npm - zet-lib - Versions diffs - 1.3.38 → 1.3.40 - Mend

zet-lib 1.3.38 → 1.3.40

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (40) hide show

package/LICENSE +21 -21
package/README.md +15 -15
package/lib/ErrorWithCode.js +6 -6
package/lib/Form.js +1019 -1019
package/lib/Mail.js +68 -68
package/lib/Modal.js +95 -95
package/lib/Pool.js +437 -437
package/lib/UI.js +7 -7
package/lib/Util.js +1384 -1367
package/lib/access.js +6 -6
package/lib/cache.js +3 -3
package/lib/connection.js +409 -409
package/lib/debug.js +22 -22
package/lib/index.js +36 -36
package/lib/io.js +44 -44
package/lib/languages/lang_en.js +125 -125
package/lib/languages/lang_fr.js +125 -125
package/lib/languages/lang_id.js +126 -126
package/lib/languages/lang_jp.js +125 -125
package/lib/moduleLib.js +661 -661
package/lib/tableForm.js +10 -10
package/lib/views/generator.ejs +598 -598
package/lib/views/generator_layout.ejs +224 -224
package/lib/views/generatorjs.ejs +927 -927
package/lib/zAppRouter.js +1637 -1637
package/lib/zCache.js +301 -301
package/lib/zComponent.js +27 -27
package/lib/zFn.js +58 -58
package/lib/zFunction.js +20 -20
package/lib/zGeneratorRouter.js +1641 -1641
package/lib/zMenuRouter.js +556 -556
package/lib/zPage.js +188 -188
package/lib/zReport.js +982 -982
package/lib/zRole.js +256 -256
package/lib/zRoleRouter.js +609 -609
package/lib/zRoute.js +5025 -5019
package/lib/zTester.js +93 -93
package/lib/zapp.js +65 -65
package/lib/zdataTable.js +330 -330
package/package.json +56 -56

package/lib/zRoleRouter.js CHANGED Viewed

@@ -1,609 +1,609 @@
-const express = require('express')
-const router = express.Router()
-// setup route middlewares
-const csrf = require('csurf')
-const bodyParser = require('body-parser')
-const path = require('path')
-const parseForm = bodyParser.urlencoded({ extended: true })
-const csrfProtection = csrf({ cookie: true })
-const pm2 = require('pm2')
-const env = process.env.NODE_ENV || 'development'
-const ejs = require('ejs')
-const Util = require('./Util')
-const access = require('./access')
-const connection = require('./connection')
-const zCache = require('./zCache')
-const zRole = require('./zRole')
-const moduleLib = require('./moduleLib')
-router.get('/', csrfProtection, async function (req, res, next) {
-  let dirname = path.resolve(__dirname)
-  let id = req.query.id
-  if (id == undefined) {
-    id = 1
-  }
-  const model = await connection.results({
-    table: 'zrole',
-    where: {
-      id: id,
-    },
-  })
-  //find all table has tabs
-  let zfields = await connection.results({ table: 'zfields' })
-  let dummies = []
-  let tabs = []
-  zfields.map((item) => {
-    let itemTabs = item.tabs || []
-    if (itemTabs.length) {
-      tabs.push(item.table)
-    }
-    if (item.json) {
-      if (item.json.dummy == 1) {
-        dummies.push(item.table)
-      }
-    }
-  })
-  const json = model[0].params
-  const routes = zRole.routes.filter((item) => !dummies.includes(item))
-  const results = await connection.results({ table: 'zrole' })
-  const myLevel = zRole.myLevel(req, res, 'zrole')
-  //inject to end body
-  let datas = {
-    model: model,
-    tabs: tabs,
-    dummies: dummies,
-    table: 'zrole',
-    id: id,
-    actions: zRole.actions,
-    routes: routes,
-    levels: myLevel,
-    json: json,
-    results: results,
-    csrfToken: req.csrfToken(),
-  }
-  const bodyHTML = ejs.render(body, datas)
-  const endBody = ejs.render(js, datas)
-  datas.bodyHTML = bodyHTML
-  moduleLib.addModule(req, res, endBody)
-  res.render('layouts/' + layout, datas)
-})
-router.post('/update/:id', async function (req, res, next) {
-  const data = {}
-  const name = req.body.name
-  const params = req.body.params
-  const newKey = {}
-  Object.keys(params).map((key) => {
-    const arr = []
-    for (const k in params[key]) {
-      arr.push(k)
-    }
-    newKey[key] = arr
-  })
-  const json = {}
-  json.params = JSON.stringify(newKey)
-  try {
-    await connection.update({
-      table: 'zrole',
-      data: {
-        params: json.params,
-      },
-      where: {
-        id: req.params.id,
-      },
-    })
-    data.status = 1
-    data.data = 1
-    await zCache.ROLES()
-    if (env == 'production') {
-      pm2.connect(function (err) {
-        if (err) {
-          //console.log(err.toString());
-        }
-        pm2.restart(process.env.PM2_NAME, (err, proc) => {
-          //io.to(room).emit("message","Restart done")
-        })
-      })
-    }
-    res.json(data)
-  } catch (error) {
-    data.status = 0
-    data.data = error
-    res.json(data)
-  }
-})
-router.post('/rename/:id', async (req, res) => {
-  let json = Util.jsonSuccess()
-  try {
-    const id = req.params.id
-    const rename = req.body.rename
-    await connection.update({
-      table: 'zrole',
-      where: {
-        id: id,
-      },
-      data: { name: rename },
-    })
-  } catch (e) {
-    json = Util.flashError(e.toString())
-  }
-  res.json(json)
-})
