@availity/authorize

Version:

Check user permissions to see if the current user is authorized to see your content.

availity.github.io/availity-react/components/authorize

Availity/availity-react

103 lines (81 loc) • 3.18 kB

text/typescript

import { avUserPermissionsApi, avRegionsApi } from '@availity/api-axios'; import type { Permission, RequestedPermissions, RequestedResources } from './types'; export const getRegion = async (region?: boolean | string): Promise<string | undefined> => { if (region === true) { const resp = await avRegionsApi.getCurrentRegion(); return resp?.data?.regions?.[0]?.id; } return region || undefined; }; export const getPermissions = async ( permissions: RequestedPermissions, region?: boolean | string ): Promise<Record<string, Permission>> => { if (!permissions) return {}; // TODO: fix these types const response = await avUserPermissionsApi.getPermissions(permissions as string[], await getRegion(region)); return response.reduce<Record<string, Permission>>((prev, cur) => { prev[cur.id] = cur; return prev; }, {}); }; export const checkPermission = ( permission?: Permission, resources?: RequestedResources, organizationId?: string, customerId?: string ): boolean => { if (!permission) return false; let isAuthorizedForCustomerId = true; let isAuthorizedForOrganizationId = true; let isAuthorizedForResources = true; // Check if user has org in list based on organizationId if (organizationId) { isAuthorizedForOrganizationId = permission.organizations.some(({ id: orgId }) => orgId === organizationId); } // Check if user has org in list based on customerId if (customerId) { isAuthorizedForCustomerId = permission.organizations.some( ({ customerId: orgCustomerId }) => orgCustomerId === customerId ); } // Check if resources are in response if (resources !== undefined) { const resourceSets = Array.isArray(resources) ? resources : [resources]; isAuthorizedForResources = resourceSets.length === 0 || resourceSets.some((resourceSet) => { if (Array.isArray(resourceSet)) { return resourceSet.every((resource) => permission.organizations.some(({ resources: orgResources = [] }) => orgResources.some(({ id }) => `${id}` === `${resource}`) ) ); } return permission.organizations.some(({ resources: orgResources = [] }) => orgResources.some(({ id }) => `${id}` === `${resourceSet}`) ); }); } return isAuthorizedForCustomerId && isAuthorizedForOrganizationId && isAuthorizedForResources; }; export const checkPermissions = async ( permissions: RequestedPermissions, region: boolean | string = true, resources?: RequestedResources, organizationId?: string, customerId?: string ): Promise<boolean> => { if (!permissions) return false; permissions = Array.isArray(permissions) ? permissions : [permissions]; const response = await getPermissions(permissions, region); const authorized = permissions.some((permissionSet) => { if (Array.isArray(permissionSet)) { return permissionSet.every((permission) => checkPermission(response[permission], resources, organizationId, customerId) ); } return checkPermission(response[permissionSet], resources, organizationId, customerId); }); return authorized; };