boha_admin/app
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 26 Wiki Activity

style: run prettier on entire codebase

Browse Source
This commit is contained in:
BOHA
2026-03-24 19:59:14 +01:00
parent 872be42107
commit 3c167cf5c4
148 changed files with 26740 additions and 13990 deletions
Download Patch File Download Diff File Expand all files Collapse all files

389
src/routes/admin/attendance.ts
View File

@@ -1,9 +1,9 @@
import { FastifyInstance } from 'fastify';
import { requireAuth, requirePermission } from '../../middleware/auth';
import { logAudit } from '../../services/audit';
import { success, error, parseId } from '../../utils/response';
import { parsePagination, buildPaginationMeta } from '../../utils/pagination';
import { parseBody } from '../../schemas/common';
import { FastifyInstance } from "fastify";
import { requireAuth, requirePermission } from "../../middleware/auth";
import { logAudit } from "../../services/audit";
import { success, error, parseId } from "../../utils/response";
import { parsePagination, buildPaginationMeta } from "../../utils/pagination";
import { parseBody } from "../../schemas/common";
import {
AttendanceNotesSchema,
AttendanceUpdateAddressSchema,
@@ -14,124 +14,158 @@ import {
AttendancePunchSchema,
CreateAttendanceSchema,
UpdateAttendanceSchema,
} from '../../schemas/attendance.schema';
import * as attendanceService from '../../services/attendance.service';
export default async function attendanceRoutes(fastify: FastifyInstance): Promise<void> {
} from "../../schemas/attendance.schema";
import * as attendanceService from "../../services/attendance.service";
export default async function attendanceRoutes(
fastify: FastifyInstance,
): Promise<void> {
// GET /api/admin/attendance/status — clock-in/out page data
fastify.get('/status', { preHandler: requireAuth }, async (request, reply) => {
const authData = request.authData!;
const data = await attendanceService.getStatus(authData.userId);
return reply.send({ success: true, data });
});
fastify.get(
"/status",
{ preHandler: requireAuth },
async (request, reply) => {
const authData = request.authData!;
const data = await attendanceService.getStatus(authData.userId);
return reply.send({ success: true, data });
},
);
// POST /api/admin/attendance/notes — save shift notes
fastify.post('/notes', { preHandler: requireAuth }, async (request, reply) => {
const authData = request.authData!;
const parsed = parseBody(AttendanceNotesSchema, request.body);
if ('error' in parsed) return error(reply, parsed.error, 400);
const body = parsed.data;
fastify.post(
"/notes",
{ preHandler: requireAuth },
async (request, reply) => {
const authData = request.authData!;
const parsed = parseBody(AttendanceNotesSchema, request.body);
if ("error" in parsed) return error(reply, parsed.error, 400);
const body = parsed.data;
const result = await attendanceService.saveNotes(authData.userId, body.notes ? String(body.notes) : null);
if ('error' in result) return error(reply, result.error!, 400);
return success(reply, null, 200, 'Poznámka uložena');
});
const result = await attendanceService.saveNotes(
authData.userId,
body.notes ? String(body.notes) : null,
);
if ("error" in result) return error(reply, result.error!, 400);
return success(reply, null, 200, "Poznámka uložena");
},
);
// POST /api/admin/attendance/update-address — update GPS address after punch
fastify.post('/update-address', { preHandler: requireAuth }, async (request, reply) => {
const authData = request.authData!;
const parsed = parseBody(AttendanceUpdateAddressSchema, request.body);
if ('error' in parsed) return error(reply, parsed.error, 400);
const body = parsed.data;
fastify.post(
"/update-address",
{ preHandler: requireAuth },
async (request, reply) => {
const authData = request.authData!;
const parsed = parseBody(AttendanceUpdateAddressSchema, request.body);
if ("error" in parsed) return error(reply, parsed.error, 400);
const body = parsed.data;
const result = await attendanceService.updateAddress(authData.userId, body.address ?? null, body.punch_action);
