UI improvements / Add customer filters

Author: skadefro

OpenFlow/src/DatabaseConnection.ts

@@ -885,7 +885,7 @@ export class DatabaseConnection {
                     }
                 }
                 if (!NoderedUtil.IsNullEmpty(user2.customerid)) {
-                    if (!user.HasRoleName("customer admins")) throw new Error("Access denied (not admin) to customer with id " + user2.customerid);
+                    if (!user.HasRoleName("customer admins") && !user.HasRoleName("admins")) throw new Error("Access denied (not admin) to customer with id " + user2.customerid);
                     customer = await this.getbyid<Customer>(user2.customerid, "users", jwt, span)
                     if (customer == null) throw new Error("Access denied to customer with id " + user2.customerid);
                 } if (Config.multi_tenant && !user.HasRoleName("admins")) {
@@ -1245,6 +1245,7 @@ export class DatabaseConnection {
     }
     async UpdateOne<T extends Base>(q: UpdateOneMessage, parent: Span): Promise<UpdateOneMessage> {
         const span: Span = Logger.otel.startSubSpan("db.UpdateOne", parent);
+        let customer: Customer = null;
         try {
             let itemReplace: boolean = true;
             if (q === null || q === undefined) { throw Error("UpdateOneMessage cannot be null"); }
@@ -1279,6 +1280,21 @@ export class DatabaseConnection {
                         }
                     }
                 }
+                if (q.collectionname === "users" && (q.item._type === "user" || q.item._type === "role")) {
+                    let user2: User = q.item as any;
+                    if (!NoderedUtil.IsNullEmpty(user2.customerid)) {
+                        if (!user.HasRoleName("customer admins") && !user.HasRoleName("admins")) throw new Error("Access denied (not admin) to customer with id " + user2.customerid);
+                        customer = await this.getbyid<Customer>(user2.customerid, "users", q.jwt, span)
+                        if (customer == null) throw new Error("Access denied to customer with id " + user2.customerid);
+                    } if (Config.multi_tenant && !user.HasRoleName("admins")) {
+                        throw new Error("Access denied (not admin or customer admin)");
+                    }
+                    if (customer != null) {
+                        const custadmins = await this.getbyid<Role>(customer.admins, "users", q.jwt, span);
+                        Base.addRight(q.item, custadmins._id, custadmins.name, [Rights.full_control]);
+                    }
+                }
+
                 if (q.collectionname != "fs.files") {
                     q.item._modifiedby = user.name;
                     q.item._modifiedbyid = user._id;
@@ -2047,9 +2063,19 @@ export class DatabaseConnection {
         return { $or: finalor.concat() };
     }
     private async getbasequeryuserid(userid: string, field: string, bits: number[], parent: Span): Promise<Object> {
-        const user = await DBHelper.FindByUsernameOrId(null, userid, parent);
-        const jwt = Crypt.createToken(user, Config.shorttoken_expires_in);
-        return this.getbasequery(jwt, field, bits);
+        // const user = await DBHelper.FindByUsernameOrId(null, userid, parent);
+        let user: User = await this.getbyid(userid, "users", Crypt.rootToken(), parent);
+        if (user._type == "user") {
+            user = await DBHelper.DecorateWithRoles(user as any, parent);
+            const jwt = Crypt.createToken(user as any, Config.shorttoken_expires_in);
+            return this.getbasequery(jwt, field, bits);
+        } else if (user._type == "customer") {
+            user = await DBHelper.DecorateWithRoles(user as any, parent);
+            user.roles.push(new Rolemember(user.name + " users", (user as any).users))
+            user.roles.push(new Rolemember(user.name + " admins", (user as any).admins))
+            const jwt = Crypt.createToken(user as any, Config.shorttoken_expires_in);
+            return this.getbasequery(jwt, field, bits);
+        }
     }
     /**
      * Ensure _type and _acs on object

