Merged develop into feature/ai-detection

src/pages/(admin)/BatchCodeGenerator.tsx

@@ -1,248 +1,366 @@
 import Button from "@/components/Low/Button";
 import Checkbox from "@/components/Low/Checkbox";
-import {PERMISSIONS} from "@/constants/userPermissions";
+import { PERMISSIONS } from "@/constants/userPermissions";
 import useUsers from "@/hooks/useUsers";
-import {Type, User} from "@/interfaces/user";
-import {USER_TYPE_LABELS} from "@/resources/user";
+import { Type, User } from "@/interfaces/user";
+import { USER_TYPE_LABELS } from "@/resources/user";
 import axios from "axios";
 import clsx from "clsx";
-import {capitalize, uniqBy} from "lodash";
+import { capitalize, uniqBy } from "lodash";
 import moment from "moment";
-import {useEffect, useState} from "react";
+import { useEffect, useState } from "react";
 import ReactDatePicker from "react-datepicker";
-import {toast} from "react-toastify";
+import { toast } from "react-toastify";
 import ShortUniqueId from "short-unique-id";
-import {useFilePicker} from "use-file-picker";
+import { useFilePicker } from "use-file-picker";
 import readXlsxFile from "read-excel-file";
 import Modal from "@/components/Modal";
-import {BsFileEarmarkEaselFill, BsQuestionCircleFill} from "react-icons/bs";
+import { BsFileEarmarkEaselFill, BsQuestionCircleFill } from "react-icons/bs";
+import { checkAccess } from "@/utils/permissions";
+import { PermissionType } from "@/interfaces/permissions";
+const EMAIL_REGEX = new RegExp(
+  /^[a-zA-Z0-9]+(?:\.[a-zA-Z0-9]+)*@[a-zA-Z0-9]+(?:\.[a-zA-Z0-9]+)*$/
+);
 
-const EMAIL_REGEX = new RegExp(/^[a-zA-Z0-9]+(?:\.[a-zA-Z0-9]+)*@[a-zA-Z0-9]+(?:\.[a-zA-Z0-9]+)*$/);
-
-const USER_TYPE_PERMISSIONS: {[key in Type]: Type[]} = {
-	student: [],
-	teacher: [],
-	agent: [],
-	corporate: ["student", "teacher"],
-	admin: ["student", "teacher", "agent", "corporate", "admin"],
-	developer: ["student", "teacher", "agent", "corporate", "admin", "developer"],
+const USER_TYPE_PERMISSIONS: {
+  [key in Type]: { perm: PermissionType | undefined; list: Type[] };
+} = {
+  student: {
+    perm: "createCodeStudent",
+    list: [],
+  },
+  teacher: {
+    perm: "createCodeTeacher",
+    list: [],
+  },
+  agent: {
+    perm: "createCodeCountryManager",
+    list: [],
+  },
+  corporate: {
+    perm: "createCodeCorporate",
+    list: ["student", "teacher"],
+  },
+  mastercorporate: {
+    perm: undefined,
+    list: ["student", "teacher", "corporate"],
+  },
+  admin: {
+    perm: "createCodeAdmin",
+    list: [
+      "student",
+      "teacher",
+      "agent",
+      "corporate",
+      "admin",
+      "mastercorporate",
+    ],
+  },
+  developer: {
+    perm: undefined,
+    list: [
+      "student",
+      "teacher",
+      "agent",
+      "corporate",
+      "admin",
+      "developer",
+      "mastercorporate",
+    ],
+  },
 };
 
-export default function BatchCodeGenerator({user}: {user: User}) {
-	const [infos, setInfos] = useState<{email: string; name: string; passport_id: string}[]>([]);
-	const [isLoading, setIsLoading] = useState(false);
-	const [expiryDate, setExpiryDate] = useState<Date | null>(
-		user?.subscriptionExpirationDate ? moment(user.subscriptionExpirationDate).toDate() : null,
-	);
-	const [isExpiryDateEnabled, setIsExpiryDateEnabled] = useState(true);
-	const [type, setType] = useState<Type>("student");
-	const [showHelp, setShowHelp] = useState(false);
+export default function BatchCodeGenerator({ user }: { user: User }) {
+  const [infos, setInfos] = useState<
+    { email: string; name: string; passport_id: string }[]
+  >([]);
+  const [isLoading, setIsLoading] = useState(false);
+  const [expiryDate, setExpiryDate] = useState<Date | null>(
+    user?.subscriptionExpirationDate
+      ? moment(user.subscriptionExpirationDate).toDate()
+      : null
+  );
+  const [isExpiryDateEnabled, setIsExpiryDateEnabled] = useState(true);
+  const [type, setType] = useState<Type>("student");
+  const [showHelp, setShowHelp] = useState(false);
 
-	const {users} = useUsers();
+  const { users } = useUsers();
 
-	const {openFilePicker, filesContent, clear} = useFilePicker({
-		accept: ".xlsx",
-		multiple: false,
-		readAs: "ArrayBuffer",
-	});
+  const { openFilePicker, filesContent, clear } = useFilePicker({
+    accept: ".xlsx",
+    multiple: false,
+    readAs: "ArrayBuffer",
+  });
 
-	useEffect(() => {
-		if (!isExpiryDateEnabled) setExpiryDate(null);
-	}, [isExpiryDateEnabled]);
+  useEffect(() => {
+    if (!isExpiryDateEnabled) setExpiryDate(null);
+  }, [isExpiryDateEnabled]);
 
-	useEffect(() => {
-		if (filesContent.length > 0) {
-			const file = filesContent[0];
-			readXlsxFile(file.content).then((rows) => {
-				try {
-					const information = uniqBy(
-						rows
-							.map((row) => {
-								const [firstName, lastName, country, passport_id, email, ...phone] = row as string[];
-								return EMAIL_REGEX.test(email.toString().trim())
-									? {
-											email: email.toString().trim().toLowerCase(),
-											name: `${firstName ?? ""} ${lastName ?? ""}`.trim(),
-											passport_id: passport_id?.toString().trim() || undefined,
-									  }
-									: undefined;
-							})
-							.filter((x) => !!x) as typeof infos,
-						(x) => x.email,
-					);
+  useEffect(() => {
+    if (filesContent.length > 0) {
+      const file = filesContent[0];
+      readXlsxFile(file.content).then((rows) => {
+        try {
+          const information = uniqBy(
+            rows
+              .map((row) => {
+                const [
+                  firstName,
+                  lastName,
+                  country,
+                  passport_id,
+                  email,
+                  ...phone
+                ] = row as string[];
+                return EMAIL_REGEX.test(email.toString().trim())
+                  ? {
+                      email: email.toString().trim().toLowerCase(),
+                      name: `${firstName ?? ""} ${lastName ?? ""}`.trim(),
+                      passport_id: passport_id?.toString().trim() || undefined,
+                    }
+                  : undefined;
+              })
+              .filter((x) => !!x) as typeof infos,
+            (x) => x.email
+          );
 
-					if (information.length === 0) {
-						toast.error(
-							"Please upload an Excel file containing user information, one per line! All already registered e-mails have also been ignored!",
-						);
-						return clear();
-					}
+          if (information.length === 0) {
+            toast.error(
+              "Please upload an Excel file containing user information, one per line! All already registered e-mails have also been ignored!"
+            );
+            return clear();
+          }
 
-					setInfos(information);
-				} catch {
-					toast.error(
-						"Please upload an Excel file containing user information, one per line! All already registered e-mails have also been ignored!",
-					);
-					return clear();
-				}
-			});
-		}
-		// eslint-disable-next-line react-hooks/exhaustive-deps
-	}, [filesContent]);
+          setInfos(information);
+        } catch {
+          toast.error(
+            "Please upload an Excel file containing user information, one per line! All already registered e-mails have also been ignored!"
+          );
+          return clear();
+        }
+      });
+    }
+    // eslint-disable-next-line react-hooks/exhaustive-deps
+  }, [filesContent]);
 
-	const generateAndInvite = async () => {
-		const newUsers = infos.filter((x) => !users.map((u) => u.email).includes(x.email));
-		const existingUsers = infos
-			.filter((x) => users.map((u) => u.email).includes(x.email))
-			.map((i) => users.find((u) => u.email === i.email))
-			.filter((x) => !!x && x.type === "student") as User[];
+  const generateAndInvite = async () => {
+    const newUsers = infos.filter(
+      (x) => !users.map((u) => u.email).includes(x.email)
+    );
+    const existingUsers = infos
+      .filter((x) => users.map((u) => u.email).includes(x.email))
+      .map((i) => users.find((u) => u.email === i.email))
+      .filter((x) => !!x && x.type === "student") as User[];
 
-		const newUsersSentence = newUsers.length > 0 ? `generate ${newUsers.length} code(s)` : undefined;
-		const existingUsersSentence = existingUsers.length > 0 ? `invite ${existingUsers.length} registered student(s)` : undefined;
-		if (
-			!confirm(
-				`You are about to ${[newUsersSentence, existingUsersSentence].filter((x) => !!x).join(" and ")}, are you sure you want to continue?`,
-			)
-		)
-			return;
+    const newUsersSentence =
+      newUsers.length > 0 ? `generate ${newUsers.length} code(s)` : undefined;
+    const existingUsersSentence =
+      existingUsers.length > 0
+        ? `invite ${existingUsers.length} registered student(s)`
+        : undefined;
+    if (
+      !confirm(
+        `You are about to ${[newUsersSentence, existingUsersSentence]
+          .filter((x) => !!x)
+          .join(" and ")}, are you sure you want to continue?`
+      )
+    )
+      return;
 
-		setIsLoading(true);
-		Promise.all(existingUsers.map(async (u) => await axios.post(`/api/invites`, {to: u.id, from: user.id})))
-			.then(() => toast.success(`Successfully invited ${existingUsers.length} registered student(s)!`))
-			.finally(() => {
-				if (newUsers.length === 0) setIsLoading(false);
-			});
+    setIsLoading(true);
+    Promise.all(
+      existingUsers.map(
+        async (u) =>
+          await axios.post(`/api/invites`, { to: u.id, from: user.id })
+      )
+    )
+      .then(() =>
+        toast.success(
+          `Successfully invited ${existingUsers.length} registered student(s)!`
+        )
+      )
+      .finally(() => {
+        if (newUsers.length === 0) setIsLoading(false);
+      });
 
