Compare commits
36 Commits
wisdom
...
d9975b832b
| Author | SHA1 | Date | |
|---|---|---|---|
| d9975b832b | |||
| 205cb9d7cc | |||
| 41f5cc9011 | |||
| 6885443bc2 | |||
| f5494fb4a1 | |||
| ed77576958 | |||
| 9e862d1a48 | |||
| 9913724d08 | |||
| 63a646fce3 | |||
| 8d947a818b | |||
| 81e07ed927 | |||
| 019c79d5bc | |||
| fae6bb7a43 | |||
| 8ecb00a4d3 | |||
| b62ca35185 | |||
| 5e74122b9e | |||
| 050543dbbf | |||
| e1b397e1d3 | |||
| 34db6b8d89 | |||
| 5d1b6daef6 | |||
| 30431be379 | |||
| 361f750330 | |||
| 31f50d05ab | |||
| 961f0d6314 | |||
| d87fc07a8e | |||
| 95e0c90a16 | |||
| 55e8a6d9ca | |||
| 253d83357f | |||
| 88a0404af0 | |||
| d11207aedb | |||
| d7044521bd | |||
| e2a008c2e1 | |||
| 6d575f649a | |||
| e8fd307a05 | |||
| 00239db472 | |||
| 251f7148b6 |
1
.gitignore
vendored
1
.gitignore
vendored
@@ -4,3 +4,4 @@ node_modules
|
||||
request.http
|
||||
*.rest
|
||||
package-lock.json
|
||||
*.log
|
||||
@@ -292,11 +292,11 @@ const mqttOptions = {
|
||||
clientId: 'express_mqtt_client_' + Math.random().toString(16).substr(2, 8),
|
||||
clean: true,
|
||||
connectTimeout: 4000,
|
||||
username: 'morekmorekmorek', // jika ada
|
||||
password: 'morek888', // jika ada
|
||||
username: '', // jika ada
|
||||
password: '', // jika ada
|
||||
};
|
||||
|
||||
const mqttUrl = 'ws://117.102.231.130:7001'; // Ganti dengan broker kamu
|
||||
const mqttUrl = 'ws://localhost:1884'; // Ganti dengan broker kamu
|
||||
const topic = process.env.TOPIC_COD ?? 'morek';
|
||||
|
||||
const mqttClient = mqtt.connect(mqttUrl, mqttOptions);
|
||||
|
||||
@@ -104,8 +104,6 @@ class AuthController {
|
||||
const bytes = CryptoJS.AES.decrypt(tokenRedirect, process.env.VITE_KEY_SESSION);
|
||||
const decrypted = JSON.parse(bytes.toString(CryptoJS.enc.Utf8));
|
||||
|
||||
console.log("decrypted: ", decrypted);
|
||||
|
||||
const userPhone = decrypted?.user_phone
|
||||
const userName = decrypted?.user_name
|
||||
const idData = decrypted?.id
|
||||
|
||||
@@ -95,8 +95,7 @@ const getAllNotificationDb = async (searchParams = {}) => {
|
||||
],
|
||||
queryParams
|
||||
);
|
||||
|
||||
queryParams = whereParamAnd ? whereParamAnd : queryParams;
|
||||
if (whereParamAnd) queryParams = whereParamAnd;
|
||||
|
||||
const queryText = `
|
||||
SELECT
|
||||
@@ -109,12 +108,12 @@ const getAllNotificationDb = async (searchParams = {}) => {
|
||||
a.is_delivered,
|
||||
a.is_read,
|
||||
a.is_active,
|
||||
a.created_at,
|
||||
|
||||
b.error_code,
|
||||
b.error_code_name,
|
||||
b.error_code_color,
|
||||
b.path_icon,
|
||||
b.created_at,
|
||||
|
||||
c.solution_name,
|
||||
c.type_solution,
|
||||
|
||||
@@ -32,15 +32,11 @@ const getNotificationErrorLogByIdDb = async (id) => {
|
||||
const getNotificationErrorLogByNotificationErrorIdDb = async (notificationErrorId) => {
|
||||
const queryText = `
|
||||
SELECT
|
||||
a.notification_error_log_description,
|
||||
a.created_at,
|
||||
b.contact_type,
|
||||
c.user_fullname as created_by_name,
|
||||
case when a.created_by is not null then c.user_fullname else b.contact_name end as contact_name,
|
||||