-router.post('/create', async (req, res) => {
-  let json = Util.jsonSuccess()
-  try {
-    const name = req.body.name
-    await connection.insert({
-      table: 'zrole',
-      data: {
-        name: name,
-      },
-    })
-    await zCache.ROLES()
-  } catch (e) {
-    json = Util.flashError(e.toString())
-  }
-  res.json(json)
-})
-router.post('/tab-access', async (req, res) => {
-  let json = Util.jsonSuccess()
-  let html = ''
-  const checkedFn = (obj, name, index) => {
-    return obj.hasOwnProperty(name) && obj[name][index] ? 'checked' : ''
-  }
-  try {
-    const table = req.body.table
-    const id = req.body.id
-    let tabRole = await connection.result({
-      table: 'zrole',
-      where: {
-        id: id,
-      },
-    })
-    let mytabs = tabRole.tabs || {}
-    let mytabsRole = mytabs[table] || {}
-    let result = await connection.result({
-      table: 'zfields',
-      where: {
-        table: table,
-      },
-    })
-    html += `<form id="tabform">`
-    html += `<table class="table table-hover"><thead><tr><th>Tab</th><th>View <input type="checkbox" onclick="tabChecks(this,'viewtab')" id="viewtabs" /></th><th>Create <input type="checkbox" id="createtabs" onclick="tabChecks(this,'createtab')" /></th><th>Edit <input type="checkbox" id="edittabs" onclick="tabChecks(this,'edittab')" /></th><th>Delete <input type="checkbox" onclick="tabChecks(this,'deletetab')" id="deletetabs" /></th></tr></thead><tbody></tbody>`
-    result.tabs.map((item, index) => {
-      html += `<tr>
-                <td>${item}</td>
-                <td><input type="checkbox" class="viewtab" name="view___${index}"  ${checkedFn(mytabsRole, 'view', index)} /></td>
-                <td><input type="checkbox" class="createtab" name="create___${index}" ${checkedFn(mytabsRole, 'create', index)}  /></td>
-                <td><input type="checkbox" class="edittab" name="edit___${index}" ${checkedFn(mytabsRole, 'edit', index)} /></td>
-                <td><input type="checkbox" class="deletetab" name="delete___${index}"  ${checkedFn(mytabsRole, 'delete', index)} /></td>
-                </tr>`
-    })
-    html += `</tbody></table>`
-    html += `</form>`
-  } catch (e) {
-    json = Util.flashError(e.toString())
-  }
-  res.send(html)
-})
-router.post('/approval-access', async (req, res) => {
-  let json = Util.jsonSuccess()
-  let html = ''
-  const checkedFn = (obj, name) => {
-    return obj.hasOwnProperty(name) && obj[name] ? 'checked' : ''
-  }
-  try {
-    const table = req.body.table
-    const id = req.body.id
-    let tabRole = await connection.result({
-      table: 'zrole',
-      where: {
-        id: id,
-      },
-    })
-    let myapprovals = tabRole.approvals || {}
-    let myapprovalsRole = myapprovals[table] || {}
-    let results = await connection.results({
-      table: 'zapproval_type',
-      order_by: ['id asc'],
-    })
-    html += `<form id="approvalform">`
-    html += `<table class="table table-hover"><thead><tr><th>Name </th><th>Level <input type="checkbox" onclick="tabApprovals(this)" id="checkapprovals" /></th></tr></thead><tbody></tbody>`
-    results.map((item) => {
-      if (item.id != 1) {
-        html += `<tr>
-                <td>${item.name}</td>
-                <td><input type="checkbox" class="checkapproval" name="approval_${item.id}"  ${checkedFn(myapprovalsRole, item.id)} /></td>
-                </tr>`
-      }
-    })
-    html += `</tbody></table>`
-    html += `</form>`
-  } catch (e) {
-    json = Util.flashError(e.toString())
-  }
-  res.send(html)
-})
-router.post('/post-access', async (req, res) => {
-  let json = Util.jsonSuccess()
-  let table = req.body.table || ''
-  if (table == '') {
-    res.json(Util.flashError('Table is empty!'))
-    return false
-  }
-  let tabs = req.body.tabs || []
-  let id = req.body.id
-  let obj = tabs.reduce((acc, item) => {
-    acc[item.name] = item.value
-    return acc
-  }, {})
-  let mytabs = {}
-  let l = req.body.l
-  let roles = {}
-  let arr = ['view', 'create', 'edit', 'delete']
-  for (var i = 0; i < l; i++) {
-    arr.map((item) => {
-      if (!roles.hasOwnProperty(item)) {
-        roles[item] = []
-      }
-      if (obj.hasOwnProperty(`${item}___${i}`)) {
-        roles[item].push(true)
-      } else {
-        roles[item].push(false)
-      }
-    })
-  }
-  try {
-    let tabRole = await connection.result({
-      table: 'zrole',
-      where: {
-        id: id,
-      },
-    })
-    mytabs = tabRole.tabs || {}
-    mytabs[table] = roles
-    await connection.update({
-      table: 'zrole',
-      data: {
-        tabs: JSON.stringify(mytabs),
-      },
-      where: {
-        id: id,
-      },
-    })
-  } catch (err) {
-    json = Util.jsonError(err + '')
-  }
-  res.json(json)
-})
-router.post('/post-approval', async (req, res) => {
-  let json = Util.jsonSuccess()
-  let table = req.body.table || ''
-  if (table == '') {
-    res.json(Util.flashError('Table is empty!'))
