Compare commits
7 Commits
d9975b832b
...
wisdom
| Author | SHA1 | Date | |
|---|---|---|---|
| 436ea1cf89 | |||
| 8e0dc4bb88 | |||
| b680a249d5 | |||
| b1cf4ff624 | |||
| 747a96ac30 | |||
| 026a88a9a9 | |||
| 4d2c18edfb |
@@ -292,11 +292,11 @@ const mqttOptions = {
|
|||||||
clientId: 'express_mqtt_client_' + Math.random().toString(16).substr(2, 8),
|
clientId: 'express_mqtt_client_' + Math.random().toString(16).substr(2, 8),
|
||||||
clean: true,
|
clean: true,
|
||||||
connectTimeout: 4000,
|
connectTimeout: 4000,
|
||||||
username: '', // jika ada
|
username: 'morekmorekmorek', // jika ada
|
||||||
password: '', // jika ada
|
password: 'morek888', // jika ada
|
||||||
};
|
};
|
||||||
|
|
||||||
const mqttUrl = 'ws://localhost:1884'; // Ganti dengan broker kamu
|
const mqttUrl = 'ws://117.102.231.130:7001'; // Ganti dengan broker kamu
|
||||||
const topic = process.env.TOPIC_COD ?? 'morek';
|
const topic = process.env.TOPIC_COD ?? 'morek';
|
||||||
|
|
||||||
const mqttClient = mqtt.connect(mqttUrl, mqttOptions);
|
const mqttClient = mqtt.connect(mqttUrl, mqttOptions);
|
||||||
|
|||||||
@@ -104,6 +104,8 @@ class AuthController {
|
|||||||
const bytes = CryptoJS.AES.decrypt(tokenRedirect, process.env.VITE_KEY_SESSION);
|
const bytes = CryptoJS.AES.decrypt(tokenRedirect, process.env.VITE_KEY_SESSION);
|
||||||
const decrypted = JSON.parse(bytes.toString(CryptoJS.enc.Utf8));
|
const decrypted = JSON.parse(bytes.toString(CryptoJS.enc.Utf8));
|
||||||
|
|
||||||
|
console.log("decrypted: ", decrypted);
|
||||||
|
|
||||||
const userPhone = decrypted?.user_phone
|
const userPhone = decrypted?.user_phone
|
||||||
const userName = decrypted?.user_name
|
const userName = decrypted?.user_name
|
||||||
const idData = decrypted?.id
|
const idData = decrypted?.id
|
||||||
|
|||||||
@@ -95,7 +95,8 @@ const getAllNotificationDb = async (searchParams = {}) => {
|
|||||||
],
|
],
|
||||||
queryParams
|
queryParams
|
||||||
);
|
);
|
||||||
if (whereParamAnd) queryParams = whereParamAnd;
|
|
||||||
|
queryParams = whereParamAnd ? whereParamAnd : queryParams;
|
||||||
|
|
||||||
const queryText = `
|
const queryText = `
|
||||||
SELECT
|
SELECT
|
||||||
@@ -108,12 +109,12 @@ const getAllNotificationDb = async (searchParams = {}) => {
|
|||||||
a.is_delivered,
|
a.is_delivered,
|
||||||
a.is_read,
|
a.is_read,
|
||||||
a.is_active,
|
a.is_active,
|
||||||
|
a.created_at,
|
||||||
|
|
||||||
b.error_code,
|
b.error_code,
|
||||||
b.error_code_name,
|
b.error_code_name,
|
||||||
b.error_code_color,
|
b.error_code_color,
|
||||||
b.path_icon,
|
b.path_icon,
|
||||||
b.created_at,
|
|
||||||
|
|
||||||
c.solution_name,
|
c.solution_name,
|
||||||
c.type_solution,
|
c.type_solution,
|
||||||
|
|||||||
@@ -32,11 +32,15 @@ const getNotificationErrorLogByIdDb = async (id) => {
|
|||||||
const getNotificationErrorLogByNotificationErrorIdDb = async (notificationErrorId) => {
|
const getNotificationErrorLogByNotificationErrorIdDb = async (notificationErrorId) => {
|
||||||
const queryText = `
|
const queryText = `
|
||||||
SELECT
|
SELECT
|
||||||
a.*,
|
a.notification_error_log_description,
|
||||||
b.contact_name,
|
a.created_at,
|
||||||
b.contact_type
|
b.contact_type,
|
||||||
|
c.user_fullname as created_by_name,
|
||||||
|
case when a.created_by is not null then c.user_fullname else b.contact_name end as contact_name,
|
||||||
