foxerBN/crm-server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Group chat and push notifications

Browse Source 
- Add group chat tables (chat_groups, chat_group_members, group_messages)
- Add push subscriptions table for web push notifications
- Add group service, controller, routes
- Add push service, controller, routes
- Integrate push notifications with todos, messages, group messages

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
richardtekula
2026-01-20 07:27:13 +01:00
parent 73a3c6bf95
commit d9f16ad0a6
15 changed files with 1233 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/app.js
View File

@@ -26,6 +26,8 @@ import noteRoutes from './routes/note.routes.js';
import auditRoutes from './routes/audit.routes.js';
import eventRoutes from './routes/event.routes.js';
import messageRoutes from './routes/message.routes.js';
import groupRoutes from './routes/group.routes.js';
import pushRoutes from './routes/push.routes.js';
import userRoutes from './routes/user.routes.js';
import serviceRoutes from './routes/service.routes.js';
import emailSignatureRoutes from './routes/email-signature.routes.js';
@@ -123,6 +125,8 @@ app.use('/api/notes', noteRoutes);
app.use('/api/audit-logs', auditRoutes);
app.use('/api/events', eventRoutes);
app.use('/api/messages', messageRoutes);
app.use('/api/groups', groupRoutes);
app.use('/api/push', pushRoutes);
app.use('/api/users', userRoutes);
app.use('/api/services', serviceRoutes);
app.use('/api/email-signature', emailSignatureRoutes);

149
src/controllers/group.controller.js Normal file
View File

@@ -0,0 +1,149 @@
import * as groupService from '../services/group.service.js';
import { logger } from '../utils/logger.js';
export const createGroup = async (req, res, next) => {
try {
const { name, memberIds } = req.body;
const userId = req.user.id;
const group = await groupService.createGroup(name, userId, memberIds);
res.status(201).json({
success: true,
data: group,
message: 'Skupina bola vytvorená',
});
} catch (error) {
logger.error('Create group error', error);
next(error);
}
};
export const getUserGroups = async (req, res, next) => {
try {
const groups = await groupService.getUserGroups(req.user.id);
res.json({
success: true,
data: groups,
});
} catch (error) {
logger.error('Get groups error', error);
next(error);
}
};
export const getGroupDetails = async (req, res, next) => {
try {
const { groupId } = req.params;
const group = await groupService.getGroupDetails(groupId, req.user.id);
res.json({
success: true,
data: group,
});
} catch (error) {
logger.error('Get group details error', error);
next(error);
}
};
export const getGroupMessages = async (req, res, next) => {
try {
const { groupId } = req.params;
const messages = await groupService.getGroupMessages(groupId, req.user.id);
res.json({
success: true,
data: messages,
});
} catch (error) {
logger.error('Get group messages error', error);
next(error);
}
};
export const sendGroupMessage = async (req, res, next) => {
try {
const { groupId } = req.params;
const { content } = req.body;
const message = await groupService.sendGroupMessage(groupId, req.user.id, content);
res.status(201).json({
success: true,
data: message,
message: 'Správa odoslaná',
});
} catch (error) {
logger.error('Send group message error', error);
next(error);
}
};
export const addGroupMember = async (req, res, next) => {
try {
const { groupId } = req.params;
const { userId } = req.body;
await groupService.addGroupMember(groupId, userId, req.user.id);
res.json({
success: true,
message: 'Člen bol pridaný',
});
} catch (error) {
logger.error('Add member error', error);
next(error);
}
};
export const removeGroupMember = async (req, res, next) => {
try {
const { groupId, userId } = req.params;
await groupService.removeGroupMember(groupId, userId, req.user.id);
res.json({
success: true,
message: 'Člen bol odstránený',
});
} catch (error) {
logger.error('Remove member error', error);
next(error);
}
};
export const updateGroupName = async (req, res, next) => {
try {
const { groupId } = req.params;
const { name } = req.body;
const group = await groupService.updateGroupName(groupId, name, req.user.id);
res.json({
success: true,
data: group,
message: 'Názov skupiny bol aktualizovaný',
});
} catch (error) {
logger.error('Update group name error', error);
next(error);
}
};
export const deleteGroup = async (req, res, next) => {
try {
const { groupId } = req.params;
await groupService.deleteGroup(groupId, req.user.id);
res.json({
success: true,
message: 'Skupina bola odstránená',
});
} catch (error) {
logger.error('Delete group error', error);
next(error);
}
};

