MALIO-DEV/Lesstime
3
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases 32 Wiki Activity
Files
a547fd38c23d0581d167970ae94b6b7abf9dd387
Lesstime/frontend/app/middleware/auth.global.ts
T
Matthieu 144a8a4685 feat(client-portal) : portal front + client account admin (phases 1-2 front) 
LST-69 (3.2) front. Client portal UI on the phase-1 backend.

- New frontend/modules/client-portal/ layer: /portal (project cards from the
  client's allowedProjects via /me), /portal/projects/[id] (tickets list,
  detail modal, create modal with document upload), client-tickets service +
  DTO, CT-XXX formatting.
- Front tenancy: auth.global.ts redirects a pure ROLE_CLIENT to /portal and
  blocks internal routes; portal pages open to any authenticated user.
- Admin: UserDrawer manages client accounts (ROLE_CLIENT + client +
  allowedProjects); new "Tickets client" admin tab (list, filters, status
  change with required comment on reject, detail modal).
- Kanban/my-tasks: client-ticket icon + tooltip when task.clientTicket is set
  (data via task:read, no extra call). TaskDocument upload generalized with a
  clientTicketId prop. getContent uses native fetch (text response).
- i18n portal/clientTicket keys; sidebar /portal item (module client-portal).

nuxt build passes; /portal routes present, existing routes intact.
2026-06-21 01:03:58 +02:00

47 lines
1.6 KiB
TypeScript
Raw Blame History

export default defineNuxtRouteMiddleware(async (to) => {
const auth = useAuthStore()
const isLogin = to.path === '/login'
if (!auth.checked) {
await auth.ensureSession()
}
if (!isLogin && !auth.isAuthenticated) {
return navigateTo('/login')
}
if (isLogin && auth.isAuthenticated) {
return navigateTo('/')
}
// Cloisonnement portail client : un utilisateur ROLE_CLIENT "pur" (a ROLE_CLIENT
// mais PAS ROLE_USER) n'a accès qu'aux pages /portal. Toute autre route interne
// est redirigée vers /portal. Les ROLE_ADMIN / ROLE_USER ne sont pas concernés
// (ils peuvent aussi visiter /portal pour prévisualiser).
if (auth.isAuthenticated && !isLogin) {
const roles = auth.user?.roles ?? []
const isPureClient = roles.includes('ROLE_CLIENT') && !roles.includes('ROLE_USER')
if (isPureClient) {
const isPortalRoute = to.path === '/portal' || to.path.startsWith('/portal/')
if (!isPortalRoute) {
return navigateTo('/portal')
}
}
}
const { loaded: sidebarLoaded, loadSidebar, resetSidebar } = useSidebar()
const { loaded: modulesLoaded, loadModules, resetModules } = useModules()
if (auth.isAuthenticated) {
await Promise.all([
sidebarLoaded.value ? Promise.resolve() : loadSidebar(),
modulesLoaded.value ? Promise.resolve() : loadModules(),
])
} else {
// Logout / session expirée : purge l'état partagé pour le prochain login.
resetSidebar()
resetModules()
}
})
Reference in New Issue View Git Blame Copy Permalink