Merge pull request #26 from codeuino/membersSection

Members Timeline section - Admin Panel

Author: vaibhavdaren

.env

@@ -1,3 +1,3 @@
-DATABASE_URL="mongodb://<username>:<password>@cluster0-shard-00-00.t4hho.mongodb.net:27017,cluster0-shard-00-01.t4hho.mongodb.net:27017,cluster0-shard-00-02.t4hho.mongodb.net:27017/<dbname>?ssl=true&replicaSet=atlas-a80apd-shard-0&authSource=admin&retryWrites=true&w=majority"
+DATABASE_URL="mongodb://MongoAdminUser:SecretKey%231@cluster0-shard-00-00.t4hho.mongodb.net:27017,cluster0-shard-00-01.t4hho.mongodb.net:27017,cluster0-shard-00-02.t4hho.mongodb.net:27017/SpansberryDb?ssl=true&replicaSet=atlas-a80apd-shard-0&authSource=admin&retryWrites=true&w=majority"
 JWT_SECRET = "somesupersecretkey"
 PORT=8000

__tests__/user.spec.js

@@ -76,20 +76,27 @@ test("get all users via admin authorization", async () => {
     .post("/graphql")
     .send({
       query: `{ users {
-      _id
-      name {
-        firstName
+      users {
+        _id
+        name {
+          firstName
+        }
+        email
+      }
+      blockedUsers {
+        _id
+        name {
+          firstName
+        }
+        email
       }
-      email
   }}`,
     })
     .set("Accept", "application/json")
     .set("Authorization", `Bearer ${firstUserToken}`);
   expect(response.type).toBe("application/json");
   expect(response.status).toBe(200);
-  expect(response.body.data.users.length).toBe(1);
-  expect(response.body.data.users[0].name.firstName).toBe("TestUser");
-  expect(response.body.data.users[0].email).toBe("abc1@email.com");
+  expect(response.body.data.users.users.length).toBe(0);
 });
 
 test("should not update user details if logged out", async () => {

graphql/resolvers/organization.js

@@ -128,10 +128,15 @@ module.exports = {
         if (!user) {
           throw new Error(noUserError);
         }
+        const organization = await Organization.findOne({});
+        if (user.isModerator) {
+          organization.moderatorIds = organization.moderatorIds.filter(
+            (moderatorId) => moderatorId.toString() != user.id
+          );
+        }
         user.isAdmin = true;
         user.isModerator = true;
         await user.save();
-        const organization = await Organization.findOne({});
         organization.adminIds.push(user);
         await organization.save();
         return { result: madeAdminResult };
@@ -162,9 +167,15 @@ module.exports = {
         if (!user) {
           throw new Error(noUserError);
         }
+        const organization = await Organization.findOne({});
+        if (user.isAdmin) {
+          organization.adminIds = organization.adminIds.filter(
+            (adminId) => adminId.toString() != user.id
+          );
+        }
+        user.isAdmin = false;
         user.isModerator = true;
         await user.save();
-        const organization = await Organization.findOne({});
         organization.moderatorIds.push(user);
         await organization.save();
         return {
@@ -242,6 +253,7 @@ module.exports = {
         if (!user.isModerator) {
           throw new Error(noModeratorError);
         }
+        user.isAdmin = false;
         user.isModerator = false;
         await user.save();
         const organization = await Organization.findOne({});
@@ -271,31 +283,19 @@ module.exports = {
           throw new Error(noAuthorizationError);
         }
         const organization = await Organization.findOne({})
-          .populate("adminIds", [
-            "_id",
-            "name",
-            "email",
-            "info",
-            "isAdmin",
-            "isModerator",
-            "isActivated",
-            "isRemoved",
-            "isFirstAdmin",
-          ])
-          .populate("moderatorIds", [
-            "_id",
-            "name",
-            "email",
-            "info",
-            "isAdmin",
-            "isModerator",
-            "isActivated",
-            "isRemoved",
-            "isFirstAdmin",
-          ]);
+          .populate({
+            path: "adminIds",
+            options: { sort: { createdAt: -1 } },
+          })
+          .populate({
+            path: "moderatorIds",
+            options: { sort: { createdAt: -1 } },
+          });
+        let admins = organization.adminIds.filter(admin => !admin.isBlocked);
+        let moderators = organization.moderatorIds.filter(moderator => !moderator.isAdmin && !moderator.isBlocked);
         return {
-          admins: organization.adminIds,
-          moderators: organization.moderatorIds,
+          admins,
+          moderators,
         };
       } else {
         throw new Error(adminAccessError);