117
src/controllers/push.controller.js Normal file
View File

@@ -0,0 +1,117 @@
import * as pushService from '../services/push.service.js';
import { logger } from '../utils/logger.js';
/**
* Get VAPID public key
*/
export const getVapidPublicKey = (req, res) => {
const publicKey = pushService.getVapidPublicKey();
if (!publicKey) {
return res.status(503).json({
success: false,
message: 'Push notifikácie nie sú nakonfigurované',
});
}
res.json({
success: true,
data: { publicKey },
});
};
/**
* Subscribe to push notifications
*/
export const subscribe = async (req, res, next) => {
try {
const { subscription } = req.body;
const userId = req.user.id;
if (!subscription || !subscription.endpoint || !subscription.keys) {
return res.status(400).json({
success: false,
message: 'Neplatná subscription',
});
}
await pushService.saveSubscription(userId, subscription);
res.json({
success: true,
message: 'Push notifikácie aktivované',
});
} catch (error) {
logger.error('Subscribe error', error);
next(error);
}
};
/**
* Unsubscribe from push notifications
*/
export const unsubscribe = async (req, res, next) => {
try {
const { endpoint } = req.body;
const userId = req.user.id;
if (endpoint) {
await pushService.removeSubscription(userId, endpoint);
} else {
await pushService.removeAllSubscriptions(userId);
}
res.json({
success: true,
message: 'Push notifikácie deaktivované',
});
} catch (error) {
logger.error('Unsubscribe error', error);
next(error);
}
};
/**
* Check subscription status
*/
export const getStatus = async (req, res, next) => {
try {
const userId = req.user.id;
const hasSubscription = await pushService.hasActiveSubscription(userId);
res.json({
success: true,
data: {
enabled: hasSubscription,
supported: !!pushService.getVapidPublicKey(),
},
});
} catch (error) {
logger.error('Get status error', error);
next(error);
}
};
/**
* Test push notification (for debugging)
*/
export const testPush = async (req, res, next) => {
try {
const userId = req.user.id;
const result = await pushService.sendPushNotification(userId, {
title: 'Test notifikácie',
body: 'Toto je testovacia push notifikácia z CRM',
icon: '/icon-192.png',
data: { url: '/' },
});
res.json({
success: true,
data: result,
});
} catch (error) {
logger.error('Test push error', error);
next(error);
}
};

2
src/controllers/todo.controller.js
View File

@@ -148,7 +148,7 @@ export const updateTodo = async (req, res, next) => {
// Get old todo for audit
const oldTodo = await todoService.getTodoById(todoId);
const todo = await todoService.updateTodo(todoId, data);
const todo = await todoService.updateTodo(todoId, data, userId);
// Log audit event
await logTodoUpdated(

