social-reporting-tool/v2/server/db/users.ts

import { sql } from './client.js';

export interface UserRow {
  id: string;
  azure_oid: string;
  email: string;
  display_name: string;
  is_super_admin: boolean;
  password_hash: string | null;
  created_at: Date;
  last_login_at: Date | null;
}

export async function getUserById(id: string): Promise<UserRow | null> {
  const [row] = await sql<UserRow[]>`SELECT * FROM users WHERE id = ${id}`;
  return row ?? null;
}

export async function getUserByOid(oid: string): Promise<UserRow | null> {
  const [row] = await sql<UserRow[]>`SELECT * FROM users WHERE azure_oid = ${oid}`;
  return row ?? null;
}

export async function getUserByEmail(email: string): Promise<UserRow | null> {
  const [row] = await sql<UserRow[]>`SELECT * FROM users WHERE email = ${email}`;
  return row ?? null;
}

export interface UpsertSsoUserInput {
  oid: string;
  email: string;
  display_name: string;
}

export async function upsertSsoUser(input: UpsertSsoUserInput): Promise<UserRow> {
  const [row] = await sql<UserRow[]>`
    INSERT INTO users (azure_oid, email, display_name, last_login_at)
    VALUES (${input.oid}, ${input.email}, ${input.display_name}, NOW())
    ON CONFLICT (azure_oid) DO UPDATE SET
      email = EXCLUDED.email,
      display_name = EXCLUDED.display_name,
      last_login_at = NOW()
    RETURNING *
  `;
  if (!row) throw new Error('upsertSsoUser: no row returned');
  return row;
}

export async function setSuperAdmin(userId: string, isSuper: boolean): Promise<UserRow> {
  const [row] = await sql<UserRow[]>`
    UPDATE users SET is_super_admin = ${isSuper} WHERE id = ${userId} RETURNING *
  `;
  if (!row) throw new Error('setSuperAdmin: user not found');
  return row;
}

export async function listAllUsers(): Promise<UserRow[]> {
  return sql<UserRow[]>`SELECT * FROM users ORDER BY created_at DESC`;
}