-    return false
-  }
-  let datas = req.body.datas || []
-  console.log(datas)
-  let id = req.body.id
-  if (datas.length == 0) {
-    res.json(Util.flashError('Data is empty!'))
-    return false
-  }
-  let myapprovals = {}
-  try {
-    let result = await connection.result({
-      table: 'zrole',
-      where: {
-        id: id,
-      },
-    })
-    myapprovals = result.approvals || {}
-    let obj = {}
-    datas.map((item) => {
-      let id = item.name.replace('approval_', '')
-      obj[id] = true
-    })
-    myapprovals[table] = obj
-    await connection.update({
-      table: 'zrole',
-      data: {
-        approvals: JSON.stringify(myapprovals),
-      },
-      where: {
-        id: id,
-      },
-    })
-  } catch (err) {
-    json = Util.jsonError(err + '')
-  }
-  res.json(json)
-})
-router.delete('/delete/:id', async (req, res) => {
-  let json = Util.jsonSuccess()
-  let id = parseInt(req.params.id)
-  if (id > 3) {
-    try {
-      const name = req.body.name
-      await connection.delete({
-        table: 'zrole',
-        where: {
-          id: id,
-        },
-      })
-      await zCache.ROLES()
-    } catch (e) {
-      json = Util.flashError(e.toString())
-    }
-  } else {
-    json = Util.flashError('Delete error, not allowed')
-  }
-  res.json(json)
-})
-const body = `<div class="">
-    <div class="page-header"><h1>Roles</h1></div>
-    <div class="card panel panel-info boxy">
-        <div class="panel-heading">
-            <div class="float-end">
-                <div class="summary">
-                    <% if(levels.delete) {%>
-                        <span class="icon-small icons-danger" title="Delete role" onclick="deleterole()"><img class="icons-bg-white icon-image" src="/assets/icons/trash.svg"></span>
-                    <%}%>
-                    <% if(levels.update) {%>
-                        <span class="icon-small icons-primary" data-bs-toggle="modal" data-bs-target="#renameModal" title="rename"><img class="icons-bg-white icon-image" src="/assets/icons/edit.svg"></span>
-                    <%}%>
-                    <% if(levels.create) {%>
-                        <span class="icon-small icons-success" title="Add a new role" data-bs-toggle="modal" data-bs-target="#addModal"><img class="icons-bg-white icon-image" src="/assets/icons/plus.svg"></span>
-                    <%}%>
-                </div>
-            </div>
-            <h3 class="panel-title"><i class="fa fa-cog"></i> Settings</h3>
-            <div class="clearfix"></div>
-        </div>
-        <div class="kv-panel-before">
-            <div class="row">
-                <form id="role-form" class="form-horizontal kv-form-horizontal" method="post">
-                    <input type="hidden" name="_csrf" value="<%- csrfToken %>">
-                    <div class="form-group field-role-role_name">
-                        <label class="control-label col-md-2" for="role-role_name">Role Name</label>
-                        <div class="col-md-10"><select id="roleName" class="form-control form-select mb-3" name="name">
-                                <% for(var i = 0;i < results.length;i++){ %>
-                                    <option value="<%- results[i].id %>" <% if(id == results[i].id){ %> selected="" <% } %> ><%- results[i].name %></option>
-                                <% } %>
-                            </select></div>
-                    </div>
-                    <table class="table table-responsive">
-                        <thead>
-                        <tr>
-                            <th>Name</th>
-                            <% for(var i = 0;i < actions.length;i++) { %>
-                                <th><%= actions[i] %> <input onclick='checkthis("<%= actions[i] %>")' type="checkbox" id="all<%= actions[i] %>"></th>
-                            <% } %>
-                            <th>Approve Level</th>
-                            <th>Tabs</th>
-                        </tr>
-                        </thead>
-                        <tbody>
-                        <% for(var i = 0;i < routes.length;i++) { %>
-                            <tr>
-                                <td>
-                                    <% var ename = routes[i];
-                                    const handleTag = "handleAccess('"+routes[i]+"')";
-                                    const handleApproval = "handleApproval('"+routes[i]+"')";
-                                    const spanApproval =  '<span class="handle-access icon-small icons-light" onclick="'+handleApproval+'" data-bs-toggle="modal" data-bs-target="#modalapproval" ><img class="icons-bg-blue gridview icon-image" src="/assets/icons/lock-access.svg"></span>';
-                                    const spanRole =  tabs.includes(routes[i]) ? '<span class="handle-access icon-small icons-light" onclick="'+handleTag+'" data-bs-toggle="modal" data-bs-target="#tabaccess" ><img class="icons-bg-blue gridview icon-image" src="/assets/icons/lock-access.svg"></span>' : '' %>
-                                    <a href="/<%- ename %>" target="_blank"><%- ename %></a>
-                                    </td>
-                                <% for(var x = 0;x < actions.length;x++) { %>
-                                    <td><input name="params[<%= ename %>][<%= actions[x] %>]" class="<%= actions[x] %>"
