add org affiliations

Author: emathew5

src/controller/registry-org.controller/registry-org.controller.js

@@ -388,7 +388,7 @@ async function createUserByOrg (req, res, next) {
     const requesterOrgUUID = await registryOrgRepo.getOrgUUID(requesterShortName)
     const body = req.ctx.body
 
-    const isSecretariat = await registryOrgRepo.isSecretariat(shortName)
+    const isSecretariat = await registryOrgRepo.isSecretariat(requesterShortName)
     const isAdmin = await registryUserRepo.isAdmin(requesterUsername, requesterShortName)
 
     if (!isSecretariat && !isAdmin) { // may be redundant after validation check is implemented
@@ -403,6 +403,15 @@ async function createUserByOrg (req, res, next) {
       }
     }
 
+    const username = body.user_id || body.username
+    if (!username) {
+      return res.status(400).json({ message: 'user_id is required' })
+    }
+    const existingUser = await registryUserRepo.findOneByUserNameAndOrgUUID(username, orgUUID)
+    if (existingUser) {
+      return res.status(400).json(error.userExists(username))
+    }
+
     // Creating a new user under specific org
     const newUser = new RegistryUser()
     Object.keys(body).map(k => k.toLowerCase()).forEach(k => {
@@ -417,21 +426,54 @@ async function createUserByOrg (req, res, next) {
           ...body.name
         }
       } else if (k === 'org_affiliations') {
-        // TODO: dedupe
+        newUser.org_affiliations = body[k].map(item => {
+          const {
+            orgId = '',
+            email = '',
+            phone = '',
+            ...rest
+          } = item
+
+          return {
+            org_id: orgId,
+            email,
+            phone,
+            ...rest
+          }
+        })
       } else if (k === 'cve_program_org_membership') {
-        // TODO: dedupe
+        newUser.cve_program_org_membership = body[k].map(item => {
+          const {
+            programOrg = '',
+            roles = [],
+
+            status = false,
+            ...rest
+          } = item
+
+          return {
+            program_org: programOrg,
+            roles,
+            status,
+            ...rest
+          }
+        })
       } else if (k === 'uuid') {
         return res.status(400).json(error.uuidProvided('user'))
       }
     })
 
     newUser.UUID = uuid.v4()
+
     const randomKey = cryptoRandomString({ length: getConstants().CRYPTO_RANDOM_STRING_LENGTH })
     newUser.secret = await argon2.hash(randomKey)
     newUser.last_active = null
     newUser.deactivation_date = null
 
-    await registryUserRepo.updateByUUID(newUser.UUID, newUser, { upsert: true })
+    await registryUserRepo.updateByUserNameAndOrgUUID(newUser.user_id, orgUUID, newUser, { upsert: true })
+    await registryUserRepo.addOrgToUserAffiliation(newUser.UUID, orgUUID)
+    await registryOrgRepo.addUserToOrgList(orgUUID, newUser.UUID, body.authority?.active_roles ? [...new Set(body.authority.active_roles)].includes('ADMIN') : false, { upsert: true })
+
     const agt = setAggregateUserObj({ UUID: newUser.UUID })
     let result = await registryUserRepo.aggregate(agt)
     result = result.length > 0 ? result[0] : null
@@ -440,10 +482,10 @@ async function createUserByOrg (req, res, next) {
       action: 'create_registry_user',
       change: result.user_id + ' was successfully created.',
       req_UUID: req.ctx.uuid,
-      org_UUID: await registryOrgRepo.getOrgUUID(req.ctx.org),
+      org_UUID: orgUUID,
       user: result
     }
-    payload.user_UUID = await registryUserRepo.getUserUUID(req.ctx.user, payload.org_UUID)
+    payload.user_UUID = await registryUserRepo.getUserUUID(req.ctx.user, orgUUID)
     logger.info(JSON.stringify(payload))
 
     result.secret = randomKey