40
src/db/schema.js
View File

@@ -337,3 +337,43 @@ export const messages = pgTable('messages', {
createdAt: timestamp('created_at').defaultNow().notNull(),
updatedAt: timestamp('updated_at').defaultNow().notNull(),
});
// Chat Groups table - skupinové chaty
export const chatGroups = pgTable('chat_groups', {
id: uuid('id').primaryKey().defaultRandom(),
name: text('name').notNull(),
createdById: uuid('created_by_id').references(() => users.id, { onDelete: 'set null' }),
createdAt: timestamp('created_at').defaultNow().notNull(),
updatedAt: timestamp('updated_at').defaultNow().notNull(),
});
// Chat Group Members - členovia skupiny
export const chatGroupMembers = pgTable('chat_group_members', {
id: uuid('id').primaryKey().defaultRandom(),
groupId: uuid('group_id').references(() => chatGroups.id, { onDelete: 'cascade' }).notNull(),
userId: uuid('user_id').references(() => users.id, { onDelete: 'cascade' }).notNull(),
joinedAt: timestamp('joined_at').defaultNow().notNull(),
}, (table) => ({
uniqueMember: unique('chat_group_member_unique').on(table.groupId, table.userId),
}));
// Group Messages - správy v skupinách
export const groupMessages = pgTable('group_messages', {
id: uuid('id').primaryKey().defaultRandom(),
groupId: uuid('group_id').references(() => chatGroups.id, { onDelete: 'cascade' }).notNull(),
senderId: uuid('sender_id').references(() => users.id, { onDelete: 'set null' }),
content: text('content').notNull(),
createdAt: timestamp('created_at').defaultNow().notNull(),
});
// Push Subscriptions - web push notifikácie
export const pushSubscriptions = pgTable('push_subscriptions', {
id: uuid('id').primaryKey().defaultRandom(),
userId: uuid('user_id').references(() => users.id, { onDelete: 'cascade' }).notNull(),
endpoint: text('endpoint').notNull(),
p256dh: text('p256dh').notNull(),
auth: text('auth').notNull(),
createdAt: timestamp('created_at').defaultNow().notNull(),
}, (table) => ({
uniqueEndpoint: unique('push_subscription_endpoint_unique').on(table.userId, table.endpoint),
}));

88
src/routes/group.routes.js Normal file
View File

@@ -0,0 +1,88 @@
import express from 'express';
import * as groupController from '../controllers/group.controller.js';
import { authenticate } from '../middlewares/auth/authMiddleware.js';
import { validateBody, validateParams } from '../middlewares/security/validateInput.js';
import { z } from 'zod';
const router = express.Router();
// All group routes require authentication
router.use(authenticate);
// Create a new group
router.post(
'/',
validateBody(
z.object({
name: z.string().min(1, 'Názov skupiny je povinný').max(100, 'Názov je príliš dlhý'),
memberIds: z.array(z.string().uuid()).min(1, 'Vyberte aspoň jedného člena'),
})
),
groupController.createGroup
);
// Get all groups for current user
router.get('/', groupController.getUserGroups);
// Get group details
router.get(
'/:groupId',
validateParams(z.object({ groupId: z.string().uuid() })),
groupController.getGroupDetails
);
// Update group name
router.patch(
'/:groupId',
validateParams(z.object({ groupId: z.string().uuid() })),
validateBody(z.object({ name: z.string().min(1).max(100) })),
groupController.updateGroupName
);
// Delete group
router.delete(
'/:groupId',
validateParams(z.object({ groupId: z.string().uuid() })),
groupController.deleteGroup
);
// Get group messages
router.get(
'/:groupId/messages',
validateParams(z.object({ groupId: z.string().uuid() })),
groupController.getGroupMessages
);
// Send message to group
router.post(
'/:groupId/messages',
validateParams(z.object({ groupId: z.string().uuid() })),
validateBody(
z.object({
content: z.string().min(1, 'Správa nemôže byť prázdna').max(5000, 'Správa je príliš dlhá'),
})
),
groupController.sendGroupMessage
);
// Add member to group
router.post(
'/:groupId/members',
validateParams(z.object({ groupId: z.string().uuid() })),
validateBody(z.object({ userId: z.string().uuid() })),
groupController.addGroupMember
);
// Remove member from group
router.delete(
'/:groupId/members/:userId',
validateParams(
z.object({
groupId: z.string().uuid(),
userId: z.string().uuid(),
})
),
groupController.removeGroupMember
);
export default router;

