staart
diff --git a/‎src/rest/email.ts‎
Lines changed: 31 additions & 4 deletions b/‎src/rest/email.ts‎
Lines changed: 31 additions & 4 deletions
diff --git a/‎src/rest/organization.ts‎
Lines changed: 9 additions & 0 deletions b/‎src/rest/organization.ts‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎src/routes/admin.ts‎
Lines changed: 18 additions & 10 deletions b/‎src/routes/admin.ts‎
Lines changed: 18 additions & 10 deletions
diff --git a/‎src/routes/auth.ts‎
Lines changed: 93 additions & 93 deletions b/‎src/routes/auth.ts‎
Lines changed: 93 additions & 93 deletions
diff --git a/‎src/routes/emails.ts‎
Lines changed: 0 additions & 42 deletions b/‎src/routes/emails.ts‎
Lines changed: 0 additions & 42 deletions
@@ -6,7 +6,8 @@ import {
   getUserPrimaryEmailObject,
   deleteEmail,
   getUserEmails,
-  checkIfNewEmail
+  checkIfNewEmail,
+  resendEmailVerification
 } from "../crud/email";
 import { createEvent } from "../crud/event";
 import {
@@ -28,11 +29,34 @@ export const getAllEmailsForUser = async (
   throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
 };
 
-export const addEmailToUser = async (
+export const getEmailForUser = async (
+  tokenUserId: number,
+  userId: number,
+  emailId: number
+) => {
+  if (await can(tokenUserId, Authorizations.READ, "user", userId))
+    return await getEmail(emailId);
+  throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
+};
+
+export const resendEmailVerificationForUser = async (
+  tokenUserId: number,
+  userId: number,
+  emailId: number
+) => {
+  if (await can(tokenUserId, Authorizations.UPDATE, "user", userId))
+    return await resendEmailVerification(emailId);
+  throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
+};
+
+export const addEmailToUserForUser = async (
+  tokenUserId: number,
   userId: number,
   email: string,
   locals: Locals
 ) => {
+  if (await can(tokenUserId, Authorizations.UPDATE, "user", userId))
+    throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
   validate(email, ValidationTypes.EMAIL);
   await checkIfNewEmail(email);
   await createEmail({ email, userId });
@@ -43,11 +67,14 @@ export const addEmailToUser = async (
   return;
 };
 
-export const deleteEmailFromUser = async (
-  emailId: number,
+export const deleteEmailFromUserForUser = async (
+  tokenUserId: number,
   userId: number,
+  emailId: number,
   locals: Locals
 ) => {
+  if (await can(tokenUserId, Authorizations.UPDATE, "user", userId))
+    throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
   const email = await getEmail(emailId);
   if (email.userId != userId)
     throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
 
@@ -351,3 +351,12 @@ export const getOrganizationRecentEventsForUser = async (
     return await getOrganizationRecentEvents(organizationId);
   throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
 };
+
+export const getOrganizationMembershipsForUser = async (
+  userId: number,
+  organizationId: number
+) => {
+  if (await can(userId, Authorizations.READ, "organization", organizationId))
+    return await getOrganizationMemberDetails(organizationId);
+  throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
+};
@@ -1,15 +1,23 @@
 import { Request, Response } from "express";
 import { ErrorCode } from "../interfaces/enum";
 import { getAllOrganizationForUser, getAllUsersForUser } from "../rest/admin";
+import { Get, Controller, ClassMiddleware } from "@overnightjs/core";
+import { authHandler } from "../helpers/middleware";
 
-export const routeAdminOrganizations = async (req: Request, res: Response) => {
-  const userId = res.locals.token.id;
-  if (!userId) throw new Error(ErrorCode.MISSING_FIELD);
-  res.json(await getAllOrganizationForUser(userId));
-};
+@Controller("admin")
+@ClassMiddleware(authHandler)
+export class AdminController {
+  @Get("organizations")
+  async getOrganizations(req: Request, res: Response) {
+    const userId = res.locals.token.id;
+    if (!userId) throw new Error(ErrorCode.MISSING_FIELD);
+    res.json(await getAllOrganizationForUser(userId));
+  }
 
