All files / lib/lambda/user-management getUserProfile.ts

91.66% Statements 22/24
90.9% Branches 10/11
100% Functions 1/1
91.66% Lines 22/24

Press n or j to go to the next uncovered block, b, p or k for the previous block. 



1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78 
 
 
 
 
 
 
2x
 
 
 
2x
8x
1x
 
 
 
 
 
7x
7x
 
1x
1x
 
 
 
 
 
6x
6x
6x
 
6x
6x
6x
 
 
 
 
6x
 
 
 
 
1x
 
 
1x
 
 
 
 
 
 
 
 
 
 
 
 
6x
 
5x
 
 
 
 
1x
1x
 
 
 
 
 
 
2x
 
import { getAuthDetails, lookupUserAttributes } from "libs/api/auth/user";
import { response } from "libs/handler-lib";
import { APIGatewayEvent } from "shared-types";
import { z } from "zod";
 
import { getAllUserRolesByEmail, getLatestActiveRoleByEmail } from "./userManagementService";
 
export const getUserProfileSchema = z.object({
  userEmail: z.string().email().optional(),
});
 
export const getUserProfile = async (event: APIGatewayEvent) => {
  if (!event?.requestContext) {
    return response({
      statusCode: 400,
      body: { message: "Request context required" },
    });
  }
  let currAuthDetails;
  try {
    currAuthDetails = getAuthDetails(event);
  } catch (err) {
    console.error(err);
    return response({
      statusCode: 401,
      body: { message: "User not authenticated" },
    });
  }
 
  try {
    const { userId, poolId } = currAuthDetails;
    const currUserAttributes = await lookupUserAttributes(userId, poolId);
 
    const eventBody = typeof event.body === "string" ? JSON.parse(event.body) : event.body;
    const safeEventBody = getUserProfileSchema.safeParse(eventBody);
    console.log("safeEventBody", JSON.stringify(safeEventBody, null, 2));
 
    // if the event has a body with a userEmail, the userEmail is not the same as
    // the current user's email, and the current user is a user manager, then
    // return the data for the userEmail instead of the current user
    if (
      safeEventBody.success &&
      safeEventBody?.data?.userEmail &&
      safeEventBody.data.userEmail !== currUserAttributes.email
    ) {
      const currUserLatestActiveRoleObj = await getLatestActiveRoleByEmail(
        currUserAttributes.email,
      );
      Iif (
        ["systemadmin", "statesystemadmin", "cmsroleapprover", "helpdesk"].includes(
          currUserLatestActiveRoleObj?.role,
        )
      ) {
        const reqUserRoles = await getAllUserRolesByEmail(safeEventBody.data.userEmail);
        return response({
          statusCode: 200,
          body: reqUserRoles,
        });
      }
    }
 
    const currUserRoles = await getAllUserRolesByEmail(currUserAttributes.email);
 
    return response({
      statusCode: 200,
      body: currUserRoles,
    });
  } catch (err: unknown) {
    console.log("An error occurred: ", err);
    return response({
      statusCode: 500,
      body: { message: `Error: ${err}` },
    });
  }
};
 
export const handler = getUserProfile;
 
Code coverage generated by istanbul at 2025-06-27T02:18:33.220Z