Updated suff

Fire-Devs · Oct 2, 2024 · abad6f9 · abad6f9
1 parent ff3c4bd
commit abad6f9
Show file tree

Hide file tree

Showing 5 changed files with 66 additions and 12 deletions.
diff --git a/backend/middleware/PermissionCheck.go b/backend/middleware/PermissionCheck.go
@@ -2,6 +2,7 @@ package middleware
 
 import (
 	"InventoryManagement/handler"
+	"InventoryManagement/repository"
 	"github.com/gofiber/fiber/v3"
 )
 
@@ -20,6 +21,19 @@ func CheckPermission(c fiber.Ctx, permission string) error {
 		})
 	}
 
+	// get the role of the user from the token
+
+	role, err := repository.FetchPermissionfromUser(permission)
+
+	if err != nil {
+		return c.Status(500).JSON(fiber.Map{
+			"error": err.Error(),
+		})
+	}
+	return c.Status(200).JSON(fiber.Map{
+		"permission": role,
+	})
+
 	return c.Next()
 
 }
diff --git a/backend/migration/20240915115947_create_database.sql b/backend/migration/20240915115947_create_database.sql
@@ -1,17 +1,28 @@
 -- +goose Up
+CREATE TABLE roles
+(
+    id          SERIAL PRIMARY KEY,
+    name        VARCHAR(255) NOT NULL,
+    permissions TEXT[]       NOT NULL,
+    created_at  TIMESTAMPTZ DEFAULT NOW()
+);
+
 CREATE TABLE users
 (
     id         SERIAL PRIMARY KEY,
     name       VARCHAR(255) NOT NULL,
     email      VARCHAR(255) NOT NULL,
     password   VARCHAR(255) NOT NULL,
+    role       INTEGER      REFERENCES ROLES(id),
     isVerified BOOLEAN      NOT NULL DEFAULT FALSE,
     created_at TIMESTAMP    NOT NULL DEFAULT CURRENT_TIMESTAMP,
     updated_at TIMESTAMP    NOT NULL DEFAULT CURRENT_TIMESTAMP
 );
 
 
-
 -- +goose Down
 DROP TABLE users;
+DROP TABLE roles;
+
+
 
diff --git a/backend/migration/20240926044842_new_schema.sql b/backend/migration/20240926044842_new_schema.sql
diff --git a/backend/repository/rbac.go b/backend/repository/rbac.go
@@ -76,3 +76,41 @@ func UpdateRoles(role *models.Role) error {
 
 	return nil
 }
+
+func FetchPermissionfromUser(user string) ([]string, error) {
+	conn, err := database.Connect()
+	if err != nil {
+		return nil, err
+	}
+
+	var permissions []string
+	err = conn.QueryRow(context.Background(), "SELECT  FROM users u JOIN roles r O", roleName).Scan(&permissions)
+	if err != nil {
+		return nil, err
+	}
+
+	return permissions, nil
+}
+
+/*
+func FetchPermissionfromUser(username string) ([]string, error) {
+	conn, err := database.Connect()
+	if err != nil {
+		return nil, err
+	}
+
+	var permissions []string
+	query := `
+		SELECT r.permissions
+		FROM users u
+		JOIN roles r ON u.role_id = r.id
+		WHERE u.username = $1
+	`
+	err = conn.QueryRow(context.Background(), query, username).Scan(&permissions)
+	if err != nil {
+		return nil, err
+	}
+
+	return permissions, nil
+}
+*/
diff --git a/backend/routes/route.go b/backend/routes/route.go
@@ -20,6 +20,8 @@ func HandleRoutes(app *fiber.App) {
 	app.Get("/roles", handler.FetchRoles)
 	app.Put("/roles", handler.UpdateRoles)
 
+	app.Get("/checkperm", handler.CheckPermission)
+
 	// Inventory addition routes
 	app.Post("/categories", handler.CreateCategory, middleware.IsAuthorized)
 	app.Post("/suppliers", handler.CreateSupplier, middleware.IsAuthorized)