✨ Support for team username

Author: AnandChowdhary

package.json

@@ -1,6 +1,6 @@
 {
   "name": "staart",
-  "version": "1.0.10",
+  "version": "1.0.11",
   "main": "index.js",
   "repository": "git@github.com:AnandChowdhary/staart.git",
   "author": "Anand Chowdhary <mail@anandchowdhary.com>",

src/controllers/organization.ts

@@ -36,7 +36,7 @@ import { MembershipRole } from "../interfaces/enum";
 import { CREATED } from "http-status-codes";
 import asyncHandler from "express-async-handler";
 import { inviteMemberToOrganization } from "../rest/membership";
-import { joiValidate } from "../helpers/utils";
+import { joiValidate, organizationUsernameToId } from "../helpers/utils";
 import Joi from "@hapi/joi";
 
 @Controller("organizations")
@@ -71,15 +71,15 @@ export class OrganizationController {
 
   @Get(":id")
   async get(req: Request, res: Response) {
-    const id = req.params.id;
+    const id = await organizationUsernameToId(req.params.id);
     joiValidate({ id: Joi.number().required() }, { id });
     const organization = await getOrganizationForUser(res.locals.token.id, id);
     res.json(organization);
   }
 
   @Patch(":id")
   async patch(req: Request, res: Response) {
-    const id = req.params.id;
+    const id = await organizationUsernameToId(req.params.id);
     joiValidate({ id: Joi.number().required() }, { id });
     await updateOrganizationForUser(
       res.locals.token.id,
@@ -92,7 +92,7 @@ export class OrganizationController {
 
   @Delete(":id")
   async delete(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     const userId = res.locals.token.id;
     joiValidate(
       { organizationId: Joi.number().required() },
@@ -104,7 +104,7 @@ export class OrganizationController {
 
   @Get(":id/billing")
   async getBilling(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -116,7 +116,7 @@ export class OrganizationController {
 
   @Patch(":id/billing")
   async patchBilling(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -132,7 +132,7 @@ export class OrganizationController {
 
   @Get(":id/invoices")
   async getInvoices(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -159,7 +159,7 @@ export class OrganizationController {
 
   @Get(":id/invoices/:invoiceId")
   async getInvoice(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     const invoiceId = req.params.invoiceId;
     joiValidate(
       {
@@ -179,7 +179,7 @@ export class OrganizationController {
 
   @Get(":id/sources")
   async getSources(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -203,7 +203,7 @@ export class OrganizationController {
 
   @Get(":id/sources/:sourceId")
   async getSource(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     const sourceId = req.params.sourceId;
     joiValidate(
       {
@@ -223,7 +223,7 @@ export class OrganizationController {
 
   @Get(":id/subscriptions")
   async getSubscriptions(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -250,7 +250,7 @@ export class OrganizationController {
 
   @Get(":id/subscriptions/:subscriptionId")
   async getSubscription(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     const subscriptionId = req.params.subscriptionId;
     joiValidate(
       {
@@ -270,7 +270,7 @@ export class OrganizationController {
 
   @Patch(":id/subscriptions/:subscriptionId")
   async patchSubscription(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     const subscriptionId = req.params.subscriptionId;
     const data = req.body;
     joiValidate(
@@ -301,7 +301,7 @@ export class OrganizationController {
 
   @Put(":id/subscriptions")
   async putSubscriptions(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -328,7 +328,7 @@ export class OrganizationController {
   @Get(":id/pricing/:product")
   async getPlans(req: Request, res: Response) {
     const product = req.params.product;
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       {
         organizationId: Joi.number().required(),
@@ -347,7 +347,7 @@ export class OrganizationController {
 
   @Put(":id/sources")
   async putSources(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -366,7 +366,7 @@ export class OrganizationController {
   @Delete(":id/sources/:sourceId")
   async deleteSource(req: Request, res: Response) {
     const sourceId = req.params.sourceId;
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       {
         organizationId: Joi.number().required(),
@@ -386,7 +386,7 @@ export class OrganizationController {
   @Patch(":id/sources/:sourceId")
   async patchSource(req: Request, res: Response) {
     const sourceId = req.params.sourceId;
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       {
         organizationId: Joi.number().required(),
@@ -406,7 +406,7 @@ export class OrganizationController {
 
   @Get(":id/data")
   async getData(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -418,7 +418,7 @@ export class OrganizationController {
 
   @Get(":id/events")
   async getEvents(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -433,7 +433,7 @@ export class OrganizationController {
 
   @Get(":id/memberships")
   async getMemberships(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     joiValidate(
       { organizationId: Joi.number().required() },
       { organizationId }
@@ -449,7 +449,7 @@ export class OrganizationController {
 
   @Put(":id/memberships")
   async putMemberships(req: Request, res: Response) {
-    const organizationId = req.params.id;
+    const organizationId = await organizationUsernameToId(req.params.id);
     const newMemberName = req.body.name;
     const newMemberEmail = req.body.email;
     const role = req.body.role;

src/crud/organization.ts

@@ -8,7 +8,7 @@ import { Organization } from "../interfaces/tables/organization";
 import { capitalizeFirstAndLastLetter, dateToDateTime } from "../helpers/utils";
 import { KeyValue } from "../interfaces/general";
 import { cachedQuery, deleteItemFromCache } from "../helpers/cache";
-import { CacheCategories } from "../interfaces/enum";
+import { CacheCategories, ErrorCode } from "../interfaces/enum";
 
