chore: add backend functionality

AntBush · AntBush · commit a208141133ed · 2025-02-05T12:51:06.000-05:00
diff --git a/app/backend/lib/excel_import/template_nine.ts b/app/backend/lib/excel_import/template_nine.ts
@@ -509,6 +509,60 @@ templateNine.get(
   }
 );
 
+templateNine.post(
+  '/api/template-nine/rfi/applicant/:id/:rfiNumber',
+  limiter,
+  async (req, res) => {
+    const authRole = getAuthRole(req);
+    const pgRole = authRole?.pgRole;
+    const isRoleAuthorized = pgRole === 'ccbc_auth_user';
+    if (!isRoleAuthorized) {
+      return res.status(404).end();
+    }
+
+    const { id, rfiNumber } = req.params;
+
+    const applicationId = parseInt(id, 10);
+
+    if (!id || !rfiNumber || Number.isNaN(applicationId)) {
+      return res.status(400).json({ error: 'Invalid parameters' });
+    }
+    const errorList = [];
+    const form = formidable(commonFormidableConfig);
+
+    let files;
+    try {
+      files = await parseForm(form, req);
+    } catch (err) {
+      errorList.push({ level: 'file', error: err });
+      return res.status(400).json(errorList).end();
+    }
+    const filename = Object.keys(files)[0];
+    const uploadedFilesArray = files[filename] as Array<File>;
+    const uploaded = uploadedFilesArray?.[0];
+
+    if (!uploaded) {
+      return res.status(400).end();
+    }
+    const buf = fs.readFileSync(uploaded.filepath);
+    const wb = XLSX.read(buf);
+    let templateNineData;
+    try {
+      templateNineData = await loadTemplateNineData(wb);
+    } catch (err) {
+      errorList.push({ level: 'file', error: err });
+      return res.status(400).json(errorList).end();
+    }
+
+    if (templateNineData) {
+      return res.status(200).json({ templateNineData });
+    }
+    return res
+      .status(400)
+      .json({ error: 'Unknown error while parsing template nine' });
+  }
+);
+
 templateNine.post(
   '/api/template-nine/rfi/:id/:rfiNumber',
   limiter,
@@ -518,7 +572,8 @@ templateNine.post(
     const isRoleAuthorized =
       pgRole === 'ccbc_admin' ||
       pgRole === 'super_admin' ||
-      pgRole === 'ccbc_analyst';
+      pgRole === 'ccbc_analyst' ||
+      pgRole === 'ccbc_auth_user';
 
     if (!isRoleAuthorized) {
       return res.status(404).end();
diff --git a/app/lib/theme/widgets/FileWidget.tsx b/app/lib/theme/widgets/FileWidget.tsx
@@ -72,6 +72,8 @@ const FileWidget: React.FC<FileWidgetProps> = ({
   const { setTemplateData, rfiNumber } = formContext;
   const { showToast, hideToast } = useToast();
 
