@tomei/sso 0.50.7 → 0.51.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@tomei/sso",
-  "version": "0.50.7",
+  "version": "0.51.0",
   "description": "Tomei SSO Package",
   "main": "dist/index.js",
   "scripts": {

package/src/components/login-user/user.ts

@@ -2009,6 +2009,44 @@ export class User extends UserBase {
     return `${userId}:${systemLogin.sessionId}`;
   }
 
+  public async bypass2FA(systemCode: string, dbTransaction: any) {
+    try {
+      const user = await User._Repository.findOne({
+        where: {
+          UserId: this.UserId,
+        },
+        transaction: dbTransaction,
+      });
+
+      //Check if 2FA is not enabled
+      if (user.MFAEnabled === 1) {
+        //If Enabled return error
+        throw new ClassError(
+          'LoginUser',
+          'LoginUserErrMsg0X',
+          'Cannot bypass 2FA as it is enabled',
+        );
+      }
+
+      //Retrieve user session
+      const userSession = await this._SessionService.retrieveUserSession(
+        `${this.UserId}`,
+      );
+
+      //Retrieve system code
+      if (!systemCode) {
+        systemCode = ApplicationConfig.getComponentConfigValue('system-code');
+      }
+
+      const systemLogin = userSession.systemLogins.find(
+        (e) => e.code === systemCode,
+      );
+      return `${this.UserId}:${systemLogin.sessionId}`;
+    } catch (error) {
+      throw error;
+    }
+  }
+
   public async addUserGroup(
     GroupCode: string,
     loginUser: User,

package/src/components/user-group/user-group.ts

@@ -8,6 +8,7 @@ import { ActionEnum, Activity } from '@tomei/activity-history';
 import GroupSystemAccessModel from '../../models/group-system-access.entity';
 import GroupModel from '../../models/group.entity';
 import SystemModel from '../../models/system.entity';
+import UserModel from '../../models/user.entity';
 import { Transaction } from 'sequelize';
 
 export class UserGroup extends ObjectBase {
@@ -301,6 +302,59 @@ export class UserGroup extends ObjectBase {
     }
   }
 
+  public static async getUser(
+    dbTransaction: any,
+    loginUser: LoginUser,
+    GroupCode: string,
+  ) {
+    try {
+      // Part 1: Privilege Checking
+      // Call loginUser.checkPrivileges() by passing:
+      // SystemCode: "<get_from_app_config>"
+      // PrivilegeCode: "USER_GROUP_VIEW"
+      const systemCode =
+        ApplicationConfig.getComponentConfigValue('system-code');
+      const isPrivileged = await loginUser.checkPrivileges(
+        systemCode,
+        'USER_GROUP_VIEW',
+      );
+
+      // If user does not have privilege to view user group, throw a ClassError
+      if (!isPrivileged) {
+        throw new ClassError(
+          'UserGroup',
+          'UserGroupErrMsg0X',
+          'User does not have privilege to view user group.',
+        );
+      }
+
+      // Part 2: Retrieve Record
+      // Call UserGroup._Repo findAll method by passing:
+      // where:
+      // GroupCode: Params.GroupCode
+      // dbTransaction
+      const userGroup = await UserGroup._Repository.findAll({
+        where: {
+          GroupCode,
+        },
+        include: [
+          {
+            model: UserModel,
+            as: 'User',
+            attributes: ['UserId', 'FullName', 'Email'],
+          },
+        ],
+        transaction: dbTransaction,
+      });
+      // If record exists, instantiate UserGroup by calling the private constructor and passing the attributes. Then, returns the instance
+      return userGroup;
+      // If record not exists, return null.
+      return null;
+    } catch (error) {
+      throw error;
+    }
+  }
+
   static async findAllInheritedSystemAccesses(
     UserId: number,
     loginUser: User,