Update to check org owner via correct end point

Couchbase-Ecosystem · Mar 27, 2024 · ef5f28b · ef5f28b
1 parent 21b3716
commit ef5f28b
Show file tree

Hide file tree

Showing 4 changed files with 48 additions and 9 deletions.
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -2,7 +2,7 @@
   "name": "vscode-couchbase",
   "displayName": "Couchbase",
   "description": "",
-  "version": "1.2.2",
+  "version": "1.2.3",
   "engines": {
     "vscode": "^1.63.1"
   },

diff --git a/src/commands/iq/iqLoginhandler.ts b/src/commands/iq/iqLoginhandler.ts
@@ -9,6 +9,11 @@ interface IFormData {
     rememberMe: boolean;
 }
 
+type User = {
+    id: string;
+    roles: string[];
+};
+
 export interface ISavedLoginDataGetter {
     doesLoginDetailsExists: boolean;
     username: string;
@@ -114,6 +119,16 @@ export const handleIqSupplementalTerms = async (
     );
 };
 
+export const checkIfUserIsOrgOwner = async (
+    userId: string,
+    user: User
+): Promise<boolean> => {
+    if (user.id === userId) {
+        return user.roles.includes("organizationOwner");
+    }
+    return false;
+};
+
 export const verifyOrganization = async (orgId: string): Promise<any> => {
     const jwtToken = Memory.state.get<string>("vscode-couchbase.iq.jwtToken");
     if (jwtToken === undefined) {
@@ -128,6 +143,13 @@ export const verifyOrganization = async (orgId: string): Promise<any> => {
         orgId
     );
     const userId = Memory.state.get<string>("vscode-couchbase.iq.userId");
+    if (userId === undefined) {
+        return {
+            shouldAcceptIqTerms: false,
+            isOrgVerified: false,
+            errorMessage: "",
+        };
+    }
     if (!orgDetails.iq || orgDetails.iq.enabled === false) {
         return {
             shouldAcceptIqTerms: false,
@@ -139,13 +161,13 @@ export const verifyOrganization = async (orgId: string): Promise<any> => {
         !orgDetails.iq.other ||
         orgDetails.iq.other.isTermsAcceptedForOrg === false
     ) {
+        const userList = await iqRestApiService.fetchUserData(
+            jwtToken,
+            orgId,
+            userId
+        );
         // Allow to Accept Terms ONLY if user is org owner
-        if (
-            (orgDetails.createdByUserID &&
-                orgDetails.createdByUserID === userId) ||
-            (orgDetails.modifiedByUserID &&
-                orgDetails.modifiedByUserID === userId)
-        ) {
+        if (await checkIfUserIsOrgOwner(userId, userList)) {
             return {
                 shouldAcceptIqTerms: true,
                 isOrgVerified: false,

diff --git a/src/commands/iq/iqRestApiService.ts b/src/commands/iq/iqRestApiService.ts
@@ -95,6 +95,23 @@ export class iqRestApiService {
         }
     };
 
+    public static fetchUserData = async (jwt: string, orgId: string, userId:string) => {
+        try {
+            const content = await axios.get(
+                this.FETCH_ORGANIZATIONS_URL + "/" + orgId + "/users" + "/" + userId,
+                {
+                    headers: {
+                        Authorization: `Bearer ${jwt}`,
+                    },
+                }
+            );
+            return content.data.data;
+        } catch (error) {
+            logger.error("failed to Fetch Users Data in the organization " + error);
+            throw new Error("Failed to fetch users data in the organization ");
+        }
+    };
+
     public static sendIqMessage = async (
         jwt: string,
         orgId: string,