npm - vr-commons - Versions diffs - 1.0.24 → 1.0.26 - Mend

vr-commons 1.0.24 → 1.0.26

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/dist/utils/index.d.ts +1 -1
package/dist/utils/index.js +24 -10
package/dist/utils/profiles.utils.d.ts +193 -34
package/dist/utils/profiles.utils.js +439 -132
package/dist/validations/auth.validations.d.ts +42 -3
package/dist/validations/auth.validations.js +15 -4
package/dist/validations/index.d.ts +2 -2
package/dist/validations/index.js +16 -3
package/dist/validations/profiles.validations.d.ts +362 -75
package/dist/validations/profiles.validations.js +202 -25
package/package.json +1 -1

package/dist/utils/profiles.utils.js CHANGED Viewed

@@ -3,78 +3,184 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.generateSearchConditions = exports.canAdminModifyUser = exports.validateUniqueFields = exports.hashPassword = exports.findSecurityClearanceByRole = exports.getUserById = exports.getAdminWithClearance = exports.isUserAdminOrSuperAdmin = exports.isUserSuperAdmin = exports.isUserAdmin = exports.formatAdminProfile = exports.formatUserForAdmin = void 0;
+exports.softDeleteUser = exports.hashPassword = exports.validatePassword = exports.validateUniqueFields = exports.generateJacketId = exports.getSortOrder = exports.generateEventSearchConditions = exports.generateUserSearchConditions = exports.findSecurityClearanceByRole = exports.getUsersByRole = exports.getUserById = exports.isAccountAccessible = exports.canModifyAccount = exports.hasAllPermissions = exports.hasAnyPermission = exports.hasPermission = exports.hasRole = exports.formatUserListResponse = exports.formatUserProfile = exports.JACKET_ID_PREFIX = exports.JACKET_ID_REGEX = exports.NATIONAL_ID_REGEX = exports.PHONE_REGEX = void 0;
 const vr_models_1 = require("vr-models");
 const bcryptjs_1 = __importDefault(require("bcryptjs"));
 const sequelize_1 = require("sequelize");
-const formatUserForAdmin = (user) => {
-    return {
+// ============================================================================
+// REGEX PATTERNS & CONSTANTS
+// ============================================================================
+exports.PHONE_REGEX = /^(078|079|072|073)\d{7}$/;
+exports.NATIONAL_ID_REGEX = /^\d{16}$/;
+exports.JACKET_ID_REGEX = /^JKT-\d{9}$/;
+exports.JACKET_ID_PREFIX = "JKT";
+// ============================================================================
+// FORMATTING FUNCTIONS (WITH EXPLICIT RETURN TYPES)
+// ============================================================================
+/**
+ * Format user profile based on viewer type and options
+ */
+const formatUserProfile = (user, viewerType = "ADMIN", options = {}) => {
+    const baseProfile = {
         id: user.id,
         firstName: user.firstName,
         lastName: user.lastName,
         phoneNumber: user.phoneNumber,
         email: user.email,
         nationalId: user.nationalId,
-        jacketId: user.jacketId,
-        plateNumber: user.plateNumber,
         isActive: user.isActive,
-        isSuspended: user.isSuspended,
-        isDeactivated: user.isDeactivated,
-        deactivatedAt: user.deactivatedAt,
         lastLoginAt: user.lastLoginAt,
         createdAt: user.createdAt,
-        role: user.securityClearance?.role,
-        level: user.securityClearance?.level,
-        permissions: user.securityClearance?.permissions || [],
     };
+    const securityFields = options.includeSecurity
+        ? {
+            role: user.securityClearance?.role,
+            level: user.securityClearance?.level,
+            permissions: user.securityClearance?.permissions || [],
+        }
+        : viewerType === "SUPER_ADMIN" || viewerType === "ADMIN"
+            ? {
+                role: user.securityClearance?.role,
+            }
+            : {};
+    // Return type-specific profiles
+    switch (viewerType) {
+        case "RIDER":
+            return {
+                ...baseProfile,
+                jacketId: user.jacketId,
+                plateNumber: user.plateNumber,
+                ...securityFields,
+            };
+        case "PASSENGER":
+            return {
+                ...baseProfile,
+                jacketId: user.jacketId,
+                plateNumber: user.plateNumber,
+                ...securityFields,
+            };
+        case "AGENT":
+            return {
+                ...baseProfile,
+                ...securityFields,
+            };
+        case "ADMIN":
+            return {
+                ...baseProfile,
+                jacketId: user.jacketId,
+                plateNumber: user.plateNumber,
+                isSuspended: user.isSuspended,
+                isDeactivated: user.isDeactivated,
+                ...securityFields,
+            };
+        case "SUPER_ADMIN":
+            return {
+                ...baseProfile,
+                jacketId: user.jacketId,
