aloux-iam 0.0.142 → 0.0.143

package/lib/controllers/user.js

@@ -936,7 +936,6 @@ self.addTimeToken = async (req, res) => {
 
       if (tokenObject) {
         tokenObject.dateEnd = Date.now() + process.env.SESSION_TIME * 60 * 1000;
-        // Guarda los cambios en la base de datos
         await User.updateOne(
           { _id: userTokens._id, "tokens.token": req.params.TOKEN },
           { $set: { "tokens.$.dateEnd": tokenObject.dateEnd } }
@@ -952,12 +951,3 @@ self.addTimeToken = async (req, res) => {
     res.status(400).send({ error: error.message });
   }
 };
-
-self.checkUsername = async (req, res) => {
-  try {
-    const result = await serviceUser.checkUsername(req.body.name)
-    res.status(200).send(result)
-  } catch (error) {
-    utils.responseError(res, error, 400, "Error al verificar username", "Revisa el detalle del error")
-  }
-}

package/lib/middleware.js

@@ -4,6 +4,15 @@ const Permission = require("./models/Permission");
 const historyController = require("./controllers/history");
 
 const getAccess = (user, resource) => {
+  // Cuenta de servicio
+  const userApis = user?.data?.apis || [];
+  if (userApis.length > 0) {
+    return userApis.some(
+      (apiId) => apiId.toString() === resource._id.toString(),
+    );
+  }
+
+  // Flujo normal
   for (let i in user._functions) {
     for (let j in user._functions[i]._permissions) {
       if (user._functions[i]._permissions[j].status === "Activo") {
@@ -50,7 +59,7 @@ const auth = async (req, res, next) => {
     const data = jwt.verify(token, process.env.AUTH_SECRET);
     const user = await User.findOne(
       { _id: data._id, "tokens.token": token, status: "Activo" },
-      { tokens: 0, pwd: 0 }
+      { tokens: 0, pwd: 0 },
     )
       .populate({ path: "_functions", populate: [{ path: "_permissions" }] })
       .lean();
@@ -69,7 +78,7 @@ const auth = async (req, res, next) => {
     if (process.env.SESSION_INTERRUPTOR === "true") {
       const userTokens = await User.findOne(
         { _id: user._id, status: "Activo" },
-        { tokens: 1 }
+        { tokens: 1 },
       ).lean();
       const tokenObject = userTokens.tokens.find((t) => t.token === token);
       if (tokenObject.dateEnd <= Date.now()) {
@@ -79,7 +88,7 @@ const auth = async (req, res, next) => {
             $pull: {
               tokens: { token: tokenObject.token }, // Condición para eliminar el token específico
             },
-          }
+          },
         );
         throw {
           code: 401,
@@ -113,15 +122,21 @@ const auth = async (req, res, next) => {
     if (resource.auth && !resource.default) {
       const access = getAccess(user, resource);
       if (!access) {
+        const userApis = user?.data?.apis || [];
         throw {
           code: 403,
-          title: "Error de permisos",
+          title: "Acceso denegado",
           detail:
-            "No cuentas con permisos para el recurso [" +
-            resource.api +
-            "] que: " +
-            (resource ? resource.description : "Recurso indefinido"),
-          suggestion: "Contacta con el administrador",
+            userApis.length > 0
+              ? "No cuentas con acceso a esta API"
+              : "No cuentas con permisos para el recurso [" +
+                resource.api +
+                "] que: " +
+                (resource ? resource.description : "Recurso indefinido"),
+          suggestion:
+            userApis.length > 0
+              ? "Contacta con el administrador para asignar acceso a esta API"
+              : "Contacta con el administrador",
           error: new Error(),
         };
       }

package/lib/models/User.js

@@ -14,13 +14,6 @@ const adminSchema = mongoose.Schema({
     sparse: true,
     lowercase: true,
   },
-  username: {
-    type: String,
-    trim: true,
-    unique: true,
-    sparse: true,
-    lowercase: true,
-  },
   pwd: { type: String, trim: true, minLength: 8 },
   phone: { type: String, trim: true, maxLength: 13 },
   phoneObj: {

package/lib/router.js

@@ -46,7 +46,6 @@ router.get("/iam/user", middleware, user.retrieve);
 router.post("/iam/user/pages", middleware, user.retrievePages);
 router.get("/iam/business/user", middleware, user.retrieveByBusiness);
 router.get("/iam/user/by/my/companies", middleware, user.retrieveByMyCompanies);
-router.post('/iam/user/check/username', middleware, user.checkUsername);
 router.get("/iam/user/:USER_ID", middleware, user.get);
 router.patch("/iam/user/:USER_ID", middleware, user.update);
 router.put("/iam/user/:USER_ID/status", middleware, user.status);

package/lib/services/user.js

@@ -2,29 +2,10 @@ const jwt = require("jsonwebtoken")
 const User = require('../models/User')
 const self = module.exports
 
-const generateUniqueUsername = async (name) => {
-  const base = name
-    .toLowerCase()
-    .normalize('NFD').replace(/[\u0300-\u036f]/g, '')
-    .replace(/\s+/g, '-')
-    .replace(/[^a-z0-9-]/g, '')
-
-  let username = base
-  let count = 1
-
-  while (await User.findOne({ username }).lean()) {
-    username = `${base}${count}`
-    count++
-  }
-
-  return username
-}
-
 self.create = async (body) => {
   let user
   const isServiceAccount = !body.email && !body.pwd
 
-  // Limpieza de campos únicos que pueden llegar como null
   const nullableUnique = ['username', 'phone', 'email']
   nullableUnique.forEach(field => {
     if (!body[field]) delete body[field]
@@ -32,7 +13,6 @@ self.create = async (body) => {
 
   if (isServiceAccount) {
     user = new User(body)
-    user.username = await generateUniqueUsername(body.name)
     user.createdAt = new Date().getTime()
     user.status = body?.status ?? 'Activo'
     user.data = { changePwd: false }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "aloux-iam",
-  "version": "0.0.142",
+  "version": "0.0.143",
   "description": "Aloux IAM for APIs ",
   "main": "index.js",
   "scripts": {