-		if (newUsers.length > 0) generateCode(type, newUsers);
-		setInfos([]);
-	};
+    if (newUsers.length > 0) generateCode(type, newUsers);
+    setInfos([]);
+  };
 
-	const generateCode = (type: Type, informations: typeof infos) => {
-		const uid = new ShortUniqueId();
-		const codes = informations.map(() => uid.randomUUID(6));
+  const generateCode = (type: Type, informations: typeof infos) => {
+    const uid = new ShortUniqueId();
+    const codes = informations.map(() => uid.randomUUID(6));
 
-		setIsLoading(true);
-		axios
-			.post<{ok: boolean; valid?: number; reason?: string}>("/api/code", {
-				type,
-				codes,
-				infos: informations,
-				expiryDate,
-			})
-			.then(({data, status}) => {
-				if (data.ok) {
-					toast.success(
-						`Successfully generated${data.valid ? ` ${data.valid}/${informations.length}` : ""} ${capitalize(
-							type,
-						)} codes and they have been notified by e-mail!`,
-						{toastId: "success"},
-					);
-					return;
-				}
+    setIsLoading(true);
+    axios
+      .post<{ ok: boolean; valid?: number; reason?: string }>("/api/code", {
+        type,
+        codes,
+        infos: informations,
+        expiryDate,
+      })
+      .then(({ data, status }) => {
+        if (data.ok) {
+          toast.success(
+            `Successfully generated${
+              data.valid ? ` ${data.valid}/${informations.length}` : ""
+            } ${capitalize(type)} codes and they have been notified by e-mail!`,
+            { toastId: "success" }
+          );
+          return;
+        }
 
-				if (status === 403) {
-					toast.error(data.reason, {toastId: "forbidden"});
-				}
-			})
-			.catch(({response: {status, data}}) => {
-				if (status === 403) {
-					toast.error(data.reason, {toastId: "forbidden"});
-					return;
-				}
+        if (status === 403) {
+          toast.error(data.reason, { toastId: "forbidden" });
+        }
+      })
+      .catch(({ response: { status, data } }) => {
+        if (status === 403) {
+          toast.error(data.reason, { toastId: "forbidden" });
+          return;
+        }
 
-				toast.error(`Something went wrong, please try again later!`, {
-					toastId: "error",
-				});
-			})
-			.finally(() => {
-				setIsLoading(false);
-				return clear();
-			});
-	};
+        toast.error(`Something went wrong, please try again later!`, {
+          toastId: "error",
+        });
+      })
+      .finally(() => {
+        setIsLoading(false);
+        return clear();
+      });
+  };
 
-	return (
-		<>
-			<Modal isOpen={showHelp} onClose={() => setShowHelp(false)} title="Excel File Format">
-				<div className="mt-4 flex flex-col gap-2">
-					<span>Please upload an Excel file with the following format:</span>
-					<table className="w-full">
-						<thead>
-							<tr>
-								<th className="border border-neutral-200 px-2 py-1">First Name</th>
-								<th className="border border-neutral-200 px-2 py-1">Last Name</th>
-								<th className="border border-neutral-200 px-2 py-1">Country</th>
-								<th className="border border-neutral-200 px-2 py-1">Passport/National ID</th>
-								<th className="border border-neutral-200 px-2 py-1">E-mail</th>
-								<th className="border border-neutral-200 px-2 py-1">Phone Number</th>
-							</tr>
-						</thead>
-					</table>
-					<span className="mt-4">
-						<b>Notes:</b>
-						<ul>
-							<li>- All incorrect e-mails will be ignored;</li>
-							<li>- All already registered e-mails will be ignored;</li>
-							<li>- You may have a header row with the format above, however, it is not necessary;</li>
-							<li>- All of the e-mails in the file will receive an e-mail to join EnCoach with the role selected below.</li>
-						</ul>
-					</span>
-				</div>
-			</Modal>
-			<div className="border-mti-gray-platinum flex flex-col gap-4 rounded-xl border p-4">
-				<div className="flex items-end justify-between">
-					<label className="text-mti-gray-dim text-base font-normal">Choose an Excel file</label>
-					<div className="tooltip cursor-pointer" data-tip="Excel File Format" onClick={() => setShowHelp(true)}>
-						<BsQuestionCircleFill />
-					</div>
-				</div>
-				<Button onClick={openFilePicker} isLoading={isLoading} disabled={isLoading}>
-					{filesContent.length > 0 ? filesContent[0].name : "Choose a file"}
-				</Button>
-				{user && (user.type === "developer" || user.type === "admin" || user.type === "corporate") && (
-					<>
-						<div className="-md:flex-row -md:items-center flex justify-between gap-2 md:flex-col 2xl:flex-row 2xl:items-center">
-							<label className="text-mti-gray-dim text-base font-normal">Expiry Date</label>
-							<Checkbox isChecked={isExpiryDateEnabled} onChange={setIsExpiryDateEnabled} disabled={!!user.subscriptionExpirationDate}>
-								Enabled
-							</Checkbox>
-						</div>
-						{isExpiryDateEnabled && (
-							<ReactDatePicker
-								className={clsx(
-									"flex min-h-[70px] w-full cursor-pointer justify-center rounded-full border p-6 text-sm font-normal focus:outline-none",
-									"hover:border-mti-purple tooltip",
-									"transition duration-300 ease-in-out",
-								)}
-								filterDate={(date) =>
-									moment(date).isAfter(new Date()) &&
-									(user.subscriptionExpirationDate ? moment(date).isBefore(user.subscriptionExpirationDate) : true)
-								}
-								dateFormat="dd/MM/yyyy"
-								selected={expiryDate}
-								onChange={(date) => setExpiryDate(date)}
-							/>
-						)}
-					</>
-				)}
-				<label className="text-mti-gray-dim text-base font-normal">Select the type of user they should be</label>
-				{user && (
-					<select
-						defaultValue="student"
-						onChange={(e) => setType(e.target.value as typeof user.type)}
-						className="flex min-h-[70px] w-full min-w-[350px] cursor-pointer justify-center rounded-full border bg-white p-6 text-sm font-normal focus:outline-none">
-						{Object.keys(USER_TYPE_LABELS)
-							.filter((x) => USER_TYPE_PERMISSIONS[user.type].includes(x as Type))
-							.map((type) => (
-								<option key={type} value={type}>
-									{USER_TYPE_LABELS[type as keyof typeof USER_TYPE_LABELS]}
-								</option>
-							))}
-					</select>
-				)}
-				<Button onClick={generateAndInvite} disabled={infos.length === 0 || (isExpiryDateEnabled ? !expiryDate : false)}>
-					Generate & Send
-				</Button>
-			</div>
-		</>
-	);
+  return (
+    <>
+      <Modal
+        isOpen={showHelp}
+        onClose={() => setShowHelp(false)}
+        title="Excel File Format"
+      >
+        <div className="mt-4 flex flex-col gap-2">
+          <span>Please upload an Excel file with the following format:</span>
+          <table className="w-full">
+            <thead>
+              <tr>
+                <th className="border border-neutral-200 px-2 py-1">
+                  First Name
+                </th>
+                <th className="border border-neutral-200 px-2 py-1">
+                  Last Name
+                </th>
+                <th className="border border-neutral-200 px-2 py-1">Country</th>
+                <th className="border border-neutral-200 px-2 py-1">
+                  Passport/National ID
+                </th>
+                <th className="border border-neutral-200 px-2 py-1">E-mail</th>
+                <th className="border border-neutral-200 px-2 py-1">
+                  Phone Number
+                </th>
+              </tr>
+            </thead>
+          </table>
+          <span className="mt-4">
+            <b>Notes:</b>
+            <ul>
+              <li>- All incorrect e-mails will be ignored;</li>
+              <li>- All already registered e-mails will be ignored;</li>
+              <li>
+                - You may have a header row with the format above, however, it
+                is not necessary;
+              </li>
+              <li>
+                - All of the e-mails in the file will receive an e-mail to join
+                EnCoach with the role selected below.
+              </li>
+            </ul>
+          </span>
+        </div>
+      </Modal>
+      <div className="border-mti-gray-platinum flex flex-col gap-4 rounded-xl border p-4">
+        <div className="flex items-end justify-between">
+          <label className="text-mti-gray-dim text-base font-normal">
+            Choose an Excel file
+          </label>
+          <div
+            className="tooltip cursor-pointer"
+            data-tip="Excel File Format"
+            onClick={() => setShowHelp(true)}
+          >
+            <BsQuestionCircleFill />
+          </div>
+        </div>
+        <Button
+          onClick={openFilePicker}
+          isLoading={isLoading}
+          disabled={isLoading}
+        >
+          {filesContent.length > 0 ? filesContent[0].name : "Choose a file"}
+        </Button>
+        {user &&
+          checkAccess(user, ["developer", "admin", "corporate", "mastercorporate"]) && (
+            <>
+              <div className="-md:flex-row -md:items-center flex justify-between gap-2 md:flex-col 2xl:flex-row 2xl:items-center">
+                <label className="text-mti-gray-dim text-base font-normal">
+                  Expiry Date
+                </label>
+                <Checkbox
+                  isChecked={isExpiryDateEnabled}
+                  onChange={setIsExpiryDateEnabled}
+                  disabled={!!user.subscriptionExpirationDate}
+                >
+                  Enabled
+                </Checkbox>
+              </div>
+              {isExpiryDateEnabled && (
+                <ReactDatePicker
+                  className={clsx(
+                    "flex min-h-[70px] w-full cursor-pointer justify-center rounded-full border p-6 text-sm font-normal focus:outline-none",
+                    "hover:border-mti-purple tooltip",
+                    "transition duration-300 ease-in-out"
+                  )}
+                  filterDate={(date) =>
+                    moment(date).isAfter(new Date()) &&
+                    (user.subscriptionExpirationDate
+                      ? moment(date).isBefore(user.subscriptionExpirationDate)
+                      : true)
+                  }
+                  dateFormat="dd/MM/yyyy"
+                  selected={expiryDate}
+                  onChange={(date) => setExpiryDate(date)}
+                />
+              )}
+            </>
+          )}
+        <label className="text-mti-gray-dim text-base font-normal">
+          Select the type of user they should be
+        </label>
+        {user && (
+          <select
+            defaultValue="student"
+            onChange={(e) => setType(e.target.value as typeof user.type)}
+            className="flex min-h-[70px] w-full min-w-[350px] cursor-pointer justify-center rounded-full border bg-white p-6 text-sm font-normal focus:outline-none"
+          >
+            {Object.keys(USER_TYPE_LABELS)
+              .filter((x) => {
+                const { list, perm } = USER_TYPE_PERMISSIONS[x as Type];
+                return checkAccess(user, list, perm);
+              })
+              .map((type) => (
+                <option key={type} value={type}>
+                  {USER_TYPE_LABELS[type as keyof typeof USER_TYPE_LABELS]}
+                </option>
+              ))}
+          </select>
+        )}
+        <Button
+          onClick={generateAndInvite}
+          disabled={
+            infos.length === 0 || (isExpiryDateEnabled ? !expiryDate : false)
+          }
+        >
+          Generate & Send
+        </Button>
+      </div>
+    </>
+  );
 }

