Add Approve User Function (#739)

epodol · web-flow · commit ecfa1938fd50 · 2022-08-08T13:00:44.000-07:00
* Add Approve User Function

* Fix Indexes
diff --git a/common/functions/approveUser.d.ts b/common/functions/approveUser.d.ts
@@ -1,39 +1,33 @@
-import { condition, status } from '../types/Copy';
-
 export default interface approveUserData {
   /**
    * Firestore id of the library
    */
   libraryID: string;
   /**
-   * Firestore id of the book
+   * The Firebase ID of the user to approve
+   */
+  uid: string;
+  /**
+   * The user's first name
    */
-  bookID: string;
+  firstName: string;
   /**
-   * Firestore id of the copy
+   * The user's last name
    */
-  copyID: string;
+  lastName: string;
   /**
-   * Condition of the book when it was checked in
+   * The user's email address
    */
-  condition: condition;
+  email: string;
   /**
-   * The status of the copy to set
+   * The expiration date of the user's account
    */
-  status: status;
+  expiration: number;
 }
 
 export interface approveUserResult {
-  /**
-   * Firestore id of the checkout
-   */
-  checkoutID: string;
   /**
    * Firestore id of the user
    */
   userID: string;
-  /**
-   * The difference in condition between the copy when it was checked in and when it was checked out. (conditionIn - conditionOut)
-   */
-  conditionDiff: number;
 }
diff --git a/common/types/User.d.ts b/common/types/User.d.ts
@@ -4,6 +4,10 @@ import { Timestamp } from 'firebase-admin/firestore';
  * Firestore Location: `libraries/{Library}/users/{User}`
  */
 export default interface User {
+  /**
+   * Whether or not the user is active within the library
+   */
+  active: boolean;
   /**
    * An array of active checkout IDs
    */
diff --git a/firestore.indexes.json b/firestore.indexes.json
@@ -18,6 +18,48 @@
         }
       ]
     },
+    {
+      "collectionGroup": "joinRequests",
+      "queryScope": "COLLECTION",
+      "fields": [
+        {
+          "fieldPath": "approved",
+          "order": "ASCENDING"
+        },
+        {
+          "fieldPath": "firstName",
+          "order": "ASCENDING"
+        }
+      ]
+    },
+    {
+      "collectionGroup": "joinRequests",
+      "queryScope": "COLLECTION",
+      "fields": [
+        {
+          "fieldPath": "approved",
+          "order": "ASCENDING"
+        },
+        {
+          "fieldPath": "lastName",
+          "order": "ASCENDING"
+        }
+      ]
+    },
+    {
+      "collectionGroup": "joinRequests",
+      "queryScope": "COLLECTION",
+      "fields": [
+        {
+          "fieldPath": "approved",
+          "order": "ASCENDING"
+        },
+        {
+          "fieldPath": "email",
+          "order": "ASCENDING"
+        }
+      ]
+    },
     {
       "collectionGroup": "checkouts",
       "queryScope": "COLLECTION",
diff --git a/functions/src/index.ts b/functions/src/index.ts
@@ -13,3 +13,4 @@ export { default as renewCheckout } from './checkouts/renewCheckout.js';
 export { default as updatePermissionsClaims } from './libraries/updatePermissionsClaims.js';
 
