notid/integreat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

permissions for rest endpoints.

Browse Source
This commit is contained in:
BC
2018-07-10 22:34:58 -07:00
parent 9189c820d7
commit b1cbd2c854
6 changed files with 24 additions and 64 deletions
Download Patch File Download Diff File Expand all files Collapse all files

33
src/clj/auto_ap/routes/checks.clj
View File

@@ -2,6 +2,7 @@
(:require [auto-ap.db.companies :as companies] (:require [auto-ap.db.companies :as companies]
[auto-ap.db.vendors :as vendors] [auto-ap.db.vendors :as vendors]
[auto-ap.db.invoices :as invoices] [auto-ap.db.invoices :as invoices]
[auto-ap.graphql.utils :refer [assert-can-see-company]]
[auto-ap.utils :refer [by]] [auto-ap.utils :refer [by]]
[auto-ap.numeric :refer [num->words]] [auto-ap.numeric :refer [num->words]]
[auto-ap.db.checks :as checks] [auto-ap.db.checks :as checks]
@@ -230,35 +231,5 @@
(defroutes routes (defroutes routes
(wrap-routes (wrap-routes
(context "/checks" [] (context "/checks" [])
(POST "/" {:keys [edn-params]}
(let [invoices (invoices/get-multi (:invoice-ids edn-params))
companies (into {}
(map (fn [c] [(:id c) c])
(companies/get-all)))
vendors (into {}
(map (fn [v] [(:id v) v])
(vendors/get-all)))
invoices-grouped-by-vendor (group-by :vendor-id invoices)
checks (-> (for [[vendor-id invoices] invoices-grouped-by-vendor]
[invoices (checks/insert! (check-for-invoices invoices vendor-id vendors companies))])
doall)
invoice-checks (invoices-checks/insert-multi!
(mapcat
(fn [[invoices check]]
(map
(fn [i]
{:invoice-id (:id i)
:check-id (:id check)
:amount (:total i)})
invoices))
checks)) ]
(make-pdfs (map second checks))
{:status 200
:body (pr-str {:url (merge-pdfs (map (comp :s3-key second) checks))
:checks checks
:invoice-checks invoice-checks})
:headers {"Content-Type" "application/edn"}})))
wrap-secure)) wrap-secure))

4
src/clj/auto_ap/routes/companies.clj
View File

@@ -1,5 +1,6 @@
(ns auto-ap.routes.companies (ns auto-ap.routes.companies
(:require [auto-ap.db.companies :as companies] (:require [auto-ap.db.companies :as companies]
[auto-ap.graphql.utils :refer [can-see-company? assert-can-see-company]]
[auto-ap.routes.utils :refer [wrap-secure wrap-spec]] [auto-ap.routes.utils :refer [wrap-secure wrap-spec]]
[auto-ap.entities.companies :as entity] [auto-ap.entities.companies :as entity]
[compojure.core :refer [GET PUT context defroutes [compojure.core :refer [GET PUT context defroutes
@@ -11,10 +12,11 @@
(context "/companies" [] (context "/companies" []
(GET "/" r (GET "/" r
{:status 200 {:status 200
:body (pr-str (companies/get-all)) :body (pr-str (filter #(can-see-company? (:identity r) (:id %)) (companies/get-all)))
:headers {"Content-Type" "application/edn"}}) :headers {"Content-Type" "application/edn"}})
(wrap-spec (wrap-spec
(PUT "/:id" {:keys [edn-params] {:keys [id]} :route-params :as r} (PUT "/:id" {:keys [edn-params] {:keys [id]} :route-params :as r}
(assert-can-see-company (:identity r) id)
{:status 200 {:status 200
:body (pr-str (companies/upsert id edn-params)) :body (pr-str (companies/upsert id edn-params))
:headers {"Content-Type" "application/edn"}}) :headers {"Content-Type" "application/edn"}})

