monoid/ionian
1
0
Fork 0
Code Issues 9 Pull requests Projects Releases Wiki Activity
ionian/src/permission/permission.ts
monoid 6e3e2426c8 add content permission
2021-02-22 23:08:45 +09:00

59 lines
No EOL
1.8 KiB
TypeScript
Raw Blame History

import Koa from 'koa';
import { UserState } from '../login';
import { sendError } from '../route/error_handler';
export enum Permission{
//========
//not implemented
//admin only
/** remove document */
//removeContent = 'removeContent',
/** upload document */
//uploadContent = 'uploadContent',
/** modify document except base path, filename, content_hash. but admin can modify all. */
//modifyContent = 'modifyContent',
/** add tag into document */
//addTagContent = 'addTagContent',
/** remove tag from document */
//removeTagContent = 'removeTagContent',
/** ModifyTagInDoc */
ModifyTag = 'ModifyTag',
/** find documents with query */
//findAllContent = 'findAllContent',
/** find one document. */
//findOneContent = 'findOneContent',
/** view content*/
//viewContent = 'viewContent',
QueryContent = 'QueryContent',
/** modify description about the one tag. */
modifyTagDesc = 'ModifyTagDesc',
}
export const createPermissionCheckMiddleware = (...permissions:string[]) => async (ctx: Koa.ParameterizedContext<UserState>,next:Koa.Next)=>{
const user = ctx.state['user'];
if(user === undefined){
return sendError(401,"you are guest. login needed.");
}
if(user.username === "admin"){
return await next();
}
const user_permission = user.permission;
//if permissions is not subset of user permission
if(!permissions.map(p=>user_permission.includes(p)).every(x=>x)){
return sendError(403,"do not have permission");
}
await next();
}
export const AdminOnlyMiddleware = async (ctx: Koa.ParameterizedContext<UserState>,next:Koa.Next)=>{
const user = ctx.state['user'];
if(user === undefined || user.username !== "admin"){
return sendError(403,"admin only");
}
await next();
}
Reference in a new issue View git blame Copy permalink