"use strict"; var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) { if (k2 === undefined) k2 = k; var desc = Object.getOwnPropertyDescriptor(m, k); if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) { desc = { enumerable: true, get: function() { return m[k]; } }; } Object.defineProperty(o, k2, desc); }) : (function(o, m, k, k2) { if (k2 === undefined) k2 = k; o[k2] = m[k]; })); var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) { Object.defineProperty(o, "default", { enumerable: true, value: v }); }) : function(o, v) { o["default"] = v; }); var __importStar = (this && this.__importStar) || (function () { var ownKeys = function(o) { ownKeys = Object.getOwnPropertyNames || function (o) { var ar = []; for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k; return ar; }; return ownKeys(o); }; return function (mod) { if (mod && mod.__esModule) return mod; var result = {}; if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]); __setModuleDefault(result, mod); return result; }; })(); var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); exports.getUsers = getUsers; exports.getUser = getUser; exports.createUser = createUser; exports.updateUser = updateUser; exports.deleteUser = deleteUser; exports.getRoles = getRoles; exports.getRole = getRole; exports.createRole = createRole; exports.updateRole = updateRole; exports.deleteRole = deleteRole; exports.getPermissions = getPermissions; const prisma_js_1 = __importDefault(require("../lib/prisma.js")); const userService = __importStar(require("../services/user.service.js")); const audit_service_js_1 = require("../services/audit.service.js"); // Users async function getUsers(req, res) { try { const { search, isActive, roleId, page, limit } = req.query; const result = await userService.getAllUsers({ search: search, isActive: isActive !== undefined ? isActive === 'true' : undefined, roleId: roleId ? parseInt(roleId) : undefined, page: page ? parseInt(page) : undefined, limit: limit ? parseInt(limit) : undefined, }); res.json({ success: true, data: result.users, pagination: result.pagination, }); } catch (error) { res.status(500).json({ success: false, error: 'Fehler beim Laden der Benutzer', }); } } async function getUser(req, res) { try { const user = await userService.getUserById(parseInt(req.params.id)); if (!user) { res.status(404).json({ success: false, error: 'Benutzer nicht gefunden', }); return; } res.json({ success: true, data: user }); } catch (error) { res.status(500).json({ success: false, error: 'Fehler beim Laden des Benutzers', }); } } async function createUser(req, res) { try { const user = await userService.createUser(req.body); await (0, audit_service_js_1.logChange)({ req, action: 'CREATE', resourceType: 'User', resourceId: user.id.toString(), label: `Benutzer ${user.firstName} ${user.lastName} angelegt`, }); res.status(201).json({ success: true, data: user }); } catch (error) { res.status(400).json({ success: false, error: error instanceof Error ? error.message : 'Fehler beim Erstellen des Benutzers', }); } } async function updateUser(req, res) { try { const userId = parseInt(req.params.id); const data = req.body; // Vorherigen Stand laden für Audit const before = await prisma_js_1.default.user.findUnique({ where: { id: userId } }); const user = await userService.updateUser(userId, data); if (user) { // Audit: Geänderte Felder ermitteln und loggen if (before) { const changes = {}; const fieldLabels = { email: 'E-Mail', firstName: 'Vorname', lastName: 'Nachname', isActive: 'Aktiv', }; for (const [key, newVal] of Object.entries(data)) { if (['id', 'createdAt', 'updatedAt'].includes(key)) continue; const oldVal = before[key]; const norm = (v) => (v === null || v === undefined || v === '' ? null : v); if (JSON.stringify(norm(oldVal)) !== JSON.stringify(norm(newVal))) { const label = fieldLabels[key] || key; const formatVal = (v) => { if (v === null || v === undefined || v === '') return '-'; if (typeof v === 'boolean') return v ? 