Merge pull request #1945 from Real-Dev-Squad/develop

prakashchoudhary07 · web-flow · commit 51090af71cab · 2024-03-09T02:02:54.000+05:30
Dev to Main Sync
diff --git a/controllers/discordactions.js b/controllers/discordactions.js
@@ -115,7 +115,14 @@ const addGroupRoleToMember = async (req, res) => {
     const [{ roleExists, existingRoles }, userData] = await Promise.all([roleExistsPromise, userDataPromise]);
 
     if (!roleExists || req.userData.id !== userData.user.id) {
-      res.boom.forbidden("Permission denied. Cannot add the role.");
+      return res.boom.forbidden("Permission denied. Cannot add the role.");
+    }
+
+    if (existingRoles.docs.length > 0) {
+      const roleDetails = existingRoles.docs[0].data();
+      if (roleDetails.rolename && !roleDetails.rolename.startsWith("group-")) {
+        return res.boom.forbidden("Cannot use rolename that is not a group role");
+      }
     }
 
     const { roleData, wasSuccess } = await discordRolesModel.addGroupRoleToMember(memberGroupRole);
@@ -163,7 +170,7 @@ const deleteRole = async (req, res) => {
     const [{ roleExists }, userData] = await Promise.all([roleExistsPromise, userDataPromise]);
 
     if (!roleExists || req.userData.id !== userData.user.id) {
-      res.boom.forbidden("Permission denied. Cannot delete the role.");
+      return res.boom.forbidden("Permission denied. Cannot delete the role.");
     }
     await discordServices.removeRoleFromUser(roleid, userid, req.userData);
 
diff --git a/middlewares/authorizeUsersAndService.ts b/middlewares/authorizeUsersAndService.ts
@@ -8,7 +8,7 @@ const { Services } = require("../constants/bot");
 const ROLES = require("../constants/roles");
 const { INTERNAL_SERVER_ERROR_MESSAGE } = require("../constants/progresses");
 
-export const authorization = (allowedRoles: string[], allowedServices: string[]) => {
+export const authorizeAndAuthenticate = (allowedRoles: string[], allowedServices: string[]) => {
   const isRolesValid = allowedRoles.every((role) => Object.values(ROLES).includes(role));
   if (!isRolesValid) {
     throw new Error("Invalid role");
diff --git a/routes/discordactions.js b/routes/discordactions.js
@@ -25,7 +25,10 @@ const checkIsVerifiedDiscord = require("../middlewares/verifydiscord");
 const checkCanGenerateDiscordLink = require("../middlewares/checkCanGenerateDiscordLink");
 const { SUPERUSER } = require("../constants/roles");
 const authorizeRoles = require("../middlewares/authorizeRoles");
+const ROLES = require("../constants/roles");
+const { Services } = require("../constants/bot");
 const { verifyCronJob } = require("../middlewares/authorizeBot");
+const { authorizeAndAuthenticate } = require("../middlewares/authorizeUsersAndService");
 
 const router = express.Router();
 
