refactor

dBildungsplattform · Dec 18, 2024 · ce63436 · ce63436
1 parent 440a164
commit ce63436
Show file tree

Hide file tree

Showing 3 changed files with 17 additions and 39 deletions.
diff --git a/src/modules/authentication/domain/person-permissions.ts b/src/modules/authentication/domain/person-permissions.ts
@@ -20,6 +20,7 @@ export type PersonFields = Pick<
     | 'geschlecht'
     | 'geburtsdatum'
     | 'updatedAt'
+    | 'referrer'
 >;
 type PersonKontextFields = Pick<Personenkontext<true>, 'rolleId' | 'organisationId'>;
 type RolleFields = Pick<Rolle<true>, 'systemrechte' | 'serviceProviderIds'>;
@@ -53,6 +54,7 @@ export class PersonPermissions implements IPersonPermissions {
             geschlecht: person.geschlecht,
             geburtsdatum: person.geburtsdatum,
             updatedAt: person.updatedAt,
+            referrer: person.referrer,
         };
     }
 

diff --git a/src/modules/person/api/person.controller.spec.ts b/src/modules/person/api/person.controller.spec.ts
@@ -973,7 +973,7 @@ describe('PersonController', () => {
 
             it('should throw HttpException', async () => {
                 personRepositoryMock.findBy.mockResolvedValue([[], 0]);
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
+                personRepositoryMock.getPersonIfAllowed.mockResolvedValueOnce({
                     ok: false,
                     error: new EntityNotFoundError(),
                 });
@@ -993,7 +993,7 @@ describe('PersonController', () => {
 
             it('should throw HttpNotFoundException', async () => {
                 personRepositoryMock.findById.mockResolvedValue(undefined);
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
+                personRepositoryMock.getPersonIfAllowed.mockResolvedValueOnce({
                     ok: false,
                     error: new EntityNotFoundError(),
                 });
@@ -1013,7 +1013,7 @@ describe('PersonController', () => {
 
             it('should throw HttpException', async () => {
                 personRepositoryMock.findBy.mockResolvedValue([[], 0]);
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
+                personRepositoryMock.getPersonIfAllowed.mockResolvedValueOnce({
                     ok: true,
                     value: createMock<Person<true>>({ referrer: undefined }),
                 });
@@ -1034,7 +1034,7 @@ describe('PersonController', () => {
 
             it('should reset UEM-password for person', async () => {
                 personRepositoryMock.findById.mockResolvedValue(person);
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
+                personRepositoryMock.getPersonIfAllowed.mockResolvedValueOnce({
                     ok: true,
                     value: person,
                 });
@@ -1063,7 +1063,7 @@ describe('PersonController', () => {
                     ok: false,
                     error: new PersonDomainError('Person', 'entityId', undefined),
                 });
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
+                personRepositoryMock.getPersonIfAllowed.mockResolvedValueOnce({
                     ok: true,
                     value: person,
                 });
@@ -1086,10 +1086,6 @@ describe('PersonController', () => {
 
             it('should throw HttpException', async () => {
                 personRepositoryMock.findBy.mockResolvedValue([[], 0]);
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
-                    ok: false,
-                    error: new EntityNotFoundError(),
-                });
 
                 await expect(personController.resetUEMPassword(personPermissionsMock)).rejects.toThrow(HttpException);
                 expect(personRepositoryMock.update).toHaveBeenCalledTimes(0);
@@ -1101,10 +1097,6 @@ describe('PersonController', () => {
 
             it('should throw HttpNotFoundException', async () => {
                 personRepositoryMock.findById.mockResolvedValue(undefined);
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
-                    ok: false,
-                    error: new EntityNotFoundError(),
-                });
 
                 await expect(personController.resetUEMPassword(personPermissionsMock)).rejects.toThrow(HttpException);
                 expect(personRepositoryMock.update).toHaveBeenCalledTimes(0);
@@ -1116,10 +1108,6 @@ describe('PersonController', () => {
 
             it('should throw HttpException', async () => {
                 personRepositoryMock.findBy.mockResolvedValue([[], 0]);
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
-                    ok: true,
-                    value: createMock<Person<true>>({ referrer: undefined }),
-                });
 