src/pages/(admin)/CodeGenerator.tsx

@@ -1,125 +1,197 @@
 import Button from "@/components/Low/Button";
 import Checkbox from "@/components/Low/Checkbox";
-import {PERMISSIONS} from "@/constants/userPermissions";
-import {Type, User} from "@/interfaces/user";
-import {USER_TYPE_LABELS} from "@/resources/user";
+import { PERMISSIONS } from "@/constants/userPermissions";
+import { Type, User } from "@/interfaces/user";
+import { USER_TYPE_LABELS } from "@/resources/user";
 import axios from "axios";
 import clsx from "clsx";
-import {capitalize} from "lodash";
+import { capitalize } from "lodash";
 import moment from "moment";
-import {useEffect, useState} from "react";
+import { useEffect, useState } from "react";
 import ReactDatePicker from "react-datepicker";
-import {toast} from "react-toastify";
+import { toast } from "react-toastify";
 import ShortUniqueId from "short-unique-id";
+import { checkAccess } from "@/utils/permissions";
+import { PermissionType } from "@/interfaces/permissions";
 
-const USER_TYPE_PERMISSIONS: {[key in Type]: Type[]} = {
-	student: [],
-	teacher: [],
-	agent: [],
-	corporate: ["student", "teacher"],
-	admin: ["student", "teacher", "agent", "corporate", "admin"],
-	developer: ["student", "teacher", "agent", "corporate", "admin", "developer"],
+const USER_TYPE_PERMISSIONS: {
+  [key in Type]: { perm: PermissionType | undefined; list: Type[] };
+} = {
+  student: {
+    perm: "createCodeStudent",
+    list: [],
+  },
+  teacher: {
+    perm: "createCodeTeacher",
+    list: [],
+  },
+  agent: {
+    perm: "createCodeCountryManager",
+    list: [],
+  },
+  corporate: {
+    perm: "createCodeCorporate",
+    list: ["student", "teacher"],
+  },
+  mastercorporate: {
+    perm: undefined,
+    list: ["student", "teacher", "corporate"],
+  },
+  admin: {
+    perm: "createCodeAdmin",
+    list: [
+      "student",
+      "teacher",
+      "agent",
+      "corporate",
+      "admin",
+      "mastercorporate",
+    ],
+  },
+  developer: {
+    perm: undefined,
+    list: [
+      "student",
+      "teacher",
+      "agent",
+      "corporate",
+      "admin",
+      "developer",
+      "mastercorporate",
+    ],
+  },
 };
 
-export default function CodeGenerator({user}: {user: User}) {
-	const [generatedCode, setGeneratedCode] = useState<string>();
-	const [expiryDate, setExpiryDate] = useState<Date | null>(
-		user?.subscriptionExpirationDate ? moment(user.subscriptionExpirationDate).toDate() : null,
-	);
-	const [isExpiryDateEnabled, setIsExpiryDateEnabled] = useState(true);
-	const [type, setType] = useState<Type>("student");
+export default function CodeGenerator({ user }: { user: User }) {
+  const [generatedCode, setGeneratedCode] = useState<string>();
+  const [expiryDate, setExpiryDate] = useState<Date | null>(
+    user?.subscriptionExpirationDate
+      ? moment(user.subscriptionExpirationDate).toDate()
+      : null
+  );
+  const [isExpiryDateEnabled, setIsExpiryDateEnabled] = useState(true);
+  const [type, setType] = useState<Type>("student");
 
-	useEffect(() => {
-		if (!isExpiryDateEnabled) setExpiryDate(null);
-	}, [isExpiryDateEnabled]);
+  useEffect(() => {
+    if (!isExpiryDateEnabled) setExpiryDate(null);
+  }, [isExpiryDateEnabled]);
 
-	const generateCode = (type: Type) => {
-		const uid = new ShortUniqueId();
-		const code = uid.randomUUID(6);
+  const generateCode = (type: Type) => {
+    const uid = new ShortUniqueId();
+    const code = uid.randomUUID(6);
 
-		axios
-			.post("/api/code", {type, codes: [code], expiryDate})
-			.then(({data, status}) => {
-				if (data.ok) {
-					toast.success(`Successfully generated a ${capitalize(type)} code!`, {toastId: "success"});
-					setGeneratedCode(code);
-					return;
-				}
+    axios
+      .post("/api/code", { type, codes: [code], expiryDate })
+      .then(({ data, status }) => {
+        if (data.ok) {
+          toast.success(`Successfully generated a ${capitalize(type)} code!`, {
+            toastId: "success",
+          });
+          setGeneratedCode(code);
+          return;
+        }
 
-				if (status === 403) {
-					toast.error(data.reason, {toastId: "forbidden"});
-				}
-			})
-			.catch(({response: {status, data}}) => {
-				if (status === 403) {
-					toast.error(data.reason, {toastId: "forbidden"});
-					return;
-				}
+        if (status === 403) {
+          toast.error(data.reason, { toastId: "forbidden" });
+        }
+      })
+      .catch(({ response: { status, data } }) => {
+        if (status === 403) {
+          toast.error(data.reason, { toastId: "forbidden" });
+          return;
+        }
 
-				toast.error(`Something went wrong, please try again later!`, {toastId: "error"});
-			});
-	};
+        toast.error(`Something went wrong, please try again later!`, {
+          toastId: "error",
+        });
+      });
+  };
 
-	return (
-		<div className="flex flex-col gap-4 border p-4 border-mti-gray-platinum rounded-xl">
-			<label className="font-normal text-base text-mti-gray-dim">User Code Generator</label>
-			{user && (
-				<select
-					defaultValue="student"
-					onChange={(e) => setType(e.target.value as typeof user.type)}
-					className="p-6 w-full min-w-[350px] min-h-[70px] flex justify-center text-sm font-normal rounded-full border focus:outline-none cursor-pointer bg-white">
-					{Object.keys(USER_TYPE_LABELS)
-						.filter((x) => USER_TYPE_PERMISSIONS[user.type].includes(x as Type))
-						.map((type) => (
-							<option key={type} value={type}>
-								{USER_TYPE_LABELS[type as keyof typeof USER_TYPE_LABELS]}
-							</option>
-						))}
-				</select>
-			)}
-			{user && (user.type === "developer" || user.type === "admin" || user.type === "corporate") && (
-				<>
-					<div className="-md:flex-row -md:items-center flex justify-between gap-2 md:flex-col 2xl:flex-row 2xl:items-center">
-						<label className="text-mti-gray-dim text-base font-normal">Expiry Date</label>
-						<Checkbox isChecked={isExpiryDateEnabled} onChange={setIsExpiryDateEnabled} disabled={!!user.subscriptionExpirationDate}>
-							Enabled
-						</Checkbox>
-					</div>
-					{isExpiryDateEnabled && (
-						<ReactDatePicker
-							className={clsx(
-								"flex min-h-[70px] w-full cursor-pointer justify-center rounded-full border p-6 text-sm font-normal focus:outline-none",
-								"hover:border-mti-purple tooltip",
-								"transition duration-300 ease-in-out",
-							)}
-							filterDate={(date) =>
-								moment(date).isAfter(new Date()) &&
-								(user.subscriptionExpirationDate ? moment(date).isBefore(user.subscriptionExpirationDate) : true)
-							}
-							dateFormat="dd/MM/yyyy"
-							selected={expiryDate}
-							onChange={(date) => setExpiryDate(date)}
-						/>
-					)}
-				</>
-			)}
-			<Button onClick={() => generateCode(type)} disabled={isExpiryDateEnabled ? !expiryDate : false}>
-				Generate
-			</Button>
-			<label className="font-normal text-base text-mti-gray-dim">Generated Code:</label>
-			<div
-				className={clsx(
-					"p-6 w-full min-h-[70px] flex justify-center text-sm font-normal rounded-full border focus:outline-none cursor-pointer",
-					"hover:border-mti-purple tooltip",
-					"transition duration-300 ease-in-out",
-				)}
-				data-tip="Click to copy"
-				onClick={() => {
-					if (generatedCode) navigator.clipboard.writeText(generatedCode);
-				}}>
-				{generatedCode}
-			</div>
-			{generatedCode && <span className="text-sm text-mti-gray-dim font-light">Give this code to the user to complete their registration</span>}
-		</div>
-	);
+  return (
+    <div className="flex flex-col gap-4 border p-4 border-mti-gray-platinum rounded-xl">
+      <label className="font-normal text-base text-mti-gray-dim">
+        User Code Generator
+      </label>
+      {user && (
+        <select
+          defaultValue="student"
+          onChange={(e) => setType(e.target.value as typeof user.type)}
+          className="p-6 w-full min-w-[350px] min-h-[70px] flex justify-center text-sm font-normal rounded-full border focus:outline-none cursor-pointer bg-white"
+        >
+          {Object.keys(USER_TYPE_LABELS)
+            .filter((x) => {
+              const { list, perm } = USER_TYPE_PERMISSIONS[x as Type];
+              return checkAccess(user, list, perm);
+            })
+            .map((type) => (
+              <option key={type} value={type}>
+                {USER_TYPE_LABELS[type as keyof typeof USER_TYPE_LABELS]}
+              </option>
+            ))}
+        </select>
+      )}
+      {user &&
+        checkAccess(user, ["developer", "admin", "corporate"]) && (
+          <>
+            <div className="-md:flex-row -md:items-center flex justify-between gap-2 md:flex-col 2xl:flex-row 2xl:items-center">
+              <label className="text-mti-gray-dim text-base font-normal">
+                Expiry Date
+              </label>
+              <Checkbox
+                isChecked={isExpiryDateEnabled}
+                onChange={setIsExpiryDateEnabled}
+                disabled={!!user.subscriptionExpirationDate}
+              >
+                Enabled
+              </Checkbox>
+            </div>
+            {isExpiryDateEnabled && (
+              <ReactDatePicker
+                className={clsx(
+                  "flex min-h-[70px] w-full cursor-pointer justify-center rounded-full border p-6 text-sm font-normal focus:outline-none",
+                  "hover:border-mti-purple tooltip",
+                  "transition duration-300 ease-in-out"
+                )}
+                filterDate={(date) =>
+                  moment(date).isAfter(new Date()) &&
+                  (user.subscriptionExpirationDate
+                    ? moment(date).isBefore(user.subscriptionExpirationDate)
+                    : true)
+                }
+                dateFormat="dd/MM/yyyy"
+                selected={expiryDate}
+                onChange={(date) => setExpiryDate(date)}
+              />
+            )}
+          </>
+        )}
+      <Button
+        onClick={() => generateCode(type)}
+        disabled={isExpiryDateEnabled ? !expiryDate : false}
+      >
+        Generate
+      </Button>
+      <label className="font-normal text-base text-mti-gray-dim">
+        Generated Code:
+      </label>
+      <div
+        className={clsx(
+          "p-6 w-full min-h-[70px] flex justify-center text-sm font-normal rounded-full border focus:outline-none cursor-pointer",
+          "hover:border-mti-purple tooltip",
+          "transition duration-300 ease-in-out"
+        )}
+        data-tip="Click to copy"
+        onClick={() => {
+          if (generatedCode) navigator.clipboard.writeText(generatedCode);
+        }}
+      >
+        {generatedCode}
+      </div>
+      {generatedCode && (
+        <span className="text-sm text-mti-gray-dim font-light">
+          Give this code to the user to complete their registration
+        </span>
+      )}
+    </div>
+  );
 }