@@ -43,21 +46,27 @@ router.patch(
   checkIsVerifiedDiscord,
   updateDiscordImageForVerification
 );
-router.put("/group-idle", authenticate, authorizeRoles([SUPERUSER]), setRoleIdleToIdleUsers);
-router.put("/group-idle-7d", authenticate, authorizeRoles([SUPERUSER]), setRoleIdle7DToIdleUsers);
+router.put(
+  "/group-idle",
+  authorizeAndAuthenticate([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]),
+  setRoleIdleToIdleUsers
+);
+router.put(
+  "/group-idle-7d",
+  authorizeAndAuthenticate([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]),
+  setRoleIdle7DToIdleUsers
+);
 router.post(
   "/nicknames/sync",
-  authenticate,
-  authorizeRoles([SUPERUSER]),
+  authorizeAndAuthenticate([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]),
   checkIsVerifiedDiscord,
   updateDiscordNicknames
 );
 router.post("/nickname/status", verifyCronJob, validateUpdateUsersNicknameStatusBody, updateUsersNicknameStatus);
 router.post("/discord-roles", authenticate, authorizeRoles([SUPERUSER]), syncDiscordGroupRolesInFirestore);
 router.put(
   "/group-onboarding-31d-plus",
-  authenticate,
-  authorizeRoles([SUPERUSER]),
+  authorizeAndAuthenticate([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]),
   setRoleToUsersWith31DaysPlusOnboarding
 );
 module.exports = router;
diff --git a/routes/external-accounts.js b/routes/external-accounts.js
@@ -6,13 +6,16 @@ const externalAccount = require("../controllers/external-accounts");
 const authenticate = require("../middlewares/authenticate");
 const authorizeRoles = require("../middlewares/authorizeRoles");
 const { SUPERUSER } = require("../constants/roles");
+const ROLES = require("../constants/roles");
+const { Services } = require("../constants/bot");
+const { authorizeAndAuthenticate } = require("../middlewares/authorizeUsersAndService");
+
 router.post("/", validator.externalAccountData, authorizeBot.verifyDiscordBot, externalAccount.addExternalAccountData);
 router.get("/:token", authenticate, externalAccount.getExternalAccountData);
 router.patch("/discord-sync", authenticate, authorizeRoles([SUPERUSER]), externalAccount.syncExternalAccountData);
 router.post(
   "/users",
-  authenticate,
-  authorizeRoles([SUPERUSER]),
+  authorizeAndAuthenticate([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]),
   validator.postExternalAccountsUsers,
   externalAccount.externalAccountsUsersPostHandler
 );
diff --git a/routes/tasks.js b/routes/tasks.js
@@ -10,7 +10,7 @@ const {
   getUsersValidator,
 } = require("../middlewares/validators/tasks");
 const authorizeRoles = require("../middlewares/authorizeRoles");
-const { authorization } = require("../middlewares/authorizeUsersAndService");
+const { authorizeAndAuthenticate } = require("../middlewares/authorizeUsersAndService");
 const { APPOWNER, SUPERUSER } = require("../constants/roles");
 const assignTask = require("../middlewares/assignTask");
 const { cacheResponse, invalidateCache } = require("../utils/cache");
@@ -19,7 +19,10 @@ const { verifyCronJob } = require("../middlewares/authorizeBot");
 const { CLOUDFLARE_WORKER, CRON_JOB_HANDLER } = require("../constants/bot");
 
 const oldAuthorizationMiddleware = authorizeRoles([APPOWNER, SUPERUSER]);
-const newAuthorizationMiddleware = authorization([APPOWNER, SUPERUSER], [CLOUDFLARE_WORKER, CRON_JOB_HANDLER]);
+const newAuthorizationMiddleware = authorizeAndAuthenticate(
+  [APPOWNER, SUPERUSER],
+  [CLOUDFLARE_WORKER, CRON_JOB_HANDLER]
+);
 
 // Middleware to check if 'dev' query parameter is set to true
 const enableDevModeMiddleware = (req, res, next) => {
diff --git a/routes/userStatus.js b/routes/userStatus.js
@@ -17,13 +17,21 @@ const {
   validateMassUpdate,
   validateGetQueryParams,
 } = require("../middlewares/validators/userStatus");
+const { authorizeAndAuthenticate } = require("../middlewares/authorizeUsersAndService");
+const ROLES = require("../constants/roles");
+const { Services } = require("../constants/bot");
 
 router.get("/", validateGetQueryParams, getUserStatusControllers);
 router.get("/self", authenticate, getUserStatus);
 router.get("/:userId", getUserStatus);
 router.patch("/self", authenticate, validateUserStatus, updateUserStatusController);
-router.patch("/update", authenticate, authorizeRoles([SUPERUSER]), updateAllUserStatus);
-router.patch("/batch", authenticate, authorizeRoles([SUPERUSER]), validateMassUpdate, batchUpdateUsersStatus);
+router.patch("/update", authorizeAndAuthenticate([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]), updateAllUserStatus);
+router.patch(
+  "/batch",
+  authorizeAndAuthenticate([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]),
+  validateMassUpdate,
+  batchUpdateUsersStatus
+);
 router.patch("/:userId", authenticate, authorizeRoles([SUPERUSER]), validateUserStatus, updateUserStatus);
 router.delete("/:userId", authenticate, authorizeRoles([SUPERUSER]), deleteUserStatus);
 