+                plateNumber: user.plateNumber,
+                isSuspended: user.isSuspended,
+                isDeactivated: user.isDeactivated,
+                bannedAt: user.bannedAt,
+                banReason: user.banReason,
+                suspendedAt: user.suspendedAt,
+                suspensionReason: user.suspensionReason,
+                deactivatedAt: user.deactivatedAt,
+                securityClearanceId: user.securityClearanceId,
+                ...securityFields,
+            };
+        default:
+            return {
+                ...baseProfile,
+                ...securityFields,
+            };
+    }
 };
-exports.formatUserForAdmin = formatUserForAdmin;
-// Format admin profile
-const formatAdminProfile = (user) => {
+exports.formatUserProfile = formatUserProfile;
+/**
+ * Format user list for response (paginated)
+ */
+const formatUserListResponse = (users, total, page, limit, viewerType = "ADMIN") => {
     return {
-        id: user.id,
-        firstName: user.firstName,
-        lastName: user.lastName,
-        phoneNumber: user.phoneNumber,
-        email: user.email,
-        nationalId: user.nationalId,
-        isActive: user.isActive,
-        lastLoginAt: user.lastLoginAt,
-        createdAt: user.createdAt,
-        role: user.securityClearance?.role,
-        level: user.securityClearance?.level,
-        permissions: user.securityClearance?.permissions || [],
+        data: users.map((user) => (0, exports.formatUserProfile)(user, viewerType)),
+        pagination: {
+            total,
+            page,
+            limit,
+            pages: Math.ceil(total / limit),
+        },
     };
 };
-exports.formatAdminProfile = formatAdminProfile;
-// Check if user is an admin
-const isUserAdmin = (user) => {
-    return user.securityClearance?.role === "ADMIN";
-};
-exports.isUserAdmin = isUserAdmin;
-// Check if user is a super admin
-const isUserSuperAdmin = (user) => {
-    return user.securityClearance?.role === "SUPER_ADMIN";
-};
-exports.isUserSuperAdmin = isUserSuperAdmin;
-// Check if user is an admin or super admin
-const isUserAdminOrSuperAdmin = (user) => {
-    const role = user.securityClearance?.role;
-    return role === "ADMIN" || role === "SUPER_ADMIN";
-};
-exports.isUserAdminOrSuperAdmin = isUserAdminOrSuperAdmin;
-// Get admin with security clearance
-const getAdminWithClearance = async (userId) => {
-    return await vr_models_1.User.findOne({
+exports.formatUserListResponse = formatUserListResponse;
+// ============================================================================
+// USER ROLE CHECK FUNCTIONS
+// ============================================================================
+/**
+ * Check if user has a specific role
+ */
+const hasRole = (user, role) => {
+    const roles = Array.isArray(role) ? role : [role];
+    return roles.includes(user.securityClearance?.role);
+};
+exports.hasRole = hasRole;
+/**
+ * Check if user has a specific permission
+ */
+const hasPermission = (user, permission) => {
+    const permissions = user.securityClearance?.permissions || [];
+    return permissions.includes(permission);
+};
+exports.hasPermission = hasPermission;
+/**
+ * Check if user has any of the given permissions
+ */
+const hasAnyPermission = (user, permissions) => {
+    const userPermissions = user.securityClearance?.permissions || [];
+    return permissions.some((p) => userPermissions.includes(p));
+};
+exports.hasAnyPermission = hasAnyPermission;
+/**
+ * Check if user has all of the given permissions
+ */
+const hasAllPermissions = (user, permissions) => {
+    const userPermissions = user.securityClearance?.permissions || [];
+    return permissions.every((p) => userPermissions.includes(p));
+};
+exports.hasAllPermissions = hasAllPermissions;
+/**
+ * Check if account can be modified (not deactivated/suspended)
+ */
+const canModifyAccount = (user) => {
+    return !user.isDeactivated && !user.isSuspended;
+};
+exports.canModifyAccount = canModifyAccount;
+/**
+ * Check if account is active and accessible
+ */
+const isAccountAccessible = (user) => {
+    return user.isActive && !user.isDeactivated && !user.isSuspended;
+};
+exports.isAccountAccessible = isAccountAccessible;
+// ============================================================================
+// DATABASE QUERY FUNCTIONS
+// ============================================================================
+/**
+ * Get user by ID with security clearance
+ */
+const getUserById = async (userId, includeSecurity = true, excludeSensitive = true) => {
+    const query = {
         where: { id: userId },
-        include: [
+    };
+    if (includeSecurity) {
+        query.include = [
             {
                 model: vr_models_1.SecurityClearance,
                 as: "securityClearance",
