UNPKG

@syngrisi/syngrisi

Version:

Syngrisi - Visual Testing Tool

github.com/syngrisi/syngrisi/tree/main/packages/syngrisi

syngrisi/syngrisi

51 lines (48 loc) 2.03 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
const httpStatus = require('http-status'); const ApiError = require('../utils/ApiError'); const catchAsync = require('../utils/catchAsync'); const $this = this; $this.logMeta = { scope: 'authorization', msgType: 'AUTHORIZATION', }; exports.authorization = (type) => { const types = { admin: catchAsync(async (req, res, next) => { if (!(await global.AppSettings.isAuthEnabled())) { return next(); } if (req.user?.role === 'admin') { log.silly(`user: '${req.user?.username}' was successfully authorized, type: '${type}'`); return next(); } log.warn(`user authorization: '${req.user?.username}' wrong role, type: '${type}'`); throw new ApiError(httpStatus.FORBIDDEN, 'Authorization Error - wrong Role'); }), user: catchAsync(async (req, res, next) => { if (!(await global.AppSettings.isAuthEnabled())) { return next(); } if (req.user?.role === 'admin') { log.silly(`user: '${req.user?.username}' was successfully authorized, type: '${type}'`); return next(); } if ( type === 'user' && (req.user?.role === 'user' || req.user?.role === 'reviewer') ) { log.silly(`user: '${req.user?.username}' was successfully authorized, type: '${type}'`); return next(); } log.warn(`user authorization: '${req.user?.username}' wrong role, type: '${type}'`); throw new ApiError(httpStatus.FORBIDDEN, 'Authorization Error - wrong Role'); }), }; if (types[type]) return types[type]; return catchAsync( () => { log.error(JSON.stringify(new ApiError(httpStatus.FORBIDDEN, 'Wrong type of authorization'))); throw new ApiError(httpStatus.FORBIDDEN, 'Authorization Error - wrong type of authorization'); } ); };