diff --git a/routes/users.js b/routes/users.js
@@ -8,8 +8,11 @@ const userValidator = require("../middlewares/validators/user");
 const { upload } = require("../utils/multer");
 const { getUserBadges } = require("../controllers/badges");
 const checkIsVerifiedDiscord = require("../middlewares/verifydiscord");
+const { authorizeAndAuthenticate } = require("../middlewares/authorizeUsersAndService");
+const ROLES = require("../constants/roles");
+const { Services } = require("../constants/bot");
 
-router.post("/", authenticate, authorizeRoles([SUPERUSER]), users.markUnverified);
+router.post("/", authorizeAndAuthenticate([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]), users.markUnverified);
 router.post("/update-in-discord", authenticate, authorizeRoles([SUPERUSER]), users.setInDiscordScript);
 router.post("/verify", authenticate, users.verifyUser);
 router.get("/userId/:userId", users.getUserById);
diff --git a/test/fixtures/discordactions/discordactions.js b/test/fixtures/discordactions/discordactions.js
@@ -2,6 +2,8 @@ const groupData = [
   { rolename: "Group 1", roleid: "1" },
   { rolename: "Group 2", roleid: "2" },
   { rolename: "Group 3", roleid: "3" },
+  { rolename: "admin", roleid: "4" },
+  { rolename: "group-test", roleid: "5" },
 ];
 
 const groupIdle7d = { rolename: "group-idle-7d+", roleid: 4, createdBy: "1dad23q23j131j" };
diff --git a/test/integration/authorizeUsersAndService.test.ts b/test/integration/authorizeUsersAndService.test.ts
@@ -1,5 +1,5 @@
 import { expect } from "chai";
-import { authorization } from "../../middlewares/authorizeUsersAndService";
+import { authorizeAndAuthenticate  } from "../../middlewares/authorizeUsersAndService";
 import bot from "../utils/generateBotToken";
 const userData = require("../fixtures/user/user")();
 import authService from "../../services/authService";
@@ -41,46 +41,46 @@ describe("Middleware | Authorization", function () {
   });
   describe("Input validations", function () {
     it("should throw an error for invalid roles", function () {
-      expect(() => authorization(["invalid_role"], [Services.CRON_JOB_HANDLER])).to.throw("Invalid role");
+      expect(() => authorizeAndAuthenticate (["invalid_role"], [Services.CRON_JOB_HANDLER])).to.throw("Invalid role");
     });
 
     it("should throw an error for invalid services", function () {
-      expect(() => authorization([ROLES.APPOWNER], ["invalid_service"])).to.throw("Invalid service name");
+      expect(() => authorizeAndAuthenticate ([ROLES.APPOWNER], ["invalid_service"])).to.throw("Invalid service name");
     });
   });
 
   describe("Service Authorization", function () {
     it("should return unauthorized for invalid authorization header format", async function () {
       req.headers.authorization = "InvalidHeader";
 
-      await authorization([ROLES.APPOWNER], [Services.CRON_JOB_HANDLER])(req, res, next);
+      await authorizeAndAuthenticate ([ROLES.APPOWNER], [Services.CRON_JOB_HANDLER])(req, res, next);
       expect(res.boom.unauthorized.calledOnce).to.be.equal(true);
     });
 
     it("should return unauthorized for invalid JWT token", async function () {
       req.headers.authorization = "Bearer invalid_token";
-      await authorization([ROLES.APPOWNER], [Services.CRON_JOB_HANDLER])(req, res, next);
+      await authorizeAndAuthenticate ([ROLES.APPOWNER], [Services.CRON_JOB_HANDLER])(req, res, next);
       expect(res.boom.unauthorized.calledOnce).to.be.equal(true);
     });
 
