IwateKyle · September 11, 2023 03:35 · IwateKyle · Sep 11, 2023
diff --git a/gistfile1.txt b/gistfile1.txt
 onRecordBeforeCreateRequest((e) => {
 	const requestInfo = $apis.requestInfo(e.httpContext);

 	// Update createdBy and updatedBy fields
 	if (requestInfo.authRecord !== null) {
 		e.record.set(
 			'createdBy',
 			`${requestInfo.authRecord.collection().name} ${requestInfo.authRecord.id}`
 		);
 		e.record.set(
 			'updatedBy',
 			`${requestInfo.authRecord.collection().name} ${requestInfo.authRecord.id}`
 		);
 	} else if (requestInfo.admin !== null) {
 		if (!requestInfo.data.createdBy) {
 			e.record.set('createdBy', `${requestInfo.admin.tableName()} ${requestInfo.admin.id}`);
 		}
 		if (!requestInfo.data.updatedBy) {
 			e.record.set('updatedBy', `${requestInfo.admin.tableName()} ${requestInfo.admin.id}`);
 		}
 	} else {
 		e.record.set('createdBy', 'not authenticated');
 		e.record.set('updatedBy', 'not authenticated');
 	}
 });

 onRecordBeforeUpdateRequest((e) => {
 	const requestInfo = $apis.requestInfo(e.httpContext);
 	const currentRecord = $app.dao().findRecordById(e.record.collection().name, e.record.id);

 	// Update createdBy and updatedBy fields
 	if (requestInfo.authRecord !== null) {
 		// For regular users, overrides whatever their request had. Theses fields should not be editable by a regular user.
 		e.record.set('createdBy', currentRecord.get('createdBy'));
 		e.record.set(
 			'updatedBy',
 			`${requestInfo.authRecord.collection().name} ${requestInfo.authRecord.id}`
 		);
 	} else if (requestInfo.admin !== null) {
 		// For admins, only update the field if the request doesn't edit it
 		if (!requestInfo.data.createdBy) {
 			e.record.set('updatedBy', `${requestInfo.admin.tableName()} ${requestInfo.admin.id}`);
 		}
 	} else {
 		// For unauthenticated users, overrides whatever their request had. Theses fields should not be editable by a regular user.
 		e.record.set('createdBy', currentRecord.get('createdBy'));
 		e.record.set('updatedBy', 'not authenticated');
 	}
 });
	onRecordBeforeCreateRequest((e) => {
	const requestInfo = $apis.requestInfo(e.httpContext);

	// Update createdBy and updatedBy fields
	if (requestInfo.authRecord !== null) {
	e.record.set(
	'createdBy',
	`${requestInfo.authRecord.collection().name} ${requestInfo.authRecord.id}`
	);
	e.record.set(
	'updatedBy',
	`${requestInfo.authRecord.collection().name} ${requestInfo.authRecord.id}`
	);
	} else if (requestInfo.admin !== null) {
	if (!requestInfo.data.createdBy) {
	e.record.set('createdBy', `${requestInfo.admin.tableName()} ${requestInfo.admin.id}`);
	}
	if (!requestInfo.data.updatedBy) {
	e.record.set('updatedBy', `${requestInfo.admin.tableName()} ${requestInfo.admin.id}`);
	}
	} else {
	e.record.set('createdBy', 'not authenticated');
	e.record.set('updatedBy', 'not authenticated');
	}
	});

	onRecordBeforeUpdateRequest((e) => {
	const requestInfo = $apis.requestInfo(e.httpContext);
	const currentRecord = $app.dao().findRecordById(e.record.collection().name, e.record.id);

	// Update createdBy and updatedBy fields
	if (requestInfo.authRecord !== null) {
	// For regular users, overrides whatever their request had. Theses fields should not be editable by a regular user.
	e.record.set('createdBy', currentRecord.get('createdBy'));
	e.record.set(
	'updatedBy',
	`${requestInfo.authRecord.collection().name} ${requestInfo.authRecord.id}`
	);
	} else if (requestInfo.admin !== null) {
	// For admins, only update the field if the request doesn't edit it
	if (!requestInfo.data.createdBy) {
	e.record.set('updatedBy', `${requestInfo.admin.tableName()} ${requestInfo.admin.id}`);
	}
	} else {
	// For unauthenticated users, overrides whatever their request had. Theses fields should not be editable by a regular user.
	e.record.set('createdBy', currentRecord.get('createdBy'));
	e.record.set('updatedBy', 'not authenticated');
	}
	});