mirror of
https://github.com/kjanat/livedash-node.git
synced 2026-01-16 14:12:10 +01:00
Kaj Kowalski
041a1cc3ef
- Implement repository pattern for data access layer - Add comprehensive service layer for business logic - Create scheduler management system with health monitoring - Add bounded buffer utility for memory management - Enhance security audit logging with retention policies
397 lines
9.4 KiB
TypeScript
397 lines
9.4 KiB
TypeScript
import type { Prisma, User } from "@prisma/client";
|
|
import { prisma } from "../prisma";
|
|
import {
|
|
type BaseRepository,
|
|
type CountOptions,
|
|
type CreateInput,
|
|
type FindManyOptions,
|
|
NotFoundError,
|
|
RepositoryError,
|
|
type UpdateInput,
|
|
} from "./BaseRepository";
|
|
|
|
/**
|
|
* User with included relations
|
|
*/
|
|
export type UserWithRelations = User & {
|
|
company?: {
|
|
id: string;
|
|
name: string;
|
|
};
|
|
securityAuditLogs?: Array<{
|
|
id: string;
|
|
eventType: string;
|
|
timestamp: Date;
|
|
outcome: string;
|
|
}>;
|
|
};
|
|
|
|
/**
|
|
* User repository implementing database operations
|
|
*/
|
|
export class UserRepository implements BaseRepository<User> {
|
|
/**
|
|
* Find user by ID with optional relations
|
|
*/
|
|
async findById(
|
|
id: string,
|
|
include?: { company?: boolean; securityAuditLogs?: boolean }
|
|
): Promise<UserWithRelations | null> {
|
|
try {
|
|
return await prisma.user.findUnique({
|
|
where: { id },
|
|
include: {
|
|
company: include?.company
|
|
? { select: { id: true, name: true } }
|
|
: undefined,
|
|
securityAuditLogs: include?.securityAuditLogs
|
|
? {
|
|
select: {
|
|
id: true,
|
|
eventType: true,
|
|
timestamp: true,
|
|
outcome: true,
|
|
},
|
|
take: 100,
|
|
orderBy: { timestamp: "desc" },
|
|
}
|
|
: undefined,
|
|
},
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
`Failed to find user ${id}`,
|
|
"FIND_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Find user by email
|
|
*/
|
|
async findByEmail(email: string): Promise<User | null> {
|
|
try {
|
|
return await prisma.user.findUnique({
|
|
where: { email },
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
`Failed to find user by email ${email}`,
|
|
"FIND_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Find users by company ID
|
|
*/
|
|
async findByCompanyId(companyId: string): Promise<User[]> {
|
|
try {
|
|
return await prisma.user.findMany({
|
|
where: { companyId },
|
|
orderBy: { createdAt: "desc" },
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
`Failed to find users by company ${companyId}`,
|
|
"FIND_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Find users by role
|
|
*/
|
|
async findByRole(role: string, companyId?: string): Promise<User[]> {
|
|
try {
|
|
return await prisma.user.findMany({
|
|
where: {
|
|
role,
|
|
...(companyId && { companyId }),
|
|
},
|
|
orderBy: { createdAt: "desc" },
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
`Failed to find users by role ${role}`,
|
|
"FIND_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Find many users with filters
|
|
*/
|
|
async findMany(options?: FindManyOptions<User>): Promise<User[]> {
|
|
try {
|
|
return await prisma.user.findMany({
|
|
where: options?.where as Prisma.UserWhereInput,
|
|
orderBy: options?.orderBy as Prisma.UserOrderByWithRelationInput,
|
|
skip: options?.skip,
|
|
take: options?.take,
|
|
include: options?.include as Prisma.UserInclude,
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
"Failed to find users",
|
|
"FIND_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Create a new user
|
|
*/
|
|
async create(data: CreateInput<User>): Promise<User> {
|
|
try {
|
|
return await prisma.user.create({
|
|
data: data as Prisma.UserCreateInput,
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
"Failed to create user",
|
|
"CREATE_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Update user by ID
|
|
*/
|
|
async update(id: string, data: UpdateInput<User>): Promise<User | null> {
|
|
try {
|
|
const user = await this.findById(id);
|
|
if (!user) {
|
|
throw new NotFoundError("User", id);
|
|
}
|
|
|
|
return await prisma.user.update({
|
|
where: { id },
|
|
data: data as Prisma.UserUpdateInput,
|
|
});
|
|
} catch (error) {
|
|
if (error instanceof NotFoundError) throw error;
|
|
throw new RepositoryError(
|
|
`Failed to update user ${id}`,
|
|
"UPDATE_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Delete user by ID
|
|
*/
|
|
async delete(id: string): Promise<boolean> {
|
|
try {
|
|
const user = await this.findById(id);
|
|
if (!user) {
|
|
throw new NotFoundError("User", id);
|
|
}
|
|
|
|
await prisma.user.delete({ where: { id } });
