',
|
|
109
122
|
);
|
|
110
123
|
if (!isPrivileged) {
|
|
111
|
-
throw new
|
|
112
|
-
'
|
|
124
|
+
throw new ClassError(
|
|
125
|
+
'SystemPrivilege',
|
|
126
|
+
'SystemPrivilegeErrMsg01',
|
|
127
|
+
'You do not have permission to create system privileges',
|
|
113
128
|
);
|
|
114
129
|
}
|
|
115
130
|
|
|
@@ -202,4 +217,73 @@ export class SystemPrivilege extends ObjectBase {
|
|
|
202
217
|
throw error;
|
|
203
218
|
}
|
|
204
219
|
}
|
|
220
|
+
|
|
221
|
+
public static async findAll(
|
|
222
|
+
loginUser: LoginUser,
|
|
223
|
+
dbTransaction: any,
|
|
224
|
+
page?: number,
|
|
225
|
+
row?: number,
|
|
226
|
+
search?: ISystemPrivilegeSearch,
|
|
227
|
+
) {
|
|
228
|
+
try {
|
|
229
|
+
// Part 1: Privilege Checking
|
|
230
|
+
const systemCode = ApplicationConfig.getComponentConfigValue('system-code');
|
|
231
|
+
const isPrivileged = await loginUser.checkPrivileges(
|
|
232
|
+
systemCode,
|
|
233
|
+
'PRIVILEGE_LIST',
|
|
234
|
+
);
|
|
235
|
+
|
|
236
|
+
if (!isPrivileged) {
|
|
237
|
+
throw new ClassError(
|
|
238
|
+
'SystemPrivilege',
|
|
239
|
+
'SystemPrivilegeErrMsg01',
|
|
240
|
+
'You do not have permission to list system privileges',
|
|
241
|
+
);
|
|
242
|
+
}
|
|
243
|
+
|
|
244
|
+
// Part 2: Retrieve listing
|
|
245
|
+
let options: any = {
|
|
246
|
+
order: [['createdAt', 'DESC']],
|
|
247
|
+
transaction: dbTransaction,
|
|
248
|
+
};
|
|
249
|
+
//If page and row exist, please add limit and offset to the findAll options
|
|
250
|
+
if (page && row) {
|
|
251
|
+
const offset = row * (page - 1);
|
|
252
|
+
const limit = row;
|
|
253
|
+
|
|
254
|
+
options.offset = offset;
|
|
255
|
+
options.limit = limit;
|
|
256
|
+
}
|
|
257
|
+
|
|
258
|
+
//If search query exists, please set it to sequelize where option.
|
|
259
|
+
if (search) {
|
|
260
|
+
const queryObj: any = {};
|
|
261
|
+
Object.entries(search).forEach(([key, value]) => {
|
|
262
|
+
queryObj[key] = {
|
|
263
|
+
[Op.substring]: value,
|
|
264
|
+
};
|
|
265
|
+
});
|
|
266
|
+
|
|
267
|
+
options.where = queryObj;
|
|
268
|
+
}
|
|
269
|
+
|
|
270
|
+
const result = await SystemPrivilege._Repository.findAllWithPagination(options);
|
|
271
|
+
|
|
272
|
+
// Part 3: Return result
|
|
273
|
+
// Map the result to SystemPrivilege object
|
|
274
|
+
const systemPrivileges: SystemPrivilege[] = [];
|
|
275
|
+
for (const systemPrivilegeAttr of result.rows) {
|
|
276
|
+
systemPrivileges.push(
|
|
277
|
+
new SystemPrivilege(systemPrivilegeAttr.get({ plain: true })),
|
|
278
|
+
);
|
|
279
|
+
}
|
|
280
|
+
|
|
281
|
+
return {
|
|
282
|
+
count: result.count,
|
|
283
|
+
SystemPrivileges: systemPrivileges,
|
|
284
|
+
};
|
|
285
|
+
} catch (error) {
|
|
286
|
+
throw error;
|
|
287
|
+
}
|
|
288
|
+
}
|
|
205
289
|
}
|
|
@@ -1,14 +1,14 @@
|
|
|
1
|
-
import { ObjectStatus } from '../enum/object-status.enum';
