mirror of
https://github.com/wassname/talk.git
synced 2026-07-16 11:22:16 +08:00
54 lines
1.4 KiB
JavaScript
54 lines
1.4 KiB
JavaScript
const root = require('./rootReducer');
|
|
const queries = require('./queryReducer');
|
|
const mutations = require('./mutationReducer');
|
|
|
|
const reducers = [
|
|
root,
|
|
queries,
|
|
mutations
|
|
];
|
|
|
|
// this will make 'reducer' a key in this array. hm.
|
|
const allPermissions = [...Object.keys(root), ...Object.keys(queries), ...Object.keys(mutations)];
|
|
|
|
const findGrant = (user, perms, context) => {
|
|
|
|
return perms.every(perm => {
|
|
|
|
for (let key in reducers) {
|
|
const reducer = reducers[key];
|
|
const grant = reducer.checkRoles(user, perm, context);
|
|
|
|
if (grant !== null && typeof grant !== 'undefined') {
|
|
return grant;
|
|
}
|
|
}
|
|
|
|
return false;
|
|
});
|
|
};
|
|
|
|
/**
|
|
* returns true, false, or null depending on whether the user has those permissions
|
|
* throws an error if you pass a permission that's not known to the system
|
|
* @param {User} user the user making the request for db operations
|
|
* @param {[type]} context [description]
|
|
* @param {String/Array} perms a string an array of strings which are the names of the permissions
|
|
* @return {Boolean}
|
|
*/
|
|
module.exports = (user, context, ...perms) => {
|
|
|
|
// make sure all the passed permissions are not typos
|
|
const missingPerms = perms.filter(perm => {
|
|
return allPermissions.indexOf(perm) === -1;
|
|
});
|
|
|
|
if (missingPerms.length) {
|
|
|
|
// not sure if this is working.
|
|
throw new Error(`${missingPerms.join(' ')} are not valid permissions.`);
|
|
}
|
|
|
|
return findGrant(user, perms, context);
|
|
};
|