UNPKG

@clickup/ent-framework

Version:

A PostgreSQL graph-database-alike library with microsharding and row-level security

github.com/clickup/ent-framework

clickup/ent-framework

33 lines (29 loc) 1.14 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
import { EntAccessError } from "../errors/EntAccessError"; import type { VC } from "../VC"; import type { RuleResult } from "./Rule"; import { Rule } from "./Rule"; /** * Returns DENY if the predicate succeeds, otherwise SKIP. * - Used mostly to early block some read/write access. * - EntAccessError exception will be treated as a DENY signal (so it will abort * processing immediately). * - This rule may still throw an exception if the exception is a wild one (not * derived from EntAccessError). */ export class DenyIf<TInput extends object> extends Rule<TInput> { readonly _TAG!: "DenyIf"; async evaluate(vc: VC, input: TInput): Promise<RuleResult> { try { return (await this.predicate.check(vc, input)) ? { decision: "DENY", rule: this, cause: null } : { decision: "SKIP", rule: this, cause: null }; } catch (error: unknown) { if (error instanceof EntAccessError) { // We carry a cause for this DENY decision too if it was due to an // access-related error. return { decision: "DENY", rule: this, cause: error }; } throw error; } } }