From 45386ac4bfaebc1ba6c8195d03c7b304e6a54cbb Mon Sep 17 00:00:00 2001 From: Matthieu Haineault Date: Thu, 14 Aug 2025 11:55:17 -0400 Subject: [PATCH] fix(temp): temporary commented RolesAllowed tags for dev purposes. --- .../controllers/employees-archive.controller.ts | 4 ++-- .../controllers/expenses-archive.controller.ts | 4 ++-- .../controllers/leave-requests-archive.controller.ts | 4 ++-- .../controllers/shifts-archive.controller.ts | 4 ++-- .../controllers/timesheets-archive.controller.ts | 4 ++-- .../customers/controllers/customers.controller.ts | 10 +++++----- .../employees/controllers/employees.controller.ts | 12 ++++++------ .../expenses/controllers/expenses.controller.ts | 12 ++++++------ .../exports/controllers/csv-exports.controller.ts | 2 +- .../controllers/leave-requests.controller.ts | 10 +++++----- .../controllers/oauth-sessions.controller.ts | 10 +++++----- .../controllers/pay-periods.controller.ts | 4 ++-- src/modules/shifts/controllers/shifts.controller.ts | 12 ++++++------ .../timesheets/controllers/timesheets.controller.ts | 12 ++++++------ 14 files changed, 52 insertions(+), 52 deletions(-) diff --git a/src/modules/archival/controllers/employees-archive.controller.ts b/src/modules/archival/controllers/employees-archive.controller.ts index 1de0749..fa9e911 100644 --- a/src/modules/archival/controllers/employees-archive.controller.ts +++ b/src/modules/archival/controllers/employees-archive.controller.ts @@ -11,7 +11,7 @@ export class EmployeesArchiveController { constructor(private readonly employeesService: EmployeesService) {} @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'List of archived employees'}) @ApiResponse({ status: 200, description: 'List of archived employees', isArray: true }) async findAllArchived(): Promise { @@ -19,7 +19,7 @@ export class EmployeesArchiveController { } @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR,RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR,RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Fetch employee in archives with its Id'}) @ApiResponse({ status: 200, description: 'Archived employee found'}) async findOneArchived(@Param('id', ParseIntPipe) id: number ): Promise { diff --git a/src/modules/archival/controllers/expenses-archive.controller.ts b/src/modules/archival/controllers/expenses-archive.controller.ts index 2ad0519..7c270fe 100644 --- a/src/modules/archival/controllers/expenses-archive.controller.ts +++ b/src/modules/archival/controllers/expenses-archive.controller.ts @@ -11,7 +11,7 @@ export class ExpensesArchiveController { constructor(private readonly expensesService: ExpensesQueryService) {} @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'List of archived expenses'}) @ApiResponse({ status: 200, description: 'List of archived expenses', isArray: true }) async findAllArchived(): Promise { @@ -19,7 +19,7 @@ export class ExpensesArchiveController { } @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Fetch expense in archives with its Id'}) @ApiResponse({ status: 200, description: 'Archived expense found'}) async findOneArchived(@Param('id', ParseIntPipe) id: number ): Promise { diff --git a/src/modules/archival/controllers/leave-requests-archive.controller.ts b/src/modules/archival/controllers/leave-requests-archive.controller.ts index 27c7b94..62e6925 100644 --- a/src/modules/archival/controllers/leave-requests-archive.controller.ts +++ b/src/modules/archival/controllers/leave-requests-archive.controller.ts @@ -11,7 +11,7 @@ export class LeaveRequestsArchiveController { constructor(private readonly leaveRequestsService: LeaveRequestsService) {} @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'List of archived leaveRequests'}) @ApiResponse({ status: 200, description: 'List of archived leaveRequests', isArray: true }) async findAllArchived(): Promise { @@ -19,7 +19,7 @@ export class LeaveRequestsArchiveController { } @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Fetch leaveRequest in archives with its Id'}) @ApiResponse({ status: 200, description: 'Archived leaveRequest found'}) async findOneArchived(@Param('id', ParseIntPipe) id: number ): Promise { diff --git a/src/modules/archival/controllers/shifts-archive.controller.ts b/src/modules/archival/controllers/shifts-archive.controller.ts index 26af4a6..fb7204b 100644 --- a/src/modules/archival/controllers/shifts-archive.controller.ts +++ b/src/modules/archival/controllers/shifts-archive.controller.ts @@ -11,7 +11,7 @@ export class ShiftsArchiveController { constructor(private readonly shiftsService:ShiftsQueryService) {} @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'List of