fix seeding and helpers

Author: shema-surge

package-lock.json

@@ -61,7 +61,6 @@
     "@octokit/graphql": "^7.0.1",
     "@octokit/rest": "^19.0.13",
     "@types/node-cron": "^3.0.11",
-    "apollo-server": "^3.13.0",
     "axios": "^1.7.7",
     "bcryptjs": "^2.4.3",
     "cloudinary": "^1.30.1",
@@ -88,7 +87,8 @@
     "ts-node-dev": "^2.0.0",
     "tslog": "^4.9.2",
     "ws": "^8.11.0",
-    "xlsx": "^0.18.5"
+    "xlsx": "^0.18.5",
+    "zod": "^3.23.8"
   },
   "devDependencies": {
     "@istanbuljs/nyc-config-typescript": "^1.0.1",

package.json

@@ -4,5 +4,6 @@ export default function generateRandomPassword(length = 8) {
   return generator.generate({
     length,
     numbers: true,
+    symbols: true,
   });
 }

src/helpers/generateRandomPassword.ts

@@ -1,56 +1,106 @@
+import { GraphQLError } from 'graphql'
 import Cohort from '../models/cohort.model'
-import { Organization } from '../models/organization.model'
+import { IOrganization, Organization } from '../models/organization.model'
 import Program from '../models/program.model'
-import { User } from '../models/user'
+import { RoleOfUser, User, UserInterface } from '../models/user'
 
-export default async function isAssigned(organName: string, userId: string) {
-  // Fetch programs and populate organization
-  const programs: any = await Program.find().populate({
-    path: 'organization',
-    model: Organization,
-    strictPopulate: false,
-  })
-
-  const cohorts: any = await Cohort.find().populate({
-    path: 'program',
-    model: Program,
-    strictPopulate: false,
-    populate: [
-      {
-        path: 'organization',
-        model: Organization,
-        strictPopulate: false,
-      },
-      {
-        path: 'users',
-        model: User,
-        strictPopulate: false,
-      },
-    ],
-  })
-  let isAssignedToProgramOrCohort = false
-
-  // Check if the user is assigned to any program associated with the organization
-  for (const element of programs) {
-    if (element.organization?.name === organName) {
-      isAssignedToProgramOrCohort = true
-      return isAssignedToProgramOrCohort
-    }
+export default async function isAssignedToAnEntity(user: UserInterface, org: IOrganization) {
+  const orgUserData = user.organizations.find(data=>data.orgId.toString()===org._id.toString())
+  if(!orgUserData){
+    throw new GraphQLError(`User ${user.email} is not part of ${org.name}`,{
+      extensions:{
+        code: "FORBIDDEN"
+      }
+    })
   }
-
-  // Check if the user is assigned to any cohort associated with the organization
-  for (const cohort of cohorts) {
-    if (cohort.program.organization?.name === organName) {
-      if (
-        cohort.users.some(
-          (user: { _id: { toString: () => string } }) =>
-            user._id.toString() === userId
-        )
-      ) {
-        isAssignedToProgramOrCohort = true
-        return isAssignedToProgramOrCohort
-      }
-    }
+  switch(orgUserData.role){
+    case RoleOfUser.SUPER_ADMIN:
+    case RoleOfUser.ADMIN:
+      break
+    case RoleOfUser.MANAGER:
+      const programs = await Program.find({
+        manager: user._id,
+        organization: org._id,
+      })
+      if(!programs.length){
+        throw new GraphQLError(`User ${user.email} does not manage any programs`,{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
+      }
+      break
+    case RoleOfUser.COORDINATOR:
+      // if(!orgUserData.program){
+      //   throw new GraphQLError(`User ${user.email} is not assigned to a program`,{
+      //     extensions: {
+      //       code: "FORBIDDEN"
+      //     }
+      //   })
+      // }
+      const cohorts = await Cohort.find({
+        coordinator: user._id,
+        organization: org._id,
+      })
+      if(!cohorts.length){
+        throw new GraphQLError(`User ${user.email} does not manage any cohorts`,{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
+      }
+      break
+    case RoleOfUser.TTL:
+      if(!orgUserData.program){
+        throw new GraphQLError(`User ${user.email} is not assigned to a program`,{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
+      }
+      if(!orgUserData.cohort){
+        throw new GraphQLError(`User ${user.email} is not assigned to a cohort`,{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
+      }
+      if(!orgUserData.team){
+        throw new GraphQLError(`User ${user.email} does not manage any team`,{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
+      }
+      break
+    case RoleOfUser.TRAINEE:
+      if(!orgUserData.program){
+        throw new GraphQLError(`User ${user.email} is not assigned to a program`,{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
+      }
+      if(!orgUserData.cohort){
+        throw new GraphQLError(`User ${user.email} is not assigned to a cohort`,{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
+      }
+      if(!orgUserData.team){
+        throw new GraphQLError(`User ${user.email} is not assigned to a team`,{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
+      }
+      break
+      default:
+        throw new GraphQLError("User role is not valid",{
+          extensions: {
+            code: "FORBIDDEN"
+          }
+        })
   }
-  return isAssignedToProgramOrCohort
 }