'Ja' : 'Nein'; return String(v); }; changes[label] = { von: formatVal(oldVal), nach: formatVal(newVal) }; } } const changeList = Object.entries(changes).map(([f, c]) => `${f}: ${c.von} → ${c.nach}`).join(', '); await (0, audit_service_js_1.logChange)({ req, action: 'UPDATE', resourceType: 'User', resourceId: user.id.toString(), label: changeList ? `Benutzer ${user.firstName} ${user.lastName} aktualisiert: ${changeList}` : `Benutzer ${user.firstName} ${user.lastName} aktualisiert`, details: Object.keys(changes).length > 0 ? changes : undefined, }); } else { await (0, audit_service_js_1.logChange)({ req, action: 'UPDATE', resourceType: 'User', resourceId: user.id.toString(), label: `Benutzer ${user.firstName} ${user.lastName} aktualisiert`, }); } } res.json({ success: true, data: user }); } catch (error) { res.status(400).json({ success: false, error: error instanceof Error ? error.message : 'Fehler beim Aktualisieren des Benutzers', }); } } async function deleteUser(req, res) { try { const userId = parseInt(req.params.id); const userBefore = await userService.getUserById(userId); await userService.deleteUser(userId); await (0, audit_service_js_1.logChange)({ req, action: 'DELETE', resourceType: 'User', resourceId: userId.toString(), label: `Benutzer ${userBefore?.firstName || ''} ${userBefore?.lastName || ''} gelöscht`, }); res.json({ success: true, message: 'Benutzer gelöscht' }); } catch (error) { res.status(400).json({ success: false, error: error instanceof Error ? error.message : 'Fehler beim Löschen des Benutzers', }); } } // Roles async function getRoles(req, res) { try { const roles = await userService.getAllRoles(); res.json({ success: true, data: roles }); } catch (error) { res.status(500).json({ success: false, error: 'Fehler beim Laden der Rollen', }); } } async function getRole(req, res) { try { const role = await userService.getRoleById(parseInt(req.params.id)); if (!role) { res.status(404).json({ success: false, error: 'Rolle nicht gefunden', }); return; } res.json({ success: true, data: role }); } catch (error) { res.status(500).json({ success: false, error: 'Fehler beim Laden der Rolle', }); } } async function createRole(req, res) { try { const role = await userService.createRole(req.body); await (0, audit_service_js_1.logChange)({ req, action: 'CREATE', resourceType: 'Role', resourceId: role.id.toString(), label: `Rolle ${role.name} angelegt`, }); res.status(201).json({ success: true, data: role }); } catch (error) { res.status(400).json({ success: false, error: error instanceof Error ? error.message : 'Fehler beim Erstellen der Rolle', }); } } async function updateRole(req, res) { try { const role = await userService.updateRole(parseInt(req.params.id), req.body); if (role) { await (0, audit_service_js_1.logChange)({ req, action: 'UPDATE', resourceType: 'Role', resourceId: role.id.toString(), label: `Rolle ${role.name} aktualisiert`, }); } res.json({ success: true, data: role }); } catch (error) { res.status(400).json({ success: false, error: error instanceof Error ? error.message : 'Fehler beim Aktualisieren der Rolle', }); } } async function deleteRole(req, res) { try { const roleId = parseInt(req.params.id); const role = await userService.getRoleById(roleId); await userService.deleteRole(roleId); await (0, audit_service_js_1.logChange)({ req, action: 'DELETE', resourceType: 'Role', resourceId: roleId.toString(), label: `Rolle ${role?.name || roleId} gelöscht`, }); res.json({ success: true, message: 'Rolle gelöscht' }); } catch (error) { res.status(400).json({ success: false, error: error instanceof Error ? error.message : 'Fehler beim Löschen der Rolle', }); } } // Permissions async function getPermissions(req, res) { try { const permissions = await userService.getAllPermissions(); res.json({ success: true, data: permissions }); } catch (error) { res.status(500).json({ success: false, error: 'Fehler beim Laden der Berechtigungen', }); } } //# sourceMappingURL=user.controller.js.map