     it("should call verifyCronJob for valid cron job token", async function () {
       const jwtToken = bot.generateCronJobToken({ name: CRON_JOB_HANDLER });
       req.headers.authorization = `Bearer ${jwtToken}`;
-      await authorization([ROLES.APPOWNER], [Services.CRON_JOB_HANDLER])(req, res, next);
+      await authorizeAndAuthenticate ([ROLES.APPOWNER], [Services.CRON_JOB_HANDLER])(req, res, next);
       expect(next.calledOnce).to.be.equal(true);
     });
 
     it("should call verifyDiscordBot for valid Discord bot token", async function () {
       const jwtToken = bot.generateToken({ name: CLOUDFLARE_WORKER });
       req.headers.authorization = `Bearer ${jwtToken}`;
-      await authorization([ROLES.APPOWNER], [Services.CLOUDFLARE_WORKER])(req, res, next);
+      await authorizeAndAuthenticate ([ROLES.APPOWNER], [Services.CLOUDFLARE_WORKER])(req, res, next);
       expect(next.calledOnce).to.be.equal(true);
     });
 
     it("should return unauthorized for unknown service names", async function () {
       const jwtToken = bot.generateToken({ name: "Invalid name" });
       req.headers.authorization = `Bearer ${jwtToken}`;
-      await authorization([ROLES.APPOWNER], [Services.CLOUDFLARE_WORKER])(req, res, next);
+      await authorizeAndAuthenticate ([ROLES.APPOWNER], [Services.CLOUDFLARE_WORKER])(req, res, next);
       expect(res.boom.unauthorized.calledOnce).to.be.equal(true);
     });
   });
@@ -89,7 +89,7 @@ describe("Middleware | Authorization", function () {
       return res.json({ message: "pong" });
     };
 
-    router.get("/for-super-user", authorization([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]), pongHandler);
+    router.get("/for-super-user", authorizeAndAuthenticate ([ROLES.SUPERUSER], [Services.CRON_JOB_HANDLER]), pongHandler);
 
     const app = express();
     AppMiddlewares(app);
diff --git a/test/integration/discordactions.test.js b/test/integration/discordactions.test.js
@@ -210,7 +210,12 @@ describe("Discord actions", function () {
   describe("POST /discord-actions/roles", function () {
     let roleid;
     beforeEach(async function () {
-      const discordRoleModelPromise = [discordRoleModel.add(groupData[0]), discordRoleModel.add(groupData[1])];
+      const discordRoleModelPromise = [
+        discordRoleModel.add(groupData[0]),
+        discordRoleModel.add(groupData[1]),
+        discordRoleModel.add(groupData[3]),
+        discordRoleModel.add(groupData[4]),
+      ];
       roleid = groupData[0].roleid;
       await Promise.all(discordRoleModelPromise);
     });
@@ -219,19 +224,52 @@ describe("Discord actions", function () {
       sinon.restore();
       await cleanDb();
     });
+    it("should not be able to add role if it is not a group type role", async function () {
+      const fetchStub = sinon.stub(discordRolesModel, "isGroupRoleExists");
+
+      fetchStub.returns(
+        {
+          roleExists: true,
+          existingRoles: {
+            docs: [
+              {
+                data: () => ({
+                  date: new Date().toISOString(),
+                  createdBy: "CzI06Da1zPwciLcyIwU4",
+                  roleid: "1214641424516124823",
+                  rolename: "admin",
+                }),
+              },
+            ],
+          },
+        },
+        { user: userData[0] }
+      );
+
+      const res = await chai
+        .request(app)
+        .post("/discord-actions/roles")
+        .set("cookie", `${cookieName}=${jwt}`)
+        .send({ roleid, userid: userData[0].discordId });
+      expect(res).to.have.status(403);
+      expect(res.body).to.be.an("object");
+      expect(res.body.message).to.equal("Cannot use rolename that is not a group role");
 
