feat: added authorization for one api

src/controller/index.js

@@ -2,7 +2,7 @@ const router = require("express").Router();
 const userRouter = require("./user.router");
 const userRoleRouter = require("./userRole.router");
 const userPermissionRouter = require("./userPermission.router");
-const { AuthenticateMiddleware } = require("../config/authenticator");
+const { AuthenticateMiddleware } = require("../config/auth");
 
 router.use("/user", userRouter);
 router.use("/user-role", AuthenticateMiddleware, userRoleRouter);

src/controller/user.router.js

@@ -1,17 +1,20 @@
 const router = require("express").Router();
 const controller = require("./user.controller");
-const { AuthenticateMiddleware } = require("../config/authenticator");
+const { AuthenticateMiddleware } = require("../config/auth");
+const { SuperAdminCheck } = require("./utils/authorize");
 
 router.post("/register", controller.registerUser);
 router.post("/login", controller.loginUser);
 router.post(
   "/:id/addAccess",
   AuthenticateMiddleware,
+  SuperAdminCheck,
   controller.addUserAccessControl
 );
 router.post(
   "/:id/removeAccess",
   AuthenticateMiddleware,
+  SuperAdminCheck,
   controller.removeUserAccessControl
 );
 

src/controller/utils/authorize.js

@@ -0,0 +1,16 @@
+const UserRole = require("../../models/UserRole");
+const { AuthorizeUser } = require("../../config/auth");
+const { SUPER_ADMIN_ROLE, AUTHORIZATION_FAILURE_ERROR_MESSAGE } = require("../../config/constants");
+
+module.exports = {
+  SuperAdminCheck: async (req, res, next) => {
+    const SuperAdmin = await UserRole.findOne({ name: SUPER_ADMIN_ROLE });
+    if (AuthorizeUser(req.locals.user, [SuperAdmin.id])) {
+      next();
+    } else {
+      res
+        .status(403)
+        .send({ success: false, error: AUTHORIZATION_FAILURE_ERROR_MESSAGE });
+    }
+  },
+};