49
src/routes/push.routes.js Normal file
View File

@@ -0,0 +1,49 @@
import express from 'express';
import * as pushController from '../controllers/push.controller.js';
import { authenticate } from '../middlewares/auth/authMiddleware.js';
import { validateBody } from '../middlewares/security/validateInput.js';
import { z } from 'zod';
const router = express.Router();
// Get VAPID public key (no auth required)
router.get('/vapid-public-key', pushController.getVapidPublicKey);
// All other routes require authentication
router.use(authenticate);
// Subscribe to push notifications
router.post(
'/subscribe',
validateBody(
z.object({
subscription: z.object({
endpoint: z.string().url(),
keys: z.object({
p256dh: z.string(),
auth: z.string(),
}),
}),
})
),
pushController.subscribe
);
// Unsubscribe from push notifications
router.post(
'/unsubscribe',
validateBody(
z.object({
endpoint: z.string().url().optional(),
}).optional()
),
pushController.unsubscribe
);
// Get subscription status
router.get('/status', pushController.getStatus);
// Test push notification
router.post('/test', pushController.testPush);
export default router;

404
src/services/group.service.js Normal file
View File

@@ -0,0 +1,404 @@
import { db } from '../config/database.js';
import { chatGroups, chatGroupMembers, groupMessages, users } from '../db/schema.js';
import { eq, and, desc, inArray, sql } from 'drizzle-orm';
import { NotFoundError, ForbiddenError } from '../utils/errors.js';
import { sendPushNotificationToUsers } from './push.service.js';
import { logger } from '../utils/logger.js';
/**
* Create a new group chat
*/
export const createGroup = async (name, creatorId, memberIds) => {
const [group] = await db
.insert(chatGroups)
.values({
name: name.trim(),
createdById: creatorId,
})
.returning();
// Add creator and all members (ensure unique)
const allMemberIds = [...new Set([creatorId, ...memberIds])];
await db.insert(chatGroupMembers).values(
allMemberIds.map((userId) => ({
groupId: group.id,
userId,
}))
);
return group;
};
/**
* Get all groups for a user
*/
export const getUserGroups = async (userId) => {
// Get groups where user is a member
const memberOf = await db
.select({ groupId: chatGroupMembers.groupId })
.from(chatGroupMembers)
.where(eq(chatGroupMembers.userId, userId));
if (memberOf.length === 0) return [];
const groupIds = memberOf.map((m) => m.groupId);
const groups = await db
.select({
id: chatGroups.id,
name: chatGroups.name,
createdById: chatGroups.createdById,
createdAt: chatGroups.createdAt,
updatedAt: chatGroups.updatedAt,
})
.from(chatGroups)
.where(inArray(chatGroups.id, groupIds))
.orderBy(desc(chatGroups.updatedAt));
// Get last message and member count for each group
const result = await Promise.all(
groups.map(async (group) => {
const lastMessage = await db
.select({
content: groupMessages.content,
createdAt: groupMessages.createdAt,
senderId: groupMessages.senderId,
senderFirstName: users.firstName,
senderUsername: users.username,
})
.from(groupMessages)
.leftJoin(users, eq(groupMessages.senderId, users.id))
.where(eq(groupMessages.groupId, group.id))
.orderBy(desc(groupMessages.createdAt))
.limit(1);
const members = await db
.select({ id: chatGroupMembers.id })
.from(chatGroupMembers)
.where(eq(chatGroupMembers.groupId, group.id));
return {
...group,