                 attributes: ["role", "level", "permissions"],
             },
-        ],
-        attributes: {
+        ];
+    }
+    if (excludeSensitive) {
+        query.attributes = {
             exclude: [
                 "password",
                 "otp",
@@ -82,14 +188,57 @@ const getAdminWithClearance = async (userId) => {
                 "tokenVersion",
                 "forgotPassword",
             ],
-        },
-    });
+        };
+    }
+    return await vr_models_1.User.findOne(query);
 };
-exports.getAdminWithClearance = getAdminWithClearance;
-// Get user by ID with security clearance
-const getUserById = async (userId) => {
-    return await vr_models_1.User.findOne({
-        where: { id: userId },
+exports.getUserById = getUserById;
+/**
+ * Get users by role with optional filters
+ */
+const getUsersByRole = async (role, filters = {}, pagination) => {
+    const where = {};
+    if (role) {
+        where["$securityClearance.role$"] = role;
+    }
+    // Apply filters
+    if (filters.isActive !== undefined)
+        where.isActive = filters.isActive;
+    if (filters.isSuspended !== undefined)
+        where.isSuspended = filters.isSuspended;
+    if (filters.isDeactivated !== undefined)
+        where.isDeactivated = filters.isDeactivated;
+    if (filters.isBanned !== undefined) {
+        if (filters.isBanned) {
+            where.bannedAt = { [sequelize_1.Op.ne]: null };
+        }
+        else {
+            where.bannedAt = null;
+        }
+    }
+    // Date range filter
+    if (filters.startDate || filters.endDate) {
+        where.createdAt = {};
+        if (filters.startDate) {
+            where.createdAt[sequelize_1.Op.gte] = new Date(filters.startDate);
+        }
+        if (filters.endDate) {
+            where.createdAt[sequelize_1.Op.lte] = new Date(filters.endDate + "T23:59:59.999Z");
+        }
+    }
+    // Search filter
+    if (filters.search) {
+        where[sequelize_1.Op.or] = [
+            { firstName: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { lastName: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { phoneNumber: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { email: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { nationalId: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { jacketId: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+        ];
+    }
+    const query = {
+        where,
         include: [
             {
                 model: vr_models_1.SecurityClearance,
@@ -106,93 +255,251 @@ const getUserById = async (userId) => {
                 "forgotPassword",
             ],
         },
-    });
+    };
+    // Apply pagination
+    if (pagination) {
+        const { page, limit } = pagination;
+        query.limit = limit;
+        query.offset = (page - 1) * limit;
+    }
+    const { rows, count } = await vr_models_1.User.findAndCountAll(query);
+    return {
+        users: rows,
+        total: count,
+    };
 };
-exports.getUserById = getUserById;
-// Find security clearance by role
-const findSecurityClearanceByRole = async (role) => {
-    return await vr_models_1.SecurityClearance.findOne({
-        where: { role, isDefault: true },
-    });
+exports.getUsersByRole = getUsersByRole;
+/**
+ * Find security clearance by role
+ */
+const findSecurityClearanceByRole = async (role, requireDefault = true) => {
+    const where = { role };
+    if (requireDefault) {
+        where.isDefault = true;
+    }
+    return await vr_models_1.SecurityClearance.findOne({ where });
 };
 exports.findSecurityClearanceByRole = findSecurityClearanceByRole;
-// Hash password
-const hashPassword = async (password) => {
-    return await bcryptjs_1.default.hash(password, 10);
-};
-exports.hashPassword = hashPassword;
-// Validate unique fields
-const validateUniqueFields = async (phoneNumber, nationalId, email) => {
-    const errors = [];
-    // Check phone number
-    const existingPhone = await vr_models_1.User.findOne({ where: { phoneNumber } });
-    if (existingPhone) {
-        errors.push({
-            field: "phoneNumber",
-            message: "Phone number already registered",
-        });
-    }
-    // Check national ID
-    const existingNationalId = await vr_models_1.User.findOne({ where: { nationalId } });
-    if (existingNationalId) {
-        errors.push({
-            field: "nationalId",
-            message: "National ID already registered",
-        });
-    }
-    // Check email if provided
-    if (email) {
-        const existingEmail = await vr_models_1.User.findOne({ where: { email } });
-        if (existingEmail) {
-            errors.push({ field: "email", message: "Email already registered" });
+/**
+ * Generate search conditions for user queries
+ */
+const generateUserSearchConditions = (filters) => {
+    const where = {};
+    if (filters.role) {