src/pages/(admin)/Lists/GroupList.tsx

@@ -86,7 +86,7 @@ const CreatePanel = ({user, users, group, onClose}: CreateDialogProps) => {
 				const emailUsers = [...new Set(emails)].map((x) => users.find((y) => y.email.toLowerCase() === x)).filter((x) => x !== undefined);
 				const filteredUsers = emailUsers.filter(
 					(x) =>
-						((user.type === "developer" || user.type === "admin" || user.type === "corporate") &&
+						((user.type === "developer" || user.type === "admin" || user.type === "corporate" || user.type === "mastercorporate") &&
 							(x?.type === "student" || x?.type === "teacher")) ||
 						(user.type === "teacher" && x?.type === "student"),
 				);
@@ -189,7 +189,7 @@ const CreatePanel = ({user, users, group, onClose}: CreateDialogProps) => {
 	);
 };
 
-const filterTypes = ["corporate", "teacher"];
+const filterTypes = ["corporate", "teacher", "mastercorporate"];
 
 export default function GroupList({user}: {user: User}) {
 	const [isCreating, setIsCreating] = useState(false);
@@ -197,10 +197,10 @@ export default function GroupList({user}: {user: User}) {
 	const [filterByUser, setFilterByUser] = useState(false);
 
 	const {users} = useUsers();
-	const {groups, reload} = useGroups(user && filterTypes.includes(user?.type) ? user.id : undefined);
+	const {groups, reload} = useGroups(user && filterTypes.includes(user?.type) ? user.id : undefined, user?.type);
 
 	useEffect(() => {
-		if (user && (user.type === "corporate" || user.type === "teacher")) {
+		if (user && (['corporate', 'teacher', 'mastercorporate'].includes(user.type))) {
 			setFilterByUser(true);
 		}
 	}, [user]);

src/pages/api/groups/index.ts

@@ -30,29 +30,74 @@ async function handler(req: NextApiRequest, res: NextApiResponse) {
   if (req.method === "POST") await post(req, res);
 }
 
+const getGroupsForUser = async (admin: string, participant: string) => {
+  try {
+    const queryConstraints = [
+      ...(admin ? [where("admin", "==", admin)] : []),
+      ...(participant
+        ? [where("participants", "array-contains", participant)]
+        : []),
+    ];
+    const snapshot = await getDocs(
+      queryConstraints.length > 0
+        ? query(collection(db, "groups"), ...queryConstraints)
+        : collection(db, "groups")
+    );
+    const groups = snapshot.docs.map((doc) => ({
+      id: doc.id,
+      ...doc.data(),
+    })) as Group[];
+
+    return groups;
+  } catch (e) {
+    console.error(e);
+    return [];
+  }
+};
 async function get(req: NextApiRequest, res: NextApiResponse) {
   const { admin, participant } = req.query as {
     admin: string;
     participant: string;
   };
 
-  const queryConstraints = [
-    ...(admin ? [where("admin", "==", admin)] : []),
-    ...(participant
-      ? [where("participants", "array-contains", participant)]
-      : []),
-  ];
-  const snapshot = await getDocs(
-    queryConstraints.length > 0
-      ? query(collection(db, "groups"), ...queryConstraints)
-      : collection(db, "groups"),
-  );
-  const groups = snapshot.docs.map((doc) => ({
-    id: doc.id,
-    ...doc.data(),
-  })) as Group[];
+  if (req.session?.user?.type === "mastercorporate") {
+    try {
+      const masterCorporateGroups = await getGroupsForUser(admin, participant);
+      const corporatesFromMaster = masterCorporateGroups
+        .filter((g) => g.name === "Corporate")
+        .flatMap((g) => g.participants);
 
-  res.status(200).json(groups);
+      if (corporatesFromMaster.length === 0) {
+        res.status(200).json([]);
+        return;
+      }
+      Promise.all(
+        corporatesFromMaster.map((c) => getGroupsForUser(c, participant))
+      )
+        .then((groups) => {
+          res.status(200).json([...masterCorporateGroups, ...groups.flat()]);
+          return;
+        })
+        .catch((e) => {
+          console.error(e);
+          res.status(500).json({ ok: false });
+          return;
+        });
+    } catch (e) {
+      console.error(e);
+      res.status(500).json({ ok: false });
+      return;
+    }
+    return;
+  }
+
+  try {
+    const groups = await getGroupsForUser(admin, participant);
+    res.status(200).json(groups);
+  } catch (e) {
+    console.error(e);
+    res.status(500).json({ ok: false });
+  }
 }
 
 async function post(req: NextApiRequest, res: NextApiResponse) {
@@ -60,8 +105,8 @@ async function post(req: NextApiRequest, res: NextApiResponse) {
 
   await Promise.all(
     body.participants.map(
-      async (p) => await updateExpiryDateOnGroup(p, body.admin),
-    ),
+      async (p) => await updateExpiryDateOnGroup(p, body.admin)
+    )
   );
 
   await setDoc(doc(db, "groups", v4()), {

src/pages/api/permissions/[id].ts

@@ -0,0 +1,30 @@
+// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
+import type { NextApiRequest, NextApiResponse } from "next";
+import { app } from "@/firebase";
+import { getFirestore, doc, setDoc } from "firebase/firestore";
+import { withIronSessionApiRoute } from "iron-session/next";
+import { sessionOptions } from "@/lib/session";
+
+const db = getFirestore(app);
+
+export default withIronSessionApiRoute(handler, sessionOptions);
+
+async function handler(req: NextApiRequest, res: NextApiResponse) {
+  if (req.method === "PATCH") return patch(req, res);
+}
+
+async function patch(req: NextApiRequest, res: NextApiResponse) {
+  if (!req.session.user) {
+    res.status(401).json({ ok: false });
+    return;
+  }
+  const { id } = req.query as { id: string };
+  const { users } = req.body;
+  try {
+    await setDoc(doc(db, "permissions", id), { users }, { merge: true });
+    return res.status(200).json({ ok: true });
+  } catch (err) {
+    console.error(err);
+    return res.status(500).json({ ok: false });
+  }
+}

src/pages/api/permissions/bootstrap.ts

@@ -0,0 +1,43 @@
+// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
+import type { NextApiRequest, NextApiResponse } from "next";
+import { app } from "@/firebase";
+import {
+  getFirestore,
+  collection,
+  getDocs,
+  query,
+  where,
+  doc,
+  setDoc,
+  addDoc,
+  getDoc,
+  deleteDoc,
+} from "firebase/firestore";
+import { withIronSessionApiRoute } from "iron-session/next";
+import { sessionOptions } from "@/lib/session";
+import { Permission } from "@/interfaces/permissions";
+import { bootstrap } from "@/utils/permissions.be";
+
+const db = getFirestore(app);
+
+export default withIronSessionApiRoute(handler, sessionOptions);
+
+async function handler(req: NextApiRequest, res: NextApiResponse) {
+  if (req.method === "GET") return get(req, res);
+}
+
+async function get(req: NextApiRequest, res: NextApiResponse) {
+  if (!req.session.user) {
+    res.status(401).json({ ok: false });
+    return;
+  }
+
+  console.log("Boostrap");
+  try {
+    await bootstrap();
+    return res.status(200).json({ ok: true });
+  } catch (err) {
+    console.error("Failed to update permissions", err);
+    return res.status(500).json({ ok: false });
+  }
+}

src/pages/api/permissions/index.ts

@@ -0,0 +1,36 @@
+// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
+import type { NextApiRequest, NextApiResponse } from "next";
+import { app } from "@/firebase";
+import {
+  getFirestore,
+  collection,
+  getDocs,
+  query,
+  where,
+  doc,
+  setDoc,
+  addDoc,
+  getDoc,
+  deleteDoc,
+} from "firebase/firestore";
+import { withIronSessionApiRoute } from "iron-session/next";
+import { sessionOptions } from "@/lib/session";
+import { Permission } from "@/interfaces/permissions";
+import { getPermissions, getPermissionDocs } from "@/utils/permissions.be";
+
+const db = getFirestore(app);
+
+export default withIronSessionApiRoute(handler, sessionOptions);
+
+async function handler(req: NextApiRequest, res: NextApiResponse) {
+  if (req.method === "GET") return get(req, res);
+}
+
+async function get(req: NextApiRequest, res: NextApiResponse) {
+  if (!req.session.user) {
+    res.status(401).json({ ok: false });
+    return;
+  }
+  const docs = await getPermissionDocs();
+  res.status(200).json(docs);
+}

src/pages/api/register.ts

@@ -143,9 +143,18 @@ async function registerCorporate(req: NextApiRequest, res: NextApiResponse) {
 				disableEditing: true,
 			};
 
