Add Privacy Policy related improvements

various thing to make sure we're GDPR, et al compliant
2020-12-25 17:29:01 +11:00
parent 6623939f78
commit 7d262e9f58
51 changed files with 1480 additions and 95 deletions
--- a/api/src/services/subjectAccessRequests/subjectAccessRequests.js
+++ b/api/src/services/subjectAccessRequests/subjectAccessRequests.js
@@ -0,0 +1,42 @@
+import { db } from 'src/lib/db'
+import { requireAuth } from 'src/lib/auth'
+import { foreignKeyReplacement } from 'src/services/helpers'
+
+export const subjectAccessRequests = () => {
+  requireAuth({ role: 'admin' })
+  return db.subjectAccessRequest.findMany()
+}
+
+export const subjectAccessRequest = ({ id }) => {
+  requireAuth({ role: 'admin' })
+  return db.subjectAccessRequest.findOne({
+    where: { id },
+  })
+}
+
+export const createSubjectAccessRequest = ({ input }) => {
+  requireAuth({ role: 'admin' })
+  return db.subjectAccessRequest.create({
+    data: foreignKeyReplacement(input),
+  })
+}
+
+export const updateSubjectAccessRequest = ({ id, input }) => {
+  requireAuth({ role: 'admin' })
+  return db.subjectAccessRequest.update({
+    data: foreignKeyReplacement(input),
+    where: { id },
+  })
+}
+
+export const deleteSubjectAccessRequest = ({ id }) => {
+  requireAuth({ role: 'admin' })
+  return db.subjectAccessRequest.delete({
+    where: { id },
+  })
+}
+
+export const SubjectAccessRequest = {
+  user: (_obj, { root }) =>
+    db.subjectAccessRequest.findOne({ where: { id: root.id } }).user(),
+}