const express = require('express'); const User_invitationsService = require('../services/user_invitations'); const User_invitationsDBApi = require('../db/api/user_invitations'); const TenantAccess = require('../db/api/tenantAccess'); const wrapAsync = require('../helpers').wrapAsync; const config = require('../config'); const router = express.Router(); const { parse } = require('json2csv'); const { checkCrudPermissions, } = require('../middlewares/check-permissions'); router.use(checkCrudPermissions('user_invitations')); /** * @swagger * components: * schemas: * User_invitations: * type: object * properties: * invitee_email: * type: string * default: invitee_email * invitee_name: * type: string * default: invitee_name * invite_token_hash: * type: string * default: invite_token_hash * * */ /** * @swagger * tags: * name: User_invitations * description: The User_invitations managing API */ /** * @swagger * /api/user_invitations: * post: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Add new item * description: Add new item * requestBody: * required: true * content: * application/json: * schema: * properties: * data: * description: Data of the updated item * type: object * $ref: "#/components/schemas/User_invitations" * responses: * 200: * description: The item was successfully added * content: * application/json: * schema: * $ref: "#/components/schemas/User_invitations" * 401: * $ref: "#/components/responses/UnauthorizedError" * 405: * description: Invalid input data * 500: * description: Some server error */ router.post('/', wrapAsync(async (req, res) => { const referer = req.headers.referer || `${req.protocol}://${req.hostname}${req.originalUrl}`; const link = new URL(referer); await User_invitationsService.create(req.body.data, req.currentUser, true, link.host); const payload = true; res.status(200).send(payload); })); /** * @swagger * /api/budgets/bulk-import: * post: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Bulk import items * description: Bulk import items * requestBody: * required: true * content: * application/json: * schema: * properties: * data: * description: Data of the updated items * type: array * items: * $ref: "#/components/schemas/User_invitations" * responses: * 200: * description: The items were successfully imported * content: * application/json: * schema: * $ref: "#/components/schemas/User_invitations" * 401: * $ref: "#/components/responses/UnauthorizedError" * 405: * description: Invalid input data * 500: * description: Some server error * */ router.post('/bulk-import', wrapAsync(async (req, res) => { const referer = req.headers.referer || `${req.protocol}://${req.hostname}${req.originalUrl}`; const link = new URL(referer); await User_invitationsService.bulkImport(req, res, true, link.host); const payload = true; res.status(200).send(payload); })); /** * @swagger * /api/user_invitations/{id}: * put: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Update the data of the selected item * description: Update the data of the selected item * parameters: * - in: path * name: id * description: Item ID to update * required: true * schema: * type: string * requestBody: * description: Set new item data * required: true * content: * application/json: * schema: * properties: * id: * description: ID of the updated item * type: string * data: * description: Data of the updated item * type: object * $ref: "#/components/schemas/User_invitations" * required: * - id * responses: * 200: * description: The item data was successfully updated * content: * application/json: * schema: * $ref: "#/components/schemas/User_invitations" * 400: * description: Invalid ID supplied * 401: * $ref: "#/components/responses/UnauthorizedError" * 404: * description: Item not found * 500: * description: Some server error */ router.put('/:id', wrapAsync(async (req, res) => { await User_invitationsService.update(req.body.data, req.body.id, req.currentUser); const payload = true; res.status(200).send(payload); })); /** * @swagger * /api/user_invitations/{id}: * delete: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Delete the selected item * description: Delete the selected item * parameters: * - in: path * name: id * description: Item ID to delete * required: true * schema: * type: string * responses: * 200: * description: The item was successfully deleted * content: * application/json: * schema: * $ref: "#/components/schemas/User_invitations" * 400: * description: Invalid ID supplied * 401: * $ref: "#/components/responses/UnauthorizedError" * 404: * description: Item not found * 500: * description: Some server error */ router.delete('/:id', wrapAsync(async (req, res) => { await User_invitationsService.remove(req.params.id, req.currentUser); const