roles and permissions

src/controller/authController.ts

@@ -8,8 +8,9 @@ import UserService from "../service/userService";
 import speakeasy from "speakeasy";
 import UnauthorizedRequestException from "../exceptions/unauthorizedRequestException";
 import RefreshService from "../service/refreshService";
-import PermissionService from "../service/permissionService";
+import UserPermissionService from "../service/userPermissionService";
 import PermissionHelper from "../helpers/permissionHelper";
+import RolePermissionService from "../service/rolePermissionService";
 
 /**
  * @description Check authentication status by token
@@ -34,9 +35,12 @@ export async function login(req: Request, res: Response): Promise<any> {
     throw new UnauthorizedRequestException("Token not valid or expired");
   }
 
-  let permissions = await PermissionService.getByUser(id);
-  let permissionStrings = permissions.map((e) => e.permission);
-  let permissionObject = PermissionHelper.convertToObject(permissionStrings);
+  let userPermissions = await UserPermissionService.getByUser(id);
+  let userPermissionStrings = userPermissions.map((e) => e.permission);
+  let userRoles = await UserService.getAssignedRolesByUserId(id);
+  let rolePermissions = await RolePermissionService.getByRoles(userRoles.map((e) => e.id));
+  let rolePermissionStrings = rolePermissions.map((e) => e.permission);
+  let permissionObject = PermissionHelper.convertToObject([...userPermissionStrings, ...rolePermissionStrings]);
 
   let jwtData: JWTToken = {
     userId: id,
@@ -103,7 +107,7 @@ export async function refresh(req: Request, res: Response): Promise<any> {
 
   let { id, username, mail, firstname, lastname } = await UserService.getById(tokenUserId);
 
-  let permissions = await PermissionService.getByUser(id);
+  let permissions = await UserPermissionService.getByUser(id);
   let permissionStrings = permissions.map((e) => e.permission);
   let permissionObject = PermissionHelper.convertToObject(permissionStrings);