-                                        <% if(json && json.hasOwnProperty(ename) && json[ename].indexOf(actions[x]) >= 0) { %> <%= 'checked="checked"' %> <% } %> title="Role for <%= routes[i] %> <%= actions[x] %>" type="checkbox">
-                                    </td>
-                                <% } %>
-                                <td><%- spanApproval %></td>
-                                <td><%- spanRole %></td>
-                            </tr>
-                        <% } %>
-                        </tbody>
-                    </table>
-                    <div class="row">
-                        <div class="col-md-10 col-md-offset-1">
-                            <% if(levels.update) {%>
-                            <button type="submit" class="btn btn-primary">Update</button>
-                            <%}%>
-                        </div>
-                    </div>
-                </form>
-            </div>
-        </div>
-    </div>
-</div><!-- Modal -->
-<div class="modal fade" id="renameModal" tabindex="-1" aria-labelledby="exampleModalLabel" aria-hidden="true">
-    <div class="modal-dialog">
-        <div class="modal-content">
-            <div class="modal-header"><h5 class="modal-title" id="exampleModalLabel">Rename title</h5>
-                <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
-            </div>
-            <div class="modal-body">
-                <input type="text" class="form-control" id="rename" name="rename" value="<%- model[0].name %>">
-            </div>
-            <div class="modal-footer">
-                <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
-                <button type="button" class="btn btn-primary btn-update">Save changes</button>
-            </div>
-        </div>
-    </div>
-</div><!-- Modal -->
-<div class="modal fade" id="addModal" tabindex="-1" aria-labelledby="addModalLabel" aria-hidden="true">
-    <div class="modal-dialog">
-        <div class="modal-content">
-            <div class="modal-header"><h5 class="modal-title" id="exampleModalLabel">Add a New Role</h5>
-                <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
-            </div>
-            <div class="modal-body">
-                <div class="form-group mb-3">
-                    <label for="ruas_sk">Role Name</label>
-                    <input type="text" class="form-control" id="role_name" name="role_name" placeholder="Role Name">
-                </div>
-            </div>
-            <div class="modal-footer">
-                <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
-                <button type="button" class="btn btn-primary btn-add">Save changes</button>
-            </div>
-        </div>
-    </div>
-</div>
-<div class="modal fade" id="tabaccess" tabindex="-1" aria-labelledby="tabaccessModalLabel" aria-hidden="true">
-    <div class="modal-dialog">
-        <div class="modal-content">
-            <div class="modal-header"><h5 class="modal-title" id="tabaccesstitle">Tab Access <span id="titleaccess"></span></h5>
-                <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
-            </div>
-            <div class="modal-body body-access"></div>
-            <div class="modal-footer">
-                <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
-                <button type="button" class="btn btn-primary btn-save-tab">Save changes</button>
-            </div>
-        </div>
-    </div>
-</div>
-<div class="modal fade" id="modalapproval" tabindex="-1" aria-labelledby="tabapprovalModalLabel" aria-hidden="true">
-    <div class="modal-dialog">
-        <div class="modal-content">
-            <div class="modal-header"><h5 class="modal-title">Approval Level <span id="approvalname"></span> </h5>
-                <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
-            </div>
-            <div class="modal-body body-approval"></div>
-            <div class="modal-footer">
-                <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
-                <button type="button" class="btn btn-primary btn-save-approval">Save changes</button>
-            </div>
-        </div>
-    </div>
-</div>
-`
-const js = `<script>
-    function checkthis(elm) {
-        var cElem = $("#all" + elm);
-        if (cElem.is(":checked")) {
-            $("input." + elm).prop("checked", true);
-        } else {
-            $("input." + elm).prop("checked", false);
-        }
-    }
-    function tabChecks(that,elm) {
-        if ($(that).is(":checked")) {
-            $("input." + elm).prop("checked", true);
-        } else {
-            $("input." + elm).prop("checked", false);
-        }
-    }
-    function tabApprovals(that) {
-        let elm = 'checkapproval';
-         if ($(that).is(":checked")) {
-            $("input." + elm).prop("checked", true);
-        } else {
-            $("input." + elm).prop("checked", false);
-        }
-    }
-    $("#roleName").on('change', function () {
-        location.href = "/zrole?id=" + $(this).val();
-    });
-    var form = document.getElementById("role-form");
-    form.onsubmit = function (ev) {
-        ev.preventDefault();
-        var url = '/zrole/update/<%= id%>';
-        ajaxPost(url, $(this).serialize(), function (data) {
-            if (data.status == 1) {
-                toastr.success('Success', 'Updated Role');
-            } else {
-                toastr.error('Error!',data.data);
-            }
-        });
-    }