-export const routeAdminUsers = async (req: Request, res: Response) => {
-  const userId = res.locals.token.id;
-  if (!userId) throw new Error(ErrorCode.MISSING_FIELD);
-  res.json(await getAllUsersForUser(userId));
-};
+  @Get("users")
+  async getUsers(req: Request, res: Response) {
+    const userId = res.locals.token.id;
+    if (!userId) throw new Error(ErrorCode.MISSING_FIELD);
+    res.json(await getAllUsersForUser(userId));
+  }
+}
@@ -1,115 +1,115 @@
 import { Request, Response } from "express";
-import { ErrorCode, UserRole, Tokens } from "../interfaces/enum";
+import { ErrorCode } from "../interfaces/enum";
 import {
   sendPasswordReset,
   login,
   updatePassword,
-  register,
   validateRefreshToken,
   loginWithGoogleLink,
   loginWithGoogleVerify,
   impersonate,
-  approveLocation
+  approveLocation,
+  verifyEmail
 } from "../rest/auth";
 import { verifyToken } from "../helpers/jwt";
+import {
+  Get,
+  Post,
+  Controller,
+  ClassMiddleware,
+  Middleware
+} from "@overnightjs/core";
+import { authHandler } from "../helpers/middleware";
 
-export const routeAuthVerifyToken = async (req: Request, res: Response) => {
-  const token =
-    req.body.token || (req.get("Authorization") || "").replace("Bearer ", "");
-  const subject = req.body.subject;
-  if (!token || !subject) throw new Error(ErrorCode.MISSING_FIELD);
-  try {
-    const data = await verifyToken(token, subject);
-    res.json({ verified: true, data });
-  } catch (error) {
-    throw new Error(ErrorCode.INVALID_TOKEN);
+@Controller("auth")
+export class AuthController {
+  @Post("login")
+  async login(req: Request, res: Response) {
+    const email = req.body.email;
+    const password = req.body.password;
+    if (!email || !password) throw new Error(ErrorCode.MISSING_FIELD);
+    res.json(await login(email, password, res.locals));
   }
-};
 
-export const routeAuthLogin = async (req: Request, res: Response) => {
-  const email = req.body.email;
-  const password = req.body.password;
-  if (!email || !password) throw new Error(ErrorCode.MISSING_FIELD);
-  res.json(await login(email, password, res.locals));
-};
+  @Post("verify-token")
+  @Middleware(authHandler)
+  async postVerifyToken(req: Request, res: Response) {
+    const token =
+      req.body.token || (req.get("Authorization") || "").replace("Bearer ", "");
+    const subject = req.body.subject;
+    if (!token || !subject) throw new Error(ErrorCode.MISSING_FIELD);
+    try {
+      const data = await verifyToken(token, subject);
+      res.json({ verified: true, data });
+    } catch (error) {
+      throw new Error(ErrorCode.INVALID_TOKEN);
+    }
+  }
 
-export const routeAuthRefresh = async (req: Request, res: Response) => {
-  const token =
-    req.body.token || (req.get("Authorization") || "").replace("Bearer ", "");
-  if (!token) throw new Error(ErrorCode.MISSING_TOKEN);
-  res.json(await validateRefreshToken(token, res.locals));
-};
+  @Post("refresh")
+  @Middleware(authHandler)
+  async postRefreshToken(req: Request, res: Response) {
+    const token =
+      req.body.token || (req.get("Authorization") || "").replace("Bearer ", "");
+    if (!token) throw new Error(ErrorCode.MISSING_TOKEN);
+    res.json(await validateRefreshToken(token, res.locals));
+  }
 
-export const routeAuthRegister = async (req: Request, res: Response) => {
-  const email = req.body.email;
-  const user = req.body;
-  delete user.organizationId;
-  delete user.email;
-  if (user.role == UserRole.ADMIN) delete user.role;
-  delete user.membershipRole;
-  if (!req.body.name || !email) throw new Error(ErrorCode.MISSING_FIELD);
-  await register(
-    user,
-    res.locals,
-    email,
-    req.body.organizationId,
-    req.body.membershipRole
-  );
-  res.json({ success: true });
-};
+  @Post("reset-password/request")
+  async postResetPasswordRequest(req: Request, res: Response) {
+    const email = req.body && req.body.email;
+    if (!email) throw new Error(ErrorCode.MISSING_FIELD);
+    await sendPasswordReset(email, res.locals);
+    res.json({ queued: true });
+  }
 