13
src/clj/auto_ap/routes/exports.clj
View File

@@ -9,7 +9,7 @@
[auto-ap.utils :refer [by]] [auto-ap.utils :refer [by]]
[auto-ap.parse :as parse] [auto-ap.parse :as parse]
[auto-ap.graphql :as graphql] [auto-ap.graphql :as graphql]
[auto-ap.graphql.utils :refer [->graphql]] [auto-ap.graphql.utils :refer [->graphql assert-admin]]
[auto-ap.routes.utils :refer [wrap-secure]] [auto-ap.routes.utils :refer [wrap-secure]]
[clj-time.coerce :refer [to-date]] [clj-time.coerce :refer [to-date]]
[auto-ap.db.invoices-expense-accounts :as expense-accounts] [auto-ap.db.invoices-expense-accounts :as expense-accounts]
@@ -23,6 +23,7 @@
(wrap-routes (wrap-routes
(context "/" [] (context "/" []
(GET "/invoices/export" {:keys [query-params identity] :as request} (GET "/invoices/export" {:keys [query-params identity] :as request}
(assert-admin identity)
(let [query [[:all_invoices (let [query [[:all_invoices
{:company-id (query-params "company")} {:company-id (query-params "company")}
[:id :total :outstanding-balance :invoice-number :date [:id :total :outstanding-balance :invoice-number :date
@@ -34,6 +35,7 @@
invoices (graphql/query identity (venia/graphql-query {:venia/queries (->graphql query)}))] invoices (graphql/query identity (venia/graphql-query {:venia/queries (->graphql query)}))]
(list (:all-invoices (:data invoices))))) (list (:all-invoices (:data invoices)))))
(GET "/checks/export" {:keys [query-params]} (GET "/checks/export" {:keys [query-params]}
(assert-admin identity)
(let [query [[:all_checks (let [query [[:all_checks
{:company-id (query-params "company")} {:company-id (query-params "company")}
[:id :check-number :amount :memo :date [:id :check-number :amount :memo :date
@@ -45,12 +47,15 @@
checks (graphql/query identity (venia/graphql-query {:venia/queries (->graphql query)}))] checks (graphql/query identity (venia/graphql-query {:venia/queries (->graphql query)}))]
(list (:all-checks (:data checks))))) (list (:all-checks (:data checks)))))
(GET "/companies/export" {:keys [query-params]} (GET "/companies/export" {:keys [query-params identity]}
(assert-admin identity)
(companies/get-all)) (companies/get-all))
(GET "/vendors/export" {:keys [query-params]} (GET "/vendors/export" {:keys [query-params identity]}
(assert-admin identity)
(vendors/get-all)) (vendors/get-all))
(GET "/transactions/export" {:keys [query-params]} (GET "/transactions/export" {:keys [query-params identity]}
(assert-admin identity)
(let [transactions (transactions/get-graphql {:company (query-params "company")})] (let [transactions (transactions/get-graphql {:company (query-params "company")})]
(map (fn [i] (map (fn [i]
(-> i (-> i

31
src/clj/auto_ap/routes/invoices.clj
View File

@@ -5,6 +5,7 @@
[auto-ap.db.utils :refer [query]] [auto-ap.db.utils :refer [query]]
[auto-ap.utils :refer [by]] [auto-ap.utils :refer [by]]
[auto-ap.parse :as parse] [auto-ap.parse :as parse]
[auto-ap.graphql.utils :refer [assert-admin]]
[auto-ap.routes.utils :refer [wrap-secure]] [auto-ap.routes.utils :refer [wrap-secure]]
[clj-time.coerce :refer [to-date]] [clj-time.coerce :refer [to-date]]
[auto-ap.db.invoices-expense-accounts :as expense-accounts] [auto-ap.db.invoices-expense-accounts :as expense-accounts]
@@ -70,32 +71,7 @@
(defroutes routes (defroutes routes
(wrap-routes (wrap-routes
(context "/invoices" [] (context "/invoices" []
(GET "/" [] #_(POST "/upload"
{:status 200
:body (pr-str (invoices/get-all))
:headers {"Content-Type" "application/edn"}})
(GET "/unpaid" {:keys [query-params] :as r}
{:status 200
:body (pr-str (invoices/get-unpaid (query-params "company")))
:headers {"Content-Type" "application/edn"}})
(GET "/pending" {:keys [query-params]}
{:status 200
:body (pr-str (invoices/get-pending (query-params "company")))
:headers {"Content-Type" "application/edn"}})
(POST "/approve" {:keys [query-params]}
(invoices/approve)
{:status 200
:body (pr-str (invoices/get-pending (query-params "company")))
:headers {"Content-Type" "application/edn"}})
(POST "/reject" {:keys [query-params]}
(invoices/reject)
{:status 200
:body (pr-str (invoices/get-pending (query-params "company")))
:headers {"Content-Type" "application/edn"}})
(POST "/upload"
{{ files "file"} :params :as params} {{ files "file"} :params :as params}
(let [{:keys [filename tempfile]} files (let [{:keys [filename tempfile]} files
companies (companies/get-all) companies (companies/get-all)
@@ -106,7 +82,8 @@
:headers {"Content-Type" "application/edn"}})) :headers {"Content-Type" "application/edn"}}))
(POST "/upload-integreat" (POST "/upload-integreat"
{{:keys [excel-rows]} :edn-params} {{:keys [excel-rows]} :edn-params identity :identity}
(assert-admin identity)
(let [columns [:raw-date :vendor-name :check :location :invoice-number :amount :company :bill-entered :bill-rejected :added-on :exported-on] (let [columns [:raw-date :vendor-name :check :location :invoice-number :amount :company :bill-entered :bill-rejected :added-on :exported-on]
all-vendors (by :name (vendors/get-all)) all-vendors (by :name (vendors/get-all))

