foxerBN/crm-server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix generate excel in admin account

Browse Source
This commit is contained in:
richardtekula
2025-11-25 09:27:11 +01:00
parent 31297ee9a9
commit 043eeccb77
5 changed files with 22 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
src/controllers/time-tracking.controller.js
View File

@@ -208,11 +208,13 @@ export const getTimeEntryWithRelations = async (req, res) => {
*/ */
export const updateTimeEntry = async (req, res) => { export const updateTimeEntry = async (req, res) => {
try { try {
const userId = req.userId;
const { entryId } = req.params; const { entryId } = req.params;
const { startTime, endTime, projectId, todoId, companyId, description } = req.body; const { startTime, endTime, projectId, todoId, companyId, description } = req.body;
const entry = await timeTrackingService.updateTimeEntry(entryId, userId, { const entry = await timeTrackingService.updateTimeEntry(entryId, {
userId: req.userId,
role: req.user.role,
}, {
startTime, startTime,
endTime, endTime,
projectId, projectId,
@@ -238,10 +240,12 @@ export const updateTimeEntry = async (req, res) => {
*/ */
export const deleteTimeEntry = async (req, res) => { export const deleteTimeEntry = async (req, res) => {
try { try {
const userId = req.userId;
const { entryId } = req.params; const { entryId } = req.params;
const result = await timeTrackingService.deleteTimeEntry(entryId, userId); const result = await timeTrackingService.deleteTimeEntry(entryId, {
userId: req.userId,
role: req.user.role,
});
res.status(200).json(result); res.status(200).json(result);
} catch (error) { } catch (error) {

23
src/services/time-tracking.service.js
View File

@@ -1,7 +1,7 @@
import { db } from '../config/database.js'; import { db } from '../config/database.js';
import { timeEntries, projects, todos, companies, users, timesheets } from '../db/schema.js'; import { timeEntries, projects, todos, companies, users, timesheets } from '../db/schema.js';
import { eq, and, gte, lte, desc } from 'drizzle-orm'; import { eq, and, gte, lte, desc } from 'drizzle-orm';
import { NotFoundError, BadRequestError } from '../utils/errors.js'; import { NotFoundError, BadRequestError, ForbiddenError } from '../utils/errors.js';
import ExcelJS from 'exceljs'; import ExcelJS from 'exceljs';
import fs from 'fs/promises'; import fs from 'fs/promises';
import path from 'path'; import path from 'path';
@@ -506,12 +506,13 @@ export const generateMonthlyTimesheet = async (userId, year, month) => {
/** /**
* Update time entry * Update time entry
*/ */
export const updateTimeEntry = async (entryId, userId, data) => { export const updateTimeEntry = async (entryId, actor, data) => {
const { userId, role } = actor;
const entry = await getTimeEntryById(entryId); const entry = await getTimeEntryById(entryId);
// Verify ownership // Verify ownership (admin can edit anyone)
if (entry.userId !== userId) { if (entry.userId !== userId && role !== 'admin') {
throw new BadRequestError('Nemáte oprávnenie upraviť tento záznam'); throw new ForbiddenError('Nemáte oprávnenie upraviť tento záznam');
} }
if (entry.isRunning) { if (entry.isRunning) {
@@ -567,6 +568,9 @@ export const updateTimeEntry = async (entryId, userId, data) => {
const newEndTime = endTime ? new Date(endTime) : (entry.endTime ? new Date(entry.endTime) : null); const newEndTime = endTime ? new Date(endTime) : (entry.endTime ? new Date(entry.endTime) : null);
if (newEndTime) { if (newEndTime) {
if (newEndTime <= newStartTime) {
throw new BadRequestError('Čas ukončenia musí byť po čase začiatku');
}
newDuration = Math.round((newEndTime - newStartTime) / 60000); newDuration = Math.round((newEndTime - newStartTime) / 60000);
} }
@@ -592,12 +596,13 @@ export const updateTimeEntry = async (entryId, userId, data) => {
/** /**
* Delete time entry * Delete time entry
*/ */
export const deleteTimeEntry = async (entryId, userId) => { export const deleteTimeEntry = async (entryId, actor) => {
const { userId, role } = actor;
const entry = await getTimeEntryById(entryId); const entry = await getTimeEntryById(entryId);
// Verify ownership // Verify ownership (admin can delete anyone)
if (entry.userId !== userId) { if (entry.userId !== userId && role !== 'admin') {
throw new BadRequestError('Nemáte oprávnenie odstrániť tento záznam'); throw new ForbiddenError('Nemáte oprávnenie odstrániť tento záznam');
} }
if (entry.isRunning) { if (entry.isRunning) {

BIN
uploads/timesheets/68927352-725c-4e95-adb6-d4002b22bef5/2025/11/Clockify_Time_Report_Weekly_03_11_2025-09_11_2025-1764058023490-260402898.pdf Normal file
View File

Binary file not shown.

BIN
uploads/timesheets/68927352-725c-4e95-adb6-d4002b22bef5/2025/11/timesheet-2025-11-1764053316289.xlsx → uploads/timesheets/ae65f40f-e22a-45c6-9647-36005c6d31e8/2025/11/timesheet-2025-11-1764056127271.xlsx
View File

Binary file not shown.

BIN
uploads/timesheets/ae65f40f-e22a-45c6-9647-36005c6d31e8/2025/11/timesheet-2025-11-1764057851169.xlsx Normal file
View File

Binary file not shown.