-    $(".btn-update").on("click", function () {
-        ajaxPost('/zrole/rename/<%= id%>',{
-            rename : $("#rename").val()
-        }, function (data) {
-            toastrForm(data);
-            setTimeout(function () {
-                location.href= '';
-            },2000);
-        })
-    })
-    $(".btn-add").on("click", function () {
-        ajaxPost('/zrole/create/',{
-            name : $("#role_name").val()
-        }, function (data) {
-            toastrForm(data);
-            setTimeout(function () {
-                location.href= '';
-            },2000);
-        })
-    })
-    function deleterole() {
-        if(window.confirm('delete role selected ? ')) {
-            let id = "<%= id%>";
-            ajaxDelete('/zrole/delete/<%= id%>',{id:id}, function (data) {
-                toastrForm(data);
-                setTimeout(function () {
-                    location.href= '/zrole';
-                },2000);
-            })
-        }
-    }
-    function handleApproval(table) {
-        $(".btn-save-approval").attr("data-table", table);
-        $("#approvalname").html(table);
-        ajaxPost('/zrole/approval-access',{table:table, id: "<%- id %>"}, ((data) => {
-            $(".body-approval").html(data);
-        }))
-    }
-    function handleAccess(table) {
-        $(".btn-save-tab").attr("data-table", table);
-        ajaxPost('/zrole/tab-access',{table:table, id: "<%- id %>"}, ((data) => {
-            $(".body-access").html(data);
-        }))
-    }
-    $(".btn-save-tab").on("click",(e) => {
-        let queryform = $("#tabform").serializeArray();
-        ajaxPost('/zrole/post-access', {
-            tabs: queryform,
-            l : $(".viewtab").length,
-            id: "<%- id %>",
-            table : e.target.getAttribute('data-table')
-            },((data) => {
-            toastrForm(data);
-            $(".btn-close").click();
-        }))
-    })
-    $(".btn-save-approval").on("click",(e) => {
-        let queryform = $("#approvalform").serializeArray();
-        ajaxPost('/zrole/post-approval', {
-            datas: queryform,
-            id: "<%- id %>",
-            table : e.target.getAttribute('data-table')
-            },((data) => {
-            toastrForm(data);
-            $(".btn-close").click();
-        }))
-    })
-</script>
-`
-module.exports = router
+const express = require('express')
+const router = express.Router()
+// setup route middlewares
+const csrf = require('csurf')
+const bodyParser = require('body-parser')
+const path = require('path')
+const parseForm = bodyParser.urlencoded({ extended: true })
+const csrfProtection = csrf({ cookie: true })
+const pm2 = require('pm2')
+const env = process.env.NODE_ENV || 'development'
+const ejs = require('ejs')
+const Util = require('./Util')
+const access = require('./access')
+const connection = require('./connection')
+const zCache = require('./zCache')
+const zRole = require('./zRole')
+const moduleLib = require('./moduleLib')
+router.get('/', csrfProtection, async function (req, res, next) {
+  let dirname = path.resolve(__dirname)
+  let id = req.query.id
+  if (id == undefined) {
+    id = 1
+  }
+  const model = await connection.results({
+    table: 'zrole',
+    where: {
+      id: id,
+    },
+  })
+  //find all table has tabs
+  let zfields = await connection.results({ table: 'zfields' })
+  let dummies = []
+  let tabs = []
+  zfields.map((item) => {
+    let itemTabs = item.tabs || []
+    if (itemTabs.length) {
+      tabs.push(item.table)
+    }
+    if (item.json) {
+      if (item.json.dummy == 1) {
+        dummies.push(item.table)
+      }
+    }
+  })
+  const json = model[0].params
+  const routes = zRole.routes.filter((item) => !dummies.includes(item))
+  const results = await connection.results({ table: 'zrole' })
+  const myLevel = zRole.myLevel(req, res, 'zrole')
+  //inject to end body
+  let datas = {
+    model: model,
+    tabs: tabs,
+    dummies: dummies,
+    table: 'zrole',
+    id: id,
+    actions: zRole.actions,
+    routes: routes,
+    levels: myLevel,
+    json: json,
+    results: results,
+    csrfToken: req.csrfToken(),
+  }
+  const bodyHTML = ejs.render(body, datas)
+  const endBody = ejs.render(js, datas)
+  datas.bodyHTML = bodyHTML
+  moduleLib.addModule(req, res, endBody)
+  res.render('layouts/' + layout, datas)
+})
+router.post('/update/:id', async function (req, res, next) {
+  const data = {}
+  const name = req.body.name
+  const params = req.body.params
+  const newKey = {}
+  Object.keys(params).map((key) => {
+    const arr = []
+    for (const k in params[key]) {
+      arr.push(k)
+    }
+    newKey[key] = arr
+  })
+  const json = {}
+  json.params = JSON.stringify(newKey)
+  try {
+    await connection.update({
+      table: 'zrole',
+      data: {
+        params: json.params,
+      },
+      where: {
+        id: req.params.id,
+      },
+    })
+    data.status = 1
+    data.data = 1
+    await zCache.ROLES()
+    if (env == 'production') {
+      pm2.connect(function (err) {
+        if (err) {
+          //console.log(err.toString());
+        }
+        pm2.restart(process.env.PM2_NAME, (err, proc) => {
+          //io.to(room).emit("message","Restart done")
+        })
+      })
+    }
+    res.json(data)
+  } catch (error) {
+    data.status = 0
+    data.data = error
+    res.json(data)
+  }
+})
+router.post('/rename/:id', async (req, res) => {
+  let json = Util.jsonSuccess()
