fix(backend): add 'structureId' by default

pYassine · pYassine · commit 28804b3d8f7d · 2025-08-08T17:13:15.000+02:00
diff --git a/_scripts/db/dumps/domifa_test.postgres.custom.gz b/_scripts/db/dumps/domifa_test.postgres.custom.gz
diff --git a/_scripts/db/dumps/domifa_test.postgres.restore-data-only.sql b/_scripts/db/dumps/domifa_test.postgres.restore-data-only.sql
@@ -301,16 +301,16 @@ c9192746-debf-48de-bd13-6fb5b2ee866b	2022-03-08 23:22:50.29536+01	2022-03-08 23:
 --
 
 COPY public.user_structure_security (uuid, "createdAt", "updatedAt", version, "userId", "temporaryTokens", "eventsHistory", "structureId") FROM stdin;
-7aef1d02-3021-4988-937c-f18fa6244b14	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	2	\N	[]	\N
-0068d982-390a-4c42-9b63-55f5c78c6cfd	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	5	\N	[]	\N
-e931e0d8-ecbb-478a-97a3-a01eac88e24f	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	4	\N	[]	\N
-3e2118c1-1e0b-4ce7-bc85-22001eebc8ee	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	7	\N	[]	\N
-8dddd469-7b63-44f3-8166-15830e80ee7b	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	6	\N	[]	\N
-759bdc26-be9d-4ffb-95c9-8c2d7a06a63b	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	8	\N	[]	\N
-d84e9cc2-5c52-4a02-880e-bcfb27180594	2021-03-15 16:53:55.74+01	2021-12-06 16:26:00.681872+01	2	10	\N	[{"date": "2021-12-06T15:26:00.672Z", "type": "login-success"}]	\N
-9fe998b5-7178-44b5-9c40-2e18ba233f1d	2021-03-15 16:53:55.740856+01	2022-03-09 00:20:17.365808+01	3	3	\N	[{"date": "2022-03-08T23:20:17.329Z", "type": "login-success"}]	\N
-80e97a87-9d11-4487-a3c3-411bbdf42a2c	2022-03-17 17:25:53.809705+01	2022-03-23 22:07:14.867562+01	3	11	\N	[{"date": "2022-03-17T16:33:43.464Z", "type": "login-success"}, {"date": "2022-03-23T21:07:14.852Z", "type": "login-success"}]	\N
-e0bcefc6-f1be-4c83-ac9d-6ea47335a9c3	2021-03-15 16:53:55.740856+01	2025-03-06 00:34:34.261953+01	10	1	\N	[{"date": "2025-03-05T23:34:34.260Z", "type": "login-error"}]	\N
+7aef1d02-3021-4988-937c-f18fa6244b14	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	2	\N	[]	1
+0068d982-390a-4c42-9b63-55f5c78c6cfd	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	5	\N	[]	3
+e931e0d8-ecbb-478a-97a3-a01eac88e24f	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	4	\N	[]	3
+3e2118c1-1e0b-4ce7-bc85-22001eebc8ee	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	7	\N	[]	4
+8dddd469-7b63-44f3-8166-15830e80ee7b	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	6	\N	[]	1
+759bdc26-be9d-4ffb-95c9-8c2d7a06a63b	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	8	\N	[]	3
+d84e9cc2-5c52-4a02-880e-bcfb27180594	2021-03-15 16:53:55.74+01	2021-12-06 16:26:00.681872+01	2	10	\N	[{"date": "2021-12-06T15:26:00.672Z", "type": "login-success"}]	3
+9fe998b5-7178-44b5-9c40-2e18ba233f1d	2021-03-15 16:53:55.740856+01	2022-03-09 00:20:17.365808+01	3	3	\N	[{"date": "2022-03-08T23:20:17.329Z", "type": "login-success"}]	1
+80e97a87-9d11-4487-a3c3-411bbdf42a2c	2022-03-17 17:25:53.809705+01	2022-03-23 22:07:14.867562+01	3	11	\N	[{"date": "2022-03-17T16:33:43.464Z", "type": "login-success"}, {"date": "2022-03-23T21:07:14.852Z", "type": "login-success"}]	5
+e0bcefc6-f1be-4c83-ac9d-6ea47335a9c3	2021-03-15 16:53:55.740856+01	2025-03-06 00:34:34.261953+01	10	1	\N	[{"date": "2025-03-05T23:34:34.260Z", "type": "login-error"}]	1
 \.
 
