Press n or j to go to the next uncovered block, b, p or k for the previous block.
| 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 | 1x 1x 8x 1x 7x 7x 1x 1x 6x 6x 6x 6x 6x 5x 5x 5x 5x 5x 5x 1x 1x 1x | import { getAuthDetails, lookupUserAttributes } from "libs/api/auth/user";
import { response } from "libs/handler-lib";
import { APIGatewayEvent } from "shared-types";
import { z } from "zod";
import {
getActiveStatesForUserByEmail,
getLatestActiveRoleByEmail,
getUserByEmail,
} from "./userManagementService";
export const getUserDetailsSchema = z.object({
userEmail: z.string().email().optional(),
});
export const getUserDetails = async (event: APIGatewayEvent) => {
if (!event?.requestContext) {
return response({
statusCode: 400,
body: { message: "Request context required" },
});
}
let currAuthDetails;
try {
currAuthDetails = getAuthDetails(event);
} catch (err) {
console.error(err);
return response({
statusCode: 401,
body: { message: "User not authenticated" },
});
}
try {
const { userId, poolId } = currAuthDetails;
const currUserAttributes = await lookupUserAttributes(userId, poolId);
const currUserDetails = await getUserByEmail(currUserAttributes.email);
const currUserLatestActiveRoleObj = await getLatestActiveRoleByEmail(currUserAttributes.email);
const eventBody = typeof event.body === "string" ? JSON.parse(event.body) : event.body;
const safeEventBody = getUserDetailsSchema.safeParse(eventBody);
console.log("safeEventBody", JSON.stringify(safeEventBody, null, 2));
// if the event has a body with a userEmail, the userEmail is not the same as
// the current user's email, and the current user is a user manager, then
// return the data for the userEmail instead of the current user
Iif (
safeEventBody.success &&
safeEventBody?.data?.userEmail &&
safeEventBody.data.userEmail !== currUserDetails.email &&
["systemadmin", "statesystemadmin", "cmsroleapprover", "helpdesk"].includes(
currUserLatestActiveRoleObj?.role,
)
) {
// retrieving user details for the requested user
const reqUserDetails = await getUserByEmail(safeEventBody.data.userEmail);
const reqUserLatestActiveRoleObj = await getLatestActiveRoleByEmail(
safeEventBody.data.userEmail,
);
const reqUserActiveStates = await getActiveStatesForUserByEmail(currUserAttributes.email);
return response({
statusCode: 200,
body: {
...reqUserDetails,
role: reqUserLatestActiveRoleObj?.role ?? "norole",
states: reqUserActiveStates,
},
});
}
const currUserActiveStates = await getActiveStatesForUserByEmail(currUserAttributes.email);
return response({
statusCode: 200,
body: {
...currUserDetails,
role: currUserLatestActiveRoleObj?.role ?? "norole",
states: currUserActiveStates,
},
});
} catch (err: unknown) {
console.log("An error occurred: ", err);
return response({
statusCode: 500,
body: { message: `Error: ${err}` },
});
}
};
export const handler = getUserDetails;
|