if ('error' in result) return error(reply, result.error!, 404);
return success(reply, null, 200, 'Adresa aktualizována');
});
const result = await attendanceService.updateAddress(
authData.userId,
body.address ?? null,
body.punch_action,
);
if ("error" in result) return error(reply, result.error!, 404);
return success(reply, null, 200, "Adresa aktualizována");
},
);
// POST /api/admin/attendance/switch-project — switch active project on current shift
fastify.post('/switch-project', { preHandler: requireAuth }, async (request, reply) => {
const authData = request.authData!;
const parsed = parseBody(AttendanceSwitchProjectSchema, request.body);
if ('error' in parsed) return error(reply, parsed.error, 400);
const body = parsed.data;
fastify.post(
"/switch-project",
{ preHandler: requireAuth },
async (request, reply) => {
const authData = request.authData!;
const parsed = parseBody(AttendanceSwitchProjectSchema, request.body);
if ("error" in parsed) return error(reply, parsed.error, 400);
const body = parsed.data;
const newProjectId = body.project_id ? Number(body.project_id) : null;
const result = await attendanceService.switchProject(authData.userId, newProjectId);
if ('error' in result) return error(reply, result.error!, 400);
return success(reply, null, 200, 'Projekt přepnut');
});
const newProjectId = body.project_id ? Number(body.project_id) : null;
const result = await attendanceService.switchProject(
authData.userId,
newProjectId,
);
if ("error" in result) return error(reply, result.error!, 400);
return success(reply, null, 200, "Projekt přepnut");
},
);
// GET /api/admin/attendance
fastify.get('/', { preHandler: requireAuth }, async (request, reply) => {
fastify.get("/", { preHandler: requireAuth }, async (request, reply) => {
const query = request.query as Record<string, unknown>;
const authData = request.authData!;
const action = query.action ? String(query.action) : null;
// --- action=balances: leave balance overview for all users ---
if (action === 'balances') {
if (action === "balances") {
const yr = Number(query.year) || new Date().getFullYear();
const data = await attendanceService.getBalances(yr);
return reply.send({ success: true, data });
}
// --- action=workfund: monthly work fund overview ---
if (action === 'workfund') {
if (action === "workfund") {
const yr = Number(query.year) || new Date().getFullYear();
const data = await attendanceService.getWorkfund(yr);
return reply.send({ success: true, data });
}
// --- action=project_report: monthly project hours ---
if (action === 'project_report') {
if (action === "project_report") {
const yr = Number(query.year) || new Date().getFullYear();
const data = await attendanceService.getProjectReport(yr);
return reply.send({ success: true, data });
}
// --- action=print: attendance print data for admin ---
if (action === 'print') {
if (!authData.permissions.includes('attendance.admin')) {
return error(reply, 'Nedostatečná oprávnění', 403);
if (action === "print") {
if (!authData.permissions.includes("attendance.admin")) {
return error(reply, "Nedostatečná oprávnění", 403);
}
const monthStr = query.month ? String(query.month) : `${new Date().getFullYear()}-${String(new Date().getMonth() + 1).padStart(2, '0')}`;
const monthStr = query.month
? String(query.month)
: `${new Date().getFullYear()}-${String(new Date().getMonth() + 1).padStart(2, "0")}`;
const filterUserId = query.user_id ? Number(query.user_id) : null;
const data = await attendanceService.getPrintData(monthStr, filterUserId);
return reply.send({ success: true, data });
}
// --- action=projects: active projects for attendance project switching ---
if (action === 'projects') {
if (action === "projects") {
const data = await attendanceService.getActiveProjects();
return reply.send({ success: true, data });
}
// --- action=project_logs: get project logs for a specific attendance record ---
if (action === 'project_logs') {
if (action === "project_logs") {
const attendanceId = Number(query.attendance_id);
if (!attendanceId) return error(reply, 'Missing attendance_id', 400);
