renaud/espace-paie-odentas
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
espace-paie-odentas/app/api/staff/salaries/documents/upload/route.ts

127 lines
3.9 KiB
TypeScript
Raw Blame History

import { NextRequest, NextResponse } from "next/server";
import { S3Client, PutObjectCommand } from "@aws-sdk/client-s3";
import { createSbServiceRole } from "@/lib/supabaseServer";
const s3Client = new S3Client({
region: process.env.AWS_REGION || "eu-west-3",
credentials: {
accessKeyId: process.env.AWS_ACCESS_KEY_ID || "",
secretAccessKey: process.env.AWS_SECRET_ACCESS_KEY || "",
},
});
const BUCKET_NAME = (process.env.AWS_S3_BUCKET || "odentas-docs").trim();
// Types de fichiers autorisés et leurs tailles max
const ALLOWED_FILE_TYPES = {
'image/jpeg': 10 * 1024 * 1024, // 10MB
'image/jpg': 10 * 1024 * 1024, // 10MB
'image/png': 10 * 1024 * 1024, // 10MB
'application/pdf': 10 * 1024 * 1024 // 10MB
};
const FILE_TYPE_NAMES = {
piece_identite: "piece-identite",
attestation_secu: "attestation-secu",
rib: "rib",
medecine_travail: "medecine-travail",
autre: "autre",
contrat_travail: "contrat-travail",
diplome: "diplome",
justificatif: "justificatif"
};
export async function POST(req: NextRequest) {
try {
const formData = await req.formData();
const file = formData.get('file') as File;
const matricule = formData.get('matricule') as string;
const type = formData.get('type') as string;
if (!file) {
return NextResponse.json({ error: "Aucun fichier fourni" }, { status: 400 });
}
if (!matricule) {
return NextResponse.json({ error: "Matricule du salarié manquant" }, { status: 400 });
}
if (!type || !FILE_TYPE_NAMES[type as keyof typeof FILE_TYPE_NAMES]) {
return NextResponse.json({ error: "Type de fichier invalide" }, { status: 400 });
}
// Vérifier que l'utilisateur est staff
const supabase = createSbServiceRole();
// Vérifier que le salarié existe
const { data: salarie, error: salarieError } = await supabase
.from('salaries')
.select('id, code_salarie')
.eq('code_salarie', matricule)
.single();
if (salarieError || !salarie) {
return NextResponse.json({ error: "Salarié non trouvé" }, { status: 404 });
}
// Vérifier le type de fichier
if (!ALLOWED_FILE_TYPES[file.type as keyof typeof ALLOWED_FILE_TYPES]) {
return NextResponse.json({
error: "Type de fichier non autorisé. Seuls les fichiers PDF, JPG et PNG sont acceptés"
}, { status: 400 });
}
// Vérifier la taille du fichier
const maxSize = ALLOWED_FILE_TYPES[file.type as keyof typeof ALLOWED_FILE_TYPES];
if (file.size > maxSize) {
return NextResponse.json({
error: `Fichier trop volumineux. Taille maximum autorisée : ${maxSize / (1024 * 1024)}MB`
}, { status: 400 });
}
// Générer un nom de fichier unique
const fileExtension = file.name.split('.').pop() || '';
const fileName = `${FILE_TYPE_NAMES[type as keyof typeof FILE_TYPE_NAMES]}-${Date.now()}.${fileExtension}`;
const s3Key = `justif-salaries/${matricule}/${fileName}`;
// Convertir le fichier en buffer
const buffer = Buffer.from(await file.arrayBuffer());
// Upload vers S3
const uploadCommand = new PutObjectCommand({
Bucket: BUCKET_NAME,
Key: s3Key,
Body: buffer,
ContentType: file.type,
Metadata: {
'matricule': matricule,
'type': type,
'original-filename': file.name,
'uploaded-at': new Date().toISOString(),
'uploaded-by': 'staff'
}
});
await s3Client.send(uploadCommand);
// Construire l'URL du fichier
const fileUrl = `https://${BUCKET_NAME}.s3.eu-west-3.amazonaws.com/${s3Key}`;
return NextResponse.json({
success: true,
key: s3Key,
url: fileUrl,
filename: fileName,
originalName: file.name,
type: type,
matricule: matricule
});
} catch (error) {
console.error("Erreur upload S3 (staff):", error);
return NextResponse.json(
{ error: "Erreur lors du téléchargement du fichier" },
{ status: 500 }
);
}
}
Reference in a new issue View git blame Copy permalink