budibase/packages/backend-core/src/users/utils.ts

import { CloudAccount } from "@budibase/types"
import * as accountSdk from "../accounts"
import env from "../environment"
import { getPlatformUser } from "./lookup"
import { EmailUnavailableError } from "../errors"
import { getTenantId } from "../context"
import { sdk } from "@budibase/shared-core"
import { getAccountByTenantId } from "../accounts"

// extract from shared-core to make easily accessible from backend-core
export const isBuilder = sdk.users.isBuilder
export const isAdmin = sdk.users.isAdmin
export const isCreator = sdk.users.isCreator
export const isGlobalBuilder = sdk.users.isGlobalBuilder
export const isAdminOrBuilder = sdk.users.isAdminOrBuilder
export const hasAdminPermissions = sdk.users.hasAdminPermissions
export const hasBuilderPermissions = sdk.users.hasBuilderPermissions
export const hasAppBuilderPermissions = sdk.users.hasAppBuilderPermissions

export async function validateUniqueUser(email: string, tenantId: string) {
  // check budibase users in other tenants
  if (env.MULTI_TENANCY) {
    const tenantUser = await getPlatformUser(email)
    if (tenantUser != null && tenantUser.tenantId !== tenantId) {
      throw new EmailUnavailableError(email)
    }
  }

  // check root account users in account portal
  if (!env.SELF_HOSTED && !env.DISABLE_ACCOUNT_PORTAL) {
    const account = await accountSdk.getAccount(email)
    if (account && account.verified && account.tenantId !== tenantId) {
      throw new EmailUnavailableError(email)
    }
  }
}

/**
 * For the given user id's, return the account holder if it is in the ids.
 */
export async function getAccountHolderFromUserIds(
  userIds: string[]
): Promise<CloudAccount | undefined> {
  if (!env.SELF_HOSTED && !env.DISABLE_ACCOUNT_PORTAL) {
    const tenantId = getTenantId()
    const account = await getAccountByTenantId(tenantId)
    if (!account) {
      throw new Error(`Account not found for tenantId=${tenantId}`)
    }

    const budibaseUserId = account.budibaseUserId
    if (userIds.includes(budibaseUserId)) {
      return account
    }
  }
}
Breaking out pro components back into the worker user SDK, and attempting to separate the pro components as much as possible from the user SDK itself, so that it can be easily re-created in other services. 2023-07-25 19:39:40 +02:00			`import { CloudAccount } from "@budibase/types"`
Refactoring users core to move into backend, allowing app builder endpoints to move into pro. 2023-07-25 18:48:57 +02:00			`import * as accountSdk from "../accounts"`
			`import env from "../environment"`
			`import { getPlatformUser } from "./lookup"`
			`import { EmailUnavailableError } from "../errors"`
			`import { getTenantId } from "../context"`
			`import { sdk } from "@budibase/shared-core"`
			`import { getAccountByTenantId } from "../accounts"`

			`// extract from shared-core to make easily accessible from backend-core`
			`export const isBuilder = sdk.users.isBuilder`
			`export const isAdmin = sdk.users.isAdmin`
Keep only migrations 2023-10-24 10:24:00 +02:00			`export const isCreator = sdk.users.isCreator`
Some fixes post testing. 2023-07-25 19:52:59 +02:00			`export const isGlobalBuilder = sdk.users.isGlobalBuilder`
Refactoring users core to move into backend, allowing app builder endpoints to move into pro. 2023-07-25 18:48:57 +02:00			`export const isAdminOrBuilder = sdk.users.isAdminOrBuilder`
			`export const hasAdminPermissions = sdk.users.hasAdminPermissions`
			`export const hasBuilderPermissions = sdk.users.hasBuilderPermissions`
			`export const hasAppBuilderPermissions = sdk.users.hasAppBuilderPermissions`

			`export async function validateUniqueUser(email: string, tenantId: string) {`
			`// check budibase users in other tenants`
			`if (env.MULTI_TENANCY) {`
			`const tenantUser = await getPlatformUser(email)`
			`if (tenantUser != null && tenantUser.tenantId !== tenantId) {`
			`throw new EmailUnavailableError(email)`
			`}`
			`}`

			`// check root account users in account portal`
			`if (!env.SELF_HOSTED && !env.DISABLE_ACCOUNT_PORTAL) {`
			`const account = await accountSdk.getAccount(email)`
			`if (account && account.verified && account.tenantId !== tenantId) {`
			`throw new EmailUnavailableError(email)`
			`}`
			`}`
			`}`

			`/**`
			`* For the given user id's, return the account holder if it is in the ids.`
			`*/`
			`export async function getAccountHolderFromUserIds(`
			`userIds: string[]`
			`): Promise<CloudAccount \| undefined> {`
			`if (!env.SELF_HOSTED && !env.DISABLE_ACCOUNT_PORTAL) {`
			`const tenantId = getTenantId()`
			`const account = await getAccountByTenantId(tenantId)`
			`if (!account) {`
			throw new Error(`Account not found for tenantId=${tenantId}`)
			`}`

			`const budibaseUserId = account.budibaseUserId`
			`if (userIds.includes(budibaseUserId)) {`
			`return account`
			`}`
			`}`
			`}`