+			const defaultCorporateGroup: Group = {
+				admin: userId,
+				id: v4(),
+				name: "Corporate",
+				participants: [],
+				disableEditing: true,
+			};
+
 			await setDoc(doc(db, "users", userId), user);
 			await setDoc(doc(db, "groups", defaultTeachersGroup.id), defaultTeachersGroup);
 			await setDoc(doc(db, "groups", defaultStudentsGroup.id), defaultStudentsGroup);
+			await setDoc(doc(db, "groups", defaultCorporateGroup.id), defaultCorporateGroup);
 
 			req.session.user = {...user, id: userId};
 			await req.session.save();

src/pages/api/user.ts

@@ -1,11 +1,22 @@
-import {PERMISSIONS} from "@/constants/userPermissions";
-import {app, adminApp} from "@/firebase";
-import {Group, User} from "@/interfaces/user";
-import {sessionOptions} from "@/lib/session";
-import {collection, deleteDoc, doc, getDoc, getDocs, getFirestore, query, setDoc, where} from "firebase/firestore";
-import {getAuth} from "firebase-admin/auth";
-import {withIronSessionApiRoute} from "iron-session/next";
-import {NextApiRequest, NextApiResponse} from "next";
+import { PERMISSIONS } from "@/constants/userPermissions";
+import { app, adminApp } from "@/firebase";
+import { Group, User } from "@/interfaces/user";
+import { sessionOptions } from "@/lib/session";
+import {
+  collection,
+  deleteDoc,
+  doc,
+  getDoc,
+  getDocs,
+  getFirestore,
+  query,
+  setDoc,
+  where,
+} from "firebase/firestore";
+import { getAuth } from "firebase-admin/auth";
+import { withIronSessionApiRoute } from "iron-session/next";
+import { NextApiRequest, NextApiResponse } from "next";
+import { getPermissions, getPermissionDocs } from "@/utils/permissions.be";
 
 const db = getFirestore(app);
 const auth = getAuth(adminApp);
@@ -13,89 +24,132 @@ const auth = getAuth(adminApp);
 export default withIronSessionApiRoute(user, sessionOptions);
 
 async function user(req: NextApiRequest, res: NextApiResponse) {
-	if (req.method === "GET") return get(req, res);
-	if (req.method === "DELETE") return del(req, res);
+  if (req.method === "GET") return get(req, res);
+  if (req.method === "DELETE") return del(req, res);
 
-	res.status(404).json(undefined);
+  res.status(404).json(undefined);
 }
 
 async function del(req: NextApiRequest, res: NextApiResponse) {
-	if (!req.session.user) {
-		res.status(401).json({ok: false});
-		return;
-	}
+  if (!req.session.user) {
+    res.status(401).json({ ok: false });
+    return;
+  }
 
-	const {id} = req.query as {id: string};
+  const { id } = req.query as { id: string };
 
-	const docUser = await getDoc(doc(db, "users", req.session.user.id));
-	if (!docUser.exists()) {
-		res.status(401).json({ok: false});
-		return;
-	}
+  const docUser = await getDoc(doc(db, "users", req.session.user.id));
+  if (!docUser.exists()) {
+    res.status(401).json({ ok: false });
+    return;
+  }
 
-	const user = docUser.data() as User;
+  const user = docUser.data() as User;
 
-	const docTargetUser = await getDoc(doc(db, "users", id));
-	if (!docTargetUser.exists()) {
-		res.status(404).json({ok: false});
-		return;
-	}
+  const docTargetUser = await getDoc(doc(db, "users", id));
+  if (!docTargetUser.exists()) {
+    res.status(404).json({ ok: false });
+    return;
+  }
 
-	const targetUser = {...docTargetUser.data(), id: docTargetUser.id} as User;
+  const targetUser = { ...docTargetUser.data(), id: docTargetUser.id } as User;
 
-	if (user.type === "corporate" && (targetUser.type === "student" || targetUser.type === "teacher")) {
-		res.json({ok: true});
+  if (
+    user.type === "corporate" &&
+    (targetUser.type === "student" || targetUser.type === "teacher")
+  ) {
+    res.json({ ok: true });
 
-		const userParticipantGroup = await getDocs(query(collection(db, "groups"), where("participants", "array-contains", id)));
-		await Promise.all([
-			...userParticipantGroup.docs
-				.filter((x) => (x.data() as Group).admin === user.id)
-				.map(async (x) => await setDoc(x.ref, {participants: x.data().participants.filter((y: string) => y !== id)}, {merge: true})),
-		]);
+    const userParticipantGroup = await getDocs(
+      query(
+        collection(db, "groups"),
+        where("participants", "array-contains", id)
+      )
+    );
+    await Promise.all([
+      ...userParticipantGroup.docs
+        .filter((x) => (x.data() as Group).admin === user.id)
+        .map(
+          async (x) =>
+            await setDoc(
+              x.ref,
+              {
+                participants: x
+                  .data()
+                  .participants.filter((y: string) => y !== id),
+              },
+              { merge: true }
+            )
+        ),
+    ]);
 
-		return;
-	}
+    return;
+  }
 
-	const permission = PERMISSIONS.deleteUser[targetUser.type];
-	if (!permission.includes(user.type)) {
-		res.status(403).json({ok: false});
-		return;
-	}
+  const permission = PERMISSIONS.deleteUser[targetUser.type];
+  if (!permission.list.includes(user.type)) {
+    res.status(403).json({ ok: false });
+    return;
+  }
 
-	res.json({ok: true});
+  res.json({ ok: true });
 
-	await auth.deleteUser(id);
-	await deleteDoc(doc(db, "users", id));
-	const userCodeDocs = await getDocs(query(collection(db, "codes"), where("userId", "==", id)));
-	const userParticipantGroup = await getDocs(query(collection(db, "groups"), where("participants", "array-contains", id)));
-	const userGroupAdminDocs = await getDocs(query(collection(db, "groups"), where("admin", "==", id)));
-	const userStatsDocs = await getDocs(query(collection(db, "stats"), where("user", "==", id)));
+  await auth.deleteUser(id);
+  await deleteDoc(doc(db, "users", id));
+  const userCodeDocs = await getDocs(
+    query(collection(db, "codes"), where("userId", "==", id))
+  );
+  const userParticipantGroup = await getDocs(
+    query(collection(db, "groups"), where("participants", "array-contains", id))
+  );
+  const userGroupAdminDocs = await getDocs(
+    query(collection(db, "groups"), where("admin", "==", id))
+  );
+  const userStatsDocs = await getDocs(
+    query(collection(db, "stats"), where("user", "==", id))
+  );
 
-	await Promise.all([
-		...userCodeDocs.docs.map(async (x) => await deleteDoc(x.ref)),
-		...userGroupAdminDocs.docs.map(async (x) => await deleteDoc(x.ref)),
-		...userStatsDocs.docs.map(async (x) => await deleteDoc(x.ref)),
-		...userParticipantGroup.docs.map(
-			async (x) => await setDoc(x.ref, {participants: x.data().participants.filter((y: string) => y !== id)}, {merge: true}),
-		),
-	]);
+  await Promise.all([
+    ...userCodeDocs.docs.map(async (x) => await deleteDoc(x.ref)),
+    ...userGroupAdminDocs.docs.map(async (x) => await deleteDoc(x.ref)),
+    ...userStatsDocs.docs.map(async (x) => await deleteDoc(x.ref)),
+    ...userParticipantGroup.docs.map(
+      async (x) =>
+        await setDoc(
+          x.ref,
+          {
+            participants: x.data().participants.filter((y: string) => y !== id),
+          },
+          { merge: true }
+        )
+    ),
+  ]);
 }
 
 async function get(req: NextApiRequest, res: NextApiResponse) {
-	if (req.session.user) {
-		const docUser = await getDoc(doc(db, "users", req.session.user.id));
-		if (!docUser.exists()) {
-			res.status(401).json(undefined);
-			return;
-		}
+  if (req.session.user) {
+    const docUser = await getDoc(doc(db, "users", req.session.user.id));
+    if (!docUser.exists()) {
+      res.status(401).json(undefined);
+      return;
+    }
 
-		const user = docUser.data() as User;
+    const user = docUser.data() as User;
+	
+    const permissionDocs = await getPermissionDocs();
 
-		req.session.user = {...user, id: req.session.user.id};
-		await req.session.save();
+	const userWithPermissions = {
+		...user,
+		permissions: getPermissions(req.session.user.id, permissionDocs),
+	};
+    req.session.user = {
+      ...userWithPermissions,
+      id: req.session.user.id,
+    };
+    await req.session.save();
 