OpenFlow/src/public/CommonControllers.ts

@@ -278,6 +278,7 @@ export class entitiesCtrl<T> {
     public searchfields: string[] = ["name"];
     public basequeryas: string = null;
     public errormessage: string = "";
+    public skipcustomerfilter: boolean = false;
 
     public static $inject = [
         "$rootScope",
@@ -362,7 +363,18 @@ export class entitiesCtrl<T> {
             if (this.preloadData != null) {
                 this.preloadData();
             }
-            let query: object = this.basequery;
+            let query: object = Object.assign({}, this.basequery);
+            if (this.collection == "users" && (this.basequery._type == "user" || this.basequery._type == "role") && !this.skipcustomerfilter) {
+                // if (this.WebSocketClientService.user.selectedcustomerid != null) {
+                //     query["customerid"] = this.WebSocketClientService.user.selectedcustomerid;
+                // } else if (this.WebSocketClientService.user.customerid != null) {
+                //     query["customerid"] = this.WebSocketClientService.user.customerid;
+                // }
+            }
+            let basequeryas = this.basequeryas;
+            if (!NoderedUtil.IsNullUndefinded(this.WebSocketClientService.customer) && !this.skipcustomerfilter) {
+                basequeryas = this.WebSocketClientService.customer._id;
+            }
             if (this.searchstring !== "" && this.searchstring != null) {
                 if ((this.searchstring as string).indexOf("{") == 0) {
                     if ((this.searchstring as string).lastIndexOf("}") == ((this.searchstring as string).length - 1)) {
@@ -394,7 +406,7 @@ export class entitiesCtrl<T> {
 
                 }
             }
-            this.models = await NoderedUtil.Query(this.collection, query, this.baseprojection, this.orderby, this.pagesize, 0, null, this.basequeryas,
+            this.models = await NoderedUtil.Query(this.collection, query, this.baseprojection, this.orderby, this.pagesize, 0, null, basequeryas,
                 null, 2);
             this.loading = false;
             if (this.autorefresh) {

OpenFlow/src/public/Controllers.ts

@@ -87,19 +87,14 @@ export class MenuCtrl {
             this.signedin = true;
 
