✨ Endpoints for admin interface

Author: AnandChowdhary

src/crud/organization.ts

@@ -62,3 +62,10 @@ export const deleteOrganization = async (id: number) => {
   deleteItemFromCache(CacheCategories.ORGANIZATION, id);
   return await query("DELETE FROM organizations WHERE id = ?", [id]);
 };
+
+/*
+ * Get all organizations
+ */
+export const getAllOrganizations = async () => {
+  return <Organization[]>await query("SELECT * FROM organizations");
+};

src/crud/user.ts

@@ -26,7 +26,7 @@ import md5 from "md5";
 /**
  * Get a list of all users
  */
-export const listAllUsers = async () => {
+export const getAllUsers = async () => {
   return <User[]>await query("SELECT * from users");
 };
 

src/helpers/authorization.ts

@@ -138,15 +138,25 @@ const canUserMembership = async (
   return allowed;
 };
 
+/**
+ * Whether a user can perform an action for the backend
+ */
+const canUserGeneral = async (user: User, action: Authorizations) => {
+  // A super user can do anything
+  if (user.role == UserRole.ADMIN) return true;
+
+  return false;
+};
+
 /**
  * Whether a user has authorization to perform an action
  * @param ipAddress  IP address for the new location
  */
 export const can = async (
   user: User | number,
   action: Authorizations,
-  targetType: "user" | "organization" | "membership",
-  target: User | Organization | Membership | number
+  targetType: "user" | "organization" | "membership" | "general",
+  target?: User | Organization | Membership | number
 ) => {
   let userObject;
   if (typeof user === "number") {
@@ -174,9 +184,11 @@ export const can = async (
     return await canUserOrganization(userObject, action, <Organization>(
       targetObject
     ));
-  } else {
+  } else if (targetType === "membership") {
     return await canUserMembership(userObject, action, <Membership>(
       targetObject
     ));
+  } else {
+    return await canUserGeneral(userObject, action);
   }
 };

src/rest/admin.ts

@@ -0,0 +1,16 @@
+import { can } from "../helpers/authorization";
+import { Authorizations, ErrorCode } from "../interfaces/enum";
+import { getAllOrganizations } from "../crud/organization";
+import { getAllUsers } from "../crud/user";
+
+export const getAllOrganizationForUser = async (tokenUserId: number) => {
+  if (await can(tokenUserId, Authorizations.READ, "general"))
+    return await getAllOrganizations();
+  throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
+};
+
+export const getAllUsersForUser = async (tokenUserId: number) => {
+  if (await can(tokenUserId, Authorizations.READ, "general"))
+    return await getAllUsers();
+  throw new Error(ErrorCode.INSUFFICIENT_PERMISSION);
+};

src/routes/admin.ts

@@ -0,0 +1,15 @@
+import { Request, Response } from "express";
+import { ErrorCode } from "../interfaces/enum";
+import { getAllOrganizationForUser, getAllUsersForUser } from "../rest/admin";
+
+export const routeAdminOrganizations = async (req: Request, res: Response) => {
+  const userId = res.locals.token.id;
+  if (!userId) throw new Error(ErrorCode.MISSING_FIELD);
+  res.json(await getAllOrganizationForUser(userId));
+};
+
+export const routeAdminUsers = async (req: Request, res: Response) => {
+  const userId = res.locals.token.id;
+  if (!userId) throw new Error(ErrorCode.MISSING_FIELD);
+  res.json(await getAllUsersForUser(userId));
+};

src/routes/index.ts

@@ -44,6 +44,7 @@ import {
   routeMembershipDelete,
   routeMembershipUpdate
 } from "./membership";
+import { routeAdminUsers, routeAdminOrganizations } from "./admin";
 
 export const router = (app: Application) => {
   app.get("/", (req, res) => res.json({ hello: "world" }));
@@ -53,6 +54,7 @@ export const router = (app: Application) => {
   routesEmail(app);
   routesOrganization(app);
   routesMembership(app);
+  routesAdmin(app);
 
   return app;
 };
@@ -167,3 +169,8 @@ const routesMembership = (app: Application) => {
     asyncHandler(routeMembershipDelete)
   );
 };
+
+const routesAdmin = (app: Application) => {
+  app.get("/users", authHandler, asyncHandler(routeAdminUsers));
+  app.get("/organizations", authHandler, asyncHandler(routeAdminOrganizations));
+};