gayuh
/
radar_farmagitechs


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306
							import axios from 'axios';
import qs from 'qs';
import bcrypt from 'bcrypt';
import prisma from '../../src/prisma/PrismaClient';
import {
    KEYCLOAK_TOKEN_URL,
    KEYCLOAK_ADMIN_URL,
    KEYCLOAK_REALM,
    CLIENT_ID,
    CLIENT_SECRET,
} from '../../config/keycloak';

// Tipe untuk data user lokal
interface SeedUser {
    username: string;
    email: string;
    password: string;
    firstname: string;
    lastname: string;
    role: string;
}

// Ambil token admin dari Keycloak
const getAdminToken = async (): Promise<string> => {
    const tokenParams = qs.stringify({
        grant_type: 'client_credentials',
        client_id: CLIENT_ID,
        client_secret: CLIENT_SECRET,
    });

    const { data } = await axios.post(KEYCLOAK_TOKEN_URL, tokenParams, {
        headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
    });

    return data.access_token;
};

// Membuat user di Keycloak
const createUserInKeycloak = async (user: SeedUser, token: string): Promise<string> => {
    const checkUser = await axios.get(
        `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/users?username=${user.username}`,
        { headers: { Authorization: `Bearer ${token}` } }
    );

    if (checkUser.data.length > 0) {
        console.log(`⚠️  User ${user.username} already exists in Keycloak`);
        return checkUser.data[0].id;
    }

    await axios.post(
        `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/users`,
        {
            username: user.username,
            email: user.email,
            firstName: user.firstname,
            lastName: user.lastname,
            enabled: true,
            credentials: [
                {
                    type: 'password',
                    value: user.password,
                    temporary: false,
                },
            ],
        },
        {
            headers: { Authorization: `Bearer ${token}` },
        }
    );

    const { data } = await axios.get(
        `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/users?username=${user.username}`,
        {
            headers: { Authorization: `Bearer ${token}` },
        }
    );

    return data[0].id;
};

// Assign role ke user
const assignRole = async (userId: string, roleName: string, token: string): Promise<void> => {
    const { data: roles } = await axios.get(
        `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/roles`,
        {
            headers: { Authorization: `Bearer ${token}` },
        }
    );

    const role = roles.find((r: any) => r.name === roleName);
    if (!role) throw new Error(`Role "${roleName}" not found in Keycloak`);

    await axios.post(
        `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/users/${userId}/role-mappings/realm`,
        [role],
        {
            headers: { Authorization: `Bearer ${token}` },
        }
    );
};

// Data user yang ingin di-seed
const users: SeedUser[] = [
    {
        username: 'admin1',
        email: 'admin1@gmail.com',
        password: 'password123',
        firstname: 'Admin',
        lastname: 'Satu',
        role: 'admin',
    },
    {
        username: 'sales1',
        email: 'sales1@gmail.com',
        password: 'password123',
        firstname: 'Sales',
        lastname: 'Satu',
        role: 'sales',
    },
    {
        username: 'sales2',
        email: 'sales2@gmail.com',
        password: 'password123',
        firstname: 'Sales',
        lastname: 'Dua',
        role: 'sales',
    },
];

// Fungsi utama untuk seeding user
export const seedUsers = async (): Promise<void> => {
    const token = await getAdminToken();

    for (const user of users) {
        const userId = await createUserInKeycloak(user, token);
        await assignRole(userId, user.role, token);

        const hashedPassword = await bcrypt.hash(user.password, 10);

        await prisma.user.upsert({
            where: { id: userId },
            update: {},
            create: {
                id: userId,
                username: user.username,
                email: user.email,
                firstname: user.firstname,
                lastname: user.lastname,
                password: hashedPassword,
                role: user.role,
            },
        });

        console.log(`✅ Success seed user ${user.role}: ${user.username}`);
    }
};