|
|
return true;
|
|
} catch (error) {
|
|
if (error instanceof NotFoundError) throw error;
|
|
throw new RepositoryError(
|
|
`Failed to delete user ${id}`,
|
|
"DELETE_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Count users with optional filters
|
|
*/
|
|
async count(options?: CountOptions<User>): Promise<number> {
|
|
try {
|
|
return await prisma.user.count({
|
|
where: options?.where as Prisma.UserWhereInput,
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
"Failed to count users",
|
|
"COUNT_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Update user last login timestamp
|
|
*/
|
|
async updateLastLogin(id: string): Promise<User | null> {
|
|
try {
|
|
return await this.update(id, {
|
|
lastLoginAt: new Date(),
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
`Failed to update last login for user ${id}`,
|
|
"UPDATE_LOGIN_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Find users with recent security events
|
|
*/
|
|
async findUsersWithRecentSecurityEvents(
|
|
hoursBack = 24,
|
|
minEvents = 5
|
|
): Promise<Array<{ user: User; eventCount: number }>> {
|
|
try {
|
|
const startTime = new Date(Date.now() - hoursBack * 60 * 60 * 1000);
|
|
|
|
const usersWithEvents = await prisma.user.findMany({
|
|
where: {
|
|
securityAuditLogs: {
|
|
some: {
|
|
timestamp: { gte: startTime },
|
|
},
|
|
},
|
|
},
|
|
include: {
|
|
securityAuditLogs: {
|
|
where: {
|
|
timestamp: { gte: startTime },
|
|
},
|
|
select: { id: true },
|
|
},
|
|
},
|
|
});
|
|
|
|
return usersWithEvents
|
|
.map((user) => ({
|
|
user: {
|
|
...user,
|
|
securityAuditLogs: undefined, // Remove from result
|
|
} as User,
|
|
eventCount: user.securityAuditLogs?.length || 0,
|
|
}))
|
|
.filter((item) => item.eventCount >= minEvents)
|
|
.sort((a, b) => b.eventCount - a.eventCount);
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
"Failed to find users with recent security events",
|
|
"SECURITY_EVENTS_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Get user activity summary
|
|
*/
|
|
async getUserActivitySummary(
|
|
userId: string,
|
|
hoursBack = 24
|
|
): Promise<{
|
|
totalEvents: number;
|
|
failedLogins: number;
|
|
successfulLogins: number;
|
|
rateLimitViolations: number;
|
|
lastActivity: Date | null;
|
|
countriesAccessed: string[];
|
|
}> {
|
|
try {
|
|
const startTime = new Date(Date.now() - hoursBack * 60 * 60 * 1000);
|
|
|
|
const events = await prisma.securityAuditLog.findMany({
|
|
where: {
|
|
userId,
|
|
timestamp: { gte: startTime },
|
|
},
|
|
orderBy: { timestamp: "desc" },
|
|
});
|
|
|
|
const totalEvents = events.length;
|
|
const failedLogins = events.filter(
|
|
(e) => e.eventType === "AUTHENTICATION" && e.outcome === "FAILURE"
|
|
).length;
|
|
const successfulLogins = events.filter(
|
|
(e) => e.eventType === "AUTHENTICATION" && e.outcome === "SUCCESS"
|
|
).length;
|
|
const rateLimitViolations = events.filter(
|
|
(e) => e.outcome === "RATE_LIMITED"
|
|
).length;
|
|
const lastActivity = events.length > 0 ? events[0].timestamp : null;
|
|
const countriesAccessed = [
|
|
...new Set(events.map((e) => e.country).filter(Boolean)),
|
|
];
|
|
|
|
return {
|
|
totalEvents,
|
|
failedLogins,
|
|
successfulLogins,
|
|
rateLimitViolations,
|
|
lastActivity,
|
|
countriesAccessed,
|
|
};
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
`Failed to get activity summary for user ${userId}`,
|
|
"ACTIVITY_SUMMARY_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Find inactive users (no login for specified days)
|
|
*/
|
|
async findInactiveUsers(daysInactive = 30): Promise<User[]> {
|
|
try {
|
|
const cutoffDate = new Date(
|
|
Date.now() - daysInactive * 24 * 60 * 60 * 1000
|
|
);
|
|
|
|
return await prisma.user.findMany({
|
|
where: {
|
|
OR: [{ lastLoginAt: { lt: cutoffDate } }, { lastLoginAt: null }],
|
|
},
|
|
orderBy: { lastLoginAt: "asc" },
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
"Failed to find inactive users",
|
|
"FIND_INACTIVE_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Search users by name or email
|
|
*/
|
|
async searchUsers(query: string, companyId?: string): Promise<User[]> {
|
|
try {
|
|
return await prisma.user.findMany({
|
|
where: {
|
|
OR: [
|
|
{ name: { contains: query, mode: "insensitive" } },
|
|
{ email: { contains: query, mode: "insensitive" } },
|
|
],
|
|
...(companyId && { companyId }),
|
|
},
|
|
orderBy: { name: "asc" },
|
|
take: 50, // Limit results
|
|
});
|
|
} catch (error) {
|
|
throw new RepositoryError(
|
|
`Failed to search users with query "${query}"`,
|
|
"SEARCH_ERROR",
|
|
error as Error
|
|
);
|
|
}
|
|
}
|
|
}
|