+      fetchStub.restore();
+    });
     it("should allow role to be added", async function () {
       fetchStub.returns(
         Promise.resolve({
           status: 200,
           json: () => Promise.resolve({}),
         })
       );
+      const roleId = groupData[4].roleid;
       const res = await chai
         .request(app)
         .post("/discord-actions/roles")
         .set("cookie", `${cookieName}=${jwt}`)
-        .send({ roleid, userid: userData[0].discordId });
+        .send({ roleid: roleId, userid: userData[0].discordId });
 
       expect(res).to.have.status(201);
       expect(res.body).to.be.an("object");
@@ -245,7 +283,8 @@ describe("Discord actions", function () {
         })
       );
 
-      const body = { roleid, userid: userData[0].discordId };
+      const roleId = groupData[4].roleid;
+      const body = { roleid: roleId, userid: userData[0].discordId };
       const res = await chai
         .request(app)
         .post("/discord-actions/roles")
diff --git a/test/unit/utils/users.test.js b/test/unit/utils/users.test.js
@@ -166,12 +166,50 @@ describe("users", function () {
       expect(nickname).to.be.equal(`${username.substring(0, usernameLen)} ${oooMessage}`);
     });
 
+    it("should return first letters of nickname in capital case of the mavens with from and until date when username, from and until OOO dates are passed", async function () {
+      const { username } = userData;
+      const from = new Date();
+      const until = new Date();
+      const nickname = usersUtils.generateOOONickname(username, from.getTime(), until.getTime(), [
+        config.get("discordMavenRoleId"),
+      ]);
+
+      const fromDate = from.getDate();
+      const untilDate = until.getDate();
+      const fromMonth = months[from.getMonth()];
+      const untilMonth = months[until.getMonth()];
+
+      const oooMessage = `(OOO ${fromMonth} ${fromDate} - ${untilMonth} ${untilDate})`;
+      const oooMessageLen = oooMessage.length;
+      const usernameLen = discordNicknameLength - oooMessageLen - 1;
+      expect(nickname).to.be.equal(
+        `${username
+          .split("-")
+          .map((part) => part.charAt(0).toUpperCase() + part.slice(1))
+          .join("-")
+          .substring(0, usernameLen)} ${oooMessage}`
+      );
+    });
     it("should return username of the user as nickname when only username is passed and not from and until date ", async function () {
       const { username } = userData;
       const nickname = usersUtils.generateOOONickname(username);
 
       expect(nickname).to.be.equal(username);
     });
+
+    it("should return first letters of nickname in capital case of the mavens as nickname when only username is passed and not from and until date ", async function () {
+      const { username } = userData;
+      const nickname = usersUtils.generateOOONickname(username, undefined, undefined, [
+        config.get("discordMavenRoleId"),
+      ]);
+
+      expect(nickname).to.be.equal(
+        username
+          .split("-")
+          .map((part) => part.charAt(0).toUpperCase() + part.slice(1))
+          .join("-")
+      );
+    });
   });
 
   describe("updateNickname", function () {
diff --git a/utils/users.js b/utils/users.js
@@ -246,7 +246,17 @@ const parseSearchQuery = (queryString) => {
  * @param {string} username - The discord username of the user.
  * @returns {string} - Nickname of the user.
  */
-const generateOOONickname = (username = "", from, until) => {
+const generateOOONickname = (currentUsername = "", from, until, discordRoles) => {
+  // TODO : Update this function when we start storing the discord roles in the database
+  let username = currentUsername;
+  const discordMavenRoleId = config.get("discordMavenRoleId");
+
+  if (discordRoles?.includes(discordMavenRoleId)) {
+    username = username
+      .split("-")
+      .map((part) => part.charAt(0).toUpperCase() + part.slice(1))
+      .join("-");
+  }
   if (!from && !until) return username;
   const untilDate = new Date(Number(until));
   const untilDay = untilDate.getDate();