4
src/clj/auto_ap/routes/reminders.clj
View File

@@ -3,6 +3,7 @@
[auto-ap.db.reminders :as reminders] [auto-ap.db.reminders :as reminders]
[auto-ap.db.vendors :as vendors] [auto-ap.db.vendors :as vendors]
[auto-ap.routes.utils :refer [wrap-secure]] [auto-ap.routes.utils :refer [wrap-secure]]
[auto-ap.graphql.utils :refer [assert-admin]]
[config.core :refer [env]] [config.core :refer [env]]
[clj-http.client :as http] [clj-http.client :as http]
[clj-time.coerce :as c] [clj-time.coerce :as c]
@@ -72,7 +73,8 @@
:body "{}" :body "{}"
:headers {"Content-Type" "application/edn"}}) :headers {"Content-Type" "application/edn"}})
(wrap-routes (wrap-routes
(PUT "/:id" {:keys [ edn-params] {:keys [id] } :route-params} (PUT "/:id" {:keys [ edn-params] {:keys [id] } :route-params identity :identity}
(assert-admin identity)
(let [id (if (int? id) (let [id (if (int? id)
id id
(Integer/parseInt id))] (Integer/parseInt id))]

3
src/clj/auto_ap/routes/vendors.clj
View File

@@ -1,6 +1,7 @@
(ns auto-ap.routes.vendors (ns auto-ap.routes.vendors
(:require [auto-ap.db.vendors :as vendors] (:require [auto-ap.db.vendors :as vendors]
[auto-ap.entities.vendors :as entity] [auto-ap.entities.vendors :as entity]
[auto-ap.graphql.utils :refer [assert-admin]]
[auto-ap.routes.utils :refer [wrap-secure wrap-spec]] [auto-ap.routes.utils :refer [wrap-secure wrap-spec]]
[auto-ap.db.reminders :as reminders] [auto-ap.db.reminders :as reminders]
[clj-time.core :as time] [clj-time.core :as time]
@@ -15,11 +16,13 @@
:headers {"Content-Type" "application/edn"}}) :headers {"Content-Type" "application/edn"}})
(wrap-routes (wrap-routes
(PUT "/:id" {:keys [edn-params] {:keys [id]} :route-params :as r} (PUT "/:id" {:keys [edn-params] {:keys [id]} :route-params :as r}
(assert-admin (:identity r))
{:status 200 {:status 200
:body (pr-str (vendors/upsert id edn-params)) :body (pr-str (vendors/upsert id edn-params))
:headers {"Content-Type" "application/edn"}}) :headers {"Content-Type" "application/edn"}})
#(wrap-spec % ::entity/vendor)) #(wrap-spec % ::entity/vendor))
(POST "/:id/remind" {:keys [edn-params] {:keys [id :<< as-int]} :route-params :as r} (POST "/:id/remind" {:keys [edn-params] {:keys [id :<< as-int]} :route-params :as r}
(assert-admin (:identity r))
(let [id (if (int? id) (let [id (if (int? id)
id id
(Integer/parseInt id)) (Integer/parseInt id))