             this.customers = await NoderedUtil.Query("users", { _type: "customer" }, null, null, 100, 0, null, null, null, 2);
-            if (this.customers.length == 1) this.customer = this.customers[0];
-            if (this.customers.length > 1 && (data.customerid != null || data.selectedcustomerid != null)) {
-                this.customer = null;
-                if (data.selectedcustomerid != null) {
+            this.customer = null;
+            if (this.customers.length > 0 && (this.user.selectedcustomerid != null)) {
+                if (this.user.selectedcustomerid != null) {
                     for (let cust of this.customers)
-                        if (cust._id == data.selectedcustomerid) this.customer = cust;
-                }
-                if (this.customer == null) {
-                    for (let cust of this.customers)
-                        if (cust._id == data.customerid) this.customer = cust;
-
+                        if (cust._id == this.user.selectedcustomerid) this.customer = cust;
                 }
             }
+            this.WebSocketClientService.customer = this.customer as any;
             if (!this.$scope.$$phase) { this.$scope.$apply(); }
             // cleanup();
         });
@@ -111,15 +106,11 @@ export class MenuCtrl {
         this.$scope.$on('menurefresh', async (event, data) => {
             if (event && data) { }
             this.customers = await NoderedUtil.Query("users", { _type: "customer" }, null, null, 100, 0, null, null, null, 2);
-            if (this.customers.length == 1) this.customer = this.customers[0];
-            if (this.customers.length > 1 && data.customerid != null) {
-                for (let cust of this.customers)
-                    if (cust._id == data.customerid) this.customer = cust;
-            }
-            if (this.customers.length > 1 && data.selectedcustomerid != null) {
+            if (this.customers.length > 0 && this.user.selectedcustomerid != null) {
                 for (let cust of this.customers)
-                    if (cust._id == data.selectedcustomerid) this.customer = cust;
+                    if (cust._id == this.user.selectedcustomerid) this.customer = cust;
             }
+            this.WebSocketClientService.customer = this.customer as any;
             if (!this.$scope.$$phase) { this.$scope.$apply(); }
         });
     }
@@ -150,6 +141,27 @@ export class MenuCtrl {
     Search() {
         this.$rootScope.$broadcast("search", this.searchstring);
     }
+    SelectCustomer(customer) {
+        if (customer != null) {
+            if (this.WebSocketClientService.user.customerid == customer._id) {
+                this.WebSocketClientService.user.selectedcustomerid = null;
+            } else {
+                this.WebSocketClientService.user.selectedcustomerid = customer._id;
+            }
+            this.WebSocketClientService.customer = customer as any;
+            this.$rootScope.$broadcast("menurefresh");
+            this.$rootScope.$broadcast("search", this.searchstring);
+            if (this.PathIs("/Customer")) {
+                this.$location.path("/Customer/" + customer._id);
+                if (!this.$scope.$$phase) { this.$scope.$apply(); }
+            }
+        } else {
+            this.WebSocketClientService.user.selectedcustomerid = null;
+            this.WebSocketClientService.customer = null;
+            this.$rootScope.$broadcast("menurefresh");
+            this.$rootScope.$broadcast("search", this.searchstring);
+        }
+    }
 }
 export class RPAWorkflowCtrl extends entityCtrl<RPAWorkflow> {
     public arguments: any;
@@ -1128,6 +1140,7 @@ export class UsersCtrl extends entitiesCtrl<TokenUser> {
             this.orderby = this.userdata.data.UsersCtrl.orderby;
             this.searchstring = this.userdata.data.UsersCtrl.searchstring;
             this.basequeryas = this.userdata.data.UsersCtrl.basequeryas;
+            this.skipcustomerfilter = this.userdata.data.UsersCtrl.skipcustomerfilter;
         }
 
         WebSocketClientService.onSignedin((user: TokenUser) => {
@@ -1142,6 +1155,7 @@ export class UsersCtrl extends entitiesCtrl<TokenUser> {
         this.userdata.data.UsersCtrl.orderby = this.orderby;
         this.userdata.data.UsersCtrl.searchstring = this.searchstring;
         this.userdata.data.UsersCtrl.basequeryas = this.basequeryas;
+        this.userdata.data.UsersCtrl.skipcustomerfilter = this.skipcustomerfilter;
         this.loading = false;
         if (!this.$scope.$$phase) { this.$scope.$apply(); }
     }
@@ -1297,6 +1311,7 @@ export class RolesCtrl extends entitiesCtrl<Role> {
             this.orderby = this.userdata.data.RolesCtrl.orderby;
             this.searchstring = this.userdata.data.RolesCtrl.searchstring;
             this.basequeryas = this.userdata.data.RolesCtrl.basequeryas;
+            this.skipcustomerfilter = this.userdata.data.RolesCtrl.skipcustomerfilter;
         }
         WebSocketClientService.onSignedin((user: TokenUser) => {
             this.loadData();
@@ -1310,6 +1325,7 @@ export class RolesCtrl extends entitiesCtrl<Role> {
         this.userdata.data.RolesCtrl.orderby = this.orderby;
         this.userdata.data.RolesCtrl.searchstring = this.searchstring;
         this.userdata.data.RolesCtrl.basequeryas = this.basequeryas;
+        this.userdata.data.RolesCtrl.skipcustomerfilter = this.skipcustomerfilter;
         if (!this.$scope.$$phase) { this.$scope.$apply(); }
     }
 }
@@ -4951,6 +4967,12 @@ export class CustomerCtrl extends entityCtrl<Customer> {
     async processdata() {
         try {
             // this.stripe_customer = await NoderedUtil.EnsureStripeCustomer(this.model, this.userid, null, 2);
+            if (this.model != null) {
+                if (this.WebSocketClientService.user.selectedcustomerid != this.model._id) {
+                    this.WebSocketClientService.user.selectedcustomerid = this.model._id;
+                    this.$rootScope.$broadcast("menurefresh");
+                }
+            }
 
