enable caching in authorization

bahram1249 · Feb 20, 2024 · bf192b5 · bf192b5
1 parent 80a4dff
commit bf192b5
Show file tree

Hide file tree

Showing 3 changed files with 67 additions and 39 deletions.
diff --git a/apps/e-commerce/src/admin/product/product.service.ts b/apps/e-commerce/src/admin/product/product.service.ts
@@ -766,11 +766,15 @@ export class ProductService {
 
       await transaction.commit();
 
+      const keepJobs = this.config.get<number>(
+        'PRODUCT_INVENTORY_STATUS_KEEPJOBS',
+      );
       await this.productInventoryQueue.add(
         Constants.productInventoryStatusJob(product.id.toString()),
         {
           productId: product.id,
         },
+        { removeOnComplete: keepJobs },
       );
     } catch (error) {
       await transaction.rollback();

diff --git a/libs/auth/src/strategy/jwt.strategy.ts b/libs/auth/src/strategy/jwt.strategy.ts
@@ -117,6 +117,7 @@ export class JwtStrategy extends PassportStrategy(Strategy, 'jwt') {
         ],
       });
       user.menus = menus;
+      await this.cacheManager.set(`userid:${payload.sub}`, user);
     }
     return user;
   }

diff --git a/libs/permission-checker/src/guard/permission.guard.ts b/libs/permission-checker/src/guard/permission.guard.ts
@@ -1,4 +1,9 @@
-import { Injectable, CanActivate, ExecutionContext } from '@nestjs/common';
+import {
+  Injectable,
+  CanActivate,
+  ExecutionContext,
+  Inject,
+} from '@nestjs/common';
 import { Reflector } from '@nestjs/core';
 import { InjectModel } from '@nestjs/sequelize';
 import { Permission } from '@rahino/database/models/core/permission.entity';
@@ -7,6 +12,8 @@ import { Role } from '@rahino/database/models/core/role.entity';
 import { UserRole } from '@rahino/database/models/core/userRole.entity';
 import { User } from '@rahino/database/models/core/user.entity';
 import { PermissionReflector } from '../interface';
+import { CACHE_MANAGER } from '@nestjs/cache-manager';
+import { Cache } from 'cache-manager';
 
 @Injectable()
 export class PermissionGuard implements CanActivate {
@@ -16,6 +23,8 @@ export class PermissionGuard implements CanActivate {
     private userRepository: typeof User,
     @InjectModel(Permission)
     private permissionRepository: typeof Permission,
+    @Inject(CACHE_MANAGER)
+    private cacheManager: Cache,
   ) {}
 
   async canActivate(context: ExecutionContext) {
@@ -35,45 +44,59 @@ export class PermissionGuard implements CanActivate {
     permission: PermissionReflector,
     userId: bigint,
   ) {
-    const permissionFinded = await this.permissionRepository.findOne({
-      where: {
-        permissionSymbol: permission.permissionSymbol,
-      },
-    });
-    if (!permissionFinded) {
-      return false;
-    }
-    const item = await this.userRepository.findOne({
-      where: {
-        id: userId,
-      },
-      include: [
-        {
-          model: UserRole,
-          as: 'userRoles',
-          required: true,
-          include: [
-            {
-              model: Role,
-              as: 'role',
-              required: true,
-              include: [
-                {
-                  model: RolePermission,
-                  as: 'rolePermissions',
-                  required: true,
-                  where: {
-                    permissionId: permissionFinded.id,
-                  },
-                },
-              ],
-            },
-          ],
-        },
-      ],
-    });
     let access = true;
-    if (!item) access = false;
+    let defined = await this.cacheManager.get(
+      `userid:${userId}->permission:${permission.permissionSymbol}`,
+    );
+    if (defined == false) {
+      access = false;
+    } else if (defined == true) {
+      access = true;
+    } else {
+      const permissionFinded = await this.permissionRepository.findOne({
+        where: {
+          permissionSymbol: permission.permissionSymbol,
+        },
+      });
+      if (!permissionFinded) {
+        return false;
+      }
+      const item = await this.userRepository.findOne({
+        where: {
+          id: userId,
+        },
+        include: [
+          {
+            model: UserRole,
+            as: 'userRoles',
+            required: true,
+            include: [
+              {
+                model: Role,
+                as: 'role',
+                required: true,
+                include: [
+                  {
+                    model: RolePermission,
+                    as: 'rolePermissions',
+                    required: true,
+                    where: {
+                      permissionId: permissionFinded.id,
+                    },
+                  },
+                ],
+              },
+            ],
+          },
+        ],
+      });
+
+      if (!item) access = false;
+      await this.cacheManager.set(
+        `userid:${userId}->permission:${permission.permissionSymbol}`,
+        access,
+      );
+    }
     return access;
   }
 }