-		res.json({...user, id: req.session.user.id});
-	} else {
-		res.status(401).json(undefined);
-	}
+    res.json({ ...userWithPermissions, id: req.session.user.id });
+  } else {
+    res.status(401).json(undefined);
+  }
 }

src/pages/generation.tsx

@@ -1,19 +1,19 @@
 /* eslint-disable @next/next/no-img-element */
 import Head from "next/head";
-import {withIronSessionSsr} from "iron-session/next";
-import {sessionOptions} from "@/lib/session";
+import { withIronSessionSsr } from "iron-session/next";
+import { sessionOptions } from "@/lib/session";
 import useUser from "@/hooks/useUser";
-import {toast, ToastContainer} from "react-toastify";
+import { toast, ToastContainer } from "react-toastify";
 import Layout from "@/components/High/Layout";
-import {shouldRedirectHome} from "@/utils/navigation.disabled";
-import {useState} from "react";
-import {Module} from "@/interfaces";
-import {RadioGroup, Tab} from "@headlessui/react";
+import { shouldRedirectHome } from "@/utils/navigation.disabled";
+import { useState } from "react";
+import { Module } from "@/interfaces";
+import { RadioGroup, Tab } from "@headlessui/react";
 import clsx from "clsx";
-import {MODULE_ARRAY} from "@/utils/moduleUtils";
-import {capitalize} from "lodash";
+import { MODULE_ARRAY } from "@/utils/moduleUtils";
+import { capitalize } from "lodash";
 import Button from "@/components/Low/Button";
-import {Exercise, ReadingPart} from "@/interfaces/exam";
+import { Exercise, ReadingPart } from "@/interfaces/exam";
 import Input from "@/components/Low/Input";
 import axios from "axios";
 import ReadingGeneration from "./(generation)/ReadingGeneration";
@@ -21,101 +21,109 @@ import ListeningGeneration from "./(generation)/ListeningGeneration";
 import WritingGeneration from "./(generation)/WritingGeneration";
 import LevelGeneration from "./(generation)/LevelGeneration";
 import SpeakingGeneration from "./(generation)/SpeakingGeneration";
+import { checkAccess, getTypesOfUser } from "@/utils/permissions";
 
-export const getServerSideProps = withIronSessionSsr(({req, res}) => {
-	const user = req.session.user;
+export const getServerSideProps = withIronSessionSsr(({ req, res }) => {
+  const user = req.session.user;
 
-	if (!user || !user.isVerified) {
-		return {
-			redirect: {
-				destination: "/login",
-				permanent: false,
-			}
-		};
-	}
+  if (!user || !user.isVerified) {
+    return {
+      redirect: {
+        destination: "/login",
+        permanent: false,
+      },
+    };
+  }
 
-	if (shouldRedirectHome(user) || user.type !== "developer") {
-		return {
-			redirect: {
-				destination: "/",
-				permanent: false,
-			}
-		};
-	}
+  if (
+    shouldRedirectHome(user) ||
+    checkAccess(user, getTypesOfUser(["developer"]))
+  ) {
+    return {
+      redirect: {
+        destination: "/",
+        permanent: false,
+      },
+    };
+  }
 
-	return {
-		props: {user: req.session.user},
-	};
+  return {
+    props: { user: req.session.user },
+  };
 }, sessionOptions);
 
 export default function Generation() {
-	const [module, setModule] = useState<Module>("reading");
+  const [module, setModule] = useState<Module>("reading");
 
-	const {user} = useUser({redirectTo: "/login"});
+  const { user } = useUser({ redirectTo: "/login" });
 
-	return (
-		<>
-			<Head>
-				<title>Exam Generation | EnCoach</title>
-				<meta
-					name="description"
-					content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
-				/>
-				<meta name="viewport" content="width=device-width, initial-scale=1" />
-				<link rel="icon" href="/favicon.ico" />
-			</Head>
-			<ToastContainer />
-			{user && (
-				<Layout user={user} className="gap-6">
-					<h1 className="text-2xl font-semibold">Exam Generation</h1>
-					<div className="flex flex-col gap-3">
-						<label className="font-normal text-base text-mti-gray-dim">Module</label>
-						<RadioGroup
-							value={module}
-							onChange={setModule}
-							className="flex flex-row -2xl:flex-wrap w-full gap-4 -md:justify-center justify-between">
-							{[...MODULE_ARRAY].map((x) => (
-								<RadioGroup.Option value={x} key={x}>
-									{({checked}) => (
-										<span
-											className={clsx(
-												"px-6 py-4 w-64 flex justify-center text-sm font-normal rounded-full border focus:outline-none cursor-pointer",
-												"transition duration-300 ease-in-out",
-												x === "reading" &&
-													(!checked
-														? "bg-white border-mti-gray-platinum"
-														: "bg-ielts-reading/70 border-ielts-reading text-white"),
-												x === "listening" &&
-													(!checked
-														? "bg-white border-mti-gray-platinum"
-														: "bg-ielts-listening/70 border-ielts-listening text-white"),
-												x === "writing" &&
-													(!checked
-														? "bg-white border-mti-gray-platinum"
-														: "bg-ielts-writing/70 border-ielts-writing text-white"),
-												x === "speaking" &&
-													(!checked
-														? "bg-white border-mti-gray-platinum"
-														: "bg-ielts-speaking/70 border-ielts-speaking text-white"),
-												x === "level" &&
-													(!checked
-														? "bg-white border-mti-gray-platinum"
-														: "bg-ielts-level/70 border-ielts-level text-white"),
-											)}>
-											{capitalize(x)}
-										</span>
-									)}
-								</RadioGroup.Option>
-							))}
-						</RadioGroup>
-					</div>
-					{module === "reading" && <ReadingGeneration />}
-					{module === "listening" && <ListeningGeneration />}
-					{module === "writing" && <WritingGeneration />}
-					{module === "speaking" && <SpeakingGeneration />}
-					{module === "level" && <LevelGeneration />}
-				</Layout>
-			)}
-		</>
-	);
+  return (
+    <>
+      <Head>
+        <title>Exam Generation | EnCoach</title>
+        <meta
+          name="description"
+          content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
+        />
+        <meta name="viewport" content="width=device-width, initial-scale=1" />
+        <link rel="icon" href="/favicon.ico" />
+      </Head>
+      <ToastContainer />
+      {user && (
+        <Layout user={user} className="gap-6">
+          <h1 className="text-2xl font-semibold">Exam Generation</h1>
+          <div className="flex flex-col gap-3">
+            <label className="font-normal text-base text-mti-gray-dim">
+              Module
+            </label>
+            <RadioGroup
+              value={module}
+              onChange={setModule}
+              className="flex flex-row -2xl:flex-wrap w-full gap-4 -md:justify-center justify-between"
+            >
+              {[...MODULE_ARRAY].map((x) => (
+                <RadioGroup.Option value={x} key={x}>
+                  {({ checked }) => (
+                    <span
+                      className={clsx(
+                        "px-6 py-4 w-64 flex justify-center text-sm font-normal rounded-full border focus:outline-none cursor-pointer",
+                        "transition duration-300 ease-in-out",
+                        x === "reading" &&
+                          (!checked
+                            ? "bg-white border-mti-gray-platinum"
+                            : "bg-ielts-reading/70 border-ielts-reading text-white"),
+                        x === "listening" &&
+                          (!checked
+                            ? "bg-white border-mti-gray-platinum"
+                            : "bg-ielts-listening/70 border-ielts-listening text-white"),
+                        x === "writing" &&
+                          (!checked
+                            ? "bg-white border-mti-gray-platinum"
+                            : "bg-ielts-writing/70 border-ielts-writing text-white"),
+                        x === "speaking" &&
+                          (!checked
+                            ? "bg-white border-mti-gray-platinum"
+                            : "bg-ielts-speaking/70 border-ielts-speaking text-white"),
+                        x === "level" &&
+                          (!checked
+                            ? "bg-white border-mti-gray-platinum"
+                            : "bg-ielts-level/70 border-ielts-level text-white")
+                      )}
+                    >
+                      {capitalize(x)}
+                    </span>
+                  )}
+                </RadioGroup.Option>
+              ))}
+            </RadioGroup>
+          </div>
+          {module === "reading" && <ReadingGeneration />}
+          {module === "listening" && <ListeningGeneration />}
+          {module === "writing" && <WritingGeneration />}
+          {module === "speaking" && <SpeakingGeneration />}
+          {module === "level" && <LevelGeneration />}
+        </Layout>
+      )}
+    </>
+  );
 }

src/pages/index.tsx

@@ -1,196 +1,244 @@
 /* eslint-disable @next/next/no-img-element */
 import Head from "next/head";
 import Navbar from "@/components/Navbar";
-import {BsFileEarmarkText, BsPencil, BsStar, BsBook, BsHeadphones, BsPen, BsMegaphone} from "react-icons/bs";
-import {withIronSessionSsr} from "iron-session/next";
-import {sessionOptions} from "@/lib/session";
-import {useEffect, useState} from "react";
+import {
+  BsFileEarmarkText,
+  BsPencil,
+  BsStar,
+  BsBook,
+  BsHeadphones,
+  BsPen,
+  BsMegaphone,
+} from "react-icons/bs";
+import { withIronSessionSsr } from "iron-session/next";
+import { sessionOptions } from "@/lib/session";
+import { useEffect, useState } from "react";
 import useStats from "@/hooks/useStats";
-import {averageScore, groupBySession, totalExams} from "@/utils/stats";
+import { averageScore, groupBySession, totalExams } from "@/utils/stats";
 import useUser from "@/hooks/useUser";
-import Sidebar from "@/components/Sidebar";
 import Diagnostic from "@/components/Diagnostic";
-import {ToastContainer} from "react-toastify";
-import {capitalize} from "lodash";
-import {Module} from "@/interfaces";
+import { ToastContainer } from "react-toastify";
+import { capitalize } from "lodash";
+import { Module } from "@/interfaces";
 import ProgressBar from "@/components/Low/ProgressBar";
 import Layout from "@/components/High/Layout";
-import {calculateAverageLevel} from "@/utils/score";
+import { calculateAverageLevel } from "@/utils/score";
 import axios from "axios";
 import DemographicInformationInput from "@/components/DemographicInformationInput";
 import moment from "moment";
 import Link from "next/link";
-import {MODULE_ARRAY} from "@/utils/moduleUtils";
+import { MODULE_ARRAY } from "@/utils/moduleUtils";
 import ProfileSummary from "@/components/ProfileSummary";
 import StudentDashboard from "@/dashboards/Student";
 import AdminDashboard from "@/dashboards/Admin";
 import CorporateDashboard from "@/dashboards/Corporate";
 import TeacherDashboard from "@/dashboards/Teacher";
 import AgentDashboard from "@/dashboards/Agent";
+import MasterCorporateDashboard from "@/dashboards/MasterCorporate";
 import PaymentDue from "./(status)/PaymentDue";
-import {useRouter} from "next/router";
-import {PayPalScriptProvider} from "@paypal/react-paypal-js";
-import {CorporateUser, Type, userTypes} from "@/interfaces/user";
+import { useRouter } from "next/router";
+import { PayPalScriptProvider } from "@paypal/react-paypal-js";
+import {
+  CorporateUser,
+  MasterCorporateUser,
+  Type,
+  userTypes,
+} from "@/interfaces/user";
 import Select from "react-select";
-import {USER_TYPE_LABELS} from "@/resources/user";
+import { USER_TYPE_LABELS } from "@/resources/user";
+import { checkAccess, getTypesOfUser } from "@/utils/permissions";
 
