Merge pull request #873 from HiEventsDev/develop

Author: daveearley

backend/app/Console/Commands/AssignSuperAdminCommand.php

@@ -0,0 +1,102 @@
+<?php
+
+namespace HiEvents\Console\Commands;
+
+use Exception;
+use HiEvents\DomainObjects\Enums\Role;
+use HiEvents\Repository\Interfaces\AccountUserRepositoryInterface;
+use HiEvents\Repository\Interfaces\UserRepositoryInterface;
+use Illuminate\Console\Command;
+use Psr\Log\LoggerInterface;
+
+class AssignSuperAdminCommand extends Command
+{
+    protected $signature = 'user:make-superadmin {userId : The ID of the user to make a superadmin}';
+
+    protected $description = 'Assign SUPERADMIN role to a user. WARNING: This grants complete system access.';
+
+    public function __construct(
+        private readonly UserRepositoryInterface        $userRepository,
+        private readonly AccountUserRepositoryInterface $accountUserRepository,
+        private readonly LoggerInterface                $logger,
+    )
+    {
+        parent::__construct();
+    }
+
+    public function handle(): int
+    {
+        $userId = $this->argument('userId');
+
+        $this->warn('⚠️  WARNING: This command will grant COMPLETE SYSTEM ACCESS to the user.');
+        $this->warn('⚠️  SUPERADMIN users have unrestricted access to all accounts and data.');
+        $this->newLine();
+
+        if (!$this->confirm('Are you sure you want to proceed?', false)) {
+            $this->info('Operation cancelled.');
+            return self::FAILURE;
+        }
+
+        try {
+            $user = $this->userRepository->findById((int)$userId);
+        } catch (Exception $exception) {
+            $this->error("Error finding user with ID: $userId" . " Message: " . $exception->getMessage());
+            return self::FAILURE;
+        }
+
+        $this->info("Found user: {$user->getFullName()} ({$user->getEmail()})");
+        $this->newLine();
+
+        if (!$this->confirm('Confirm assigning SUPERADMIN role to this user?', false)) {
+            $this->info('Operation cancelled.');
+            return self::FAILURE;
+        }
+
+        $accountUsers = $this->accountUserRepository->findWhere([
+            'user_id' => $userId,
+        ]);
+
+        if ($accountUsers->isEmpty()) {
+            $this->error('User is not associated with any accounts.');
+            return self::FAILURE;
+        }
+
+        $updatedCount = 0;
+        foreach ($accountUsers as $accountUser) {
+            if ($accountUser->getRole() === Role::SUPERADMIN->name) {
+                $this->comment("User already has SUPERADMIN role for account ID: {$accountUser->getAccountId()}");
+                continue;
+            }
+
+            $this->accountUserRepository->updateWhere(
+                attributes: [
+                    'role' => Role::SUPERADMIN->name,
+                ],
+                where: [
+                    'id' => $accountUser->getId(),
+                ]
+            );
+
+            $updatedCount++;
+
+            $this->logger->critical('SUPERADMIN role assigned via console command', [
+                'user_id' => $userId,
+                'user_email' => $user->getEmail(),
+                'account_id' => $accountUser->getAccountId(),
+                'previous_role' => $accountUser->getRole(),
+                'command' => $this->signature,
+            ]);
+        }
+
+        $this->newLine();
+        $this->info("✓ Successfully assigned SUPERADMIN role to user across $updatedCount account(s).");
+        $this->warn("⚠️  User {$user->getFullName()} now has COMPLETE SYSTEM ACCESS.");
+
+        $this->logger->critical('SUPERADMIN role assignment completed', [
+            'user_id' => $userId,
+            'accounts_updated' => $updatedCount,
+        ]);
+
+        return self::SUCCESS;
+    }
+}

backend/app/DomainObjects/Enums/Role.php

@@ -6,6 +6,15 @@ enum Role: string
 {
     use BaseEnum;
 
+    case SUPERADMIN = 'SUPERADMIN';
     case ADMIN = 'ADMIN';
     case ORGANIZER = 'ORGANIZER';
+
+    public static function getAssignableRoles(): array
+    {
+        return [
+            self::ADMIN->value,
+            self::ORGANIZER->value,
+        ];
+    }
 }

backend/app/DomainObjects/Generated/OrderPaymentPlatformFeeDomainObjectAbstract.php