|
|
2
|
-
|
|
3
|
-
export interface IGroupObjectPrivilegeAttr {
|
|
4
|
-
GroupObjectPrivilegeId
|
|
5
|
-
GroupCode: string;
|
|
6
|
-
PrivilegeCode: string;
|
|
7
|
-
ObjectId: string;
|
|
8
|
-
ObjectType: string;
|
|
9
|
-
Status: ObjectStatus;
|
|
10
|
-
CreatedById: number;
|
|
11
|
-
UpdatedById: number;
|
|
12
|
-
CreatedAt: Date;
|
|
13
|
-
UpdatedAt: Date;
|
|
14
|
-
}
|
|
1
|
+
import { ObjectStatus } from '../enum/object-status.enum';
|
|
2
|
+
|
|
3
|
+
export interface IGroupObjectPrivilegeAttr {
|
|
4
|
+
GroupObjectPrivilegeId?: number;
|
|
5
|
+
GroupCode: string;
|
|
6
|
+
PrivilegeCode: string;
|
|
7
|
+
ObjectId: string;
|
|
8
|
+
ObjectType: string;
|
|
9
|
+
Status: ObjectStatus;
|
|
10
|
+
CreatedById: number;
|
|
11
|
+
UpdatedById: number;
|
|
12
|
+
CreatedAt: Date;
|
|
13
|
+
UpdatedAt: Date;
|
|
14
|
+
}
|
|
@@ -1,81 +1,81 @@
|
|
|
1
|
-
import {
|
|
2
|
-
BelongsTo,
|
|
3
|
-
Column,
|
|
4
|
-
CreatedAt,
|
|
5
|
-
DataType,
|
|
6
|
-
ForeignKey,
|
|
7
|
-
Model,
|
|
8
|
-
Table,
|
|
9
|
-
UpdatedAt,
|
|
10
|
-
} from 'sequelize-typescript';
|
|
11
|
-
import User from './user.entity';
|
|
12
|
-
import GroupModel from './group.entity';
|
|
13
|
-
import SystemModel from './system.entity';
|
|
14
|
-
|
|
15
|
-
@Table({
|
|
16
|
-
tableName: 'sso_GroupSystemAccess',
|
|
17
|
-
timestamps: true,
|
|
18
|
-
createdAt: 'CreatedAt',
|
|
19
|
-
updatedAt: 'UpdatedAt',
|
|
20
|
-
})
|
|
21
|
-
export default class GroupSystemAccessModel extends Model {
|
|
22
|
-
@Column({
|
|
23
|
-
autoIncrement: true,
|
|
24
|
-
primaryKey: true,
|
|
25
|
-
allowNull: false,
|
|
26
|
-
type: DataType.INTEGER,
|
|
27
|
-
})
|
|
28
|
-
GroupSystemAccessId: number;
|
|
29
|
-
|
|
30
|
-
@ForeignKey(() => GroupModel)
|
|
31
|
-
@Column({
|
|
32
|
-
allowNull: false,
|
|
33
|
-
type: DataType.STRING(10),
|
|
34
|
-
})
|
|
35
|
-
GroupCode: string;
|
|
36
|
-
|
|
37
|
-
@ForeignKey(() => SystemModel)
|
|
38
|
-
@Column({
|
|
39
|
-
allowNull: false,
|
|
40
|
-
type: DataType.STRING(10),
|
|
41
|
-
})
|
|
42
|
-
SystemCode: string;
|
|
43
|
-
|
|
44
|
-
@Column({
|
|
45
|
-
allowNull: false,
|
|
46
|
-
type: DataType.CHAR(10),
|
|
47
|
-
})
|
|
48
|
-
Status: string;
|
|
49
|
-
|
|
50
|
-
@ForeignKey(() => User)
|
|
51
|
-
@Column({
|
|
52
|
-
allowNull: false,
|
|
53
|
-
type: DataType.INTEGER,
|
|
54
|
-
})
|
|
55
|
-
CreatedById: number;
|
|
56
|
-
|
|
57
|
-
@ForeignKey(() => User)
|
|
58
|
-
@Column({
|
|
59
|
-
allowNull: false,
|
|
60
|
-
type: DataType.INTEGER,
|
|
61
|
-
})
|
|
62
|
-
UpdatedById: number;
|
|
63
|
-
|
|
64
|
-
@CreatedAt
|
|
65
|
-
CreatedAt: Date;
|
|
66
|
-
|
|
67
|
-
@UpdatedAt
|
|
68
|
-
UpdatedAt: Date;
|
|
69
|
-
|
|
70
|
-
@BelongsTo(() => User, 'CreatedById')
|
|
71
|
-
CreatedByUser: User;
|
|
72
|
-
|
|
73
|
-
@BelongsTo(() => User, 'UpdatedById')
|
|
74
|
-