graphql/resolvers/topic.js

@@ -5,6 +5,7 @@ const Message = require("../../models/message");
 const Tag = require("../../models/tag");
 const {
   authenticationError,
+  categoryRemovedError,
   topicRemovedError,
   noAuthorizationError,
   categoryArchivedError,
@@ -36,10 +37,13 @@ module.exports = {
       throw new Error(noAuthorizationError);
     }
     try {
-      let category = await Category.findById(
+      const category = await Category.findById(
         args.topicInput.parentCategory
-      ).lean();
-      if (category.isArchived == false) {
+      );
+      if (!category) {
+        throw new Error(categoryRemovedError);
+      }
+      if (category.isArchived === false) {
         let topic = new Topic({
           name: args.topicInput.name,
           description: args.topicInput.description,
@@ -79,11 +83,8 @@ module.exports = {
           }
         }
         await topic.save();
-        const saveCategory = await Category.findById(
-          args.topicInput.parentCategory
-        );
-        saveCategory.topics.push(topic);
-        await saveCategory.save();
+        category.topics.push(topic);
+        await category.save();
         const user = await User.findById(req.currentUser.id);
         user.topicsCreated.push(topic);
         await user.save();
@@ -109,6 +110,9 @@ module.exports = {
     }
     try {
       let topic = await Topic.findById(args.topicInput._id);
+      if (!topic) {
+        throw new Error(topicRemovedError);
+      }
       if (
         topic.createdBy.toString() == req.currentUser.id ||
         req.currentUser.isModerator
@@ -205,6 +209,9 @@ module.exports = {
     }
     try {
       const topic = await Topic.findById(args.topicFindInput._id);
+      if (!topic) {
+        throw new Error(topicRemovedError);
+      }
       if (
         topic.createdBy.toString() == req.currentUser.id ||
         req.currentUser.isModerator
@@ -228,6 +235,9 @@ module.exports = {
         );
         await user.save();
         const category = await Category.findById(topic.parentCategory);
+        if (!category) {
+          throw new Error(categoryRemovedError);
+        }
         category.topics = category.topics.filter(
           (topicId) => topicId.toString() != args.topicFindInput._id
         );
@@ -250,6 +260,9 @@ module.exports = {
     }
     try {
       const topic = await Topic.findById(args.topicFindInput._id);
+      if (!topic) {
+        throw new Error(topicRemovedError);
+      }
       if (
         topic.createdBy.toString() == req.currentUser.id ||
         req.currentUser.isModerator