-export const getServerSideProps = withIronSessionSsr(({req, res}) => {
-	const user = req.session.user;
+export const getServerSideProps = withIronSessionSsr(({ req, res }) => {
+  const user = req.session.user;
 
-	const envVariables: {[key: string]: string} = {};
-	Object.keys(process.env)
-		.filter((x) => x.startsWith("NEXT_PUBLIC"))
-		.forEach((x: string) => {
-			envVariables[x] = process.env[x]!;
-		});
+  const envVariables: { [key: string]: string } = {};
+  Object.keys(process.env)
+    .filter((x) => x.startsWith("NEXT_PUBLIC"))
+    .forEach((x: string) => {
+      envVariables[x] = process.env[x]!;
+    });
 
-	if (!user || !user.isVerified) {
-		return {
-			redirect: {
-				destination: "/login",
-				permanent: false,
-			},
-		};
-	}
+  if (!user || !user.isVerified) {
+    return {
+      redirect: {
+        destination: "/login",
+        permanent: false,
+      },
+    };
+  }
 
-	return {
-		props: {user: req.session.user, envVariables},
-	};
+  return {
+    props: { user: req.session.user, envVariables },
+  };
 }, sessionOptions);
 
 interface Props {
-	user: any;
-	envVariables: {[key: string]: string};
+  user: any;
+  envVariables: { [key: string]: string };
 }
 export default function Home(props: Props) {
-	const {envVariables} = props;
-	const [showDiagnostics, setShowDiagnostics] = useState(false);
-	const [showDemographicInput, setShowDemographicInput] = useState(false);
-	const [selectedScreen, setSelectedScreen] = useState<Type>("admin");
+  const { envVariables } = props;
+  const [showDiagnostics, setShowDiagnostics] = useState(false);
+  const [showDemographicInput, setShowDemographicInput] = useState(false);
+  const [selectedScreen, setSelectedScreen] = useState<Type>("admin");
 
-	const {user, mutateUser} = useUser({redirectTo: "/login"});
-	const router = useRouter();
+  const { user, mutateUser } = useUser({ redirectTo: "/login" });
+  const router = useRouter();
 
-	useEffect(() => {
-		if (user) {
-			setShowDemographicInput(
-				!user.demographicInformation ||
-					!user.demographicInformation.country ||
-					!user.demographicInformation.gender ||
-					!user.demographicInformation.phone,
-			);
-			setShowDiagnostics(user.isFirstLogin && user.type === "student");
-		}
-	}, [user]);
+  useEffect(() => {
+    if (user) {
+      setShowDemographicInput(
+        !user.demographicInformation ||
+          !user.demographicInformation.country ||
+          !user.demographicInformation.gender ||
+          !user.demographicInformation.phone
+      );
+      setShowDiagnostics(user.isFirstLogin && user.type === "student");
+    }
+  }, [user]);
 
-	const checkIfUserExpired = () => {
-		const expirationDate = user!.subscriptionExpirationDate;
+  const checkIfUserExpired = () => {
+    const expirationDate = user!.subscriptionExpirationDate;
 
-		if (expirationDate === null || expirationDate === undefined) return false;
-		if (moment(expirationDate).isAfter(moment(new Date()))) return false;
+    if (expirationDate === null || expirationDate === undefined) return false;
+    if (moment(expirationDate).isAfter(moment(new Date()))) return false;
 
-		return true;
-	};
+    return true;
+  };
 
-	if (user && (user.status === "paymentDue" || user.status === "disabled" || checkIfUserExpired())) {
-		return (
-			<>
-				<Head>
-					<title>EnCoach</title>
-					<meta
-						name="description"
-						content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
-					/>
-					<meta name="viewport" content="width=device-width, initial-scale=1" />
-					<link rel="icon" href="/favicon.ico" />
-				</Head>
-				{user.status === "disabled" && (
-					<Layout user={user} navDisabled>
-						<div className="flex flex-col items-center justify-center text-center w-full gap-4">
-							<span className="font-bold text-lg">Your account has been disabled!</span>
-							<span>Please contact an administrator if you believe this to be a mistake.</span>
-						</div>
-					</Layout>
-				)}
-				{(user.status === "paymentDue" || checkIfUserExpired()) && <PaymentDue hasExpired user={user} reload={router.reload} />}
-			</>
-		);
-	}
+  if (
+    user &&
+    (user.status === "paymentDue" ||
+      user.status === "disabled" ||
+      checkIfUserExpired())
+  ) {
+    return (
+      <>
+        <Head>
+          <title>EnCoach</title>
+          <meta
+            name="description"
+            content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
+          />
+          <meta name="viewport" content="width=device-width, initial-scale=1" />
+          <link rel="icon" href="/favicon.ico" />
+        </Head>
+        {user.status === "disabled" && (
+          <Layout user={user} navDisabled>
+            <div className="flex flex-col items-center justify-center text-center w-full gap-4">
+              <span className="font-bold text-lg">
+                Your account has been disabled!
+              </span>
+              <span>
+                Please contact an administrator if you believe this to be a
+                mistake.
+              </span>
+            </div>
+          </Layout>
+        )}
+        {(user.status === "paymentDue" || checkIfUserExpired()) && (
+          <PaymentDue hasExpired user={user} reload={router.reload} />
+        )}
+      </>
+    );
+  }
 
-	if (user && showDemographicInput) {
-		return (
-			<>
-				<Head>
-					<title>EnCoach</title>
-					<meta
-						name="description"
-						content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
-					/>
-					<meta name="viewport" content="width=device-width, initial-scale=1" />
-					<link rel="icon" href="/favicon.ico" />
-				</Head>
-				<Layout user={user} navDisabled>
-					<DemographicInformationInput mutateUser={mutateUser} user={user} />
-				</Layout>
-			</>
-		);
-	}
+  if (user && showDemographicInput) {
+    return (
+      <>
+        <Head>
+          <title>EnCoach</title>
+          <meta
+            name="description"
+            content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
+          />
+          <meta name="viewport" content="width=device-width, initial-scale=1" />
+          <link rel="icon" href="/favicon.ico" />
+        </Head>
+        <Layout user={user} navDisabled>
+          <DemographicInformationInput mutateUser={mutateUser} user={user} />
+        </Layout>
+      </>
+    );
+  }
 
-	if (user && showDiagnostics) {
-		return (
-			<>
-				<Head>
-					<title>EnCoach</title>
-					<meta
-						name="description"
-						content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
-					/>
-					<meta name="viewport" content="width=device-width, initial-scale=1" />
-					<link rel="icon" href="/favicon.ico" />
-				</Head>
-				<Layout user={user} navDisabled>
-					<Diagnostic user={user} onFinish={() => setShowDiagnostics(false)} />
-				</Layout>
-			</>
-		);
-	}
+  if (user && showDiagnostics) {
+    return (
+      <>
+        <Head>
+          <title>EnCoach</title>
+          <meta
+            name="description"
+            content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
+          />
+          <meta name="viewport" content="width=device-width, initial-scale=1" />
+          <link rel="icon" href="/favicon.ico" />
+        </Head>
+        <Layout user={user} navDisabled>
+          <Diagnostic user={user} onFinish={() => setShowDiagnostics(false)} />
+        </Layout>
+      </>
+    );
+  }
 
-	return (
-		<>
-			<Head>
-				<title>EnCoach</title>
-				<meta
-					name="description"
-					content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
-				/>
-				<meta name="viewport" content="width=device-width, initial-scale=1" />
-				<link rel="icon" href="/favicon.ico" />
-			</Head>
-			<ToastContainer />
-			{user && (
-				<Layout user={user}>
-					{user.type === "student" && <StudentDashboard user={user} />}
-					{user.type === "teacher" && <TeacherDashboard user={user} />}
-					{user.type === "corporate" && <CorporateDashboard user={user} />}
-					{user.type === "agent" && <AgentDashboard user={user} />}
-					{user.type === "admin" && <AdminDashboard user={user} />}
-					{user.type === "developer" && (
-						<>
-							<Select
-								options={userTypes.map((u) => ({value: u, label: USER_TYPE_LABELS[u]}))}
-								value={{value: selectedScreen, label: USER_TYPE_LABELS[selectedScreen]}}
-								onChange={(value) => (value ? setSelectedScreen(value.value) : setSelectedScreen("admin"))}
-							/>
+  return (
+    <>
+      <Head>
+        <title>EnCoach</title>
+        <meta
+          name="description"
+          content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
+        />
+        <meta name="viewport" content="width=device-width, initial-scale=1" />
+        <link rel="icon" href="/favicon.ico" />
+      </Head>
+      <ToastContainer />
+      {user && (
+        <Layout user={user}>
+          {checkAccess(user, ["student"]) && <StudentDashboard user={user} />}
+          {checkAccess(user, ["teacher"]) && <TeacherDashboard user={user} />}
+          {checkAccess(user, ["corporate"]) && (
+            <CorporateDashboard user={user as CorporateUser} />
+          )}
+          {checkAccess(user, ["mastercorporate"]) && (
+            <MasterCorporateDashboard user={user as MasterCorporateUser} />
+          )}
+          {checkAccess(user, ["agent"]) && <AgentDashboard user={user} />}
+          {checkAccess(user, ["admin"]) && <AdminDashboard user={user} />}
+          {checkAccess(user, ["developer"]) && (
+            <>
+              <Select
+                options={userTypes.map((u) => ({
+                  value: u,
+                  label: USER_TYPE_LABELS[u],
+                }))}
+                value={{
+                  value: selectedScreen,
+                  label: USER_TYPE_LABELS[selectedScreen],
+                }}
+                onChange={(value) =>
+                  value
+                    ? setSelectedScreen(value.value)
+                    : setSelectedScreen("admin")
+                }
+              />
 