 /*
  * Create a new organization for a user
@@ -29,14 +29,32 @@ export const createOrganization = async (organization: Organization) => {
  * Get the details of a specific organization
  */
 export const getOrganization = async (id: number) => {
-  return (<Organization[]>(
+  const org = (<Organization[]>(
     await cachedQuery(
       CacheCategories.ORGANIZATION,
       id,
       `SELECT * FROM organizations WHERE id = ? LIMIT 1`,
       [id]
     )
   ))[0];
+  if (org) return org;
+  throw new Error(ErrorCode.ORGANIZATION_NOT_FOUND);
+};
+
+/*
+ * Get the details of a specific organization
+ */
+export const getOrganizationIdFromUsername = async (username: string) => {
+  const org = (<Organization[]>(
+    await cachedQuery(
+      CacheCategories.ORGANIZATION_USERNAME,
+      username,
+      `SELECT id FROM organizations WHERE username = ? LIMIT 1`,
+      [username]
+    )
+  ))[0];
+  if (org && org.id) return org.id;
+  throw new Error(ErrorCode.ORGANIZATION_NOT_FOUND);
 };
 
 /*

src/helpers/authorization.ts

@@ -6,7 +6,7 @@ import {
   UserRole,
   MembershipRole
 } from "../interfaces/enum";
-import { getUser } from "../crud/user";
+import { getUser, getApiKey } from "../crud/user";
 import { getUserMemberships, getMembership } from "../crud/membership";
 import { getOrganization } from "../crud/organization";
 import { Membership } from "../interfaces/tables/memberships";
@@ -179,42 +179,44 @@ export const can = async (
   targetType: "user" | "organization" | "membership" | "api-key" | "general",
   target?: User | Organization | Membership | ApiKey | number
 ) => {
-  let userObject;
-  if (typeof user === "number") {
-    userObject = await getUser(user);
+  let userObject: User;
+  if (typeof target === "object") {
+    userObject = target as User;
   } else {
-    userObject = user;
-  }
-  let targetObject;
-  if (typeof target === "string") {
-    let newTarget = parseInt(target);
-    if (!isNaN(newTarget)) target = newTarget;
-  }
-  if (typeof target == "number") {
-    if (targetType === "user") {
-      targetObject = await getUser(target);
-    } else if (targetType === "organization") {
-      targetObject = await getOrganization(target);
-    } else {
-      targetObject = await getMembership(target);
-    }
-  } else {
-    targetObject = target;
+    userObject = await getUser(user as number);
   }
   if (!userObject.id) throw new Error(ErrorCode.USER_NOT_FOUND);
+
+  let targetObject: User | Organization | Membership | ApiKey;
   if (targetType === "user") {
-    return await canUserUser(userObject, action, <User>targetObject);
+    if (typeof target === "string" || typeof target === "number")
+      targetObject = await getUser(target);
+    else targetObject = target as User;
+    return await canUserUser(userObject, action, targetObject as User);
   } else if (targetType === "organization") {
-    return await canUserOrganization(userObject, action, <Organization>(
-      targetObject
-    ));
+    if (typeof target === "string" || typeof target === "number")
+      targetObject = await getOrganization(target);
+    else targetObject = target as Organization;
+    return await canUserOrganization(
+      userObject,
+      action,
+      targetObject as Organization
+    );
   } else if (targetType === "membership") {
-    return await canUserMembership(userObject, action, <Membership>(
-      targetObject
-    ));
+    if (typeof target === "string" || typeof target === "number")
+      targetObject = await getMembership(target);
+    else targetObject = target as Membership;
+    return await canUserMembership(
+      userObject,
+      action,
+      targetObject as Membership
+    );
   } else if (targetType === "api-key") {
-    return await canUserApiKey(userObject, action, <ApiKey>targetObject);
-  } else {
-    return await canUserGeneral(userObject, action);
+    if (typeof target === "string" || typeof target === "number")
+      targetObject = await getApiKey(target.toString());
+    else targetObject = target as ApiKey;
+    return await canUserApiKey(userObject, action, targetObject as ApiKey);
   }
+
+  return await canUserGeneral(userObject, action);
 };

src/helpers/utils.ts

@@ -1,6 +1,7 @@
 import anonymize from "ip-anonymize";
 import { User } from "../interfaces/tables/user";
 import Joi from "@hapi/joi";
+import { getOrganizationIdFromUsername } from "../crud/organization";
 
 /**
  * Capitalize each first letter in a string
@@ -52,6 +53,14 @@ export const deleteSensitiveInfoUser = (user: User) => {
 export const anonymizeIpAddress = (ipAddress: string) =>
   anonymize(ipAddress) || ipAddress;
 
+export const organizationUsernameToId = async (id: string) => {
+  if (isNaN(Number(id))) {
+    return await getOrganizationIdFromUsername(id);
+  } else {
+    return parseInt(id);
+  }
+};
+
 /**
  * MySQL columns which are booleans
  */

src/interfaces/enum.ts

@@ -104,6 +104,7 @@ export enum CacheCategories {
   ORGANIZATION_MEMBERSHIPS = "memberships",
   MEMBERSHIP = "membership",
   ORGANIZATION = "organization",
+  ORGANIZATION_USERNAME = "organization-username",
   APPROVE_LOCATIONS = "approved-locations",
   APPROVE_LOCATION = "approved-location",
   IP_LOOKUP = "ip-lookup",