if (!attendanceId) return error(reply, "Missing attendance_id", 400);
const data = await attendanceService.getProjectLogs(attendanceId);
return reply.send({ success: true, data });
}
// --- action=location: single record with GPS data ---
if (action === 'location') {
if (action === "location") {
const id = Number(query.id);
if (!id) return error(reply, 'Missing id', 400);
if (!id) return error(reply, "Missing id", 400);
const record = await attendanceService.getLocationRecord(id);
if (!record) return error(reply, 'Záznam nenalezen', 404);
if (!record) return error(reply, "Záznam nenalezen", 404);
return reply.send({ success: true, data: record });
}
// --- Default: paginated records list ---
const { page, limit, skip, order } = parsePagination(query);
const isAdmin = authData.permissions.includes('attendance.admin');
const isAdmin = authData.permissions.includes("attendance.admin");
const userId = query.user_id ? Number(query.user_id) : undefined;
const result = await attendanceService.listAttendance({
page, limit, skip, order, userId, isAdmin,
page,
limit,
skip,
order,
userId,
isAdmin,
authUserId: authData.userId,
month: query.month ? Number(query.month) : undefined,
year: query.year ? Number(query.year) : undefined,
@@ -145,19 +179,19 @@ export default async function attendanceRoutes(fastify: FastifyInstance): Promis
});
// POST /api/admin/attendance
fastify.post('/', { preHandler: requireAuth }, async (request, reply) => {
fastify.post("/", { preHandler: requireAuth }, async (request, reply) => {
const rawBody = request.body as Record<string, unknown>;
const authData = request.authData!;
const postQuery = request.query as Record<string, unknown>;
// --- action=balances: edit or reset leave balance ---
if (postQuery.action === 'balances') {
if (!authData.permissions.includes('attendance.balances')) {
return error(reply, 'Nedostatečná oprávnění', 403);
if (postQuery.action === "balances") {
if (!authData.permissions.includes("attendance.balances")) {
return error(reply, "Nedostatečná oprávnění", 403);
}
const balParsed = parseBody(AttendanceBalancesSchema, rawBody);
if ('error' in balParsed) return error(reply, balParsed.error, 400);
if ("error" in balParsed) return error(reply, balParsed.error, 400);
const balBody = balParsed.data;
const result = await attendanceService.handleBalances({
@@ -169,12 +203,15 @@ export default async function attendanceRoutes(fastify: FastifyInstance): Promis
sick_used: balBody.sick_used,
});
if ('error' in result) return error(reply, result.error!, 400);
if ("error" in result) return error(reply, result.error!, 400);
await logAudit({
request, authData, action: 'update', entityType: 'leave_balance',
request,
authData,
action: "update",
entityType: "leave_balance",
entityId: balBody.user_id,
description: result.message.includes('resetována')
description: result.message.includes("resetována")
? `Resetována bilance pro rok ${result.year}`
: `Upravena bilance dovolené pro rok ${result.year}`,
});
@@ -182,13 +219,13 @@ export default async function attendanceRoutes(fastify: FastifyInstance): Promis
}
// --- action=bulk_attendance: bulk fill month ---
if (postQuery.action === 'bulk_attendance') {
if (!authData.permissions.includes('attendance.admin')) {
return error(reply, 'Nedostatečná oprávnění', 403);
if (postQuery.action === "bulk_attendance") {
if (!authData.permissions.includes("attendance.admin")) {
return error(reply, "Nedostatečná oprávnění", 403);
}
const bulkParsed = parseBody(AttendanceBulkSchema, rawBody);
if ('error' in bulkParsed) return error(reply, bulkParsed.error, 400);
if ("error" in bulkParsed) return error(reply, bulkParsed.error, 400);
const bulkBody = bulkParsed.data;
const result = await attendanceService.bulkCreateAttendance({
@@ -201,36 +238,48 @@ export default async function attendanceRoutes(fastify: FastifyInstance): Promis
});
await logAudit({
request, authData, action: 'create', entityType: 'attendance',
entityId: 0, description: `Hromadně vytvořeno ${result.inserted} záznamů docházky pro ${bulkBody.month}`,
request,
authData,
action: "create",
