UNPKG

@minddoc/accesscontrol

Version:

Role and Attribute based Access Control

github.com/minddocdev/accesscontrol

minddocdev/accesscontrol

88 lines 2.7 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.AccessControl = void 0; const access_1 = require("./access"); const enums_1 = require("./enums"); const error_1 = require("./error"); const permission_1 = require("./permission"); const query_1 = require("./query"); const utils_1 = require("./utils"); class AccessControl { constructor(grants) { let initGrants = grants; if (arguments.length === 0) { initGrants = {}; } this.setGrants(initGrants); } getGrants() { return this.grants; } setGrants(grantsObject) { this.grants = utils_1.getInspectedGrants(grantsObject); return this; } reset() { this.grants = {}; return this; } getRoles() { return Object.keys(this.grants); } getResources() { return utils_1.getResources(this.grants); } hasRole(role) { if (!this.grants) { return false; } if (Array.isArray(role)) { return role.every((item) => this.grants.hasOwnProperty(item)); } return this.grants.hasOwnProperty(role); } hasResource(resource) { const resources = this.getResources(); if (Array.isArray(resource)) { return resource.every((item) => resources.indexOf(item) >= 0); } if (typeof resource !== 'string' || resource === '') return false; return resources.indexOf(resource) >= 0; } can(role) { if (arguments.length !== 0 && role === undefined) { throw new error_1.AccessControlError('Invalid role(s): undefined'); } return new query_1.Query(this.grants, role); } permission(queryInfo) { return new permission_1.Permission(this.grants, queryInfo); } grant(role) { if (arguments.length !== 0 && role === undefined) { throw new error_1.AccessControlError('Invalid role(s): undefined'); } return new access_1.Access(this, role, false); } deny(role) { if (arguments.length !== 0 && role === undefined) { throw new error_1.AccessControlError('Invalid role(s): undefined'); } return new access_1.Access(this, role, true); } static get Action() { return enums_1.Action; } static get Possession() { return enums_1.Possession; } static get Error() { return error_1.AccessControlError; } static isAccessControlError(object) { return object instanceof error_1.AccessControlError; } } exports.AccessControl = AccessControl; //# sourceMappingURL=AccessControl.js.map