UniqAI/hexabot
1
0
Fork 0
mirror of https://github.com/hexastack/hexabot synced 2025-06-26 18:27:28 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix: permission

Browse Source
This commit is contained in:
abdou6666 2025-01-02 17:57:07 +01:00
parent 9770a344aa
commit 19cef32736
4 changed files with 45 additions and 34 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
api/src/user/controllers/permission.controller.spec.ts
View File

@ -24,7 +24,11 @@ import { ModelRepository } from '../repositories/model.repository';
import { PermissionRepository } from '../repositories/permission.repository'; import { PermissionRepository } from '../repositories/permission.repository';
import { RoleRepository } from '../repositories/role.repository'; import { RoleRepository } from '../repositories/role.repository';
import { Model, ModelModel } from '../schemas/model.schema'; import { Model, ModelModel } from '../schemas/model.schema';
import { Permission, PermissionModel } from '../schemas/permission.schema'; import {
Permission,
PermissionFull,
PermissionModel,
} from '../schemas/permission.schema';
import { Role, RoleModel } from '../schemas/role.schema'; import { Role, RoleModel } from '../schemas/role.schema';
import { ModelService } from '../services/model.service'; import { ModelService } from '../services/model.service';
import { PermissionService } from '../services/permission.service'; import { PermissionService } from '../services/permission.service';
@ -79,11 +83,11 @@ describe('PermissionController', () => {
permissionModuleRef.get<PermissionService>(PermissionService); permissionModuleRef.get<PermissionService>(PermissionService);
allPermissions = await permissionService.findAll(); allPermissions = await permissionService.findAll();
adminRole = await roleService.findOne({ name: 'admin' }); adminRole = (await roleService.findOne({ name: 'admin' })) as Role;
contentModel = await modelService.findOne({ name: 'Content' }); contentModel = (await modelService.findOne({ name: 'Content' })) as Model;
createPermission = await permissionService.findOne({ createPermission = (await permissionService.findOne({
action: Action.CREATE, action: Action.CREATE,
}); })) as Permission;
}); });
afterAll(closeInMongodConnection); afterAll(closeInMongodConnection);
@ -110,16 +114,16 @@ describe('PermissionController', () => {
...currPermission, ...currPermission,
role: allRoles.find((role) => { role: allRoles.find((role) => {
return role.id === currPermission.role; return role.id === currPermission.role;
}), }) as Role,
model: allModels.find((model) => { model: allModels.find((model) => {
return model.id === currPermission.model; return model.id === currPermission.model;
}), }) as Model,
}); });
return acc; return acc;
}, },
[], [] as PermissionFull[],
); );
expect(result).toEqualPayload(permissionsWithRolesAndModels); expect(result).toEqualPayload(permissionsWithRolesAndModels);

17
api/src/user/controllers/permission.controller.ts
View File

@ -92,13 +92,16 @@ export class PermissionController extends BaseController<
@CsrfCheck(true) @CsrfCheck(true)
@Post() @Post()
async create(@Body() permission: PermissionCreateDto) { async create(@Body() permission: PermissionCreateDto) {
this.validate({ const role = await this.roleService.findOne(permission.role);
dto: permission, if (!role) {
allowedIds: { throw new NotFoundException('Unable to find role');
role: (await this.roleService.findOne(permission.role))?.id, }
model: (await this.modelService.findOne(permission.model))?.id, const model = await this.modelService.findOne(permission.model);
},
}); if (!model) {
throw new NotFoundException('Unable to find model');
}
return await this.permissionService.create(permission); return await this.permissionService.create(permission);
} }