payload = true; res.status(200).send(payload); })); /** * @swagger * /api/user_invitations/deleteByIds: * post: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Delete the selected item list * description: Delete the selected item list * requestBody: * required: true * content: * application/json: * schema: * properties: * ids: * description: IDs of the updated items * type: array * responses: * 200: * description: The items was successfully deleted * content: * application/json: * schema: * $ref: "#/components/schemas/User_invitations" * 401: * $ref: "#/components/responses/UnauthorizedError" * 404: * description: Items not found * 500: * description: Some server error */ router.post('/deleteByIds', wrapAsync(async (req, res) => { await User_invitationsService.deleteByIds(req.body.data, req.currentUser); const payload = true; res.status(200).send(payload); })); /** * @swagger * /api/user_invitations: * get: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Get all user_invitations * description: Get all user_invitations * responses: * 200: * description: User_invitations list successfully received * content: * application/json: * schema: * type: array * items: * $ref: "#/components/schemas/User_invitations" * 401: * $ref: "#/components/responses/UnauthorizedError" * 404: * description: Data not found * 500: * description: Some server error */ router.get('/', wrapAsync(async (req, res) => { const filetype = req.query.filetype const globalAccess = req.currentUser.app_role.globalAccess; const currentUser = req.currentUser; const payload = await User_invitationsDBApi.findAll( req.query, globalAccess, { currentUser } ); if (filetype && filetype === 'csv') { const fields = ['id','invitee_email','invitee_name','invite_token_hash', 'expires_at','accepted_at','revoked_at', ]; const opts = { fields }; try { const csv = parse(payload.rows, opts); res.status(200).attachment(csv); res.send(csv) } catch (err) { console.error(err); } } else { res.status(200).send(payload); } })); /** * @swagger * /api/user_invitations/count: * get: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Count all user_invitations * description: Count all user_invitations * responses: * 200: * description: User_invitations count successfully received * content: * application/json: * schema: * type: array * items: * $ref: "#/components/schemas/User_invitations" * 401: * $ref: "#/components/responses/UnauthorizedError" * 404: * description: Data not found * 500: * description: Some server error */ router.get('/count', wrapAsync(async (req, res) => { const globalAccess = req.currentUser.app_role.globalAccess; const currentUser = req.currentUser; const payload = await User_invitationsDBApi.findAll( req.query, globalAccess, { countOnly: true, currentUser } ); res.status(200).send(payload); })); /** * @swagger * /api/user_invitations/autocomplete: * get: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Find all user_invitations that match search criteria * description: Find all user_invitations that match search criteria * responses: * 200: * description: User_invitations list successfully received * content: * application/json: * schema: * type: array * items: * $ref: "#/components/schemas/User_invitations" * 401: * $ref: "#/components/responses/UnauthorizedError" * 404: * description: Data not found * 500: * description: Some server error */ router.get('/autocomplete', async (req, res) => { const globalAccess = req.currentUser.app_role.globalAccess; const organizationId = req.currentUser.organization?.id const payload = await User_invitationsDBApi.findAllAutocomplete( req.query.query, req.query.limit, req.query.offset, globalAccess, organizationId, ); res.status(200).send(payload); }); /** * @swagger * /api/user_invitations/{id}: * get: * security: * - bearerAuth: [] * tags: [User_invitations] * summary: Get selected item * description: Get selected item * parameters: * - in: path * name: id * description: ID of item to get * required: true * schema: * type: string * responses: * 200: * description: Selected item successfully received * content: * application/json: * schema: * $ref: "#/components/schemas/User_invitations" * 400: * description: Invalid ID supplied * 401: * $ref: "#/components/responses/UnauthorizedError" * 404: * description: Item not found * 500: * description: Some server error */ router.get('/:id', wrapAsync(async (req, res) => { const payload = await User_invitationsDBApi.findBy( { id: req.params.id }, { currentUser: req.currentUser }, ); if (!payload) { throw TenantAccess.getNotFoundError(); } res.status(200).send(payload); })); router.use('/', require('../helpers').commonErrorHandler); module.exports = router;