archived shifts'}) @ApiResponse({ status: 200, description: 'List of archived shifts', isArray: true }) async findAllArchived(): Promise { @@ -19,7 +19,7 @@ export class ShiftsArchiveController { } @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR,RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR,RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Fetch shift in archives with its Id'}) @ApiResponse({ status: 200, description: 'Archived shift found'}) async findOneArchived(@Param('id', ParseIntPipe) id: number ): Promise { diff --git a/src/modules/archival/controllers/timesheets-archive.controller.ts b/src/modules/archival/controllers/timesheets-archive.controller.ts index f41b679..0c9d607 100644 --- a/src/modules/archival/controllers/timesheets-archive.controller.ts +++ b/src/modules/archival/controllers/timesheets-archive.controller.ts @@ -11,7 +11,7 @@ export class TimesheetsArchiveController { constructor(private readonly timesheetsService: TimesheetsQueryService) {} @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'List of archived timesheets'}) @ApiResponse({ status: 200, description: 'List of archived timesheets', isArray: true }) async findAllArchived(): Promise { @@ -19,7 +19,7 @@ export class TimesheetsArchiveController { } @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Fetch timesheet in archives with its Id'}) @ApiResponse({ status: 200, description: 'Archived timesheet found'}) async findOneArchived(@Param('id', ParseIntPipe) id: number ): Promise { diff --git a/src/modules/customers/controllers/customers.controller.ts b/src/modules/customers/controllers/customers.controller.ts index 79424b4..83122d3 100644 --- a/src/modules/customers/controllers/customers.controller.ts +++ b/src/modules/customers/controllers/customers.controller.ts @@ -15,7 +15,7 @@ export class CustomersController { constructor(private readonly customersService: CustomersService) {} @Post() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Create customer' }) @ApiResponse({ status: 201, description: 'Customer created', type: CreateCustomerDto }) @ApiResponse({ status: 400, description: 'Invalid task or invalid data' }) @@ -24,7 +24,7 @@ export class CustomersController { } @Get() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Find all customers' }) @ApiResponse({ status: 201, description: 'List of customers found', type: CreateCustomerDto, isArray: true }) @ApiResponse({ status: 400, description: 'List of customers not found' }) @@ -33,7 +33,7 @@ export class CustomersController { } @Get(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Find customer' }) @ApiResponse({ status: 201, description: 'Customer found', type: CreateCustomerDto }) @ApiResponse({ status: 400, description: 'Customer not found' }) @@ -42,7 +42,7 @@ export class CustomersController { } @Patch(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE,RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE,RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Update customer' }) @ApiResponse({ status: 201, description: 'Customer updated', type: CreateCustomerDto }) @ApiResponse({ status: 400, description: 'Customer not found' }) @@ -54,7 +54,7 @@ export class CustomersController { } @Delete(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Delete customer' }) @ApiResponse({ status: 201, description: 'Customer deleted', type: CreateCustomerDto }) @ApiResponse({ status: 400, description: 'Customer not found' }) diff --git a/src/modules/employees/controllers/employees.controller.ts b/src/modules/employees/controllers/employees.controller.ts index d275e45..9f732e6 100644 --- a/src/modules/employees/controllers/employees.controller.ts +++ b/src/modules/employees/controllers/employees.controller.ts @@ -16,7 +16,7 @@ export class EmployeesController { constructor(private readonly employeesService: EmployeesService) {} @Post() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({summary: 'Create employee' }) @ApiResponse({ status: 201, description: 'Employee created', type: CreateEmployeeDto }) @ApiResponse({ status: 400, description: 'Incomplete task or invalid data' }) @@ -25,7 +25,7 @@ export class EmployeesController { } @Get() - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR, RoleEnum.ACCOUNTING) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR, RoleEnum.ACCOUNTING) @ApiOperation({summary: 'Find all employees' }) @ApiResponse({ status: 200, description: 'List of employees found', type: CreateEmployeeDto, isArray: true }) @ApiResponse({ status: 400, description: 'List of employees not found' }) @@ -34,7 +34,7 @@ export class EmployeesController { } @Get('employee-list') - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR, RoleEnum.ACCOUNTING) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR, RoleEnum.ACCOUNTING) @ApiOperation({summary: 'Find all employees with scoped info' }) @ApiResponse({ status: 200, description: 'List of employees with scoped info found', type: EmployeeListItemDto, isArray: true }) @ApiResponse({ status: 400, description: 'List of employees with scoped info not found' }) @@ -43,7 +43,7 @@ export class EmployeesController { } @Get(':id') - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR,RoleEnum.ACCOUNTING ) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR,RoleEnum.ACCOUNTING ) @ApiOperation({summary: 'Find employee' }) @ApiResponse({ status: 200, description: 'Employee found', type: CreateEmployeeDto }) @ApiResponse({ status: 400, description: 'Employee not found' }) @@ -60,7 +60,7 @@ export class EmployeesController { } @Delete(':id') - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR ) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR ) @ApiOperation({summary: 'Delete employee' }) @ApiParam({ name: 'id', type: Number, description: 'Identifier of the employee to delete' }) @ApiResponse({ status: 204, description: 'Employee deleted' }) @@ -70,7 +70,7 @@ export class EmployeesController { } @Patch(':id') - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiBearerAuth('access-token') @ApiOperation({ summary: 'Update, archive or restore an employee' }) @ApiParam({ name: 'id', type: Number, description: 'Identifier of the employee' }) diff --git a/src/modules/expenses/controllers/expenses.controller.ts b/src/modules/expenses/controllers/expenses.controller.ts index 4626f86..1b3b2f0 100644 --- a/src/modules/expenses/controllers/expenses.controller.ts +++ b/src/modules/expenses/controllers/expenses.controller.ts @@ -20,7 +20,7 @@ export class ExpensesController { ) {} @Post() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Create expense' }) @ApiResponse({ status: 201, description: 'Expense created',type: CreateExpenseDto }) @ApiResponse({ status: 400, description: 'Incomplete task or invalid data' }) @@ -29,7 +29,7 @@ export class ExpensesController { } @Get() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Find all expenses' }) @ApiResponse({ status: 201, description: 'List of expenses found',type: CreateExpenseDto, isArray: true }) @ApiResponse({ status: 400, description: 'List of expenses not found' }) @@ -39,7 +39,7 @@ export class ExpensesController { } @Get(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Find expense' }) @ApiResponse({ status: 201, description: 'Expense found',type: CreateExpenseDto }) @ApiResponse({ status: 400, description: 'Expense not found' }) @@ -48,7 +48,7 @@ export class ExpensesController { } @Patch(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Expense shift' }) @ApiResponse({ status: 201, description: 'Expense updated',type: CreateExpenseDto }) @ApiResponse({ status: 400, description: 'Expense not found' }) @@ -57,7 +57,7 @@ export class ExpensesController { } @Delete(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Delete expense' }) @ApiResponse({ status: 201, description: 'Expense deleted',type: CreateExpenseDto }) @ApiResponse({ status: 400, description: 'Expense not found' }) @@ -66,7 +66,7 @@ export class ExpensesController { } @Patch(':id/approval') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) async approve(@Param('id', ParseIntPipe) id: number, @Body('is_approved', ParseBoolPipe) isApproved: boolean) { return this.expensesApprovalService.updateApproval(id, isApproved); } diff --git a/src/modules/exports/controllers/csv-exports.controller.ts b/src/modules/exports/controllers/csv-exports.controller.ts index 60de449..f4948e4 100644 --- a/src/modules/exports/controllers/csv-exports.controller.ts +++ b/src/modules/exports/controllers/csv-exports.controller.ts @@ -14,7 +14,7 @@ export class CsvExportController { @Get('csv') @Header('Content-Type', 'text/csv; charset=utf-8') @Header('Content-Dispoition', 'attachment; filename="export.csv"') - @RolesAllowed(RoleEnum.ADMIN, RoleEnum.ACCOUNTING, RoleEnum.HR) + //@RolesAllowed(RoleEnum.ADMIN, RoleEnum.ACCOUNTING, RoleEnum.HR) async exportCsv(@Query() options: ExportCsvOptionsDto, @Query('period') periodId: string ): Promise { diff --git a/src/modules/leave-requests/controllers/leave-requests.controller.ts b/src/modules/leave-requests/controllers/leave-requests.controller.ts index cfa6a3c..adefa81 100644 --- a/src/modules/leave-requests/controllers/leave-requests.controller.ts +++ b/src/modules/leave-requests/controllers/leave-requests.controller.ts @@ -16,7 +16,7 @@ export class LeaveRequestController { constructor(private readonly leaveRequetsService: LeaveRequestsService){} @Post() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({summary: 'Create leave request' }) @ApiResponse({ status: 201, description: 'Leave request created',type: CreateLeaveRequestsDto }) @ApiResponse({ status: 400, description: 'Incomplete task or invalid data' }) @@ -25,7 +25,7 @@ export class LeaveRequestController { } @Get() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({summary: 'Find all leave request' }) @ApiResponse({ status: 201, description: 'List of Leave requests found',type: CreateLeaveRequestsDto, isArray: true }) @ApiResponse({ status: 400, description: 'List of leave request not found' }) @@ -35,7 +35,7 @@ export class LeaveRequestController { } @Get(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({summary: 'Find leave request' }) @ApiResponse({ status: 201, description: 'Leave request found',type: CreateLeaveRequestsDto }) @ApiResponse({ status: 400, description: 'Leave request not found' }) @@ -44,7 +44,7 @@ export class LeaveRequestController { } @Patch(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({summary: 'Update leave request' }) @ApiResponse({ status: 201, description: 'Leave request updated',type: CreateLeaveRequestsDto }) @ApiResponse({ status: 400, description: 'Leave request not found' }) @@ -53,7 +53,7 @@ export class LeaveRequestController { } @Delete(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({summary: 'Delete leave request' }) @ApiResponse({ status: 201, description: 'Leave request deleted',type: CreateLeaveRequestsDto }) @ApiResponse({ status: 400, description: 'Leave request not found' }) diff --git a/src/modules/oauth-sessions/controllers/oauth-sessions.controller.ts b/src/modules/oauth-sessions/controllers/oauth-sessions.controller.ts index 64b3eb7..2e5b54c 100644 --- a/src/modules/oauth-sessions/controllers/oauth-sessions.controller.ts +++ b/src/modules/oauth-sessions/controllers/oauth-sessions.controller.ts @@ -15,7 +15,7 @@ export class OauthSessionsController { constructor(private readonly oauthSessionsService: OauthSessionsService){} @Post() - @RolesAllowed(RoleEnum.ADMIN) + // @RolesAllowed(RoleEnum.ADMIN) @ApiOperation({summary: 'Create OAuth session' }) @ApiResponse({ status: 201, description: 'OAuth session created', type: CreateOauthSessionDto }) @ApiResponse({ status: 400, description: 'Incomplete task or invalid data' }) @@ -24,7 +24,7 @@ export class OauthSessionsController { } @Get() - @RolesAllowed(RoleEnum.ADMIN) + //@RolesAllowed(RoleEnum.ADMIN) @ApiOperation({summary: 'Find all OAuth session' }) @ApiResponse({ status: 201, description: 'List of OAuth session found', type: CreateOauthSessionDto, isArray: true }) @ApiResponse({ status: 400, description: 'List of OAuth session not found' }) @@ -33,7 +33,7 @@ export class OauthSessionsController { } @Get(':id') - @RolesAllowed(RoleEnum.ADMIN) + //@RolesAllowed(RoleEnum.ADMIN) @ApiOperation({summary: 'Find OAuth session' }) @ApiResponse({ status: 201, description: 'OAuth session found', type: CreateOauthSessionDto }) @ApiResponse({ status: 400, description: 'OAuth session not found' }) @@ -42,7 +42,7 @@ export class OauthSessionsController { } @Patch(':id') - @RolesAllowed(RoleEnum.ADMIN) + //@RolesAllowed(RoleEnum.ADMIN) @ApiOperation({summary: 'Update OAuth session' }) @ApiResponse({ status: 201, description: 'OAuth session updated', type: CreateOauthSessionDto }) @ApiResponse({ status: 400, description: 'OAuth session not found' }) @@ -51,7 +51,7 @@ export class OauthSessionsController { } @Delete(':id') - @RolesAllowed(RoleEnum.ADMIN) + //@RolesAllowed(RoleEnum.ADMIN) @ApiOperation({summary: 'Delete OAuth session' }) @ApiResponse({ status: 201, description: 'OAuth session deleted', type: CreateOauthSessionDto }) @ApiResponse({ status: 400, description: 'OAuth session not found' }) diff --git a/src/modules/pay-periods/controllers/pay-periods.controller.ts b/src/modules/pay-periods/controllers/pay-periods.controller.ts index d978c94..32a8ef3 100644 --- a/src/modules/pay-periods/controllers/pay-periods.controller.ts +++ b/src/modules/pay-periods/controllers/pay-periods.controller.ts @@ -60,7 +60,7 @@ export class PayPeriodsController { } @Patch(":year/:periodNumber/approval") - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: "Approve all timesheets with activity in the period" }) @ApiParam({ name: "year", type: Number, example: 2024 }) @ApiParam({ name: "periodNumber", type: Number, example: 1, description: "1..26" }) @@ -74,7 +74,7 @@ export class PayPeriodsController { } @Get(':year/:periodNumber/crew-overview') - @RolesAllowed(RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Supervisor crew overview for a given pay period' }) @ApiParam({ name: 'year', type: Number, example: 2024 }) @ApiParam({ name: 'periodNumber', type: Number, example: 1, description: '1..26' }) diff --git a/src/modules/shifts/controllers/shifts.controller.ts b/src/modules/shifts/controllers/shifts.controller.ts index 966dc9b..1612e12 100644 --- a/src/modules/shifts/controllers/shifts.controller.ts +++ b/src/modules/shifts/controllers/shifts.controller.ts @@ -22,7 +22,7 @@ export class ShiftsController { ){} @Post() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Create shift' }) @ApiResponse({ status: 201, description: 'Shift created',type: CreateShiftDto }) @ApiResponse({ status: 400, description: 'Incomplete task or invalid data' }) @@ -31,7 +31,7 @@ export class ShiftsController { } @Get() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Find all shifts' }) @ApiResponse({ status: 201, description: 'List of shifts found',type: CreateShiftDto, isArray: true }) @ApiResponse({ status: 400, description: 'List of shifts not found' }) @@ -41,7 +41,7 @@ export class ShiftsController { } @Get(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Find shift' }) @ApiResponse({ status: 201, description: 'Shift found',type: CreateShiftDto }) @ApiResponse({ status: 400, description: 'Shift not found' }) @@ -50,7 +50,7 @@ export class ShiftsController { } @Patch(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Update shift' }) @ApiResponse({ status: 201, description: 'Shift updated',type: CreateShiftDto }) @ApiResponse({ status: 400, description: 'Shift not found' }) @@ -59,7 +59,7 @@ export class ShiftsController { } @Delete(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Delete shift' }) @ApiResponse({ status: 201, description: 'Shift deleted',type: CreateShiftDto }) @ApiResponse({ status: 400, description: 'Shift not found' }) @@ -68,7 +68,7 @@ export class ShiftsController { } @Patch(':id/approval') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) async approve(@Param('id', ParseIntPipe) id: number, @Body('is_approved', ParseBoolPipe) isApproved: boolean) { return this.shiftsApprovalService.updateApproval(id, isApproved); } diff --git a/src/modules/timesheets/controllers/timesheets.controller.ts b/src/modules/timesheets/controllers/timesheets.controller.ts index 04913cb..8ee56ed 100644 --- a/src/modules/timesheets/controllers/timesheets.controller.ts +++ b/src/modules/timesheets/controllers/timesheets.controller.ts @@ -20,7 +20,7 @@ export class TimesheetsController { ) {} @Post() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Create timesheet' }) @ApiResponse({ status: 201, description: 'Timesheet created', type: CreateTimesheetDto }) @ApiResponse({ status: 400, description: 'Incomplete task or invalid data' }) @@ -29,7 +29,7 @@ export class TimesheetsController { } @Get() - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Find all timesheets' }) @ApiResponse({ status: 201, description: 'List of timesheet found', type: CreateTimesheetDto, isArray: true }) @ApiResponse({ status: 400, description: 'List of timesheets not found' }) @@ -39,7 +39,7 @@ export class TimesheetsController { } @Get(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.EMPLOYEE, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Find timesheet' }) @ApiResponse({ status: 201, description: 'Timesheet found', type: CreateTimesheetDto }) @ApiResponse({ status: 400, description: 'Timesheet not found' }) @@ -48,7 +48,7 @@ export class TimesheetsController { } @Patch(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Update timesheet' }) @ApiResponse({ status: 201, description: 'Timesheet updated', type: CreateTimesheetDto }) @ApiResponse({ status: 400, description: 'Timesheet not found' }) @@ -60,7 +60,7 @@ export class TimesheetsController { } @Delete(':id') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + // @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) @ApiOperation({ summary: 'Delete timesheet' }) @ApiResponse({ status: 201, description: 'Timesheet deleted', type: CreateTimesheetDto }) @ApiResponse({ status: 400, description: 'Timesheet not found' }) @@ -69,7 +69,7 @@ export class TimesheetsController { } @Patch(':id/approval') - @RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) + //@RolesAllowed(RoleEnum.ACCOUNTING, RoleEnum.ADMIN, RoleEnum.HR, RoleEnum.SUPERVISOR) async approve(@Param('id', ParseIntPipe) id: number, @Body('is_approved', ParseBoolPipe) isApproved: boolean) { return this.timesheetsCommandService.updateApproval(id, isApproved); }