lastMessage: lastMessage[0] ? {
content: lastMessage[0].content,
createdAt: lastMessage[0].createdAt,
senderName: lastMessage[0].senderFirstName || lastMessage[0].senderUsername,
isMine: lastMessage[0].senderId === userId,
} : null,
memberCount: members.length,
type: 'group',
};
})
);
return result;
};
/**
* Get group details with members
*/
export const getGroupDetails = async (groupId, userId) => {
// Verify user is member
const [isMember] = await db
.select()
.from(chatGroupMembers)
.where(
and(
eq(chatGroupMembers.groupId, groupId),
eq(chatGroupMembers.userId, userId)
)
)
.limit(1);
if (!isMember) {
throw new ForbiddenError('Nie ste členom tejto skupiny');
}
const [group] = await db
.select()
.from(chatGroups)
.where(eq(chatGroups.id, groupId))
.limit(1);
if (!group) {
throw new NotFoundError('Skupina nenájdená');
}
const members = await db
.select({
id: users.id,
username: users.username,
firstName: users.firstName,
lastName: users.lastName,
role: users.role,
})
.from(chatGroupMembers)
.innerJoin(users, eq(chatGroupMembers.userId, users.id))
.where(eq(chatGroupMembers.groupId, groupId));
return {
...group,
members,
};
};
/**
* Get messages for a group
*/
export const getGroupMessages = async (groupId, userId) => {
// Verify user is member
const [isMember] = await db
.select()
.from(chatGroupMembers)
.where(
and(
eq(chatGroupMembers.groupId, groupId),
eq(chatGroupMembers.userId, userId)
)
)
.limit(1);
if (!isMember) {
throw new ForbiddenError('Nie ste členom tejto skupiny');
}
const messages = await db
.select({
id: groupMessages.id,
content: groupMessages.content,
createdAt: groupMessages.createdAt,
senderId: groupMessages.senderId,
senderUsername: users.username,
senderFirstName: users.firstName,
senderLastName: users.lastName,
})
.from(groupMessages)
.leftJoin(users, eq(groupMessages.senderId, users.id))
.where(eq(groupMessages.groupId, groupId))
.orderBy(groupMessages.createdAt);
return messages.map((msg) => ({
id: msg.id,
content: msg.content,
createdAt: msg.createdAt,
senderId: msg.senderId,
senderName: msg.senderFirstName || msg.senderUsername || 'Neznámy',
isMine: msg.senderId === userId,
}));
};
/**
* Send message to group
*/
export const sendGroupMessage = async (groupId, senderId, content) => {
// Verify user is member
const [isMember] = await db
.select()
.from(chatGroupMembers)
.where(
and(
eq(chatGroupMembers.groupId, groupId),
eq(chatGroupMembers.userId, senderId)
)
)
.limit(1);
if (!isMember) {
throw new ForbiddenError('Nie ste členom tejto skupiny');
}
const [message] = await db
.insert(groupMessages)
.values({
groupId,
senderId,
content: content.trim(),
})
.returning();
// Update group's updatedAt
await db
.update(chatGroups)
.set({ updatedAt: new Date() })
.where(eq(chatGroups.id, groupId));
// Send push notifications to all group members (except sender)
try {
const [group] = await db
.select({ name: chatGroups.name })
.from(chatGroups)
.where(eq(chatGroups.id, groupId))
.limit(1);
const [sender] = await db
.select({ firstName: users.firstName, username: users.username })
.from(users)
.where(eq(users.id, senderId))
.limit(1);
const members = await db
.select({ userId: chatGroupMembers.userId })
.from(chatGroupMembers)
.where(eq(chatGroupMembers.groupId, groupId));
const memberIds = members.map(m => m.userId);