-							{selectedScreen === "student" && <StudentDashboard user={user} />}
-							{selectedScreen === "teacher" && <TeacherDashboard user={user} />}
-							{selectedScreen === "corporate" && <CorporateDashboard user={user as unknown as CorporateUser} />}
-							{selectedScreen === "agent" && <AgentDashboard user={user} />}
-							{selectedScreen === "admin" && <AdminDashboard user={user} />}
-						</>
-					)}
-				</Layout>
-			)}
-		</>
-	);
+              {selectedScreen === "student" && <StudentDashboard user={user} />}
+              {selectedScreen === "teacher" && <TeacherDashboard user={user} />}
+              {selectedScreen === "corporate" && (
+                <CorporateDashboard user={user as unknown as CorporateUser} />
+              )}
+              {selectedScreen === "mastercorporate" && (
+                <MasterCorporateDashboard
+                  user={user as unknown as MasterCorporateUser}
+                />
+              )}
+              {selectedScreen === "agent" && <AgentDashboard user={user} />}
+              {selectedScreen === "admin" && <AdminDashboard user={user} />}
+            </>
+          )}
+        </Layout>
+      )}
+    </>
+  );
 }

src/pages/permissions/[id].tsx

@@ -0,0 +1,190 @@
+/* eslint-disable @next/next/no-img-element */
+import Head from "next/head";
+import { useState } from "react";
+import { withIronSessionSsr } from "iron-session/next";
+import { sessionOptions } from "@/lib/session";
+import { shouldRedirectHome } from "@/utils/navigation.disabled";
+import { Permission, PermissionType } from "@/interfaces/permissions";
+import { getPermissionDoc } from "@/utils/permissions.be";
+import { User } from "@/interfaces/user";
+import Layout from "@/components/High/Layout";
+import { getUsers } from "@/utils/users.be";
+import { BsTrash } from "react-icons/bs";
+import Select from "@/components/Low/Select";
+import Button from "@/components/Low/Button";
+import axios from "axios";
+import { toast, ToastContainer } from "react-toastify";
+
+interface BasicUser {
+  id: string;
+  name: string;
+}
+
+interface PermissionWithBasicUsers {
+  id: string;
+  type: PermissionType;
+  users: BasicUser[];
+}
+
+export const getServerSideProps = withIronSessionSsr(async (context) => {
+  const { req, params } = context;
+  const user = req.session.user;
+
+  if (!user || !user.isVerified) {
+    return {
+      redirect: {
+        destination: "/login",
+        permanent: false,
+      },
+    };
+  }
+
+  if (shouldRedirectHome(user)) {
+    return {
+      redirect: {
+        destination: "/",
+        permanent: false,
+      },
+    };
+  }
+
+  if (!params?.id) {
+    return {
+      redirect: {
+        destination: "/permissions",
+        permanent: false,
+      },
+    };
+  }
+
+  // Fetch data from external API
+  const permission: Permission = await getPermissionDoc(params.id as string);
+
+  const allUserData: User[] = await getUsers();
+  const users = allUserData.map((u) => ({
+    id: u.id,
+    name: u.name,
+  })) as BasicUser[];
+
+  // const res = await fetch("api/permissions");
+  // const permissions: Permission[] = await res.json();
+  // Pass data to the page via props
+  const usersData: BasicUser[] = permission.users.reduce(
+    (acc: BasicUser[], userId) => {
+      const user = users.find((u) => u.id === userId) as BasicUser;
+      if (user) {
+        acc.push(user);
+      }
+      return acc;
+    },
+    []
+  );
+
+  return {
+    props: {
+      // permissions: permissions.map((p) => ({ id: p.id, type: p.type })),
+      permission: {
+        ...permission,
+        id: params.id,
+        users: usersData,
+      },
+      user: req.session.user,
+      users,
+    },
+  };
+}, sessionOptions);
+
+interface Props {
+  permission: PermissionWithBasicUsers;
+  user: User;
+  users: BasicUser[];
+}
+
+export default function Page(props: Props) {
+  console.log("Props", props);
+
+  const { permission, user, users } = props;
+
+  const [selectedUsers, setSelectedUsers] = useState<string[]>(() =>
+    permission.users.map((u) => u.id)
+  );
+
+  const onChange = (value: any) => {
+    console.log("value", value);
+    setSelectedUsers((prev) => {
+      if (value?.value) {
+        return [...prev, value?.value];
+      }
+      return prev;
+    });
+  };
+  const removeUser = (id: string) => {
+    setSelectedUsers((prev) => prev.filter((u) => u !== id));
+  };
+
+  const update = async () => {
+    console.log("update", selectedUsers);
+    try {
+      await axios.patch(`/api/permissions/${permission.id}`, {
+        users: selectedUsers,
+      });
+      toast.success("Permission updated");
+    } catch (err) {
+      toast.error("Failed to update permission");
+    }
+  };
+
+  return (
+    <>
+      <Head>
+        <title>EnCoach</title>
+        <meta
+          name="description"
+          content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
+        />
+        <meta name="viewport" content="width=device-width, initial-scale=1" />
+        <link rel="icon" href="/favicon.ico" />
+      </Head>
+      <ToastContainer />
+      <Layout user={user} className="gap-6">
+        <h1 className="text-2xl font-semibold">
+          Permission: {permission.type as string}
+        </h1>
+        <div className="flex gap-3">
+          <Select
+            value={null}
+            options={users
+              .filter((u) => !selectedUsers.includes(u.id))
+              .map((u) => ({
+                label: u.name,
+                value: u.id,
+              }))}
+            onChange={onChange}
+          />
+          <Button onClick={update}>Update</Button>
+        </div>
+        <div className="flex flex-col gap-3">
+          <h2>Blacklisted Users</h2>
+          <div className="flex gap-3 flex-wrap">
+            {selectedUsers.map((userId) => {
+              const name = users.find((u) => u.id === userId)?.name;
+              return (
+                <div
+                  className="flex p-4 rounded-xl w-auto bg-mti-purple-light text-white gap-4"
+                  key={userId}
+                >
+                  <span className="text-base">{name}</span>
+                  <BsTrash
+                    style={{ cursor: "pointer" }}
+                    onClick={() => removeUser(userId)}
+                    size={20}
+                  />
+                </div>
+              );
+            })}
+          </div>
+        </div>
+      </Layout>
+    </>
+  );
+}

src/pages/permissions/index.tsx

@@ -0,0 +1,94 @@
+/* eslint-disable @next/next/no-img-element */
+import Head from "next/head";
+import { withIronSessionSsr } from "iron-session/next";
+import { sessionOptions } from "@/lib/session";
+import { shouldRedirectHome } from "@/utils/navigation.disabled";
+import { Permission } from "@/interfaces/permissions";
+import { getPermissionDocs } from "@/utils/permissions.be";
+import { User } from "@/interfaces/user";
+import Layout from "@/components/High/Layout";
+import Link from "next/link";
+
+export const getServerSideProps = withIronSessionSsr(async ({ req }) => {
+  const user = req.session.user;
+
+  if (!user || !user.isVerified) {
+    return {
+      redirect: {
+        destination: "/login",
+        permanent: false,
+      },
+    };
+  }
+
+  if (shouldRedirectHome(user)) {
+    return {
+      redirect: {
+        destination: "/",
+        permanent: false,
+      },
+    };
+  }
+
+  // Fetch data from external API
+  const permissions: Permission[] = await getPermissionDocs();
+
+  console.log("Permissions", permissions);
+
+  // const res = await fetch("api/permissions");
+  // const permissions: Permission[] = await res.json();
+  // Pass data to the page via props
+  return {
+    props: {
+      // permissions: permissions.map((p) => ({ id: p.id, type: p.type })),
+      permissions: permissions.map((p) => {
+        const { users, ...rest } = p;
+        return rest;
+      }),
+      user: req.session.user,
+    },
+  };
+}, sessionOptions);
+
+interface Props {
+  permissions: Permission[];
+  user: User;
+}
+
+export default function Page(props: Props) {
+  console.log("Props", props);
+
+  const { permissions, user } = props;
+
+  return (
+    <>
+      <Head>
+        <title>EnCoach</title>
+        <meta
+          name="description"
+          content="A training platform for the IELTS exam provided by the Muscat Training Institute and developed by eCrop."
+        />
+        <meta name="viewport" content="width=device-width, initial-scale=1" />
+        <link rel="icon" href="/favicon.ico" />
+      </Head>
+      <Layout user={user} className="gap-6">
+        <h1 className="text-2xl font-semibold">Permissions</h1>
+        <div className="flex gap-3 flex-wrap">
+          {permissions.map((permission: Permission) => {
+            const id = permission.id as string;
+            const type = permission.type as string;
+            return (
+              <Link href={`/permissions/${id}`} key={id}>
+                <div className="card bg-primary text-primary-content">
+                  <div className="card-body">
+                    <h1 className="card-title">{type}</h1>
+                  </div>
+                </div>
+              </Link>
+            );
+          })}
+        </div>
+      </Layout>
+    </>
+  );
+}

src/pages/settings.tsx

@@ -26,7 +26,7 @@ export const getServerSideProps = withIronSessionSsr(({req, res}) => {
 		};
 	}
 
-	if (shouldRedirectHome(user) || !["developer", "admin", "corporate", "agent"].includes(user.type)) {
+	if (shouldRedirectHome(user) || !["developer", "admin", "corporate", "agent", "mastercorporate"].includes(user.type)) {
 		return {
 			redirect: {
 				destination: "/",

src/pages/stats.tsx

@@ -202,7 +202,7 @@ export default function Stats() {
 										}}
 									/>
 								)}
-								{(user.type === "corporate" || user.type === "teacher") && groups.length > 0 && (
+								{(["corporate", "teacher", "mastercorporate"].includes(user.type) ) && groups.length > 0 && (
 									<Select
 										className="w-full"
 										options={users