|
case when a.created_by is not null then c.user_phone else a.contact_phone end as contact_phone
|
||||||
FROM notification_error_log a
|
FROM notification_error_log a
|
||||||
LEFT JOIN contact b ON a.contact_phone = b.contact_phone
|
LEFT JOIN contact b ON a.contact_phone = b.contact_phone
|
||||||
|
LEFT JOIN m_users c ON a.created_by = c.user_id
|
||||||
WHERE a.notification_error_id = $1 AND a.deleted_at IS NULL
|
WHERE a.notification_error_id = $1 AND a.deleted_at IS NULL
|
||||||
ORDER BY a.created_at DESC
|
ORDER BY a.created_at DESC
|
||||||
`;
|
`;
|
||||||
|
|||||||
@@ -1,6 +1,10 @@
|
|||||||
const { ErrorHandler } = require("../helpers/error");
|
const { ErrorHandler } = require("../helpers/error");
|
||||||
const { getUserByIdDb } = require("../db/user.db");
|
const { getUserByIdDb } = require("../db/user.db");
|
||||||
|
|
||||||
|
function isPhoneNumberID(phone) {
|
||||||
|
return /^(?:\+62|62|0)8[1-9][0-9]{6,10}$/.test(phone);
|
||||||
|
}
|
||||||
|
|
||||||
const verifyAccess = (minLevel = 1, allowUnapprovedReadOnly = false) => {
|
const verifyAccess = (minLevel = 1, allowUnapprovedReadOnly = false) => {
|
||||||
return async (req, res, next) => {
|
return async (req, res, next) => {
|
||||||
try {
|
try {
|
||||||
@@ -11,21 +15,31 @@ const verifyAccess = (minLevel = 1, allowUnapprovedReadOnly = false) => {
|
|||||||
// Super Admin bypass semua
|
// Super Admin bypass semua
|
||||||
if (user.is_sa) return next();
|
if (user.is_sa) return next();
|
||||||
|
|
||||||
const fullUser = await getUserByIdDb(user.user_id);
|
|
||||||
if (!fullUser) throw new ErrorHandler(403, "Forbidden: User not found");
|
|
||||||
|
|
||||||
if (!fullUser.is_approve) {
|
if (!isPhoneNumberID(user.user_id) && user.user_id) {
|
||||||
if (req.method !== "GET") {
|
const fullUser = await getUserByIdDb(user.user_id);
|
||||||
throw new ErrorHandler(403, "Account not approved — read-only access");
|
if (!fullUser) throw new ErrorHandler(403, "Forbidden: User not found");
|
||||||
|
|
||||||
|
if (!fullUser.is_approve) {
|
||||||
|
if (req.method !== "GET") {
|
||||||
|
throw new ErrorHandler(403, "Account not approved — read-only access");
|
||||||
|
}
|
||||||
|
|
||||||
|
if (allowUnapprovedReadOnly) return next();
|
||||||
|
|
||||||
|
throw new ErrorHandler(403, "Account not approved");
|
||||||
}
|
}
|
||||||
|
|
||||||
if (allowUnapprovedReadOnly) return next();
|
if (!fullUser.role_level || fullUser.role_level < minLevel) {
|
||||||
|
throw new ErrorHandler(403, "Forbidden: Insufficient role level");
|
||||||
|
}
|
||||||
|
} else {
|
||||||
|
if (req.method !== 'GET' && req.baseUrl !== '/api/notification-log') {
|
||||||
|
if (req.baseUrl !== '/api/notification') {
|
||||||
|
throw new ErrorHandler(403, "Forbidden: Insufficient Access");
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
throw new ErrorHandler(403, "Account not approved");
|
|
||||||
}
|
|
||||||
|
|
||||||
if (!fullUser.role_level || fullUser.role_level < minLevel) {
|
|
||||||
throw new ErrorHandler(403, "Forbidden: Insufficient role level");
|
|
||||||
}
|
}
|
||||||
|
|
||||||
next();
|
next();
|
||||||
|
|||||||
@@ -26,7 +26,7 @@ router
|
|||||||
.get(verifyToken.verifyAccessToken, NotificationErrorController.getById)
|
.get(verifyToken.verifyAccessToken, NotificationErrorController.getById)
|
||||||
.put(
|
.put(
|
||||||
