MNPC/Rasadyar_Inspection_Back
9
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update: now admin can see other admins

Browse Source
This commit is contained in:
Arman Tarhani
2026-02-01 15:17:13 +03:30
parent 90dba52625
commit e4f1af8569
1 changed files with 7 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
routes/userRoutes.js
View File

@@ -86,10 +86,13 @@ router.get("/user_profile/:userId", async (req, res) => {
router.get("/users/:province", async (req, res) => { router.get("/users/:province", async (req, res) => {
try { try {
const province = req.params.province; const province = req.params.province;
const requestingUser = await User.findById(req.userId);
const users = (await User.find({ province: province })).filter( let users = await User.find({ province });
(item) => !item.permissions.includes("admin")
); if (!requestingUser?.permissions?.includes("admin")) {
users = users.filter((item) => !item.permissions?.includes("admin"));
}
res.status(200).json(users); res.status(200).json(users);
} catch (error) { } catch (error) {
@@ -125,7 +128,7 @@ router.put("/user/:userId", async (req, res) => {
const updatedUser = await User.findByIdAndUpdate( const updatedUser = await User.findByIdAndUpdate(
userId, userId,
{ mobile, password, fullname, pic, province, permissions }, { mobile, password, fullname, pic, province, permissions },
{ new: true } // Set { new: true } to return the updated document { new: true }, // Set { new: true } to return the updated document
); );
if (!updatedUser) { if (!updatedUser) {