UNPKG

@syngrisi/syngrisi

Version:

Syngrisi - Visual Testing Tool

github.com/syngrisi/syngrisi/tree/main/packages/syngrisi

syngrisi/syngrisi

76 lines (69 loc) 3.07 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
/* eslint-disable @typescript-eslint/ban-ts-comment */ /* eslint-disable @typescript-eslint/no-explicit-any */ import { HttpStatus } from '@utils'; // eslint-disable-next-line @typescript-eslint/no-unused-vars import { Response, NextFunction } from 'express'; import { ApiError } from '@utils'; import { catchAsync } from '@utils'; import log from '@lib/logger'; import { ExtRequest } from '@types'; import { appSettings } from "@settings"; // import { createLog } from '@controllers/logs.controller'; // import AppSettings from '@models/AppSettings'; export const authorization = (type: string) => { const types: { [key: string]: (req: any, res: any, next: NextFunction) => any } = { admin: catchAsync(async (req: ExtRequest, res: Response, next: NextFunction) => { const AppSettings = appSettings; const authEnabled = await AppSettings.isAuthEnabled(); log.info(`authorization check`, { type, user: req.user?.username, role: req.user?.role, authEnabled, }); if (!authEnabled) { return next(); } if (req.user?.role === 'admin') { log.silly(`user: '${req.user?.username}' was successfully authorized, type: '${type}'`); return next(); } log.warn(`user authorization: '${req.user?.username}' wrong role, type: '${type}'`); throw new ApiError(HttpStatus.FORBIDDEN, 'Authorization Error - wrong Role'); }), user: catchAsync(async (req: ExtRequest, res: Response, next: NextFunction) => { const AppSettings = appSettings; // @ts-ignore const authEnabled = await AppSettings.isAuthEnabled(); log.info(`authorization check`, { type, user: req.user?.username, role: req.user?.role, authEnabled, }); if (!authEnabled) { return next(); } if (req.user?.role === 'admin') { log.silly(`user: '${req.user?.username}' was successfully authorized, type: '${type}'`); return next(); } if ( type === 'user' && (req.user?.role === 'user' || req.user?.role === 'reviewer') ) { log.silly(`user: '${req.user?.username}' was successfully authorized, type: '${type}'`); return next(); } log.warn(`user authorization: '${req.user?.username}' wrong role, type: '${type}'`); throw new ApiError(HttpStatus.FORBIDDEN, 'Authorization Error - wrong Role'); }), }; if (types[type]) return types[type]; return catchAsync( () => { log.error(JSON.stringify(new ApiError(HttpStatus.FORBIDDEN, 'Wrong type of authorization'))); throw new ApiError(HttpStatus.FORBIDDEN, 'Authorization Error - wrong type of authorization'); } ); };