26
api/src/user/repositories/permission.repository.spec.ts
View File

@ -1,5 +1,5 @@
/* /*
* Copyright © 2024 Hexastack. All rights reserved. * Copyright © 2025 Hexastack. All rights reserved.
* *
* Licensed under the GNU Affero General Public License v3.0 (AGPLv3) with the following additional terms: * Licensed under the GNU Affero General Public License v3.0 (AGPLv3) with the following additional terms:
* 1. The name "Hexabot" is a trademark of Hexastack. You may not use this name in derivative works without express written permission. * 1. The name "Hexabot" is a trademark of Hexastack. You may not use this name in derivative works without express written permission.
@ -23,9 +23,13 @@ import {
import { ModelRepository } from '../repositories/model.repository'; import { ModelRepository } from '../repositories/model.repository';
import { PermissionRepository } from '../repositories/permission.repository'; import { PermissionRepository } from '../repositories/permission.repository';
import { RoleRepository } from '../repositories/role.repository'; import { RoleRepository } from '../repositories/role.repository';
import { ModelModel } from '../schemas/model.schema'; import { ModelModel, Model as ModelSchema } from '../schemas/model.schema';
import { Permission, PermissionModel } from '../schemas/permission.schema'; import {
import { RoleModel } from '../schemas/role.schema'; Permission,
PermissionFull,
PermissionModel,
} from '../schemas/permission.schema';
import { Role, RoleModel } from '../schemas/role.schema';
import { Action } from '../types/action.type'; import { Action } from '../types/action.type';
describe('PermissionRepository', () => { describe('PermissionRepository', () => {
@ -56,12 +60,12 @@ describe('PermissionRepository', () => {
permissionModel = module.get<Model<Permission>>( permissionModel = module.get<Model<Permission>>(
getModelToken('Permission'), getModelToken('Permission'),
); );
permission = await permissionRepository.findOne({ permission = (await permissionRepository.findOne({
action: Action.CREATE, action: Action.CREATE,
}); })) as Permission;
permissionToDelete = await permissionRepository.findOne({ permissionToDelete = (await permissionRepository.findOne({
action: Action.UPDATE, action: Action.UPDATE,
}); })) as Permission;
}); });
afterAll(async () => { afterAll(async () => {
@ -104,16 +108,16 @@ describe('PermissionRepository', () => {
...currPermission, ...currPermission,
role: allRoles.find((role) => { role: allRoles.find((role) => {
return role.id === currPermission.role; return role.id === currPermission.role;
}), }) as Role,
model: allModels.find((model) => { model: allModels.find((model) => {
return model.id === currPermission.model; return model.id === currPermission.model;
}), }) as ModelSchema,
}); });
return acc; return acc;
}, },
[], [] as PermissionFull[],
); );
expect(permissionModel.find).toHaveBeenCalledWith({}, undefined); expect(permissionModel.find).toHaveBeenCalledWith({}, undefined);
expect(result).toEqualPayload(permissionsWithRolesAndModels); expect(result).toEqualPayload(permissionsWithRolesAndModels);

16
api/src/user/services/permission.service.spec.ts
View File

@ -1,5 +1,5 @@
/* /*
* Copyright © 2024 Hexastack. All rights reserved. * Copyright © 2025 Hexastack. All rights reserved.
* *
* Licensed under the GNU Affero General Public License v3.0 (AGPLv3) with the following additional terms: * Licensed under the GNU Affero General Public License v3.0 (AGPLv3) with the following additional terms:
* 1. The name "Hexabot" is a trademark of Hexastack. You may not use this name in derivative works without express written permission. * 1. The name "Hexabot" is a trademark of Hexastack. You may not use this name in derivative works without express written permission.
@ -24,13 +24,13 @@ import {
import { ModelRepository } from '../repositories/model.repository'; import { ModelRepository } from '../repositories/model.repository';
import { PermissionRepository } from '../repositories/permission.repository'; import { PermissionRepository } from '../repositories/permission.repository';
import { RoleRepository } from '../repositories/role.repository'; import { RoleRepository } from '../repositories/role.repository';
import { ModelModel } from '../schemas/model.schema'; import { ModelModel, Model as ModelSchema } from '../schemas/model.schema';
import { import {
Permission, Permission,
PermissionFull, PermissionFull,
PermissionModel, PermissionModel,
} from '../schemas/permission.schema'; } from '../schemas/permission.schema';
import { RoleModel } from '../schemas/role.schema'; import { Role, RoleModel } from '../schemas/role.schema';
import { Action } from '../types/action.type'; import { Action } from '../types/action.type';
import { PermissionService } from './permission.service'; import { PermissionService } from './permission.service';
@ -70,9 +70,9 @@ describe('PermissionService', () => {
modelRepository = module.get<ModelRepository>(ModelRepository); modelRepository = module.get<ModelRepository>(ModelRepository);
permissionRepository = permissionRepository =
module.get<PermissionRepository>(PermissionRepository); module.get<PermissionRepository>(PermissionRepository);
permission = await permissionRepository.findOne({ permission = (await permissionRepository.findOne({
action: Action.CREATE, action: Action.CREATE,
}); })) as Permission;
}); });
afterAll(async () => { afterAll(async () => {
@ -112,16 +112,16 @@ describe('PermissionService', () => {
...currPermission, ...currPermission,
role: allRoles.find((role) => { role: allRoles.find((role) => {
return role.id === currPermission.role; return role.id === currPermission.role;
}), }) as Role,
model: allModels.find((model) => { model: allModels.find((model) => {
return model.id === currPermission.model; return model.id === currPermission.model;
}), }) as ModelSchema,
}); });
return acc; return acc;
}, },
[], [] as PermissionFull[],
); );
expect(permissionRepository.findAllAndPopulate).toHaveBeenCalled(); expect(permissionRepository.findAllAndPopulate).toHaveBeenCalled();
expect(result).toEqualPayload(permissionsWithRolesAndModels); expect(result).toEqualPayload(permissionsWithRolesAndModels);