                 await expect(personController.resetUEMPassword(personPermissionsMock)).rejects.toThrow(HttpException);
                 expect(personRepositoryMock.update).toHaveBeenCalledTimes(0);
@@ -1133,10 +1121,6 @@ describe('PersonController', () => {
             it('should reset UEM-password for person', async () => {
                 personPermissionsMock.personFields.id = person.id;
                 personRepositoryMock.findById.mockResolvedValue(person);
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
-                    ok: true,
-                    value: person,
-                });
                 ldapClientServiceMock.changeUserPasswordByPersonId.mockResolvedValueOnce({
                     ok: true,
                     value: person.id,
@@ -1161,10 +1145,6 @@ describe('PersonController', () => {
                     ok: false,
                     error: new PersonDomainError('Person', 'entityId', undefined),
                 });
-                personRepositoryMock.getPersonIfAllowedOrRequesterIsPerson.mockResolvedValueOnce({
-                    ok: true,
-                    value: person,
-                });
 
                 await expect(personController.resetUEMPassword(personPermissionsMock)).rejects.toThrow(
                     PersonUserPasswordModificationError,

diff --git a/src/modules/person/api/person.controller.ts b/src/modules/person/api/person.controller.ts
@@ -49,7 +49,7 @@ import { ResultInterceptor } from '../../../shared/util/result-interceptor.js';
 import { AuthenticationExceptionFilter } from '../../authentication/api/authentication-exception-filter.js';
 import { Permissions } from '../../authentication/api/permissions.decorator.js';
 import { StepUpGuard } from '../../authentication/api/steup-up.guard.js';
-import { PermittedOrgas, PersonPermissions } from '../../authentication/domain/person-permissions.js';
+import { PermittedOrgas, PersonFields, PersonPermissions } from '../../authentication/domain/person-permissions.js';
 import { EmailRepo } from '../../email/persistence/email.repo.js';
 import { UserLock } from '../../keycloak-administration/domain/user-lock.js';
 import { KeycloakUserService } from '../../keycloak-administration/index.js';
@@ -554,7 +554,7 @@ export class PersonController {
         @Permissions() permissions: PersonPermissions,
     ): Promise<Result<string>> {
         //check that logged-in user is allowed to update person
-        const personResult: Result<Person<true>> = await this.personRepository.getPersonIfAllowedOrRequesterIsPerson(
+        const personResult: Result<Person<true>> = await this.personRepository.getPersonIfAllowed(
             params.personId,
             permissions,
         );
@@ -591,30 +591,26 @@ export class PersonController {
     @ApiInternalServerErrorResponse({ description: 'Internal server error.' })
     @UseInterceptors(ResultInterceptor)
     public async resetUEMPassword(@Permissions() permissions: PersonPermissions): Promise<Result<string>> {
-        const personId: string = permissions.personFields.id;
-        const personResult: Result<Person<true>> = await this.personRepository.getPersonIfAllowedOrRequesterIsPerson(
-            personId,
-            permissions,
-        );
-        if (!personResult.ok) {
+        const { id, referrer }: PersonFields = permissions.personFields;
+        if (!id) {
             throw SchulConnexErrorMapper.mapSchulConnexErrorToHttpException(
-                SchulConnexErrorMapper.mapDomainErrorToSchulConnexError(new EntityNotFoundError('Person', personId)),
+                SchulConnexErrorMapper.mapDomainErrorToSchulConnexError(new EntityNotFoundError('Person', id)),
             );
         }
-        if (!personResult.value.referrer) {
+        if (!referrer) {
             throw SchulConnexErrorMapper.mapSchulConnexErrorToHttpException(
                 SchulConnexErrorMapper.mapDomainErrorToSchulConnexError(
-                    new PersonDomainError('Person-Referrer NOT defined', personId),
+                    new PersonDomainError('Person-Referrer NOT defined', id),
                 ),
             );
         }
         const changeUserPasswordResult: Result<PersonID> = await this.ldapClientService.changeUserPasswordByPersonId(
-            personResult.value.id,
-            personResult.value.referrer,
+            id,
+            referrer,
         );
 
         if (!changeUserPasswordResult.ok) {
-            throw new PersonUserPasswordModificationError(personResult.value.id);
+            throw new PersonUserPasswordModificationError(id);
         }
 
         return { ok: true, value: changeUserPasswordResult.value };