graphql/resolvers/user.js

@@ -25,15 +25,25 @@ module.exports = {
       throw new Error(authenticationError);
     }
     try {
-      if (req.currentUser.isAdmin) {
-        const users = await User.find(
-          { isRemoved: false },
-          "name email info isFirstAdmin isAdmin isModerator isBlocked isRemoved"
-        );
-        return users;
-      } else {
-        throw new Error(adminAccessError);
+      const users = await User.find(
+        {
+          isRemoved: false,
+        },
+        "name email info isBlocked isAdmin isModerator createdAt"
+      ).sort([["createdAt", -1]]);
+      let blockedUsers = [];
+      let normalUsers = [];
+      for (const user of users) {
+        if (user.isBlocked === true) {
+          blockedUsers.push(user);
+        } else if (user.isAdmin == false && user.isModerator == false) {
+          normalUsers.push(user);
+        }
       }
+      return {
+        users: normalUsers,
+        blockedUsers,
+      };
     } catch (err) {
       console.log(err);
       throw err;
@@ -45,20 +55,18 @@ module.exports = {
       throw new Error(emailPasswordError);
     }
     try {
+      let user;
       let existingUser = await User.findOne({
         email: args.userInput.email,
       });
-      let user, organization;
-      const users = await User.find({}).lean();
-      const organizations = await Organization.find({}).lean();
+      const organization = await Organization.findOne({});
       if (existingUser) {
         if (existingUser.isBlocked) {
           throw new Error(userBlockedError);
         }
         if (existingUser.isRemoved) {
-          organization = await Organization.findOne();
           existingUser.name = args.userInput.name;
-          existingUser.password = args.userInput.password,
+          existingUser.password = args.userInput.password;
           existingUser.phone = args.userInput.phone;
           existingUser.info = args.userInput.info;
           existingUser.info.about.designation = "";
@@ -73,11 +81,11 @@ module.exports = {
           );
         }
       } else {
+        const users = await User.find({}).lean();
         if (users.length === 0) {
-          if (organizations.length === 0) {
+          if (!organization) {
             throw new Error(noOrganizationError);
           } else {
-            organization = await Organization.findOne();
             user = new User({
               name: args.userInput.name,
               email: args.userInput.email,
@@ -91,7 +99,6 @@ module.exports = {
             organization.adminIds.push(user);
           }
         } else {
-          organization = await Organization.findOne();
           user = new User({
             name: args.userInput.name,
             email: args.userInput.email,
@@ -100,7 +107,7 @@ module.exports = {
             info: args.userInput.info,
           });
         }
-        const saveUser = await user.save();
+        await user.save();
       }
       organization.totalUsers += 1;
       await organization.save();
@@ -124,6 +131,12 @@ module.exports = {
         throw new Error(noAuthorizationError);
       }
       let user = await User.findOne({ _id: req.currentUser.id });
+      if (!user || user.isRemoved) {
+        throw new Error(noUserError);
+      }
+      if (user.isBlocked) {
+        throw new Error(userBlockedError);
+      }
       user.name = args.userInput.name;
       user.phone = args.userInput.phone;
       user.info = args.userInput.info;
@@ -151,18 +164,15 @@ module.exports = {
         } else if (args.userFindInput._id) {
           user = await User.findById(args.userFindInput._id);
         }
-        if (!user) {
+        if (!user || user.isRemoved) {
           throw new Error(noUserError);
         }
         if (user.isFirstAdmin) {
           throw new Error(firstAdminBlockError);
         }
-        if (user.isRemoved) {
-          throw new Error(noUserError);
-        }
         user.isBlocked = true;
         await user.save();
-        const organization = await Organization.findOne();
+        const organization = await Organization.findOne({});
         organization.blockedUsers.push(user);
         organization.totalUsers -= 1;
         await organization.save();
@@ -191,15 +201,12 @@ module.exports = {
         } else if (args.userFindInput._id) {
           user = await User.findById(args.userFindInput._id);
         }
-        if (!user) {
+        if (!user || user.isRemoved) {
           throw new Error(noUserError);
         }
         if (user.isFirstAdmin) {
           throw new Error(noAuthorizationError);
         }
-        if (user.isRemoved) {
-          throw new Error(noUserError);
-        }
         user.isBlocked = false;
         await user.save();
         const organization = await Organization.findOne();
@@ -227,7 +234,7 @@ module.exports = {
       const organization = await Organization.findOne();
       if (!args.userFindInput.email && !args.userFindInput._id) {
         user = await User.findById(req.currentUser.id);
-        if (!user) {
+        if (!user || user.isRemoved) {
           throw new Error(noUserError);
         }
         if (user.isFirstAdmin) {
@@ -255,7 +262,7 @@ module.exports = {
         } else if (args.userFindInput._id) {
           user = await User.findById(args.userFindInput._id);
         }
-        if (!user) {
+        if (!user || user.isRemoved) {
           throw new Error(noUserError);
         }
         if (user.isFirstAdmin) {

graphql/schema/index.js

@@ -23,9 +23,10 @@ type resultData {
 }
 
 type RootQuery {
-  users: [user!]!
+  users: usersData!
   login(email: String!, password: String!): authData!
   getCurrentUser(_id: String!, token: String!): authData!
+  getUserProfile(userFindInput: userFindInput!): user!
   getSelfCategories: [category!]!
   getSelfTopics: [topic!]!
   getAssignedTasks: [task!]!
@@ -48,7 +49,6 @@ type RootMutation {
   blockUser(userFindInput: userFindInput!): resultData!
   unblockUser(userFindInput: userFindInput!): resultData!
   removeUser(userFindInput: userFindInput!): resultData!
-  getUserProfile(userFindInput: userFindInput!): user!
   createOrganization(organizationInput: organizationInput!): resultData!
   updateOrganization(organizationInput: organizationInput!): organization!
   toggleMaintenanceMode: organization!