diff --git a/src/modules/user_certificate/user_certificate.contoller.ts b/src/modules/user_certificate/user_certificate.contoller.ts index 9cf9638..aea0c75 100644 --- a/src/modules/user_certificate/user_certificate.contoller.ts +++ b/src/modules/user_certificate/user_certificate.contoller.ts @@ -66,11 +66,13 @@ export class UserCertificateController { request, ); } + @ApiOkResponse({ description: 'Users status for courses fetched successfully', }) @ApiInternalServerErrorResponse({ description: 'Internal Server Error.' }) @ApiBadRequestResponse({ description: 'Bad Request.' }) + @UseGuards(TenantGuard) @Post('status/search') async searchUsersCourses( @Body() searchObj: Record, @@ -83,6 +85,7 @@ export class UserCertificateController { request, ); } + //import user importUserDataForCertificate @ApiOkResponse({ description: 'User added for course successfully' }) @ApiInternalServerErrorResponse({ description: 'Internal Server Error.' }) diff --git a/src/modules/user_certificate/user_certificate.service..ts b/src/modules/user_certificate/user_certificate.service..ts index 23d0dd3..db14a7f 100644 --- a/src/modules/user_certificate/user_certificate.service..ts +++ b/src/modules/user_certificate/user_certificate.service..ts @@ -194,14 +194,21 @@ export class UserCertificateService { } } async searchUsersCourses(searchObj, response, request) { - const filters = searchObj.filters; + const filters = searchObj.filters || {}; let apiId = 'api.get.searchList'; + // Extract tenantId from request (validated by TenantGuard) + const tenantId = request.tenantId; try { const queryBuilder = this.userCourseCertificateRepository.createQueryBuilder( 'UserCourseCertificate', ); + // Always filter by tenantId from header + queryBuilder.andWhere('UserCourseCertificate.tenantId = :tenantId', { + tenantId: tenantId, + }); + // Dynamically build query based on filters object Object.keys(filters).forEach((key) => { const value = filters[key];