UpdatedByUser: User;
|
|
75
|
-
|
|
76
|
-
@BelongsTo(() => SystemModel, 'SystemCode')
|
|
77
|
-
System: SystemModel;
|
|
78
|
-
|
|
79
|
-
@BelongsTo(() => GroupModel, 'GroupCode')
|
|
80
|
-
Group: GroupModel;
|
|
81
|
-
}
|
|
1
|
+
import {
|
|
2
|
+
BelongsTo,
|
|
3
|
+
Column,
|
|
4
|
+
CreatedAt,
|
|
5
|
+
DataType,
|
|
6
|
+
ForeignKey,
|
|
7
|
+
Model,
|
|
8
|
+
Table,
|
|
9
|
+
UpdatedAt,
|
|
10
|
+
} from 'sequelize-typescript';
|
|
11
|
+
import User from './user.entity';
|
|
12
|
+
import GroupModel from './group.entity';
|
|
13
|
+
import SystemModel from './system.entity';
|
|
14
|
+
|
|
15
|
+
@Table({
|
|
16
|
+
tableName: 'sso_GroupSystemAccess',
|
|
17
|
+
timestamps: true,
|
|
18
|
+
createdAt: 'CreatedAt',
|
|
19
|
+
updatedAt: 'UpdatedAt',
|
|
20
|
+
})
|
|
21
|
+
export default class GroupSystemAccessModel extends Model {
|
|
22
|
+
@Column({
|
|
23
|
+
autoIncrement: true,
|
|
24
|
+
primaryKey: true,
|
|
25
|
+
allowNull: false,
|
|
26
|
+
type: DataType.INTEGER,
|
|
27
|
+
})
|
|
28
|
+
GroupSystemAccessId: number;
|
|
29
|
+
|
|
30
|
+
@ForeignKey(() => GroupModel)
|
|
31
|
+
@Column({
|
|
32
|
+
allowNull: false,
|
|
33
|
+
type: DataType.STRING(10),
|
|
34
|
+
})
|
|
35
|
+
GroupCode: string;
|
|
36
|
+
|
|
37
|
+
@ForeignKey(() => SystemModel)
|
|
38
|
+
@Column({
|
|
39
|
+
allowNull: false,
|
|
40
|
+
type: DataType.STRING(10),
|
|
41
|
+
})
|
|
42
|
+
SystemCode: string;
|
|
43
|
+
|
|
44
|
+
@Column({
|
|
45
|
+
allowNull: false,
|
|
46
|
+
type: DataType.CHAR(10),
|
|
47
|
+
})
|
|
48
|
+
Status: string;
|
|
49
|
+
|
|
50
|
+
@ForeignKey(() => User)
|
|
51
|
+
@Column({
|
|
52
|
+
allowNull: false,
|
|
53
|
+
type: DataType.INTEGER,
|
|
54
|
+
})
|
|
55
|
+
CreatedById: number;
|
|
56
|
+
|
|
57
|
+
@ForeignKey(() => User)
|
|
58
|
+
@Column({
|
|
59
|
+
allowNull: false,
|
|
60
|
+
type: DataType.INTEGER,
|
|
61
|
+
})
|
|
62
|
+
UpdatedById: number;
|
|
63
|
+
|
|
64
|
+
@CreatedAt
|
|
65
|
+
CreatedAt: Date;
|
|
66
|
+
|
|
67
|
+
@UpdatedAt
|
|
68
|
+
UpdatedAt: Date;
|
|
69
|
+
|
|
70
|
+
@BelongsTo(() => User, 'CreatedById')
|
|
71
|
+
CreatedByUser: User;
|
|
72
|
+
|
|
73
|
+
@BelongsTo(() => User, 'UpdatedById')
|
|
74
|
+
UpdatedByUser: User;
|
|
75
|
+
|
|
76
|
+
@BelongsTo(() => SystemModel, 'SystemCode')
|
|
77
|
+
System: SystemModel;
|
|
78
|
+
|
|
79
|
+
@BelongsTo(() => GroupModel, 'GroupCode')
|
|
80
|
+
Group: GroupModel;
|
|
81
|
+
}
|
package/tsconfig.build.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
|
-
{
|
|
2
|
-
"extends": "./tsconfig.json",
|
|
3
|
-
"include": ["**/*.ts"],
|
|
4
|
-
"exclude": ["node_modules", "__tests__", "dist", "**/*spec.ts"]
|
|
5
|
-
}
|
|
1
|
+
{
|
|
2
|
+
"extends": "./tsconfig.json",
|
|
3
|
+
"include": ["**/*.ts"],
|
|
4
|
+
"exclude": ["node_modules", "__tests__", "dist", "**/*spec.ts"]
|
|
5
|
+
}
|
|
6
6
|
|