67 lines
1.9 KiB
TypeScript
67 lines
1.9 KiB
TypeScript
import { FastifyInstance } from "fastify";
|
|
|
|
export default async function userRoutes(server: FastifyInstance) {
|
|
//TODO: PERMISSIONS Rückmeldung beschränken
|
|
|
|
server.get("/user/:id", async (req, reply) => {
|
|
const authUser = req.user // kommt aus JWT (user_id + tenant_id)
|
|
|
|
const {id} = req.params
|
|
|
|
if (!authUser) {
|
|
return reply.code(401).send({ error: "Unauthorized" })
|
|
}
|
|
|
|
|
|
// 1. User laden
|
|
const { data: user, error: userError } = await server.supabase
|
|
.from("auth_users")
|
|
.select("id, email, created_at, must_change_password")
|
|
.eq("id", id)
|
|
.single()
|
|
|
|
if (userError || !user) {
|
|
return reply.code(401).send({ error: "User not found" })
|
|
}
|
|
|
|
// 2. Tenants laden (alle Tenants des Users)
|
|
/*const { data: tenantLinks, error: tenantLinksError } = await server.supabase
|
|
.from("auth_users")
|
|
.select(`*, tenants!auth_tenant_users ( id, name, locked )`)
|
|
.eq("id", authUser.user_id)
|
|
.single();
|
|
|
|
if (tenantLinksError) {
|
|
|
|
console.log(tenantLinksError)
|
|
|
|
return reply.code(401).send({ error: "Tenant Error" })
|
|
}
|
|
|
|
const tenants = tenantLinks?.tenants*/
|
|
|
|
// 3. Aktiven Tenant bestimmen
|
|
const activeTenant = authUser.tenant_id /*|| tenants[0].id*/
|
|
|
|
// 4. Profil für den aktiven Tenant laden
|
|
let profile = null
|
|
if (activeTenant) {
|
|
const { data: profileData } = await server.supabase
|
|
.from("auth_profiles")
|
|
.select("*")
|
|
.eq("user_id", id)
|
|
.eq("tenant_id", activeTenant)
|
|
.single()
|
|
|
|
profile = profileData
|
|
}
|
|
|
|
// 5. Permissions laden (über Funktion)
|
|
|
|
// 6. Response zurückgeben
|
|
return {
|
|
user,
|
|
profile,
|
|
}
|
|
})
|
|
} |