case when a.created_by is not null then c.user_phone else a.contact_phone end as contact_phone
|
||||
a.*,
|
||||
b.contact_name,
|
||||
b.contact_type
|
||||
FROM notification_error_log a
|
||||
LEFT JOIN contact b ON a.contact_phone = b.contact_phone
|
||||
LEFT JOIN m_users c ON a.created_by = c.user_id
|
||||
WHERE a.notification_error_id = $1 AND a.deleted_at IS NULL
|
||||
ORDER BY a.created_at DESC
|
||||
`;
|
||||
|
||||
@@ -1,7 +1,7 @@
|
||||
module.exports = {
|
||||
apps: [
|
||||
{
|
||||
name: "bengkel-api",
|
||||
name: "cod-api",
|
||||
script: "./index.js", // Path to your entry file
|
||||
env: {
|
||||
NODE_ENV: "development",
|
||||
@@ -9,6 +9,14 @@ module.exports = {
|
||||
env_production: {
|
||||
NODE_ENV: "production",
|
||||
},
|
||||
// Logging configuration
|
||||
// error_file: "C:\IDETAMA\pm2-log\cod-api\cod-api-error.log",
|
||||
// out_file: "C:\IDETAMA\pm2-log\cod-api\cod-api-out.log",
|
||||
// log_file: "C:\IDETAMA\pm2-log\cod-api\cod-api-combined.log", // optional combined file
|
||||
error_file: "cod-api-error.log",
|
||||
out_file: "cod-api-out.log",
|
||||
log_file: "cod-api-combined.log", // optional combined file
|
||||
time: true, // adds timestamps to logs
|
||||
},
|
||||
],
|
||||
};
|
||||
@@ -1,10 +1,6 @@
|
||||
const { ErrorHandler } = require("../helpers/error");
|
||||
const { getUserByIdDb } = require("../db/user.db");
|
||||
|
||||
function isPhoneNumberID(phone) {
|
||||
return /^(?:\+62|62|0)8[1-9][0-9]{6,10}$/.test(phone);
|
||||
}
|
||||
|
||||
const verifyAccess = (minLevel = 1, allowUnapprovedReadOnly = false) => {
|
||||
return async (req, res, next) => {
|
||||
try {
|
||||
@@ -15,31 +11,21 @@ const verifyAccess = (minLevel = 1, allowUnapprovedReadOnly = false) => {
|
||||
// Super Admin bypass semua
|
||||
if (user.is_sa) return next();
|
||||
|
||||
const fullUser = await getUserByIdDb(user.user_id);
|
||||
if (!fullUser) throw new ErrorHandler(403, "Forbidden: User not found");
|
||||
|
||||
if (!isPhoneNumberID(user.user_id) && user.user_id) {
|
||||
const fullUser = await getUserByIdDb(user.user_id);
|
||||
if (!fullUser) throw new ErrorHandler(403, "Forbidden: User not found");
|
||||
|
||||
if (!fullUser.is_approve) {
|
||||
if (req.method !== "GET") {
|
||||
throw new ErrorHandler(403, "Account not approved — read-only access");
|
||||
}
|
||||
|
||||
if (allowUnapprovedReadOnly) return next();
|
||||
|
||||
throw new ErrorHandler(403, "Account not approved");
|
||||
if (!fullUser.is_approve) {
|
||||
if (req.method !== "GET") {
|
||||
throw new ErrorHandler(403, "Account not approved — read-only access");
|
||||
}
|
||||
|
||||
if (!fullUser.role_level || fullUser.role_level < minLevel) {
|
||||
throw new ErrorHandler(403, "Forbidden: Insufficient role level");
|
||||
}
|
||||
} else {
|
||||
if (req.method !== 'GET' && req.baseUrl !== '/api/notification-log') {
|
||||
if (req.baseUrl !== '/api/notification') {
|
||||
throw new ErrorHandler(403, "Forbidden: Insufficient Access");
|
||||
}
|
||||
}
|
||||
if (allowUnapprovedReadOnly) return next();
|
||||
|
||||
throw new ErrorHandler(403, "Account not approved");