// const axios = require('axios');
// const qs = require('qs');
// const bcrypt = require('bcrypt');
// const prisma = require('../../src/prisma/PrismaClient.js');
// const {
//     KEYCLOAK_TOKEN_URL,
//     KEYCLOAK_ADMIN_URL,
//     KEYCLOAK_REALM,
//     CLIENT_ID,
//     CLIENT_SECRET,
// } = require('../../config/keycloak.js');

// // Ambil token admin Keycloak
// const getAdminToken = async () => {
//     const tokenParams = qs.stringify({
//         grant_type: 'client_credentials',
//         client_id: CLIENT_ID,
//         client_secret: CLIENT_SECRET,
//     });

//     const { data } = await axios.post(KEYCLOAK_TOKEN_URL, tokenParams, {
//         headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
//     });

//     return data.access_token;
// };

// // Buat user di Keycloak
// const createUserInKeycloak = async (user, token) => {
//     const checkUser = await axios.get(
//         `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/users?username=${user.username}`,
//         { headers: { Authorization: `Bearer ${token}` } }
//     );

//     if (checkUser.data.length > 0) {
//         console.log(`⚠️  User ${user.username} found in Keycloak`);
//         return checkUser.data[0].id;
//     }

//     await axios.post(
//         `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/users`,
//         {
//             username: user.username,
//             email: user.email,
//             firstName: user.firstname,
//             lastName: user.lastname,
//             enabled: true,
//             credentials: [
//                 {
//                     type: 'password',
//                     value: user.password,
//                     temporary: false,
//                 },
//             ],
//         },
//         {
//             headers: { Authorization: `Bearer ${token}` },
//         }
//     );

//     const { data } = await axios.get(
//         `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/users?username=${user.username}`,
//         {
//             headers: { Authorization: `Bearer ${token}` },
//         }
//     );

//     return data[0].id;
// };

// // Assign role ke user di Keycloak
// const assignRole = async (userId, roleName, token) => {
//     const { data: roles } = await axios.get(
//         `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/roles`,
//         {
//             headers: { Authorization: `Bearer ${token}` },
//         }
//     );

//     const role = roles.find((r) => r.name === roleName);
//     if (!role) throw new Error(`Role "${roleName}" not found in Keycloak`);

//     await axios.post(
//         `${KEYCLOAK_ADMIN_URL}/admin/realms/${KEYCLOAK_REALM}/users/${userId}/role-mappings/realm`,
//         [role],
//         {
//             headers: { Authorization: `Bearer ${token}` },
//         }
//     );
// };

// // Data user yang ingin dibuat
// const users = [
//     {
//         username: 'admin1',
//         email: 'admin1@gmail.com',
//         password: 'password123',
//         firstname: 'Admin',
//         lastname: 'Satu',
//         role: 'admin',
//     },
//     {
//         username: 'sales1',
//         email: 'sales1@gmail.com',
//         password: 'password123',
//         firstname: 'Sales',
//         lastname: 'Satu',
//         role: 'sales',
//     },
//     {
//         username: 'sales2',
//         email: 'sales2@gmail.com',
//         password: 'password123',
//         firstname: 'Sales',
//         lastname: 'Dua',
//         role: 'sales',
//     },
// ];

// // Fungsi utama yang bisa dipanggil dari seeder utama
// const seedUsers = async () => {
//     const token = await getAdminToken();

//     for (const user of users) {
//         const userId = await createUserInKeycloak(user, token);
//         await assignRole(userId, user.role, token);

//         const hashedPassword = await bcrypt.hash(user.password, 10);

//         await prisma.user.upsert({
//             where: { id: userId },
//             update: {},
//             create: {
//                 id: userId,
//                 username: user.username,
//                 email: user.email,
//                 firstname: user.firstname,
//                 lastname: user.lastname,
//                 password: hashedPassword,
//                 role: user.role,
//             },
//         });

//         console.log(`✅ Success seed user ${user.role}: ${user.username}`);
//     }
// };

// module.exports = { seedUsers };