+  const isApplicantPage = router.pathname.includes('applicant');
+
   useEffect(() => {
     if (rawErrors?.length > 0) {
       setErrors([{ error: 'rjsf_validation' }]);
@@ -109,25 +111,50 @@ const FileWidget: React.FC<FileWidgetProps> = ({
                 });
               }
             } else if (templateNumber === 9) {
-              const response = await fetch(
-                `/api/template-nine/rfi/${formId}/${rfiNumber}`,
-                {
-                  method: 'POST',
-                  body: fileFormData,
+              if (isApplicantPage) {
+                // fetch for applicant and handle as expected
+                const response = await fetch(
+                  `/api/template-nine/rfi/applicant/${formId}/${rfiNumber}`,
+                  {
+                    method: 'POST',
+                    body: fileFormData,
+                  }
+                );
+                if (response.ok) {
+                  const data = await response.json();
+                  setTemplateData({
+                    templateNumber,
+                    data: data.templateNineData,
+                    templateName: file.name,
+                  });
+                } else {
+                  isTemplateValid = false;
+                  setTemplateData({
+                    templateNumber,
+                    error: true,
+                  });
                 }
-              );
-              if (response.ok) {
-                await response.json();
-                setTemplateData({
-                  templateNumber,
-                  templateName: file.name,
-                });
               } else {
-                isTemplateValid = false;
-                setTemplateData({
-                  templateNumber,
-                  error: true,
-                });
+                const response = await fetch(
+                  `/api/template-nine/rfi/${formId}/${rfiNumber}`,
+                  {
+                    method: 'POST',
+                    body: fileFormData,
+                  }
+                );
+                if (response.ok) {
+                  await response.json();
+                  setTemplateData({
+                    templateNumber,
+                    templateName: file.name,
+                  });
+                } else {
+                  isTemplateValid = false;
+                  setTemplateData({
+                    templateNumber,
+                    error: true,
+                  });
+                }
               }
             }
           } catch (error) {
diff --git a/app/pages/applicantportal/form/[id]/rfi/[applicantRfiId].tsx b/app/pages/applicantportal/form/[id]/rfi/[applicantRfiId].tsx
@@ -349,7 +349,11 @@ const ApplicantRfiPage = ({
             onChange={handleChange}
             onSubmit={handleSubmit}
             noValidate
-            formContext={{ setTemplateData, skipUnsavedWarning: true }}
+            formContext={{
+              setTemplateData,
+              skipUnsavedWarning: true,
+              rfiNumber,
+            }}
           >
             <Button>Save</Button>
           </FormBase>
diff --git a/db/deploy/tables/application_form_template_9_data_002_add_auth_user_role_permission.sql b/db/deploy/tables/application_form_template_9_data_002_add_auth_user_role_permission.sql
@@ -0,0 +1,16 @@
+-- Deploy ccbc:tables/application_form_template_9_data_002_add_auth_user_role_permission to pg
+
+begin;
+
+do
+$grant$
+begin
+
+perform ccbc_private.grant_permissions('select',  'application_form_template_9_data', 'ccbc_auth_user');
+perform ccbc_private.grant_permissions('insert',  'application_form_template_9_data', 'ccbc_auth_user');
+perform ccbc_private.grant_permissions('update',  'application_form_template_9_data', 'ccbc_auth_user');
+
+end
+$grant$;
+
+commit;
diff --git a/db/revert/tables/application_form_template_9_data_002_add_auth_user_role_permission.sql b/db/revert/tables/application_form_template_9_data_002_add_auth_user_role_permission.sql
@@ -0,0 +1,9 @@
+-- Revert ccbc:tables/application_form_template_9_data_002_add_auth_user_role_permission from pg
+
+begin;
+
+revoke select on ccbc_public.application_form_template_9_data from ccbc_auth_user;
+revoke insert on ccbc_public.application_form_template_9_data from ccbc_auth_user;
+revoke update on ccbc_public.application_form_template_9_data from ccbc_auth_user;
+
+commit;
diff --git a/db/sqitch.plan b/db/sqitch.plan
@@ -801,3 +801,4 @@ tables/application_map_data 2025-01-28T17:53:59Z Rafael Solorzano <61289255+rafa
 @1.235.0 2025-02-03T16:58:59Z CCBC Service Account <ccbc@button.is> # release v1.235.0
 @1.235.1 2025-02-03T22:52:39Z CCBC Service Account <ccbc@button.is> # release v1.235.1
 @1.236.0 2025-02-04T16:28:48Z CCBC Service Account <ccbc@button.is> # release v1.236.0
+tables/application_form_template_9_data_002_add_auth_user_role_permission 2025-02-05T15:11:34Z Anthony Bushara <anthony@button.is> # Adds permissions for an applicant to insert and read template 9 data

-Original file line number
+Diff line change
 @1.235.0 2025-02-03T16:58:59Z CCBC Service Account <[email protected]> # release v1.235.0
 @1.235.1 2025-02-03T22:52:39Z CCBC Service Account <[email protected]> # release v1.235.1
 @1.236.0 2025-02-04T16:28:48Z CCBC Service Account <[email protected]> # release v1.236.0
 +tables/application_form_template_9_data_002_add_auth_user_role_permission 2025-02-05T15:11:34Z Anthony Bushara <[email protected]> # Adds permissions for an applicant to insert and read template 9 data