|
||||
}
|
||||
|
||||
if (!fullUser.role_level || fullUser.role_level < minLevel) {
|
||||
throw new ErrorHandler(403, "Forbidden: Insufficient role level");
|
||||
}
|
||||
|
||||
next();
|
||||
|
||||
@@ -26,7 +26,7 @@ router
|
||||
.get(verifyToken.verifyAccessToken, NotificationErrorController.getById)
|
||||
.put(
|
||||
verifyToken.verifyAccessToken,
|
||||
verifyAccess(),
|
||||
// verifyAccess(),
|
||||
NotificationErrorController.update
|
||||
);
|
||||
|
||||
|
||||
@@ -9,7 +9,7 @@ router.route("/")
|
||||
.get(verifyToken.verifyAccessToken, NotificationErrorLogController.getAll)
|
||||
.post(
|
||||
verifyToken.verifyAccessToken,
|
||||
verifyAccess(),
|
||||
// verifyAccess(),
|
||||
NotificationErrorLogController.create);
|
||||
|
||||
router.route("/:id")
|
||||
|
||||
@@ -119,6 +119,17 @@ class ErrorCodeService {
|
||||
try {
|
||||
if (!data || typeof data !== "object") data = {};
|
||||
|
||||
if (
|
||||
!data.solution ||
|
||||
!Array.isArray(data.solution) ||
|
||||
data.solution.length === 0
|
||||
) {
|
||||
throw new ErrorHandler(
|
||||
400,
|
||||
"Error code must have at least 1 solution"
|
||||
);
|
||||
}
|
||||
|
||||
const errorId = await createErrorCodeDb(brandId, {
|
||||
error_code: data.error_code,
|
||||
error_code_name: data.error_code_name,
|
||||
|
||||
@@ -173,7 +173,8 @@ class NotificationService {
|
||||
|
||||
static async resendNotification(id) {
|
||||
const deviceNotification = await getNotificationByIdDb(id);
|
||||
if (!deviceNotification) throw new ErrorHandler(404, "Data not found");
|
||||
if (!deviceNotification)
|
||||
throw new ErrorHandler(404, "Notification Data not found");
|
||||
|
||||
const errorCode = await getErrorCodeByIdDb(
|
||||
deviceNotification.error_code_id
|
||||
|
||||
@@ -67,9 +67,9 @@ class NotifikasiWaService {
|
||||
for (const dataUser of dataUsers) {
|
||||
if (dataUser.is_active) {
|
||||
const tokenRedirect = await generateTokenRedirect(
|
||||
dataUser.contact_phone,
|
||||
dataUser.contact_name,
|
||||
resultNotificationError.notification_error_id
|
||||
dataUser.userPhone,
|
||||
dataUser.userName,
|
||||
dataUser.idData
|
||||
);
|
||||
|
||||
const encodedToken = encodeURIComponent(tokenRedirect);
|
||||
@@ -105,8 +105,6 @@ class NotifikasiWaService {
|
||||
param.bodyMessage
|
||||
);
|
||||
|
||||
console.log("resultSend: ", resultSend);
|
||||
|
||||
await updateNotificationErrorUserDb(
|
||||
resultNotificationErrorUser[0].notification_error_user_id,
|
||||
{
|
||||
|
||||
@@ -31,12 +31,11 @@ const insertErrorCodeSchema = Joi.object({
|
||||
is_active: Joi.boolean().default(true),
|
||||
solution: Joi.array()
|
||||
.items(solutionSchema)
|
||||
.optional(),
|
||||
// .min(1)
|
||||
// .required()
|
||||
// .messages({
|
||||
// "array.min": "Error code must have at least 1 solution",
|
||||
// }),
|
||||
.min(1)
|
||||
.required()
|
||||
.messages({
|
||||
"array.min": "Error code must have at least 1 solution",
|
||||
}),
|
||||
spareparts: Joi.array()
|
||||
.items(Joi.number().integer())
|
||||
.optional(),
|
||||
|
||||
Reference in New Issue
Block a user