         } catch (error) {
 

OpenFlow/src/public/Roles.html

@@ -2,6 +2,8 @@
   <h1 translate lib="web">roles</h1>
 </div>
 <div class="col-sm-12 text-right">
+  <input type="checkbox" id="checkbox-1" ng-model="ctrl.skipcustomerfilter" ng-change="ctrl.Search()">
+  <label for="checkbox-1"><span translate lib="web">show all</span></label>
   <a href="#/Role" class="btn" translate lib="web">addrole</a>
 </div>
 <div ng-show="ctrl.errormessage != ''"" class=" alert alert-danger" role="alert">{{ctrl.errormessage}}</div>

OpenFlow/src/public/Users.html

@@ -1,7 +1,10 @@
 <div class="row">
   <h1 translate lib="web">users</h1>
 </div>
+
 <div class="col-sm-12 text-right">
+  <input type="checkbox" id="checkbox-1" ng-model="ctrl.skipcustomerfilter" ng-change="ctrl.Search()">
+  <label for="checkbox-1"><span translate lib="web">show all</span></label>
   <a href="#/User" class="btn btn-info" translate lib="web">Adduser</a>
 </div>
 <div ng-show="ctrl.errormessage != ''"" class=" alert alert-danger" role="alert">{{ctrl.errormessage}}</div>

OpenFlow/src/public/WebSocketClientService.ts

@@ -1,4 +1,4 @@
-import { WebSocketClient, TokenUser, NoderedUtil } from "@openiap/openflow-api";
+import { WebSocketClient, TokenUser, NoderedUtil, Customer } from "@openiap/openflow-api";
 
 interface IHashTable<T> {
     [key: string]: T;
@@ -144,6 +144,7 @@ export class WebSocketClientService {
         debug(msg) { console.debug(msg); },
         silly(msg) { console.debug(msg); }
     }
+    public customer: Customer = null;
     public user: TokenUser = null;
     public jwt: string = null;
     public version: string = "";

OpenFlow/src/public/index.html

@@ -116,8 +116,26 @@
             <i class="fa fa-angle-down" aria-hidden="true"></i>
           </button>
           <div class="dropdown-menu dropdown-menu-right w-200" aria-labelledby="navbar-dropdown-toggle-btn-1">
-            <a class="dropdown-item" ng-href="#/Customer/{{model._id}}"
-              ng-repeat="model in menuctrl.customers">{{model.name}}</a>
+            <div class="row" ng-show="menuctrl.customer != null">
+              <div class="col-sm text-left text-nowrap w-100">
+                <a href ng-click="menuctrl.SelectCustomer(null)" class="dropdown-item">No filter</a>
+              </div>
+              <div class="col-sm text-right w-90">
+                <a ng-href="#/Customer/{{model._id}}" ng-show="menuctrl.hasrole('customer admins')">
+                  <em class="fas fa-money-bill-wave"></em></a>
+              </div>
+            </div>
+            <div class="row" ng-repeat="model in menuctrl.customers">
+              <div class="col-sm text-left text-nowrap w-100">
+                <a href ng-click="menuctrl.SelectCustomer(model)" class="dropdown-item">{{model.name}}</a>
+              </div>
+              <div class="col-sm text-right w-90">
+                <a ng-href="#/Customer/{{model._id}}" ng-show="menuctrl.hasrole('customer admins')">
+                  <em class="fas fa-money-bill-wave"></em></a>
+              </div>
+            </div>
+            <!-- <a class="dropdown-item" ng-href="#/Customer/{{model._id}}"
+              ng-repeat="model in menuctrl.customers">{{model.name}}</a> -->
           </div>
         </div>
         <!-- remove -->