@@ -0,0 +1,188 @@
+<?php
+
+namespace HiEvents\DomainObjects\Generated;
+
+/**
+ * THIS FILE IS AUTOGENERATED - DO NOT EDIT IT DIRECTLY.
+ * @package HiEvents\DomainObjects\Generated
+ */
+abstract class OrderPaymentPlatformFeeDomainObjectAbstract extends \HiEvents\DomainObjects\AbstractDomainObject
+{
+    final public const SINGULAR_NAME = 'order_payment_platform_fee';
+    final public const PLURAL_NAME = 'order_payment_platform_fees';
+    final public const ID = 'id';
+    final public const ORDER_ID = 'order_id';
+    final public const PAYMENT_PLATFORM = 'payment_platform';
+    final public const FEE_ROLLUP = 'fee_rollup';
+    final public const PAYMENT_PLATFORM_FEE_AMOUNT = 'payment_platform_fee_amount';
+    final public const APPLICATION_FEE_AMOUNT = 'application_fee_amount';
+    final public const CURRENCY = 'currency';
+    final public const TRANSACTION_ID = 'transaction_id';
+    final public const PAID_AT = 'paid_at';
+    final public const DELETED_AT = 'deleted_at';
+    final public const CREATED_AT = 'created_at';
+    final public const UPDATED_AT = 'updated_at';
+
+    protected int $id;
+    protected int $order_id;
+    protected string $payment_platform;
+    protected array|string|null $fee_rollup = null;
+    protected float $payment_platform_fee_amount;
+    protected float $application_fee_amount = 0.0;
+    protected string $currency = 'USD';
+    protected ?string $transaction_id = null;
+    protected ?string $paid_at = null;
+    protected ?string $deleted_at = null;
+    protected ?string $created_at = null;
+    protected ?string $updated_at = null;
+
+    public function toArray(): array
+    {
+        return [
+                    'id' => $this->id ?? null,
+                    'order_id' => $this->order_id ?? null,
+                    'payment_platform' => $this->payment_platform ?? null,
+                    'fee_rollup' => $this->fee_rollup ?? null,
+                    'payment_platform_fee_amount' => $this->payment_platform_fee_amount ?? null,
+                    'application_fee_amount' => $this->application_fee_amount ?? null,
+                    'currency' => $this->currency ?? null,
+                    'transaction_id' => $this->transaction_id ?? null,
+                    'paid_at' => $this->paid_at ?? null,
+                    'deleted_at' => $this->deleted_at ?? null,
+                    'created_at' => $this->created_at ?? null,
+                    'updated_at' => $this->updated_at ?? null,
+                ];
+    }
+
+    public function setId(int $id): self
+    {
+        $this->id = $id;
+        return $this;
+    }
+
+    public function getId(): int
+    {
+        return $this->id;
+    }
+
+    public function setOrderId(int $order_id): self
+    {
+        $this->order_id = $order_id;
+        return $this;
+    }
+
+    public function getOrderId(): int
+    {
+        return $this->order_id;
+    }
+
+    public function setPaymentPlatform(string $payment_platform): self
+    {
+        $this->payment_platform = $payment_platform;
+        return $this;
+    }
+
+    public function getPaymentPlatform(): string
+    {
+        return $this->payment_platform;
+    }
+
+    public function setFeeRollup(array|string|null $fee_rollup): self
+    {
+        $this->fee_rollup = $fee_rollup;
+        return $this;
+    }
+
+    public function getFeeRollup(): array|string|null
+    {
+        return $this->fee_rollup;
+    }
+
+    public function setPaymentPlatformFeeAmount(float $payment_platform_fee_amount): self
+    {
+        $this->payment_platform_fee_amount = $payment_platform_fee_amount;
+        return $this;
+    }
+
+    public function getPaymentPlatformFeeAmount(): float
+    {
+        return $this->payment_platform_fee_amount;
+    }
+
+    public function setApplicationFeeAmount(float $application_fee_amount): self
+    {
+        $this->application_fee_amount = $application_fee_amount;
+        return $this;
+    }
+
+    public function getApplicationFeeAmount(): float
+    {
+        return $this->application_fee_amount;
+    }
+
+    public function setCurrency(string $currency): self
+    {
+        $this->currency = $currency;
+        return $this;
+    }
+
+    public function getCurrency(): string
+    {
+        return $this->currency;
+    }
+
+    public function setTransactionId(?string $transaction_id): self
+    {
+        $this->transaction_id = $transaction_id;
+        return $this;
+    }
+
+    public function getTransactionId(): ?string
+    {
+        return $this->transaction_id;
+    }
+
+    public function setPaidAt(?string $paid_at): self
+    {
+        $this->paid_at = $paid_at;
+        return $this;
+    }
+
+    public function getPaidAt(): ?string
+    {
+        return $this->paid_at;
+    }
+
+    public function setDeletedAt(?string $deleted_at): self
+    {
+        $this->deleted_at = $deleted_at;
+        return $this;
+    }
+
+    public function getDeletedAt(): ?string
+    {
+        return $this->deleted_at;
+    }
+
+    public function setCreatedAt(?string $created_at): self
+    {
+        $this->created_at = $created_at;
+        return $this;
+    }
+
+    public function getCreatedAt(): ?string
+    {
+        return $this->created_at;
+    }
+
+    public function setUpdatedAt(?string $updated_at): self
+    {
+        $this->updated_at = $updated_at;
+        return $this;
+    }
+
+    public function getUpdatedAt(): ?string
+    {
+        return $this->updated_at;
+    }
+}