+  try {
+    const id = req.params.id
+    const rename = req.body.rename
+    await connection.update({
+      table: 'zrole',
+      where: {
+        id: id,
+      },
+      data: { name: rename },
+    })
+  } catch (e) {
+    json = Util.flashError(e.toString())
+  }
+  res.json(json)
+})
+router.post('/create', async (req, res) => {
+  let json = Util.jsonSuccess()
+  try {
+    const name = req.body.name
+    await connection.insert({
+      table: 'zrole',
+      data: {
+        name: name,
+      },
+    })
+    await zCache.ROLES()
+  } catch (e) {
+    json = Util.flashError(e.toString())
+  }
+  res.json(json)
+})
+router.post('/tab-access', async (req, res) => {
+  let json = Util.jsonSuccess()
+  let html = ''
+  const checkedFn = (obj, name, index) => {
+    return obj.hasOwnProperty(name) && obj[name][index] ? 'checked' : ''
+  }
+  try {
+    const table = req.body.table
+    const id = req.body.id
+    let tabRole = await connection.result({
+      table: 'zrole',
+      where: {
+        id: id,
+      },
+    })
+    let mytabs = tabRole.tabs || {}
+    let mytabsRole = mytabs[table] || {}
+    let result = await connection.result({
+      table: 'zfields',
+      where: {
+        table: table,
+      },
+    })
+    html += `<form id="tabform">`
+    html += `<table class="table table-hover"><thead><tr><th>Tab</th><th>View <input type="checkbox" onclick="tabChecks(this,'viewtab')" id="viewtabs" /></th><th>Create <input type="checkbox" id="createtabs" onclick="tabChecks(this,'createtab')" /></th><th>Edit <input type="checkbox" id="edittabs" onclick="tabChecks(this,'edittab')" /></th><th>Delete <input type="checkbox" onclick="tabChecks(this,'deletetab')" id="deletetabs" /></th></tr></thead><tbody></tbody>`
+    result.tabs.map((item, index) => {
+      html += `<tr>
+                <td>${item}</td>
+                <td><input type="checkbox" class="viewtab" name="view___${index}"  ${checkedFn(mytabsRole, 'view', index)} /></td>
+                <td><input type="checkbox" class="createtab" name="create___${index}" ${checkedFn(mytabsRole, 'create', index)}  /></td>
+                <td><input type="checkbox" class="edittab" name="edit___${index}" ${checkedFn(mytabsRole, 'edit', index)} /></td>
+                <td><input type="checkbox" class="deletetab" name="delete___${index}"  ${checkedFn(mytabsRole, 'delete', index)} /></td>
+                </tr>`
+    })
+    html += `</tbody></table>`
+    html += `</form>`
+  } catch (e) {
+    json = Util.flashError(e.toString())
+  }
+  res.send(html)
+})
+router.post('/approval-access', async (req, res) => {
+  let json = Util.jsonSuccess()
+  let html = ''
+  const checkedFn = (obj, name) => {
+    return obj.hasOwnProperty(name) && obj[name] ? 'checked' : ''
+  }
+  try {
+    const table = req.body.table
+    const id = req.body.id
+    let tabRole = await connection.result({
+      table: 'zrole',
+      where: {
+        id: id,
+      },
+    })
+    let myapprovals = tabRole.approvals || {}
+    let myapprovalsRole = myapprovals[table] || {}
+    let results = await connection.results({
+      table: 'zapproval_type',
+      order_by: ['id asc'],
+    })
+    html += `<form id="approvalform">`
+    html += `<table class="table table-hover"><thead><tr><th>Name </th><th>Level <input type="checkbox" onclick="tabApprovals(this)" id="checkapprovals" /></th></tr></thead><tbody></tbody>`
+    results.map((item) => {
+      if (item.id != 1) {
+        html += `<tr>
+                <td>${item.name}</td>
+                <td><input type="checkbox" class="checkapproval" name="approval_${item.id}"  ${checkedFn(myapprovalsRole, item.id)} /></td>
+                </tr>`
+      }
+    })
+    html += `</tbody></table>`
+    html += `</form>`
+  } catch (e) {
+    json = Util.flashError(e.toString())
+  }
+  res.send(html)
+})
+router.post('/post-access', async (req, res) => {
+  let json = Util.jsonSuccess()
+  let table = req.body.table || ''
+  if (table == '') {
+    res.json(Util.flashError('Table is empty!'))
+    return false
+  }
+  let tabs = req.body.tabs || []
+  let id = req.body.id
+  let obj = tabs.reduce((acc, item) => {
+    acc[item.name] = item.value
+    return acc
+  }, {})
+  let mytabs = {}
+  let l = req.body.l
+  let roles = {}
+  let arr = ['view', 'create', 'edit', 'delete']
+  for (var i = 0; i < l; i++) {
+    arr.map((item) => {
+      if (!roles.hasOwnProperty(item)) {
+        roles[item] = []
+      }
+      if (obj.hasOwnProperty(`${item}___${i}`)) {
+        roles[item].push(true)
+      } else {
+        roles[item].push(false)
+      }
+    })
+  }
+  try {
+    let tabRole = await connection.result({
+      table: 'zrole',
+      where: {
+        id: id,
+      },
+    })
+    mytabs = tabRole.tabs || {}
+    mytabs[table] = roles
+    await connection.update({
+      table: 'zrole',
+      data: {
+        tabs: JSON.stringify(mytabs),
+      },
+      where: {
+        id: id,
+      },
+    })
+  } catch (err) {
+    json = Util.jsonError(err + '')
+  }
+  res.json(json)
+})
+router.post('/post-approval', async (req, res) => {
+  let json = Util.jsonSuccess()
+  let table = req.body.table || ''
+  if (table == '') {
+    res.json(Util.flashError('Table is empty!'))
+    return false
+  }
+  let datas = req.body.datas || []
+  console.log(datas)
+  let id = req.body.id
+  if (datas.length == 0) {
+    res.json(Util.flashError('Data is empty!'))