const senderName = sender?.firstName || sender?.username || 'Niekto';
const groupName = group?.name || 'Skupina';
await sendPushNotificationToUsers(
memberIds,
{
title: `${groupName}`,
body: `${senderName}: ${content.trim().substring(0, 80)}${content.length > 80 ? '...' : ''}`,
icon: '/icon-192.png',
badge: '/badge-72.png',
data: { url: `/chat/group/${groupId}` },
},
senderId // exclude sender
);
} catch (error) {
logger.error('Failed to send push notifications for group message', error);
}
return {
id: message.id,
content: message.content,
createdAt: message.createdAt,
senderId: message.senderId,
isMine: true,
};
};
/**
* Add member to group
*/
export const addGroupMember = async (groupId, userId, requesterId) => {
// Verify requester is member
const [isMember] = await db
.select()
.from(chatGroupMembers)
.where(
and(
eq(chatGroupMembers.groupId, groupId),
eq(chatGroupMembers.userId, requesterId)
)
)
.limit(1);
if (!isMember) {
throw new ForbiddenError('Nie ste členom tejto skupiny');
}
// Check if already member
const [alreadyMember] = await db
.select()
.from(chatGroupMembers)
.where(
and(
eq(chatGroupMembers.groupId, groupId),
eq(chatGroupMembers.userId, userId)
)
)
.limit(1);
if (alreadyMember) {
throw new Error('Používateľ je už členom skupiny');
}
// Verify user exists
const [userExists] = await db
.select({ id: users.id })
.from(users)
.where(eq(users.id, userId))
.limit(1);
if (!userExists) {
throw new NotFoundError('Používateľ nenájdený');
}
await db.insert(chatGroupMembers).values({ groupId, userId });
return { success: true };
};
/**
* Remove member from group (or leave)
*/
export const removeGroupMember = async (groupId, userId, requesterId) => {
// User can remove themselves
if (userId !== requesterId) {
// Check if requester is the creator
const [group] = await db
.select({ createdById: chatGroups.createdById })
.from(chatGroups)
.where(eq(chatGroups.id, groupId))
.limit(1);
if (!group || group.createdById !== requesterId) {
throw new ForbiddenError('Nemáte oprávnenie odstrániť tohto člena');
}
}
await db
.delete(chatGroupMembers)
.where(
and(
eq(chatGroupMembers.groupId, groupId),
eq(chatGroupMembers.userId, userId)
)
);
return { success: true };
};
/**
* Update group name
*/
export const updateGroupName = async (groupId, name, requesterId) => {
// Verify requester is the creator
const [group] = await db
.select({ createdById: chatGroups.createdById })
.from(chatGroups)
.where(eq(chatGroups.id, groupId))
.limit(1);
if (!group) {
throw new NotFoundError('Skupina nenájdená');
}
if (group.createdById !== requesterId) {
throw new ForbiddenError('Nemáte oprávnenie upraviť názov skupiny');
}
const [updated] = await db
.update(chatGroups)
.set({ name: name.trim(), updatedAt: new Date() })
.where(eq(chatGroups.id, groupId))
.returning();
return updated;
};
/**
* Delete group (only creator can delete)
*/
export const deleteGroup = async (groupId, requesterId) => {
const [group] = await db
.select({ createdById: chatGroups.createdById })
.from(chatGroups)
.where(eq(chatGroups.id, groupId))
.limit(1);
if (!group) {
throw new NotFoundError('Skupina nenájdená');
}
if (group.createdById !== requesterId) {
throw new ForbiddenError('Nemáte oprávnenie odstrániť túto skupinu');
}
await db.delete(chatGroups).where(eq(chatGroups.id, groupId));
return { success: true };
};

