OneCommunityGlobal · one-community · Dec 29, 2024 · Nov 9, 2024 · Nov 20, 2024 · Nov 20, 2024
diff --git a/src/controllers/logUserPermissionController.js b/src/controllers/logUserPermissionController.js
@@ -0,0 +1,82 @@
+const moment = require('moment-timezone');
+const UserProfile = require('../models/userProfile');
+const UserPermissionChangeLog = require('../models/userPermissionChangeLog');
+const PermissionChangeLog = require('../models/permissionChangeLog');
+
+const logUserPermissionController = function () {
+  const logPermissionChanges = async function (req, res) {
+    try {
+      const {
+        actualUserProfile,
+        authUser,
+        userId,
+        existingPermissions,
+        addedPermissions,
+        removedPermissions,
+      } = req.body;
+
+      const dateTime = moment().tz('America/Los_Angeles').format();
+
+      const logEntry = new UserPermissionChangeLog({
+        logDateTime: dateTime,
+        userId,
+        individualName: `${actualUserProfile.firstName} ${actualUserProfile.lastName}`,
+        permissions: existingPermissions,
+        permissionsAdded: addedPermissions,
+        permissionsRemoved: removedPermissions,
+        requestorRole: authUser.role,
+        requestorEmail: authUser.email,
+      });
+
+      await logEntry.save();
+      res.status(200).json({ message: 'Permission changes logged successfully' });
+    } catch (error) {
+      console.error('Error logging permission change:', error);
+      res.status(500).json({ error: 'Failed to log permission change' });
+    }
+  };
+
+  const getPermissionChangeLogs = async function (req, res) {
+    try {
+      const userProfile = await UserProfile.findOne({ _id: req.params.userId }).exec();
+
+      if (userProfile) {
+        if (userProfile.role !== 'Owner') {
+          res.status(204).send([]);
+        } else {
+          // Fetch logs from both collections
+          const userChangeLogs = await UserPermissionChangeLog.find();
+          const rolePermissionChangeLogs = await PermissionChangeLog.find();
+
+          const formattedUserChangeLogs = userChangeLogs.map(log => ({
+            ...log.toObject(),
+            name: log.individualName,
+          }));
+
+          const formattedRolePermissionChangeLogs = rolePermissionChangeLogs.map(log => ({
+            ...log.toObject(),
+            name: log.roleName,
+          }));
+
+          const mergedLogs = [...formattedUserChangeLogs, ...formattedRolePermissionChangeLogs].sort(
+            (a, b) => new Date(b.logDateTime) - new Date(a.logDateTime)
+          );
+
+          res.status(200).json(mergedLogs);
+        }
+      } else {
+        res.status(403).send(`User (${req.params.userId}) not found.`);
+      }
+    } catch (error) {
+      console.error('Error fetching permission change logs:', error);
+      res.status(500).json({ error: 'Failed to fetch permission change logs' });
+    }
+  };
+
+  return {
+    logPermissionChanges,
+    getPermissionChangeLogs,
+  };
+};
+
+module.exports = logUserPermissionController;
diff --git a/src/models/userPermissionChangeLog.js b/src/models/userPermissionChangeLog.js
@@ -0,0 +1,23 @@
+const mongoose = require('mongoose');
+
+const { Schema } = mongoose;
+
+const User = require('./userProfile');
+
+
+const UserPermissionChangeLog = new Schema({
+  logDateTime: { type: String, required: true },
+  userId: {
+    type: mongoose.Types.ObjectId,
+    ref: User,
+    required: true,
+  },
+  individualName: { type: String },
+  permissions: { type: [String], required: true },
+  permissionsAdded: { type: [String], default: [] },
+  permissionsRemoved: { type: [String], default: [] },
+  requestorRole: { type: String },
+  requestorEmail: { type: String, required: true },
+});
+
+module.exports = mongoose.model('UserPermissionChangeLog', UserPermissionChangeLog, 'UserPermissionChangeLogs');
diff --git a/src/routes/userProfileRouter.js b/src/routes/userProfileRouter.js
@@ -2,6 +2,7 @@ const { body } = require('express-validator');
 
 const express = require('express');
 const { ValidationError } = require('../utilities/errorHandling/customError');
+const logUserPermissionController = require('../controllers/logUserPermissionController')();
 
 const routes = function (userProfile, project) {
   const controller = require('../controllers/userProfileController')(userProfile, project);
@@ -116,6 +117,10 @@ const routes = function (userProfile, project) {
 
   userProfileRouter.route('/userProfile/teamCode/list').get(controller.getAllTeamCode);
 
+  userProfileRouter.post('/logPermissionChanges', logUserPermissionController.logPermissionChanges);
-  userProfileRouter.post('/logPermissionChanges', logUserPermissionController.logPermissionChanges);
-  userProfileRouter.post('/logPermissionChanges', logUserPermissionController.logPermissionChanges);
+  userProfileRouter.get('/logPermissionChanges/:userId', logUserPermissionController.getPermissionChangeLogs);
+
+
   return userProfileRouter;
 };