 
diff --git a/_scripts/db/dumps/domifa_test.postgres.truncate-restore-data-only.sql b/_scripts/db/dumps/domifa_test.postgres.truncate-restore-data-only.sql
@@ -337,16 +337,16 @@ c9192746-debf-48de-bd13-6fb5b2ee866b	2022-03-08 23:22:50.29536+01	2022-03-08 23:
 --
 
 COPY public.user_structure_security (uuid, "createdAt", "updatedAt", version, "userId", "temporaryTokens", "eventsHistory", "structureId") FROM stdin;
-7aef1d02-3021-4988-937c-f18fa6244b14	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	2	\N	[]	\N
-0068d982-390a-4c42-9b63-55f5c78c6cfd	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	5	\N	[]	\N
-e931e0d8-ecbb-478a-97a3-a01eac88e24f	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	4	\N	[]	\N
-3e2118c1-1e0b-4ce7-bc85-22001eebc8ee	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	7	\N	[]	\N
-8dddd469-7b63-44f3-8166-15830e80ee7b	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	6	\N	[]	\N
-759bdc26-be9d-4ffb-95c9-8c2d7a06a63b	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	8	\N	[]	\N
-d84e9cc2-5c52-4a02-880e-bcfb27180594	2021-03-15 16:53:55.74+01	2021-12-06 16:26:00.681872+01	2	10	\N	[{"date": "2021-12-06T15:26:00.672Z", "type": "login-success"}]	\N
-9fe998b5-7178-44b5-9c40-2e18ba233f1d	2021-03-15 16:53:55.740856+01	2022-03-09 00:20:17.365808+01	3	3	\N	[{"date": "2022-03-08T23:20:17.329Z", "type": "login-success"}]	\N
-80e97a87-9d11-4487-a3c3-411bbdf42a2c	2022-03-17 17:25:53.809705+01	2022-03-23 22:07:14.867562+01	3	11	\N	[{"date": "2022-03-17T16:33:43.464Z", "type": "login-success"}, {"date": "2022-03-23T21:07:14.852Z", "type": "login-success"}]	\N
-e0bcefc6-f1be-4c83-ac9d-6ea47335a9c3	2021-03-15 16:53:55.740856+01	2025-03-06 00:34:34.261953+01	10	1	\N	[{"date": "2025-03-05T23:34:34.260Z", "type": "login-error"}]	\N
+7aef1d02-3021-4988-937c-f18fa6244b14	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	2	\N	[]	1
+0068d982-390a-4c42-9b63-55f5c78c6cfd	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	5	\N	[]	3
+e931e0d8-ecbb-478a-97a3-a01eac88e24f	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	4	\N	[]	3
+3e2118c1-1e0b-4ce7-bc85-22001eebc8ee	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	7	\N	[]	4
+8dddd469-7b63-44f3-8166-15830e80ee7b	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	6	\N	[]	1
+759bdc26-be9d-4ffb-95c9-8c2d7a06a63b	2021-03-15 16:53:55.740856+01	2021-03-15 16:53:55.740856+01	1	8	\N	[]	3
+d84e9cc2-5c52-4a02-880e-bcfb27180594	2021-03-15 16:53:55.74+01	2021-12-06 16:26:00.681872+01	2	10	\N	[{"date": "2021-12-06T15:26:00.672Z", "type": "login-success"}]	3
+9fe998b5-7178-44b5-9c40-2e18ba233f1d	2021-03-15 16:53:55.740856+01	2022-03-09 00:20:17.365808+01	3	3	\N	[{"date": "2022-03-08T23:20:17.329Z", "type": "login-success"}]	1
+80e97a87-9d11-4487-a3c3-411bbdf42a2c	2022-03-17 17:25:53.809705+01	2022-03-23 22:07:14.867562+01	3	11	\N	[{"date": "2022-03-17T16:33:43.464Z", "type": "login-success"}, {"date": "2022-03-23T21:07:14.852Z", "type": "login-success"}]	5
+e0bcefc6-f1be-4c83-ac9d-6ea47335a9c3	2021-03-15 16:53:55.740856+01	2025-03-06 00:34:34.261953+01	10	1	\N	[{"date": "2025-03-05T23:34:34.260Z", "type": "login-error"}]	1
 \.
 
 
diff --git a/_scripts/db/generate-ddl.sh b/_scripts/db/generate-ddl.sh
@@ -46,7 +46,7 @@ fi
 