 export { default as userStatistics } from './users/userStatistics.js';
+export { default as approveUser } from './users/approveUser.js';
diff --git a/functions/src/users/approveUser.ts b/functions/src/users/approveUser.ts
@@ -0,0 +1,148 @@
+import functions from 'firebase-functions';
+import { getFirestore, Timestamp, FieldValue } from 'firebase-admin/firestore';
+
+import approveUserData, {
+  approveUserResult,
+} from '@common/functions/approveUser';
+
+import User from '@common/types/User';
+import { getAuth } from 'firebase-admin/auth';
+
+const approveUser = functions
+  .region('us-west2')
+  .https.onCall(async (data: approveUserData, context) => {
+    const firestore = getFirestore();
+
+    // App Check Verification
+    if (!context.app && process.env.NODE_ENV === 'production') {
+      throw new functions.https.HttpsError(
+        'unauthenticated',
+        'The function must be called from an App Check verified app.'
+      );
+    }
+
+    // Auth Verification
+    if (!context.auth) {
+      throw new functions.https.HttpsError(
+        'unauthenticated',
+        'The function must be called while authenticated.'
+      );
+    }
+
+    if (
+      !context.auth.token?.permissions?.MANAGE_USERS?.includes(
+        data.libraryID
+      ) &&
+      !context.auth.token?.librariesOwned?.includes(data.libraryID)
+    ) {
+      throw new functions.https.HttpsError(
+        'permission-denied',
+        "The user calling the function must have the 'MANAGE_USERS' permission."
+      );
+    }
+
+    console.log(data, typeof data.expiration);
+
+    // Type Verification
+    if (
+      typeof data.firstName !== 'string' ||
+      typeof data.lastName !== 'string' ||
+      typeof data.email !== 'string' ||
+      typeof data.uid !== 'string' ||
+      typeof data.libraryID !== 'string' ||
+      typeof data.expiration !== 'number'
+    ) {
+      throw new functions.https.HttpsError(
+        'invalid-argument',
+        'The function must be called with the appropriate arguments.'
+      );
+    }
+
+    const libraryDoc = await firestore
+      .collection('libraries')
+      .doc(data.libraryID)
+      .get();
+
+    if (!libraryDoc.exists) {
+      throw new functions.https.HttpsError(
+        'not-found',
+        'The specified library could not be found.'
+      );
+    }
+
+    const user = await getAuth().getUser(data.uid);
+
+    if (!user) {
+      throw new functions.https.HttpsError(
+        'not-found',
+        'The specified user could not be found.'
+      );
+    }
+
+    // Create a batched update
+    const batch = firestore.batch();
+
+    const userDoc: User = {
+      active: true,
+      activeCheckouts: [],
+      checkoutGroup: 'default',
+      firstName: data.firstName,
+      approvedAt: FieldValue.serverTimestamp() as Timestamp,
+      approvedBy: context.auth.uid,
+      lastName: data.lastName,
+      email: data.email,
+      phoneNumber: null,
+      identifiers: [],
+      expiration: Timestamp.fromDate(new Date(data.expiration)),
+      uid: data.uid,
+      updatedBy: context.auth.uid,
+      updatedAt: FieldValue.serverTimestamp() as Timestamp,
+    };
+
+    const userRef = firestore
+      .collection(`libraries/${data.libraryID}/users`)
+      .doc(data.uid);
+
+    const joinRequestRef = firestore
+      .collection(`libraries/${data.libraryID}/joinRequests`)
+      .doc(data.uid);
+
+    batch.set(userRef, userDoc);
+    batch.update(joinRequestRef, { approved: true });
+
+    await batch
+      .commit()
+      .then(async () => {
+        const userClaims = user.customClaims;
+
+        const newLibrariesJoined = [];
+        if (userClaims && Array.isArray(userClaims?.librariesJoined)) {
+          newLibrariesJoined.push(userClaims.librariesJoined);
+          newLibrariesJoined.push(data.libraryID);
+        } else {
+          newLibrariesJoined.push(data.libraryID);
+        }
+
+        getAuth()
+          .setCustomUserClaims(data.uid, {
+            ...userClaims,
+            librariesJoined: newLibrariesJoined,
+          })
+          .catch(console.error);
+      })
+      .catch((err) => {
+        functions.logger.error(context, data, err);
+        throw new functions.https.HttpsError(
+          'internal',
+          'There was an error approving this user.'
+        );
+      });
+
+    const result: approveUserResult = {
+      userID: data.uid,
+    };
+
+    return result;
+  });
+
+export default approveUser;
diff --git a/react/public/index.html b/react/public/index.html
@@ -62,7 +62,7 @@
   <body>
     <noscript>
       <h1>BASIS Scottsdale Library</h1>
-      <h2>Opening 8/8/2022!</h2>
+      <h2>Now Open in Room 123!</h2>
       You need to enable JavaScript to run this app. There may be a problem with
       your browser.
     </noscript>
diff --git a/react/src/pages/LibraryHome/index.tsx b/react/src/pages/LibraryHome/index.tsx
@@ -131,7 +131,7 @@ const Home = () => {
               color="inherit"
               style={{ fontWeight: 'bold' }}
             >
-              Opening 8/8/2022!
+              Now Open in Room 123!
             </Typography>
             {!user ? (
               <Button
@@ -179,6 +179,15 @@ const Home = () => {
           For more information, click <Link to="/contribute">here.</Link>
         </h6>
         <br />
+        <h2>When will the Library be open?</h2>
+        <h6>
+          The BASIS Scottsdale Library will typically be open from{' '}
+          <strong>
+            3:45-4:30 Monday-Friday, and 7:00-8:15 Wednesday-Friday
+          </strong>
+          . Check the Bulldog Blast for any updates to our hours for the week.
+        </h6>
+        <br />
         <h2>I have more questions!</h2>
         <h6>
           There has been a huge interest in the library and we are so excited to
diff --git a/react/src/pages/Users/JoinRequests/ApproveUserDialog.tsx b/react/src/pages/Users/JoinRequests/ApproveUserDialog.tsx
diff --git a/react/src/pages/Users/JoinRequests/index.tsx b/react/src/pages/Users/JoinRequests/index.tsx

Original file line number	Diff line number	Diff line change
`@@ -13,3 +13,4 @@ export { default as renewCheckout } from './checkouts/renewCheckout.js';`
`13`	`13`	`export { default as updatePermissionsClaims } from './libraries/updatePermissionsClaims.js';`
`14`	`14`
`15`	`15`	`export { default as userStatistics } from './users/userStatistics.js';`
	`16`	`+export { default as approveUser } from './users/approveUser.js';`