np-dms/lcbp3
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

260219:1551 20260219 TASK-BEFE-001 fix Admin Panel #1
All checks were successful
Build and Deploy / deploy (push) Successful in 2m47s
Details

Browse Source
This commit is contained in:
admin
2026-02-19 15:51:06 +07:00
parent b84284f8a9
commit fbd663e870
1 changed files with 22 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
backend/src/common/auth/auth.service.ts
View File

@@ -44,6 +44,8 @@ export class AuthService {
const user = await this.usersRepository const user = await this.usersRepository
.createQueryBuilder('user') .createQueryBuilder('user')
.addSelect('user.password') .addSelect('user.password')
.leftJoinAndSelect('user.assignments', 'assignments')
.leftJoinAndSelect('assignments.role', 'role')
.where('user.username = :username', { username }) .where('user.username = :username', { username })
.getOne(); .getOne();
@@ -54,9 +56,28 @@ export class AuthService {
// ตรวจสอบว่ามี user และมี password hash หรือไม่ // ตรวจสอบว่ามี user และมี password hash หรือไม่
if (user && user.password && (await bcrypt.compare(pass, user.password))) { if (user && user.password && (await bcrypt.compare(pass, user.password))) {
// Logic: Map RBAC Roles to 'ADMIN' | 'DC' | 'User' for Frontend Compatibility
// Roles Table: 'Superadmin', 'Org Admin', 'Document Control', 'Editor', 'Viewer'
let derivedRole = 'User';
if (user.assignments && user.assignments.length > 0) {
const roleNames = user.assignments
.map((a) => a.role?.roleName)
.filter(Boolean);
// Check for Admin privileges
if (roleNames.some((r) => r === 'Superadmin' || r === 'Org Admin')) {
derivedRole = 'ADMIN';
}
// Check for Document Control privileges
else if (roleNames.some((r) => r === 'Document Control')) {
derivedRole = 'DC';
}
}
// eslint-disable-next-line @typescript-eslint/no-unused-vars // eslint-disable-next-line @typescript-eslint/no-unused-vars
const { password, ...result } = user; const { password, ...result } = user;
return result; return { ...result, role: derivedRole };
} }
return null; return null;
} }