role based auth added

Author: saw1993

backend/constants/PermissionData.js

@@ -3,5 +3,5 @@ module.exports = {
     EDIT_USER: 2,
     DELETE_USER: 3,
     CREATE_USER: 4,
-    VIEW_DOCTORS: 5
+    VIEW_DOCTORS: 2
 };

backend/logs/combined.log

@@ -7971,3 +7971,120 @@
 2024-11-10 19:40:04 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
 2024-11-10 19:40:04 error: Error in checkPermission middleware: Error fetching permissions
 2024-11-10 19:40:15 info: HTTPS Server running on port 3003,
+2024-11-11 06:53:59 info: HTTPS Server running on port 3003,
+2024-11-11 06:54:04 info: GET /api/doctor/getall
+2024-11-11 06:54:04 error: Invalid token: jwt expired
+2024-11-11 06:54:08 info: POST /api/auth/login
+2024-11-11 06:54:09 info: User logged in: [email protected]
+2024-11-11 06:54:22 info: GET /api/doctor/getall
+2024-11-11 06:54:22 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 06:54:22 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 06:54:22 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 06:57:34 info: HTTPS Server running on port 3003,
+2024-11-11 06:57:42 info: GET /api/doctor/getall
+2024-11-11 06:57:42 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 06:57:42 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 06:57:42 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:00:27 info: HTTPS Server running on port 3003,
+2024-11-11 07:00:34 info: GET /api/doctor/getall
+2024-11-11 07:00:34 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:00:34 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:00:34 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:01:06 info: HTTPS Server running on port 3003,
+2024-11-11 07:01:11 info: GET /api/doctor/getall
+2024-11-11 07:01:11 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:01:11 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:01:11 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:02:16 info: HTTPS Server running on port 3003,
+2024-11-11 07:02:20 info: GET /api/doctor/getall
+2024-11-11 07:02:20 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:02:20 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:02:20 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:03:43 info: HTTPS Server running on port 3003,
+2024-11-11 07:03:48 info: GET /api/doctor/getall
+2024-11-11 07:03:48 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:03:48 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:03:48 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:04:41 info: HTTPS Server running on port 3003,
+2024-11-11 07:04:46 info: GET /api/doctor/getall
+2024-11-11 07:04:46 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:04:46 error: Error in checkPermission middleware: Cannot read properties of undefined (reading 'permission_id')
+2024-11-11 07:07:08 info: HTTPS Server running on port 3003,
+2024-11-11 07:07:11 info: GET /api/doctor/getall
+2024-11-11 07:07:11 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:07:12 error: Error in checkPermission middleware: Cannot read properties of undefined (reading 'permission_id')
+2024-11-11 07:07:51 info: HTTPS Server running on port 3003,
+2024-11-11 07:08:09 info: HTTPS Server running on port 3003,
+2024-11-11 07:08:13 info: GET /api/doctor/getall
+2024-11-11 07:08:13 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:08:13 error: Error in checkPermission middleware: Cannot read properties of undefined (reading 'permission_id')
+2024-11-11 07:08:33 info: HTTPS Server running on port 3003,
+2024-11-11 07:08:38 info: GET /api/doctor/getall
+2024-11-11 07:08:38 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:08:38 error: Error fetching permissions for Role ID 1: rolePermissions.forEach is not a function
+2024-11-11 07:08:38 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:09:28 info: HTTPS Server running on port 3003,
+2024-11-11 07:09:31 info: GET /api/doctor/getall
+2024-11-11 07:09:31 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:09:31 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:09:31 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:10:42 info: HTTPS Server running on port 3003,
+2024-11-11 07:10:46 info: GET /api/doctor/getall
+2024-11-11 07:10:46 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:10:46 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:10:46 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:11:44 info: HTTPS Server running on port 3003,
+2024-11-11 07:11:48 info: GET /api/doctor/getall
+2024-11-11 07:11:48 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:11:48 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:11:48 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:12:16 info: HTTPS Server running on port 3003,
+2024-11-11 07:12:20 info: GET /api/doctor/getall
+2024-11-11 07:12:20 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:12:20 error: Error fetching permissions for Role ID 1: Unknown column 'Permission.role_id' in 'where clause'
+2024-11-11 07:12:20 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:13:33 info: HTTPS Server running on port 3003,
+2024-11-11 07:13:37 info: GET /api/doctor/getall
+2024-11-11 07:13:37 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:13:37 error: Error fetching permissions for Role ID 1: Unknown column 'Permission.role_id' in 'where clause'
+2024-11-11 07:13:37 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:13:54 info: HTTPS Server running on port 3003,
+2024-11-11 07:13:58 info: GET /api/doctor/getall
+2024-11-11 07:13:58 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:13:58 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:13:58 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:14:41 info: HTTPS Server running on port 3003,
+2024-11-11 07:14:47 info: GET /api/doctor/getall
+2024-11-11 07:14:47 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:14:47 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:14:47 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:15:07 info: HTTPS Server running on port 3003,
+2024-11-11 07:15:11 info: GET /api/doctor/getall
+2024-11-11 07:15:11 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:15:11 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:15:11 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:15:24 info: HTTPS Server running on port 3003,
+2024-11-11 07:15:27 info: GET /api/doctor/getall
+2024-11-11 07:15:27 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:15:27 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:15:27 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:16:26 info: HTTPS Server running on port 3003,
+2024-11-11 07:16:29 info: GET /api/doctor/getall
+2024-11-11 07:16:29 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:16:29 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:16:29 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:17:40 info: HTTPS Server running on port 3003,
+2024-11-11 07:17:46 info: GET /api/doctor/getall
+2024-11-11 07:17:46 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:17:46 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:17:46 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:18:41 info: HTTPS Server running on port 3003,
+2024-11-11 07:18:44 info: GET /api/doctor/getall
+2024-11-11 07:18:44 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:19:15 info: HTTPS Server running on port 3003,
+2024-11-11 07:20:40 info: HTTPS Server running on port 3003,
+2024-11-11 07:20:43 info: GET /api/doctor/getall
+2024-11-11 07:20:43 info: Token request verified for authMiddleware: function toString() { [native code] }
+2024-11-11 07:20:59 info: HTTPS Server running on port 3003,
+2024-11-11 07:21:04 info: GET /api/doctor/getall
+2024-11-11 07:21:04 info: Token request verified for authMiddleware: function toString() { [native code] }

