UNPKG

@onehilltech/blueprint

Version:

lightweight, simple, elegant framework for building mean applications

github.com/onehilltech/blueprint

onehilltech/blueprint

173 lines (150 loc) 4.46 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
var async = require ('async') , util = require ('util') , _ = require ('underscore') , Framework = require ('./Framework') ; var HttpError = require ('./errors/HttpError') ; // The module needs to store the initialize application. We are not going // to rely on the getting the app directly from the framework since there // is good chance it may not be initialized. var app; Framework ().messaging.once ('app.init', function (result) { app = result; }); /** * Definition of a policy. * * @param def * @constructor */ function PolicyDefinition (def) { this._def = def; } /** * Evaluate the policy definition. * * @param req * @param callback * @returns {*} */ PolicyDefinition.prototype.evaluate = function (req, callback) { return this._def (req, function (err, result) { if (!result) return callback (new HttpError (403, 'Unauthorized access')); return callback (); }); }; function PolicyDefinitionFactory (def) { return new PolicyDefinition (def); } module.exports = exports = PolicyDefinitionFactory; exports.Definition = PolicyDefinitionFactory; /** * Evaluate a policy. The first parameter can either be a policy function, * or the name of a policy. In the latter case, the policy function is resolved * using the existing policies loaded by the appliction. */ function evaluate () { // Pop the first argument. var args = [].slice.call (arguments); var policy = args.shift (); if (_.isString (policy)) { var name = policy; policy = app.policyManager.find (policy); if (!policy) throw new Error (util.format ('Policy %s does not exist', name)); } policy.apply (null, args); } exports.evaluate = evaluate; /** * Factory method for creating a policy that can be evaluated. This factory * return a function that has the signature function (req, callback). The * callback (err, result) return true if the policy is passed, or false if * the policy failed. * * @constructor */ function PolicyRule () { var args = [].slice.call (arguments); var policy = args.shift (); if (_.isString (policy)) { var name = policy; policy = app.policyManager.find (policy); if (!policy) throw new Error (util.format ('Policy %s does not exist', name)); } return function __blueprint_policy (req, callback) { // Push the callback as the last argument. args.push (req); args.push (callback); // Call the check. return policy.apply (null, args); }; } /** * Collection of policies where at least one must pass. * * @param policies * @returns {__blueprint_or_policy} * @constructor */ function orPolicy (policies) { return function __blueprint_or_policy (req, callback) { async.some (policies, function __blueprint_or_iterator (policy, callback) { return policy (req, function __blueprint_or_result (err, result) { // Since we are using async 1.5, we need to ignore the err parameter. if (err) result = false; return callback (result); }); }, function __blueprint_or_complete (result) { // This is a callback from our framework. We need to pass in null as // the error so we have proper behavior. return callback (null, result); } ); }; } /** * Collection of policies where all must pass. * * @param policies * @returns {__blueprint_and_policy} */ function andPolicy (policies) { return function __blueprint_and_policy (req, callback) { async.every (policies, function __blueprint_and_iterator (policy, callback) { return policy (req, function __blueprint_and_result (err, result) { // Since we are using async 1.5, we need to ignore the err parameter. if (err) result = false; return callback (result); }); }, function __blueprint_and_complete (result) { // This is a callback from our framework. We need to pass in null as // the error so we have proper behavior. return callback (null, result); } ); }; } /** * Negate a policy. * * @param policy * @returns {__blueprint_not_policy} */ function notPolicy (policy) { return function __blueprint_not_policy (req, callback) { return policy (req, function __blueprint_not_result (err, result) { return callback (err, !result); }); }; } exports.assert = PolicyRule; exports.and = andPolicy; exports.not = notPolicy; exports.or = orPolicy;