backend/app/DomainObjects/OrderPaymentPlatformFeeDomainObject.php

@@ -0,0 +1,7 @@
+<?php
+
+namespace HiEvents\DomainObjects;
+
+class OrderPaymentPlatformFeeDomainObject extends Generated\OrderPaymentPlatformFeeDomainObjectAbstract
+{
+}

backend/app/Http/Actions/Admin/Accounts/GetAllAccountsAction.php

@@ -0,0 +1,37 @@
+<?php
+
+declare(strict_types=1);
+
+namespace HiEvents\Http\Actions\Admin\Accounts;
+
+use HiEvents\DomainObjects\Enums\Role;
+use HiEvents\Http\Actions\BaseAction;
+use HiEvents\Resources\Account\AdminAccountResource;
+use HiEvents\Services\Application\Handlers\Admin\DTO\GetAllAccountsDTO;
+use HiEvents\Services\Application\Handlers\Admin\GetAllAccountsHandler;
+use Illuminate\Http\JsonResponse;
+use Illuminate\Http\Request;
+
+class GetAllAccountsAction extends BaseAction
+{
+    public function __construct(
+        private readonly GetAllAccountsHandler $handler,
+    )
+    {
+    }
+
+    public function __invoke(Request $request): JsonResponse
+    {
+        $this->minimumAllowedRole(Role::SUPERADMIN);
+
+        $accounts = $this->handler->handle(new GetAllAccountsDTO(
+            perPage: min((int)$request->query('per_page', 20), 100),
+            search: $request->query('search'),
+        ));
+
+        return $this->resourceResponse(
+            resource: AdminAccountResource::class,
+            data: $accounts
+        );
+    }
+}

backend/app/Http/Actions/Admin/Events/GetUpcomingEventsAction.php

@@ -0,0 +1,36 @@
+<?php
+
+declare(strict_types=1);
+
+namespace HiEvents\Http\Actions\Admin\Events;
+
+use HiEvents\DomainObjects\Enums\Role;
+use HiEvents\Http\Actions\BaseAction;
+use HiEvents\Resources\Event\EventResource;
+use HiEvents\Services\Application\Handlers\Admin\DTO\GetUpcomingEventsDTO;
+use HiEvents\Services\Application\Handlers\Admin\GetUpcomingEventsHandler;
+use Illuminate\Http\JsonResponse;
+use Illuminate\Http\Request;
+
+class GetUpcomingEventsAction extends BaseAction
+{
+    public function __construct(
+        private readonly GetUpcomingEventsHandler $handler,
+    )
+    {
+    }
+
+    public function __invoke(Request $request): JsonResponse
+    {
+        $this->minimumAllowedRole(Role::SUPERADMIN);
+
+        $events = $this->handler->handle(new GetUpcomingEventsDTO(
+            perPage: min((int)$request->query('per_page', 20), 100),
+        ));
+
+        return $this->resourceResponse(
+            resource: EventResource::class,
+            data: $events
+        );
+    }
+}