src/helpers/isAssignedToProgramOrCohort.ts

@@ -1,9 +1,25 @@
-import { User } from '../models/user'
+import { GraphQLError } from 'graphql'
+import { IOrganization, Organization } from '../models/organization.model'
+import { OrgUserDataInterface, User, UserInterface } from '../models/user'
 import { sendEmail } from '../utils/sendEmail'
 
-export const checkloginAttepmts = async (Profile: any, user: any) => {
+export const checkloginAttepmts = async (user: UserInterface, org: IOrganization) => {
   try {
-    const { activity } = await Profile.findOne({ user })
+    const populatedUser = await user.populate({
+      path: "organizations",
+      populate: {
+        path: "profile"
+      }
+    })
+    const orgUserData = populatedUser.organizations.find(data=>data.orgId.toString()===org._id.toString())
+    if(!orgUserData){
+      throw new GraphQLError(`User ${user.email} is not part of ${org.name}`,{
+        extensions: {
+          code: "FORBIDDEN"
+        }
+      })
+    }
+    const { activity } = (orgUserData.profile as any)
     if (activity && activity?.length > 1) {
       const inline = activity[activity.length - 1]
       const recent = Number(inline.failed) + 1 || 0
@@ -29,14 +45,16 @@ export const checkloginAttepmts = async (Profile: any, user: any) => {
   return 1
 }
 
-export async function checkUserAccountStatus(
-  userId: string
-): Promise<boolean | 'active' | 'drop' | 'suspended' | any> {
-  const user = await User.findById(userId)
-  if (!user) {
-    return false
+export async function checkUserAccountStatus(user: UserInterface, org:IOrganization): Promise<'active' | 'drop' | 'suspended' | any> {
+  const orgUserData = user.organizations.find(data=> data.orgId.toString()===org._id.toString())
+  if(!orgUserData){
+    throw new GraphQLError(`User ${user.email} is not part of ${org.name}`,{
+      extensions:{
+        code: "FORBIDDEN"
+      }
+    })
   }
-  return user?.status?.status
+  return orgUserData.status?.status
 }
 
 const emailtemp = (trials: any, date: any, country: any, city: any) => {

src/helpers/logintracker.ts

@@ -1,7 +1,8 @@
 import { GraphQLError } from 'graphql'
 import 'dotenv/config'
 import { JwtPayload, verify } from 'jsonwebtoken'
-import { Organization } from '../models/organization.model'
+import { IOrganization, Organization } from '../models/organization.model'
+import { OrgUserDataInterface, UserInterface } from '../models/user'
 
 export async function checkLoggedInOrganization(token?: string) {
   const SECRET = process.env.SECRET as string
@@ -27,6 +28,14 @@ export async function checkLoggedInOrganization(token?: string) {
       })
     }
 