backend/logs/error.log

@@ -517,3 +517,43 @@
 2024-11-10 19:36:29 error: Error in checkPermission middleware: Error fetching permissions
 2024-11-10 19:40:04 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
 2024-11-10 19:40:04 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 06:54:04 error: Invalid token: jwt expired
+2024-11-11 06:54:22 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 06:54:22 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 06:57:42 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 06:57:42 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:00:34 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:00:34 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:01:11 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:01:11 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:02:20 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:02:20 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:03:48 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:03:48 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:04:46 error: Error in checkPermission middleware: Cannot read properties of undefined (reading 'permission_id')
+2024-11-11 07:07:12 error: Error in checkPermission middleware: Cannot read properties of undefined (reading 'permission_id')
+2024-11-11 07:08:13 error: Error in checkPermission middleware: Cannot read properties of undefined (reading 'permission_id')
+2024-11-11 07:08:38 error: Error fetching permissions for Role ID 1: rolePermissions.forEach is not a function
+2024-11-11 07:08:38 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:09:31 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:09:31 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:10:46 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:10:46 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:11:48 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:11:48 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:12:20 error: Error fetching permissions for Role ID 1: Unknown column 'Permission.role_id' in 'where clause'
+2024-11-11 07:12:20 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:13:37 error: Error fetching permissions for Role ID 1: Unknown column 'Permission.role_id' in 'where clause'
+2024-11-11 07:13:37 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:13:58 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:13:58 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:14:47 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:14:47 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:15:11 error: Error fetching permissions for Role ID 1: Permission is not associated to RolePermission!
+2024-11-11 07:15:11 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:15:27 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:15:27 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:16:29 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:16:29 error: Error in checkPermission middleware: Error fetching permissions
+2024-11-11 07:17:46 error: Error fetching permissions for Role ID 1: rolePermissions.map is not a function
+2024-11-11 07:17:46 error: Error in checkPermission middleware: Error fetching permissions