-export const routeAuthResetPasswordRequest = async (
-  req: Request,
-  res: Response
-) => {
-  const email = req.body && req.body.email;
-  if (!email) throw new Error(ErrorCode.MISSING_FIELD);
-  await sendPasswordReset(email, res.locals);
-  res.json({ queued: true });
-};
+  @Post("reset-password/recover")
+  async postResetPasswordRecover(req: Request, res: Response) {
+    const token =
+      req.body.token || (req.get("Authorization") || "").replace("Bearer ", "");
+    const password = req.body.password;
+    if (!token || !password) throw new Error(ErrorCode.MISSING_FIELD);
+    await updatePassword(token, password, res.locals);
+    res.json({ success: true });
+  }
 
-export const routeAuthResetPasswordRecover = async (
-  req: Request,
-  res: Response
-) => {
-  const token =
-    req.body.token || (req.get("Authorization") || "").replace("Bearer ", "");
-  const password = req.body.password;
-  if (!token || !password) throw new Error(ErrorCode.MISSING_FIELD);
-  await updatePassword(token, password, res.locals);
-  res.json({ success: true });
-};
+  @Get("google/link")
+  async getLoginWithGoogleLink(req: Request, res: Response) {
+    res.json({
+      redirect: loginWithGoogleLink()
+    });
+  }
 
-export const routeAuthLoginWithGoogleLink = async (
-  req: Request,
-  res: Response
-) => {
-  res.json({
-    redirect: loginWithGoogleLink()
-  });
-};
+  @Post("google/verify")
+  async postLoginWithGoogleVerify(req: Request, res: Response) {
+    const code =
+      req.body.code || (req.get("Authorization") || "").replace("Bearer ", "");
+    if (!code) throw new Error(ErrorCode.MISSING_TOKEN);
+    res.json(await loginWithGoogleVerify(code, res.locals));
+  }
 
-export const routeAuthLoginWithGoogleVerify = async (
-  req: Request,
-  res: Response
-) => {
-  const code =
-    req.body.code || (req.get("Authorization") || "").replace("Bearer ", "");
-  if (!code) throw new Error(ErrorCode.MISSING_TOKEN);
-  res.json(await loginWithGoogleVerify(code, res.locals));
-};
+  @Post("impersonate/:id")
+  @Middleware(authHandler)
+  async getImpersonate(req: Request, res: Response) {
+    const tokenUserId = res.locals.token.id;
+    const impersonateUserId = req.params.id;
+    if (!tokenUserId || !impersonateUserId)
+      throw new Error(ErrorCode.MISSING_FIELD);
+    res.json(await impersonate(tokenUserId, impersonateUserId));
+  }
 
-export const routeAuthImpersonate = async (req: Request, res: Response) => {
-  const tokenUserId = res.locals.token.id;
-  const impersonateUserId = req.params.id;
-  if (!tokenUserId || !impersonateUserId)
-    throw new Error(ErrorCode.MISSING_FIELD);
-  res.json(await impersonate(tokenUserId, impersonateUserId));
-};
+  @Get("approve-location")
+  @Middleware(authHandler)
+  async getApproveLocation(req: Request, res: Response) {
+    const token =
+      req.body.token || (req.get("Authorization") || "").replace("Bearer ", "");
+    if (!token) throw new Error(ErrorCode.MISSING_FIELD);
+    res.json(await approveLocation(token, res.locals));
+  }
 
-export const routeAuthApproveLocation = async (req: Request, res: Response) => {
-  const token =
-    req.body.token || (req.get("Authorization") || "").replace("Bearer ", "");
-  if (!token) throw new Error(ErrorCode.MISSING_FIELD);
-  res.json(await approveLocation(token, res.locals));
-};
+  @Get("verify-email")
+  async postVerifyEmail(req: Request, res: Response) {
+    await verifyEmail(req.body.token || req.params.token, res.locals);
+    res.json({ success: true });
+  }
+}