+    if(org.isDeleted){
+      throw new GraphQLError(`Organization named ${name} was deleted`, {
+        extensions: {
+          code: 'AUTHENTICATION_ERROR',
+        },
+      })
+    }
+
     return org
   } catch (error: any) {
     if (error.message === 'invalid signature') {
@@ -50,3 +59,15 @@ export async function checkLoggedInOrganization(token?: string) {
     }
   }
 }
+
+export function isPartOfOrganization(user: UserInterface, org: IOrganization): OrgUserDataInterface{
+  const orgUserData = user.organizations.find(data=>data.orgId.toString()===org._id.toString())
+  if(!orgUserData){
+    throw new GraphQLError(`User ${user.email} is not part of ${org.name}`,{
+      extensions: {
+        code: "FORBIDDEN"
+      }
+    })
+  }
+  return orgUserData
+}

src/helpers/organization.helper.ts

@@ -1,7 +1,8 @@
 import { GraphQLError } from 'graphql'
-import { RoleOfUser, User } from '../models/user'
+import { OrgUserDataInterface, RoleOfUser, User, UserInterface } from '../models/user'
 import { Context } from './../context'
 import * as jwt from 'jsonwebtoken'
+import { IOrganization, Organization } from '../models/organization.model'
 
 const SECRET: string = process.env.SECRET as string
 
@@ -24,8 +25,9 @@ export const emailExpression =
   /^(([^<>()[\]\\.,;:\s@"]+(\.[^<>()[\]\\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/
 
 export async function checkUserLoggedIn(
+  org: InstanceType<typeof Organization>,
   context: Context
-): Promise<(a?: Array<string>) => Context> {
+): Promise<(a?: Array<string>) => { user: UserInterface, orgUserData: OrgUserDataInterface }> {
   const { userId, role } = context
 
   if (!userId) {
@@ -45,7 +47,16 @@ export async function checkUserLoggedIn(
     })
   }
 
-  if (user.status?.status !== 'active') {
+  const orgUserData = user.organizations.find(data=>data.orgId.toString()===org._id.toString())
+  if(!orgUserData){
+    throw new GraphQLError(`User ${user.email} is not part of ${org.name}`, {
+      extensions: {
+        CODE: 'FORBIDDEN',
+      },
+    })
+  }
+
+  if (orgUserData.status?.status !== 'active') {
     throw new GraphQLError('User is not active', {
       extensions: {
         CODE: 'USER_NOT_ACTIVE',
@@ -65,6 +76,6 @@ export async function checkUserLoggedIn(
       )
     }
 
-    return { userId, role }
+    return { user, orgUserData }
   }
 }

src/helpers/user.helpers.ts

@@ -44,13 +44,14 @@ import ticketSchema from './schema/ticket.shema'
 import notificationSchema from './schema/notification.schema'
 
 import statisticsSchema from './schema/invitationStatics.schema'
-import StatisticsResolvers from './resolvers/invitationStatics.resolvers'
+// import StatisticsResolvers from './resolvers/invitationStatics.resolvers'
 
 import { IResolvers } from '@graphql-tools/utils'
 import invitationSchema from './schema/invitation.schema'
-import TableViewInvitationResolver from './resolvers/TableViewInvitationResolver'
+// import TableViewInvitationResolver from './resolvers/TableViewInvitationResolver'
 import eventSchema from './schema/event.schema'
 import './utils/cron-jobs/team-jobs'
+import userSchema from './schema/user.schema'
 
 const PORT: number = parseInt(process.env.PORT!) || 4000
 
@@ -66,30 +67,31 @@ export const typeDefs = mergeTypeDefs([
   notificationSchema,
   statisticsSchema,
   eventSchema,
+  userSchema
 ])
 
 export const resolvers = mergeResolvers([
   userResolvers,
-  profileResolvers,
-  programResolvers,
-  cohortResolvers,
-  createRatingSystemresolver,
-  manageStudentResolvers,
-  ratingResolvers,
-  replyResolver,
-  phaseResolver,
-  teamResolver,
-  notificationResolver,
-  eventResolvers,
-  ticketResolver,
-  DocumentationResolvers,
-  attendanceResolver,
-  Sessionresolvers,
-
-  StatisticsResolvers,
-
-  invitationResolvers,
-  TableViewInvitationResolver,
+  // profileResolvers,
+  // programResolvers,
+  // cohortResolvers,
+  // createRatingSystemresolver,
+  // manageStudentResolvers,
+  // ratingResolvers,
+  // replyResolver,
+  // phaseResolver,
+  // teamResolver,
+  // notificationResolver,
+  // eventResolvers,
+  // ticketResolver,
+  // DocumentationResolvers,
+  // attendanceResolver,
+  // Sessionresolvers,
+
+  // StatisticsResolvers,
+
+  // invitationResolvers,
+  // TableViewInvitationResolver,
 ])
 
 async function startApolloServer(