chore: refacto NestJS in modules (#308)

* chore: wip refacto in modules * fix: rollback port * fix: jwt guard in wrong folder * chore: rename folder exception-filter in filters * fix: tests are running * fix: excessive stack depth comparing types * fix: auth issue * chore: move createUser in UserService * fix: test * fix: guards * fix: jwt guard don't handle falsy user
2023-06-16 10:38:11 +02:00
parent 5921c7f11d
commit 2cd081234f
1084 changed files with 2251 additions and 758 deletions
--- a/server/src/guards/create-one-comment.guard.ts
+++ b/server/src/guards/create-one-comment.guard.ts
@ -0,0 +1,71 @@
+import {
+  CanActivate,
+  ExecutionContext,
+  HttpException,
+  HttpStatus,
+  Injectable,
+} from '@nestjs/common';
+import { GqlExecutionContext } from '@nestjs/graphql';
+import { PrismaService } from 'src/database/prisma.service';
+
+@Injectable()
+export class CreateOneCommentGuard implements CanActivate {
+  constructor(private prismaService: PrismaService) {}
+
+  async canActivate(context: ExecutionContext): Promise<boolean> {
+    const gqlContext = GqlExecutionContext.create(context);
+    const request = gqlContext.getContext().req;
+    const args = gqlContext.getArgs();
+
+    const authorId = args.data?.author?.connect?.id;
+    const commentThreadId = args.data?.commentThread?.connect?.id;
+
+    if (!authorId || !commentThreadId) {
+      throw new HttpException(
+        { reason: 'Missing author or commentThread' },
+        HttpStatus.BAD_REQUEST,
+      );
+    }
+
+    const author = await this.prismaService.user.findUnique({
+      where: { id: authorId },
+    });
+
+    const commentThread = await this.prismaService.commentThread.findUnique({
+      where: { id: commentThreadId },
+    });
+
+    if (!author || !commentThread) {
+      throw new HttpException(
+        { reason: 'Author or commentThread not found' },
+        HttpStatus.NOT_FOUND,
+      );
+    }
+
+    const userWorkspaceMember =
+      await this.prismaService.workspaceMember.findFirst({
+        where: { userId: author.id },
+      });
+
+    if (!userWorkspaceMember) {
+      throw new HttpException(
+        { reason: 'Author or commentThread not found' },
+        HttpStatus.NOT_FOUND,
+      );
+    }
+
+    const workspace = request.user.workspace;
+
+    if (
+      userWorkspaceMember.workspaceId !== workspace.id ||
+      commentThread.workspaceId !== workspace.id
+    ) {
+      throw new HttpException(
+        { reason: 'Author or commentThread not found' },
+        HttpStatus.NOT_FOUND,
+      );
+    }
+
+    return true;
+  }
+}