nathansstm
/
startersaas.pro-node-api-main


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778
							// Modified part of routes.js file

import passport from "passport";
import { authenticateSuper, authenticateUsers } from "./common/passport.js";

import accountRouter from "./api/accounts/account.router.js";
import authRouter from "./api/auth/auth.router.js";
import subscriptionRouter from "./api/subscriptions/subscription.router.js";
import teamRouter from "./api/teams/team.router.js";
import userRouter from "./api/users/user.router.js";
import webhookRouter from "./api/webhooks/webhook.router.js";
import workspaceRouter from "./api/workspaces/workspace.router.js";
import publicRouter from "./api/public/public.router.js";
import leadsRouter from "./api/leads/leads.router.js";
import tokensRouter from "./api/tokens/tokens.router.js";

import ROLE from "./api/users/role.model.js";
import authorizeRequest from "./middlewares/authorizeRequest.middleware.js";
import { setLang } from "./middlewares/lang.middleware.js";
import authorizeSubscription from "./middlewares/authorizeSubscription.middleware.js";

// APP ROUTES

export default function routes(app) {
  // API ROUTES
  app.use("/api/v1/auth", authRouter);
  app.use(
    "/api/v1/users",
    authenticateUsers(), // Now accepts both regular and super admin JWT
    setLang(),
    userRouter
  );
  
  // Modified to use Super Admin authentication for workspaces
  app.use(
    "/api/v1/workspaces",
    authenticateSuper(), // Using Super Admin authentication here
    setLang(),
    workspaceRouter
  );
  
  app.use(
    "/api/v1/accounts",
    authenticateUsers(), // Now accepts both regular and super admin JWT
    setLang(),
    authorizeRequest([ROLE.ADMIN, ROLE.SUPER_ADMIN]), // Modified to include SUPER_ADMIN
    accountRouter
  );
  app.use("/api/v1/stripe/webhook", webhookRouter);
  app.use("/api/v1/stripe", subscriptionRouter);
  app.use(
    "/api/v1/teams",
    authenticateUsers(), // Now accepts both regular and super admin JWT
    setLang(),
    authorizeRequest([ROLE.ADMIN]),
    teamRouter
  );
  
  // Leads and tokens routes with subscription check
  app.use(
    "/api/v1/leads",
    authenticateUsers(), // Now accepts both regular and super admin JWT
    setLang(),
    authorizeSubscription(),
    leadsRouter
  );

  app.use(
    "/api/v1/tokens",
    authenticateUsers(), // Now accepts both regular and super admin JWT
    setLang(),
    authorizeSubscription(),
    tokensRouter
  );
  
  // Public API routes - no authentication required
  app.use("/api/v1/public", setLang(), publicRouter);
}