 # Nettoyer le fichier généré (enlever les SET et commentaires restants)
 echo "🧹 Nettoyage du fichier DDL..."
-sed -i \
+sed -i '' \
   -E \
   -e '/^[[:space:]]*--/d' \
   -e '/^[[:space:]]*SET /d' \
diff --git a/packages/backend/src/_common/model/users/user-security/UserSecurityLogError.interface.ts b/packages/backend/src/_common/model/users/user-security/UserSecurityLogError.interface.ts
@@ -0,0 +1,7 @@
+import { UserProfile } from "../common-user";
+
+export interface UserSecurityLogError {
+  operation: string;
+  userId: number;
+  userProfile?: UserProfile;
+}
diff --git a/packages/backend/src/_common/model/users/user-security/index.ts b/packages/backend/src/_common/model/users/user-security/index.ts
@@ -2,5 +2,6 @@
 export * from "./UserSecurity.interface";
 export * from "./UserSecurityEvent.interface";
 export * from "./UserSecurityEventType.type";
+export * from "./UserSecurityLogError.interface";
 export * from "./UserTokens.interface";
 export * from "./UserTokenType.type";
diff --git a/packages/backend/src/_migrations/1754664216664-manual-migration.ts b/packages/backend/src/_migrations/1754664216664-manual-migration.ts
@@ -0,0 +1,47 @@
+import { MigrationInterface, QueryRunner } from "typeorm";
+import { domifaConfig } from "../config";
+
+export class ManualMigration1754664216664 implements MigrationInterface {
+  public async up(queryRunner: QueryRunner): Promise<void> {
+    if (
+      domifaConfig().envId === "prod" ||
+      domifaConfig().envId === "preprod" ||
+      domifaConfig().envId === "local"
+    ) {
+      // Update user_structure_security table with structureId from user_structure
+      await queryRunner.query(`
+                UPDATE user_structure_security
+                SET "structureId" = (
+                    SELECT us."structureId"
+                    FROM user_structure us
+                    WHERE us.id = user_structure_security."userId"
+                )
+                WHERE "structureId" IS NULL
+            `);
+
+      // Update user_usager_security table with structureId from user_usager
+      await queryRunner.query(`
+                UPDATE user_usager_security
+                SET "structureId" = (
+                    SELECT uu."structureId"
+                    FROM user_usager uu
+                    WHERE uu.id = user_usager_security."userId"
+                )
+                WHERE "structureId" IS NULL
+            `);
+    }
+  }
+
+  public async down(queryRunner: QueryRunner): Promise<void> {
+    // Set structureId values back to NULL
+    await queryRunner.query(`
+            UPDATE user_structure_security
+            SET "structureId" = NULL
+        `);
+
+    await queryRunner.query(`
+            UPDATE user_usager_security
+            SET "structureId" = NULL
+        `);
+  }
+}
diff --git a/packages/backend/src/modules/users/services/user-structure-creator.service.ts b/packages/backend/src/modules/users/services/user-structure-creator.service.ts
@@ -40,6 +40,7 @@ async function createUserWithPassword(
 
   const userSecurityAttributes: UserSecurity = {
     userId: user.id,
+    structureId: user.structureId,
     eventsHistory: [],
     temporaryTokens: undefined,
   };
@@ -62,6 +63,7 @@ async function createUserWithTmpToken(
 
   const userSecurityAttributes: UserSecurity = {
     userId: user.id,
+    structureId: user.structureId,
     temporaryTokens:
       userSecurityResetPasswordInitiator.generateResetPasswordTokenAndValidity({
         type: "create-user",
diff --git a/packages/backend/src/modules/users/services/userSecurityEventHistoryManager.service.ts b/packages/backend/src/modules/users/services/userSecurityEventHistoryManager.service.ts
@@ -6,6 +6,7 @@ import {
   UserSecurityEventType,
   UserSecurityEvent,
   UserProfile,
+  UserSecurityLogError,
 } from "../../../_common/model";
 
 export const SECURITY_HISTORY_MAX_EVENTS_ATTEMPT = 5;
@@ -108,21 +109,7 @@ export function isAccountLockedForOperation({
   return false;
 }
 
-function logOperationError({
-  operation,
-  userId,
-  userProfile,
-}: {
-  operation: string;
-  userId: number;
-  userProfile?: UserProfile;
-}) {
-  const context = {
-    operation,
-    userId,
-    userProfile,
-  };
-
+function logOperationError(context: UserSecurityLogError) {
   if (domifaConfig().envId === "dev" || domifaConfig().envId === "local") {
     appLogger.warn(
       "Operation forbidden due to excessive recent security events",