entityType: "attendance",
entityId: 0,
description: `Hromadně vytvořeno ${result.inserted} záznamů docházky pro ${bulkBody.month}`,
});
return success(reply, { inserted: result.inserted, skipped: result.skipped }, 200, result.message);
return success(
reply,
{ inserted: result.inserted, skipped: result.skipped },
200,
result.message,
);
}
// --- action=leave: add leave record directly ---
if (postQuery.action === 'leave') {
if (postQuery.action === "leave") {
const leaveParsed = parseBody(AttendanceLeaveSchema, rawBody);
if ('error' in leaveParsed) return error(reply, leaveParsed.error, 400);
if ("error" in leaveParsed) return error(reply, leaveParsed.error, 400);
const leaveBody = leaveParsed.data;
const result = await attendanceService.createLeave({
user_id: leaveBody.user_id,
date_from: leaveBody.date_from,
date_to: leaveBody.date_to,
leave_type: leaveBody.leave_type,
leave_hours: leaveBody.leave_hours,
notes: leaveBody.notes ?? undefined,
}, authData.userId);
const result = await attendanceService.createLeave(
{
user_id: leaveBody.user_id,
date_from: leaveBody.date_from,
date_to: leaveBody.date_to,
leave_type: leaveBody.leave_type,
leave_hours: leaveBody.leave_hours,
notes: leaveBody.notes ?? undefined,
},
authData.userId,
);
if ('error' in result) return error(reply, result.error!, 400);
if ("error" in result) return error(reply, result.error!, 400);
return success(reply, { created: result.created }, 200, result.message!);
}
// Punch action (arrival / departure / break_start) from Dashboard or Attendance page
if (rawBody.punch_action) {
const punchParsed = parseBody(AttendancePunchSchema, rawBody);
if ('error' in punchParsed) return error(reply, punchParsed.error, 400);
if ("error" in punchParsed) return error(reply, punchParsed.error, 400);
const punchBody = punchParsed.data;
const result = await attendanceService.punchAction(authData.userId, {
@@ -241,106 +290,132 @@ export default async function attendanceRoutes(fastify: FastifyInstance): Promis
address: punchBody.address,
});
if ('error' in result) return error(reply, result.error!, 400);
if ("error" in result) return error(reply, result.error!, 400);
await logAudit({
request, authData, action: result.auditAction, entityType: 'attendance',
entityId: result.id, description: result.auditDescription,
request,
authData,
action: result.auditAction,
entityType: "attendance",
entityId: result.id,
description: result.auditDescription,
});
return success(reply, { id: result.id }, result.status, result.message);
}
// Standard attendance record creation (from admin forms)
const stdParsed = parseBody(CreateAttendanceSchema, rawBody);
if ('error' in stdParsed) return error(reply, stdParsed.error, 400);
if ("error" in stdParsed) return error(reply, stdParsed.error, 400);
const body = stdParsed.data;
const result = await attendanceService.createAttendance({
user_id: body.user_id,
shift_date: body.shift_date,
arrival_time: body.arrival_time,
arrival_lat: body.arrival_lat,
arrival_lng: body.arrival_lng,
arrival_accuracy: body.arrival_accuracy,
arrival_address: body.arrival_address,
departure_time: body.departure_time,
departure_lat: body.departure_lat,
departure_lng: body.departure_lng,
departure_accuracy: body.departure_accuracy,
departure_address: body.departure_address,
notes: body.notes,
project_id: body.project_id,
leave_type: body.leave_type,
leave_hours: body.leave_hours,
project_logs: body.project_logs,
}, authData.userId);
const result = await attendanceService.createAttendance(
{
user_id: body.user_id,
shift_date: body.shift_date,
arrival_time: body.arrival_time,
arrival_lat: body.arrival_lat,
arrival_lng: body.arrival_lng,
arrival_accuracy: body.arrival_accuracy,
arrival_address: body.arrival_address,
departure_time: body.departure_time,
departure_lat: body.departure_lat,
departure_lng: body.departure_lng,
departure_accuracy: body.departure_accuracy,
departure_address: body.departure_address,
notes: body.notes,
project_id: body.project_id,
leave_type: body.leave_type,
leave_hours: body.leave_hours,
project_logs: body.project_logs,