+        where["$securityClearance.role$"] = filters.role;
+    }
+    if (filters.isActive !== undefined) {
+        where.isActive = filters.isActive;
+    }
+    if (filters.isSuspended !== undefined) {
+        where.isSuspended = filters.isSuspended;
+    }
+    if (filters.isBanned !== undefined) {
+        if (filters.isBanned) {
+            where.bannedAt = { [sequelize_1.Op.ne]: null };
+        }
+        else {
+            where.bannedAt = null;
         }
     }
-    return errors;
-};
-exports.validateUniqueFields = validateUniqueFields;
-// Check if admin can modify target user
-const canAdminModifyUser = (admin, targetUser) => {
-    const adminRole = admin.securityClearance?.role;
-    const targetRole = targetUser.securityClearance?.role;
-    // Admins cannot modify super admins
-    if (targetRole === "SUPER_ADMIN") {
-        return { canModify: false, reason: "Cannot modify super admin accounts" };
-    }
-    // Admins cannot modify other admins (only super admins can)
-    if (targetRole === "ADMIN" && adminRole !== "SUPER_ADMIN") {
-        return {
-            canModify: false,
-            reason: "Admins cannot modify other admin accounts",
-        };
+    if (filters.startDate || filters.endDate) {
+        where.createdAt = {};
+        if (filters.startDate) {
+            where.createdAt[sequelize_1.Op.gte] = new Date(filters.startDate);
+        }
+        if (filters.endDate) {
+            where.createdAt[sequelize_1.Op.lte] = new Date(filters.endDate + "T23:59:59.999Z");
+        }
     }
-    // Cannot modify self through this route
-    if (admin.id === targetUser.id) {
-        return {
-            canModify: false,
-            reason: "Use profile update route for self-updates",
-        };
+    // Search filter
+    if (filters.search) {
+        where[sequelize_1.Op.or] = [
+            { firstName: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { lastName: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { phoneNumber: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { email: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { nationalId: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+            { jacketId: { [sequelize_1.Op.iLike]: `%${filters.search}%` } },
+        ];
     }
-    return { canModify: true };
+    return where;
 };
-exports.canAdminModifyUser = canAdminModifyUser;
-// Generate search conditions
-const generateSearchConditions = (role, isActive, search) => {
+exports.generateUserSearchConditions = generateUserSearchConditions;
+/**
+ * Generate search conditions for event logs
+ */
+const generateEventSearchConditions = (userId, filters) => {
     const where = {};
-    if (role) {
-        where["$securityClearance.role$"] = role;
+    // Search filter
+    where[sequelize_1.Op.or] = [{ actorId: userId }, { entityId: userId }];
+    if (filters.action) {
+        where.action = filters.action;
     }
-    if (isActive !== undefined) {
-        where.isActive = isActive;
+    if (filters.entity) {
+        where.entity = filters.entity;
     }
-    if (search) {
-        where[sequelize_1.Op.or] = [
-            { firstName: { [sequelize_1.Op.iLike]: `%${search}%` } },
-            { lastName: { [sequelize_1.Op.iLike]: `%${search}%` } },
-            { phoneNumber: { [sequelize_1.Op.iLike]: `%${search}%` } },
-            { email: { [sequelize_1.Op.iLike]: `%${search}%` } },
-            { nationalId: { [sequelize_1.Op.iLike]: `%${search}%` } },
-        ];
+    if (filters.startDate || filters.endDate) {
+        where.createdAt = {};
+        if (filters.startDate) {
+            where.createdAt[sequelize_1.Op.gte] = new Date(filters.startDate);
+        }
+        if (filters.endDate) {
+            where.createdAt[sequelize_1.Op.lte] = new Date(filters.endDate + "T23:59:59.999Z");
+        }
     }
     return where;
 };
-exports.generateSearchConditions = generateSearchConditions;
+exports.generateEventSearchConditions = generateEventSearchConditions;
+/**
+ * Get sort order for queries
+ */
+const getSortOrder = (sortBy = "createdAt", order = "desc") => {
+    const validSortFields = ["firstName", "lastLoginAt", "createdAt"];
+    const sortField = validSortFields.includes(sortBy) ? sortBy : "createdAt";
+    const sortOrder = order.toLowerCase() === "asc" ? "ASC" : "DESC";
+    if (sortField === "firstName") {
+        return [
+            ["firstName", sortOrder],
+            ["lastName", sortOrder],
+        ];
+    }
+    return [[sortField, sortOrder]];
+};
+exports.getSortOrder = getSortOrder;
+// ============================================================================
+// GENERATION FUNCTIONS
+// ============================================================================
+/**
+ * Generate unique jacket ID
+ */
+const generateJacketId = async () => {
+    let isUnique = false;