23
src/services/message.service.js
View File

@@ -2,6 +2,8 @@ import { db } from '../config/database.js';
import { messages, users } from '../db/schema.js';
import { eq, and, or, desc, ne, sql } from 'drizzle-orm';
import { NotFoundError } from '../utils/errors.js';
import { sendPushNotification } from './push.service.js';
import { logger } from '../utils/logger.js';
/**
* Get all conversations for a user
@@ -188,6 +190,27 @@ export const sendMessage = async (senderId, receiverId, content) => {
})
.returning();
// Send push notification to receiver
try {
const [sender] = await db
.select({ firstName: users.firstName, username: users.username })
.from(users)
.where(eq(users.id, senderId))
.limit(1);
const senderName = sender?.firstName || sender?.username || 'Niekto';
await sendPushNotification(receiverId, {
title: `Nová správa od ${senderName}`,
body: content.trim().substring(0, 100) + (content.length > 100 ? '...' : ''),
icon: '/icon-192.png',
badge: '/badge-72.png',
data: { url: `/chat/${senderId}` },
});
} catch (error) {
logger.error('Failed to send push notification for direct message', error);
}
return {
id: newMessage.id,
content: newMessage.content,

172
src/services/push.service.js Normal file
View File

@@ -0,0 +1,172 @@
import webpush from 'web-push';
import { db } from '../config/database.js';
import { pushSubscriptions, users } from '../db/schema.js';
import { eq, and } from 'drizzle-orm';
import { logger } from '../utils/logger.js';
// Configure web-push with VAPID keys
if (process.env.VAPID_PUBLIC_KEY && process.env.VAPID_PRIVATE_KEY) {
webpush.setVapidDetails(
process.env.VAPID_SUBJECT || 'mailto:admin@example.com',
process.env.VAPID_PUBLIC_KEY,
process.env.VAPID_PRIVATE_KEY
);
logger.info('Web Push configured with VAPID keys');
} else {
logger.warn('VAPID keys not configured - push notifications disabled');
}
/**
* Save a push subscription for a user
*/
export const saveSubscription = async (userId, subscription) => {
const { endpoint, keys } = subscription;
// Check if subscription already exists
const existing = await db
.select()
.from(pushSubscriptions)
.where(
and(
eq(pushSubscriptions.userId, userId),
eq(pushSubscriptions.endpoint, endpoint)
)
)
.limit(1);
if (existing.length > 0) {
// Update existing subscription
await db
.update(pushSubscriptions)
.set({
p256dh: keys.p256dh,
auth: keys.auth,
})
.where(eq(pushSubscriptions.id, existing[0].id));
} else {
// Create new subscription
await db.insert(pushSubscriptions).values({
userId,
endpoint,
p256dh: keys.p256dh,
auth: keys.auth,
});
}
return { success: true };
};
/**
* Remove a push subscription
*/
export const removeSubscription = async (userId, endpoint) => {
await db
.delete(pushSubscriptions)
.where(
and(
eq(pushSubscriptions.userId, userId),
eq(pushSubscriptions.endpoint, endpoint)
)
);
return { success: true };
};
/**
* Remove all subscriptions for a user
*/
export const removeAllSubscriptions = async (userId) => {
await db
.delete(pushSubscriptions)
.where(eq(pushSubscriptions.userId, userId));
return { success: true };
};
/**
* Send a push notification to a specific user
*/
export const sendPushNotification = async (userId, payload) => {
if (!process.env.VAPID_PUBLIC_KEY || !process.env.VAPID_PRIVATE_KEY) {
logger.warn('Push notification skipped - VAPID keys not configured');
return { success: false, reason: 'not_configured' };
}
const subscriptions = await db
.select()
.from(pushSubscriptions)
.where(eq(pushSubscriptions.userId, userId));
if (subscriptions.length === 0) {
return { success: false, reason: 'no_subscriptions' };
}
const results = await Promise.allSettled(
subscriptions.map(async (sub) => {
const pushSubscription = {
endpoint: sub.endpoint,
keys: {
p256dh: sub.p256dh,
auth: sub.auth,
},
};
try {
await webpush.sendNotification(
pushSubscription,
JSON.stringify(payload)
);
return { success: true, endpoint: sub.endpoint };
} catch (error) {
// 410 Gone means subscription expired
if (error.statusCode === 410 || error.statusCode === 404) {
logger.info(`Removing expired subscription for user ${userId}`);
await db
.delete(pushSubscriptions)
.where(eq(pushSubscriptions.id, sub.id));
} else {
logger.error('Push notification error', error);
}
return { success: false, endpoint: sub.endpoint, error: error.message };
}
})
);
const successful = results.filter(r => r.status === 'fulfilled' && r.value.success).length;
return { success: successful > 0, sent: successful, total: subscriptions.length };
};
/**
* Send push notification to multiple users
*/
export const sendPushNotificationToUsers = async (userIds, payload, excludeUserId = null) => {
const targetUserIds = excludeUserId
? userIds.filter(id => id !== excludeUserId)
: userIds;
const results = await Promise.allSettled(
targetUserIds.map(userId => sendPushNotification(userId, payload))
);
return results;
};
/**
* Check if user has push notifications enabled
*/
export const hasActiveSubscription = async (userId) => {
const subscriptions = await db
.select({ id: pushSubscriptions.id })
.from(pushSubscriptions)
.where(eq(pushSubscriptions.userId, userId))
.limit(1);
return subscriptions.length > 0;
};
/**
* Get VAPID public key for client
*/
export const getVapidPublicKey = () => {
return process.env.VAPID_PUBLIC_KEY || null;
};