},
authData.userId,
);
await logAudit({
request,
authData,
action: 'create',
entityType: 'attendance',
action: "create",
entityType: "attendance",
entityId: result.id,
description: `Vytvořen záznam docházky`,
});
return success(reply, { id: result.id }, 201, 'Záznam byl vytvořen');
return success(reply, { id: result.id }, 201, "Záznam byl vytvořen");
});
// PUT /api/admin/attendance/:id
fastify.put<{ Params: { id: string } }>('/:id', { preHandler: requireAuth }, async (request, reply) => {
const id = parseId(request.params.id, reply);
if (id === null) return;
const parsed = parseBody(UpdateAttendanceSchema, request.body);
if ('error' in parsed) return error(reply, parsed.error, 400);
const body = parsed.data;
fastify.put<{ Params: { id: string } }>(
"/:id",
{ preHandler: requireAuth },
async (request, reply) => {
const id = parseId(request.params.id, reply);
if (id === null) return;
const parsed = parseBody(UpdateAttendanceSchema, request.body);
if ("error" in parsed) return error(reply, parsed.error, 400);
const body = parsed.data;
const authData = request.authData!;
const isAdmin = authData.permissions.includes('attendance.admin');
const authData = request.authData!;
const isAdmin = authData.permissions.includes("attendance.admin");
const result = await attendanceService.updateAttendance(id, {
arrival_time: body.arrival_time,
departure_time: body.departure_time,
break_start: body.break_start,
break_end: body.break_end,
notes: body.notes ?? undefined,
project_id: body.project_id != null ? Number(body.project_id) : (body.project_id as number | null | undefined),
leave_type: body.leave_type,
leave_hours: body.leave_hours != null ? Number(body.leave_hours) : (body.leave_hours as number | null | undefined),
project_logs: body.project_logs,
}, authData.userId, isAdmin);
const result = await attendanceService.updateAttendance(
id,
{
arrival_time: body.arrival_time,
departure_time: body.departure_time,
break_start: body.break_start,
break_end: body.break_end,
notes: body.notes ?? undefined,
project_id:
body.project_id != null
? Number(body.project_id)
: (body.project_id as number | null | undefined),
leave_type: body.leave_type,
leave_hours:
body.leave_hours != null
? Number(body.leave_hours)
: (body.leave_hours as number | null | undefined),
project_logs: body.project_logs,
},
authData.userId,
isAdmin,
);
if ('error' in result) return error(reply, result.error!, result.status!);
if ("error" in result) return error(reply, result.error!, result.status!);
await logAudit({
request,
authData: request.authData,
action: 'update',
entityType: 'attendance',
entityId: id,
description: `Upraven záznam docházky`,
});
await logAudit({
request,
authData: request.authData,
action: "update",
entityType: "attendance",
entityId: id,
description: `Upraven záznam docházky`,
});
return success(reply, { id }, 200, 'Záznam byl aktualizován');
});
return success(reply, { id }, 200, "Záznam byl aktualizován");
},
);
// DELETE /api/admin/attendance/:id
fastify.delete<{ Params: { id: string } }>('/:id', { preHandler: requirePermission('attendance.admin') }, async (request, reply) => {
const id = parseId(request.params.id, reply);
if (id === null) return;
fastify.delete<{ Params: { id: string } }>(
"/:id",
{ preHandler: requirePermission("attendance.admin") },
async (request, reply) => {
const id = parseId(request.params.id, reply);
if (id === null) return;
const result = await attendanceService.deleteAttendance(id);
if ('error' in result) return error(reply, result.error!, 404);
const result = await attendanceService.deleteAttendance(id);
if ("error" in result) return error(reply, result.error!, 404);
await logAudit({
request,
authData: request.authData,
action: 'delete',
entityType: 'attendance',
entityId: id,
description: `Smazán záznam docházky`,
});
await logAudit({
request,
authData: request.authData,
action: "delete",
entityType: "attendance",
entityId: id,
description: `Smazán záznam docházky`,
});
return success(reply, null, 200, 'Záznam smazán');
});
return success(reply, null, 200, "Záznam smazán");
},
);
}