backend/middlewares/checkPermissionMiddleware.js

@@ -24,6 +24,8 @@ const checkPermission = (permissionID) => {
             // Check if the required permission exists in any of the roles 
             let hasPermission = false;
             const permissions = await permissionRepository.getPermissionsForRole(user.role_id);
+
+        
             hasPermission = permissions.some(permission => permission.permission_id === permissionID);
 
             if (hasPermission) {

backend/models/definedModels/Permission.js

@@ -1,6 +1,5 @@
 const { Model, DataTypes } = require('sequelize');
 const { createMainDBConnection } = require('../../config/db');
-const RolePermission = require('./RolePermission');
 
 const sequelize = createMainDBConnection();
 
@@ -22,9 +21,8 @@ Permission.init({
   sequelize, // Pass the Sequelize instance
   modelName: 'Permission',
   tableName: 'permissions', // Specify the correct table name
-  timestamps: true, // Adds createdAt and updatedAt fields
+  timestamps: false, // Adds createdAt and updatedAt fields
 });
 
-Permission.hasMany(RolePermission, { foreignKey: 'permission_id' });
 
 module.exports = Permission;

backend/models/definedModels/Role.js

@@ -26,6 +26,7 @@ Role.init({
 }, {
   sequelize, // Pass the Sequelize instance
   modelName: 'Role',
+  timestamps: false,  
   tableName: 'user_roles', // Specify the correct table name
 });
 

backend/models/definedModels/RolePermission.js

@@ -12,7 +12,7 @@ class RolePermission extends Model {}
 
 // Initialize the RolePermission model with explicit column definitions
 RolePermission.init({
-  roleId: {  // Renamed to camelCase to match JS conventions
+  role_Id: {  // Renamed to camelCase to match JS conventions
     type: DataTypes.INTEGER,
     references: {
       model: Role,     // Reference the Role model
@@ -21,7 +21,7 @@ RolePermission.init({
     allowNull: false,  // Ensure this field is not null
   },
 
-  permissionId: {  // Renamed to camelCase to match JS conventions
+  permission_Id: {  // Renamed to camelCase to match JS conventions
     type: DataTypes.INTEGER,
     references: {
       model: Permission,  // Reference the Permission model
@@ -36,6 +36,9 @@ RolePermission.init({
   timestamps: false,        // No need for createdAt/updatedAt fields
 });
 
-RolePermission.belongsTo(Permission, { foreignKey: 'permission_id' });
+// Define the many-to-many relationship using the junction table
+Role.belongsToMany(Permission, { through: RolePermission, foreignKey: 'role_Id' });
+Permission.belongsToMany(Role, { through: RolePermission, foreignKey: 'permission_Id' });
+
 
 module.exports = RolePermission;

backend/usecases/role/getPermissionsForRole.js

@@ -7,27 +7,25 @@ const logger = require('../../config/logger');
 
 // Function to get permissions for a specific role
 const getPermissionsForRole = async (roleId) => {
- 
 
+   
     try {
         // Fetch permissions associated with the given roleId
-        const rolePermissions = await RolePermission.findAll({
+        const rolePermissions = await Role.findOne({
             where: { role_id: roleId }, // Filter by role_id
             include: [{
                 model: Permission,  // Include Permission model
                 attributes: ['permission_name', 'permission_id'] // Fetch relevant permission fields
             }]
         });
-        console.log("Role permissons got ", roleId)
 
-        if (!rolePermissions || rolePermissions.length === 0) {
+
+        if (!rolePermissions.Permissions || rolePermissions.Permissions.length === 0) {
             logger.warn(`No permissions found for Role ID ${roleId}`);
             return []; // Return empty array if no permissions found
         }
-
-        // Extract permission data from the result
-        const permissions = rolePermissions.map(rolePermission => rolePermission.Permission);
-        return permissions;
+        return rolePermissions.Permissions;
+        
     } catch (error) {
         logger.error(`Error fetching permissions for Role ID ${roleId}: ${error.message}`);
         throw new Error('Error fetching permissions');