57
src/services/todo.service.js
View File

@@ -3,6 +3,8 @@ import { todos, todoUsers, notes, projects, companies, users } from '../db/schem
import { eq, desc, ilike, or, and, inArray } from 'drizzle-orm';
import { NotFoundError } from '../utils/errors.js';
import { getAccessibleResourceIds } from '../middlewares/auth/resourceAccessMiddleware.js';
import { sendPushNotificationToUsers } from './push.service.js';
import { logger } from '../utils/logger.js';
/**
* Get all todos
@@ -217,6 +219,25 @@ export const createTodo = async (userId, data) => {
});
}
// Send push notifications to assigned users (excluding creator)
if (assignedUserIds && Array.isArray(assignedUserIds) && assignedUserIds.length > 0) {
try {
await sendPushNotificationToUsers(
assignedUserIds,
{
title: 'Nová úloha',
body: `Bola vám priradená úloha: ${title}`,
icon: '/icon-192.png',
badge: '/badge-72.png',
data: { url: '/todos', todoId: newTodo.id },
},
userId // exclude creator
);
} catch (error) {
logger.error('Failed to send push notifications for new todo', error);
}
}
return newTodo;
};
@@ -224,8 +245,9 @@ export const createTodo = async (userId, data) => {
* Update todo
* @param {string} todoId - ID of todo to update
* @param {object} data - Updated data including assignedUserIds array
* @param {string} updatedByUserId - ID of user making the update (for notifications)
*/
export const updateTodo = async (todoId, data) => {
export const updateTodo = async (todoId, data, updatedByUserId = null) => {
const todo = await getTodoById(todoId);
const { title, description, projectId, companyId, assignedUserIds, status, priority, dueDate } = data;
@@ -294,6 +316,13 @@ export const updateTodo = async (todoId, data) => {
// Update assigned users if provided
if (assignedUserIds !== undefined) {
// Get existing assigned users before deleting
const existingAssignments = await db
.select({ userId: todoUsers.userId })
.from(todoUsers)
.where(eq(todoUsers.todoId, todoId));
const existingUserIds = existingAssignments.map(a => a.userId);
// Delete existing assignments
await db.delete(todoUsers).where(eq(todoUsers.todoId, todoId));
@@ -302,10 +331,34 @@ export const updateTodo = async (todoId, data) => {
const todoUserInserts = assignedUserIds.map((userId) => ({
todoId: todoId,
userId: userId,
assignedBy: null, // We don't track who made the update
assignedBy: updatedByUserId,
}));
await db.insert(todoUsers).values(todoUserInserts);
// Find newly assigned users (not in existing list)
const newlyAssignedUserIds = assignedUserIds.filter(
id => !existingUserIds.includes(id)
);
// Send push notifications to newly assigned users
if (newlyAssignedUserIds.length > 0) {
try {
await sendPushNotificationToUsers(
newlyAssignedUserIds,
{
title: 'Priradená úloha',
body: `Bola vám priradená úloha: ${updated.title}`,
icon: '/icon-192.png',
badge: '/badge-72.png',
data: { url: '/todos', todoId: todoId },
},
updatedByUserId // exclude user making the change
);
} catch (error) {
logger.error('Failed to send push notifications for updated todo', error);
}
}
}
}