+    let jacketId = "";
+    while (!isUnique) {
+        const timestamp = Date.now().toString().slice(-6);
+        const random = Math.floor(Math.random() * 1000)
+            .toString()
+            .padStart(3, "0");
+        jacketId = `${exports.JACKET_ID_PREFIX}-${timestamp}${random}`;
+        const existing = await vr_models_1.User.findOne({ where: { jacketId } });
+        isUnique = !existing;
+    }
+    return jacketId;
+};
+exports.generateJacketId = generateJacketId;
+// ============================================================================
+// VALIDATION FUNCTIONS
+// ============================================================================
+/**
+ * Validate unique user fields
+ */
+const validateUniqueFields = async (fields, excludeUserId) => {
+    const errors = [];
+    for (const [field, value] of Object.entries(fields)) {
+        if (!value)
+            continue;
+        const where = { [field]: value };
+        if (excludeUserId) {
+            where.id = { [sequelize_1.Op.ne]: excludeUserId };
+        }
+        const existing = await vr_models_1.User.findOne({ where });
+        if (existing) {
+            let message = "";
+            switch (field) {
+                case "phoneNumber":
+                    message = "Phone number already registered";
+                    break;
+                case "nationalId":
+                    message = "National ID already registered";
+                    break;
+                case "email":
+                    message = "Email already registered";
+                    break;
+                case "jacketId":
+                    message = "Jacket ID already taken";
+                    break;
+                default:
+                    message = `${field} already exists`;
+            }
+            errors.push({ field, message });
+        }
+    }
+    return errors;
+};
+exports.validateUniqueFields = validateUniqueFields;
+/**
+ * Validate password
+ */
+const validatePassword = async (plainPassword, hashedPassword) => {
+    if (!hashedPassword)
+        return false;
+    return await bcryptjs_1.default.compare(plainPassword, hashedPassword);
+};
+exports.validatePassword = validatePassword;
+// ============================================================================
+// PASSWORD FUNCTIONS
+// ============================================================================
+/**
+ * Hash password
+ */
+const hashPassword = async (password) => {
+    const salt = await bcryptjs_1.default.genSalt(10);
+    return await bcryptjs_1.default.hash(password, salt);
+};
+exports.hashPassword = hashPassword;
+// ============================================================================
+// ACCOUNT MANAGEMENT FUNCTIONS
+// ============================================================================
+/**
+ * Soft delete user
+ */
+const softDeleteUser = async (userId, options) => {
+    const updateData = {
+        isActive: false,
+        isDeactivated: true,
+        deactivatedAt: new Date(),
+    };
+    // Anonymize sensitive data
+    const timestamp = Date.now();
+    updateData.email = null;
+    updateData.password = null;
+    updateData.phoneNumber = `DELETED_${timestamp}`;
+    updateData.nationalId = `DELETED_${timestamp}`;
+    updateData.jacketId = `DELETED_${timestamp}`;
+    await vr_models_1.User.update(updateData, {
+        where: { id: userId },
+        transaction: options?.transaction,
+    });
+};
+exports.softDeleteUser = softDeleteUser;
+// ============================================================================
+// EXPORT ALL FUNCTIONS
+// ============================================================================
+exports.default = {
+    // Formatting
+    formatUserProfile: exports.formatUserProfile,
+    formatUserListResponse: exports.formatUserListResponse,
+    // Role checks
+    hasRole: exports.hasRole,
+    hasPermission: exports.hasPermission,
+    hasAnyPermission: exports.hasAnyPermission,
+    hasAllPermissions: exports.hasAllPermissions,
+    canModifyAccount: exports.canModifyAccount,
+    isAccountAccessible: exports.isAccountAccessible,
+    // Database queries
+    getUserById: exports.getUserById,
+    getUsersByRole: exports.getUsersByRole,
+    findSecurityClearanceByRole: exports.findSecurityClearanceByRole,
+    generateUserSearchConditions: exports.generateUserSearchConditions,
+    generateEventSearchConditions: exports.generateEventSearchConditions,
+    getSortOrder: exports.getSortOrder,
+    // Generation
+    generateJacketId: exports.generateJacketId,
+    // Validation
+    validateUniqueFields: exports.validateUniqueFields,
+    validatePassword: exports.validatePassword,
+    // Password
+    hashPassword: exports.hashPassword,
+    // Account management
+    softDeleteUser: exports.softDeleteUser,
+};