598c3215e1
- MAI-018 Bidding module: entities, services, controllers, DTOs - Opportunity, Tender, Proposal, Vendor management - Bid calendar, documents, analytics - Earned Value Management: Curva S, SPI/CPI reports - earned-value.service.ts with EV, PV, AC calculations - earned-value.controller.ts with 9 endpoints - DTOs for modules: assets, contracts, documents, purchase, quality - 28 new DTO files with class-validator decorators - Storage module: service and controller implementation - Multi-provider support (local, S3, GCS, Azure) - File management, upload/download URLs - Multiple entity and service fixes Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
72 lines
1.9 KiB
TypeScript
72 lines
1.9 KiB
TypeScript
/**
|
|
* PermissionChange Entity
|
|
* Access control change auditing
|
|
* Compatible with erp-core permission-change.entity
|
|
*
|
|
* @module Audit
|
|
*/
|
|
|
|
import {
|
|
Entity,
|
|
PrimaryGeneratedColumn,
|
|
Column,
|
|
Index,
|
|
} from 'typeorm';
|
|
|
|
export type PermissionChangeType = 'role_assigned' | 'role_revoked' | 'permission_granted' | 'permission_revoked';
|
|
export type PermissionScope = 'global' | 'tenant' | 'branch';
|
|
|
|
@Entity({ name: 'permission_changes', schema: 'audit' })
|
|
export class PermissionChange {
|
|
@PrimaryGeneratedColumn('uuid')
|
|
id: string;
|
|
|
|
@Index()
|
|
@Column({ name: 'tenant_id', type: 'uuid' })
|
|
tenantId: string;
|
|
|
|
@Column({ name: 'changed_by', type: 'uuid' })
|
|
changedBy: string;
|
|
|
|
@Index()
|
|
@Column({ name: 'target_user_id', type: 'uuid' })
|
|
targetUserId: string;
|
|
|
|
@Column({ name: 'target_user_email', type: 'varchar', length: 255, nullable: true })
|
|
targetUserEmail: string;
|
|
|
|
@Column({ name: 'change_type', type: 'varchar', length: 30 })
|
|
changeType: PermissionChangeType;
|
|
|
|
@Column({ name: 'role_id', type: 'uuid', nullable: true })
|
|
roleId: string;
|
|
|
|
@Column({ name: 'role_code', type: 'varchar', length: 50, nullable: true })
|
|
roleCode: string;
|
|
|
|
@Column({ name: 'permission_id', type: 'uuid', nullable: true })
|
|
permissionId: string;
|
|
|
|
@Column({ name: 'permission_code', type: 'varchar', length: 100, nullable: true })
|
|
permissionCode: string;
|
|
|
|
@Column({ name: 'branch_id', type: 'uuid', nullable: true })
|
|
branchId: string;
|
|
|
|
@Column({ name: 'scope', type: 'varchar', length: 30, nullable: true })
|
|
scope: PermissionScope;
|
|
|
|
@Column({ name: 'previous_roles', type: 'text', array: true, nullable: true })
|
|
previousRoles: string[];
|
|
|
|
@Column({ name: 'previous_permissions', type: 'text', array: true, nullable: true })
|
|
previousPermissions: string[];
|
|
|
|
@Column({ name: 'reason', type: 'text', nullable: true })
|
|
reason: string;
|
|
|
|
@Index()
|
|
@Column({ name: 'changed_at', type: 'timestamptz', default: () => 'CURRENT_TIMESTAMP' })
|
|
changedAt: Date;
|
|
}
|