+    return false
+  }
+  let myapprovals = {}
+  try {
+    let result = await connection.result({
+      table: 'zrole',
+      where: {
+        id: id,
+      },
+    })
+    myapprovals = result.approvals || {}
+    let obj = {}
+    datas.map((item) => {
+      let id = item.name.replace('approval_', '')
+      obj[id] = true
+    })
+    myapprovals[table] = obj
+    await connection.update({
+      table: 'zrole',
+      data: {
+        approvals: JSON.stringify(myapprovals),
+      },
+      where: {
+        id: id,
+      },
+    })
+  } catch (err) {
+    json = Util.jsonError(err + '')
+  }
+  res.json(json)
+})
+router.delete('/delete/:id', async (req, res) => {
+  let json = Util.jsonSuccess()
+  let id = parseInt(req.params.id)
+  if (id > 3) {
+    try {
+      const name = req.body.name
+      await connection.delete({
+        table: 'zrole',
+        where: {
+          id: id,
+        },
+      })
+      await zCache.ROLES()
+    } catch (e) {
+      json = Util.flashError(e.toString())
+    }
+  } else {
+    json = Util.flashError('Delete error, not allowed')
+  }
+  res.json(json)
+})
+const body = `<div class="">
+    <div class="page-header"><h1>Roles</h1></div>
+    <div class="card panel panel-info boxy">
+        <div class="panel-heading">
+            <div class="float-end">
+                <div class="summary">
+                    <% if(levels.delete) {%>
+                        <span class="icon-small icons-danger" title="Delete role" onclick="deleterole()"><img class="icons-bg-white icon-image" src="/assets/icons/trash.svg"></span>
+                    <%}%>
+                    <% if(levels.update) {%>
+                        <span class="icon-small icons-primary" data-bs-toggle="modal" data-bs-target="#renameModal" title="rename"><img class="icons-bg-white icon-image" src="/assets/icons/edit.svg"></span>
+                    <%}%>
+                    <% if(levels.create) {%>
+                        <span class="icon-small icons-success" title="Add a new role" data-bs-toggle="modal" data-bs-target="#addModal"><img class="icons-bg-white icon-image" src="/assets/icons/plus.svg"></span>
+                    <%}%>
+                </div>
+            </div>
+            <h3 class="panel-title"><i class="fa fa-cog"></i> Settings</h3>
+            <div class="clearfix"></div>
+        </div>
+        <div class="kv-panel-before">
+            <div class="row">
+                <form id="role-form" class="form-horizontal kv-form-horizontal" method="post">
+                    <input type="hidden" name="_csrf" value="<%- csrfToken %>">
+                    <div class="form-group field-role-role_name">
+                        <label class="control-label col-md-2" for="role-role_name">Role Name</label>
+                        <div class="col-md-10"><select id="roleName" class="form-control form-select mb-3" name="name">
+                                <% for(var i = 0;i < results.length;i++){ %>
+                                    <option value="<%- results[i].id %>" <% if(id == results[i].id){ %> selected="" <% } %> ><%- results[i].name %></option>
+                                <% } %>
+                            </select></div>
+                    </div>
+                    <table class="table table-responsive">
+                        <thead>
+                        <tr>
+                            <th>Name</th>
+                            <% for(var i = 0;i < actions.length;i++) { %>
+                                <th><%= actions[i] %> <input onclick='checkthis("<%= actions[i] %>")' type="checkbox" id="all<%= actions[i] %>"></th>
+                            <% } %>
+                            <th>Approve Level</th>
+                            <th>Tabs</th>
+                        </tr>
+                        </thead>
+                        <tbody>
+                        <% for(var i = 0;i < routes.length;i++) { %>
+                            <tr>
+                                <td>
+                                    <% var ename = routes[i];
+                                    const handleTag = "handleAccess('"+routes[i]+"')";
+                                    const handleApproval = "handleApproval('"+routes[i]+"')";
+                                    const spanApproval =  '<span class="handle-access icon-small icons-light" onclick="'+handleApproval+'" data-bs-toggle="modal" data-bs-target="#modalapproval" ><img class="icons-bg-blue gridview icon-image" src="/assets/icons/lock-access.svg"></span>';
+                                    const spanRole =  tabs.includes(routes[i]) ? '<span class="handle-access icon-small icons-light" onclick="'+handleTag+'" data-bs-toggle="modal" data-bs-target="#tabaccess" ><img class="icons-bg-blue gridview icon-image" src="/assets/icons/lock-access.svg"></span>' : '' %>
+                                    <a href="/<%- ename %>" target="_blank"><%- ename %></a>
+                                    </td>
+                                <% for(var x = 0;x < actions.length;x++) { %>
+                                    <td><input name="params[<%= ename %>][<%= actions[x] %>]" class="<%= actions[x] %>"
+                                        <% if(json && json.hasOwnProperty(ename) && json[ename].indexOf(actions[x]) >= 0) { %> <%= 'checked="checked"' %> <% } %> title="Role for <%= routes[i] %> <%= actions[x] %>" type="checkbox">
+                                    </td>
+                                <% } %>
+                                <td><%- spanApproval %></td>
+                                <td><%- spanRole %></td>
+                            </tr>
+                        <% } %>
+                        </tbody>
+                    </table>
+                    <div class="row">
+                        <div class="col-md-10 col-md-offset-1">
+                            <% if(levels.update) {%>
+                            <button type="submit" class="btn btn-primary">Update</button>
+                            <%}%>
+                        </div>
+                    </div>
+                </form>
+            </div>
+        </div>
+    </div>
+</div><!-- Modal -->
+<div class="modal fade" id="renameModal" tabindex="-1" aria-labelledby="exampleModalLabel" aria-hidden="true">
+    <div class="modal-dialog">
+        <div class="modal-content">
+            <div class="modal-header"><h5 class="modal-title" id="exampleModalLabel">Rename title</h5>
+                <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+            </div>