verifyToken.verifyAccessToken,
|
verifyToken.verifyAccessToken,
|
||||||
// verifyAccess(),
|
verifyAccess(),
|
||||||
NotificationErrorController.update
|
NotificationErrorController.update
|
||||||
);
|
);
|
||||||
|
|
||||||
|
|||||||
@@ -9,7 +9,7 @@ router.route("/")
|
|||||||
.get(verifyToken.verifyAccessToken, NotificationErrorLogController.getAll)
|
.get(verifyToken.verifyAccessToken, NotificationErrorLogController.getAll)
|
||||||
.post(
|
.post(
|
||||||
verifyToken.verifyAccessToken,
|
verifyToken.verifyAccessToken,
|
||||||
// verifyAccess(),
|
verifyAccess(),
|
||||||
NotificationErrorLogController.create);
|
NotificationErrorLogController.create);
|
||||||
|
|
||||||
router.route("/:id")
|
router.route("/:id")
|
||||||
|
|||||||
@@ -119,17 +119,6 @@ class ErrorCodeService {
|
|||||||
try {
|
try {
|
||||||
if (!data || typeof data !== "object") data = {};
|
if (!data || typeof data !== "object") data = {};
|
||||||
|
|
||||||
if (
|
|
||||||
!data.solution ||
|
|
||||||
!Array.isArray(data.solution) ||
|
|
||||||
data.solution.length === 0
|
|
||||||
) {
|
|
||||||
throw new ErrorHandler(
|
|
||||||
400,
|
|
||||||
"Error code must have at least 1 solution"
|
|
||||||
);
|
|
||||||
}
|
|
||||||
|
|
||||||
const errorId = await createErrorCodeDb(brandId, {
|
const errorId = await createErrorCodeDb(brandId, {
|
||||||
error_code: data.error_code,
|
error_code: data.error_code,
|
||||||
error_code_name: data.error_code_name,
|
error_code_name: data.error_code_name,
|
||||||
|
|||||||
@@ -67,9 +67,9 @@ class NotifikasiWaService {
|
|||||||
for (const dataUser of dataUsers) {
|
for (const dataUser of dataUsers) {
|
||||||
if (dataUser.is_active) {
|
if (dataUser.is_active) {
|
||||||
const tokenRedirect = await generateTokenRedirect(
|
const tokenRedirect = await generateTokenRedirect(
|
||||||
dataUser.userPhone,
|
dataUser.contact_phone,
|
||||||
dataUser.userName,
|
dataUser.contact_name,
|
||||||
dataUser.idData
|
resultNotificationError.notification_error_id
|
||||||
);
|
);
|
||||||
|
|
||||||
const encodedToken = encodeURIComponent(tokenRedirect);
|
const encodedToken = encodeURIComponent(tokenRedirect);
|
||||||
@@ -105,6 +105,8 @@ class NotifikasiWaService {
|
|||||||
param.bodyMessage
|
param.bodyMessage
|
||||||
);
|
);
|
||||||
|
|
||||||
|
console.log("resultSend: ", resultSend);
|
||||||
|
|
||||||
await updateNotificationErrorUserDb(
|
await updateNotificationErrorUserDb(
|
||||||
resultNotificationErrorUser[0].notification_error_user_id,
|
resultNotificationErrorUser[0].notification_error_user_id,
|
||||||
{
|
{
|
||||||
|
|||||||
@@ -31,11 +31,12 @@ const insertErrorCodeSchema = Joi.object({
|
|||||||
is_active: Joi.boolean().default(true),
|
is_active: Joi.boolean().default(true),
|
||||||
solution: Joi.array()
|
solution: Joi.array()
|
||||||
.items(solutionSchema)
|
.items(solutionSchema)
|
||||||
.min(1)
|
.optional(),
|
||||||
.required()
|
// .min(1)
|
||||||
.messages({
|
// .required()
|
||||||
"array.min": "Error code must have at least 1 solution",
|
// .messages({
|
||||||
}),
|
// "array.min": "Error code must have at least 1 solution",
|
||||||
|
// }),
|
||||||
spareparts: Joi.array()
|
spareparts: Joi.array()
|
||||||
.items(Joi.number().integer())
|
.items(Joi.number().integer())
|
||||||
.optional(),
|
.optional(),
|
||||||
|
|||||||
Reference in New Issue
Block a user