+            <div class="modal-body">
+                <input type="text" class="form-control" id="rename" name="rename" value="<%- model[0].name %>">
+            </div>
+            <div class="modal-footer">
+                <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
+                <button type="button" class="btn btn-primary btn-update">Save changes</button>
+            </div>
+        </div>
+    </div>
+</div><!-- Modal -->
+<div class="modal fade" id="addModal" tabindex="-1" aria-labelledby="addModalLabel" aria-hidden="true">
+    <div class="modal-dialog">
+        <div class="modal-content">
+            <div class="modal-header"><h5 class="modal-title" id="exampleModalLabel">Add a New Role</h5>
+                <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+            </div>
+            <div class="modal-body">
+                <div class="form-group mb-3">
+                    <label for="ruas_sk">Role Name</label>
+                    <input type="text" class="form-control" id="role_name" name="role_name" placeholder="Role Name">
+                </div>
+            </div>
+            <div class="modal-footer">
+                <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
+                <button type="button" class="btn btn-primary btn-add">Save changes</button>
+            </div>
+        </div>
+    </div>
+</div>
+<div class="modal fade" id="tabaccess" tabindex="-1" aria-labelledby="tabaccessModalLabel" aria-hidden="true">
+    <div class="modal-dialog">
+        <div class="modal-content">
+            <div class="modal-header"><h5 class="modal-title" id="tabaccesstitle">Tab Access <span id="titleaccess"></span></h5>
+                <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+            </div>
+            <div class="modal-body body-access"></div>
+            <div class="modal-footer">
+                <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
+                <button type="button" class="btn btn-primary btn-save-tab">Save changes</button>
+            </div>
+        </div>
+    </div>
+</div>
+<div class="modal fade" id="modalapproval" tabindex="-1" aria-labelledby="tabapprovalModalLabel" aria-hidden="true">
+    <div class="modal-dialog">
+        <div class="modal-content">
+            <div class="modal-header"><h5 class="modal-title">Approval Level <span id="approvalname"></span> </h5>
+                <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+            </div>
+            <div class="modal-body body-approval"></div>
+            <div class="modal-footer">
+                <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
+                <button type="button" class="btn btn-primary btn-save-approval">Save changes</button>
+            </div>
+        </div>
+    </div>
+</div>
+`
+const js = `<script>
+    function checkthis(elm) {
+        var cElem = $("#all" + elm);
+        if (cElem.is(":checked")) {
+            $("input." + elm).prop("checked", true);
+        } else {
+            $("input." + elm).prop("checked", false);
+        }
+    }
+    function tabChecks(that,elm) {
+        if ($(that).is(":checked")) {
+            $("input." + elm).prop("checked", true);
+        } else {
+            $("input." + elm).prop("checked", false);
+        }
+    }
+    function tabApprovals(that) {
+        let elm = 'checkapproval';
+         if ($(that).is(":checked")) {
+            $("input." + elm).prop("checked", true);
+        } else {
+            $("input." + elm).prop("checked", false);
+        }
+    }
+    $("#roleName").on('change', function () {
+        location.href = "/zrole?id=" + $(this).val();
+    });
+    var form = document.getElementById("role-form");
+    form.onsubmit = function (ev) {
+        ev.preventDefault();
+        var url = '/zrole/update/<%= id%>';
+        ajaxPost(url, $(this).serialize(), function (data) {
+            if (data.status == 1) {
+                toastr.success('Success', 'Updated Role');
+            } else {
+                toastr.error('Error!',data.data);
+            }
+        });
+    }
+    $(".btn-update").on("click", function () {
+        ajaxPost('/zrole/rename/<%= id%>',{
+            rename : $("#rename").val()
+        }, function (data) {
+            toastrForm(data);
+            setTimeout(function () {
+                location.href= '';
+            },2000);
+        })
+    })
+    $(".btn-add").on("click", function () {
+        ajaxPost('/zrole/create/',{
+            name : $("#role_name").val()
+        }, function (data) {
+            toastrForm(data);
+            setTimeout(function () {
+                location.href= '';
+            },2000);
+        })
+    })
+    function deleterole() {
+        if(window.confirm('delete role selected ? ')) {
+            let id = "<%= id%>";
+            ajaxDelete('/zrole/delete/<%= id%>',{id:id}, function (data) {
+                toastrForm(data);
+                setTimeout(function () {
+                    location.href= '/zrole';
+                },2000);
+            })
+        }
+    }
+    function handleApproval(table) {
+        $(".btn-save-approval").attr("data-table", table);
+        $("#approvalname").html(table);
+        ajaxPost('/zrole/approval-access',{table:table, id: "<%- id %>"}, ((data) => {
+            $(".body-approval").html(data);
+        }))
+    }
+    function handleAccess(table) {
+        $(".btn-save-tab").attr("data-table", table);
+        ajaxPost('/zrole/tab-access',{table:table, id: "<%- id %>"}, ((data) => {
+            $(".body-access").html(data);
+        }))
+    }
+    $(".btn-save-tab").on("click",(e) => {
+        let queryform = $("#tabform").serializeArray();
+        ajaxPost('/zrole/post-access', {
+            tabs: queryform,
+            l : $(".viewtab").length,
+            id: "<%- id %>",
+            table : e.target.getAttribute('data-table')
+            },((data) => {
+            toastrForm(data);
+            $(".btn-close").click();
+        }))
+    })
+    $(".btn-save-approval").on("click",(e) => {
+        let queryform = $("#approvalform").serializeArray();
+        ajaxPost('/zrole/post-approval', {
+            datas: queryform,
+            id: "<%- id %>",
+            table : e.target.getAttribute('data-table')
+            },((data) => {
+            toastrForm(data);
+            $(".btn-close").click();
+        }))
+    })
+</script>
+`
+module.exports = router