UNPKG

am-i-allowed

Version:

A generic, very powerful yet very friendly, 0 dependencies, agnostic, permissions/access-control/authorization library

github.com/dharmax/am-i-allowed

dharmax/am-i-allowed

83 lines (72 loc) 2.96 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
import {IActor, IPermissionStore, IPrivilegeManaged, PermissionsMetaData} from "./types"; import {Role} from "./am-i-allowed"; export class MemoryPermissionStore implements IPermissionStore { private roleAssignmentDatabase: { [entityId: string]: { [actorId: string]: string[] } } = {} private roleRegistry = {}; async assignRole(_entity: IPrivilegeManaged, _actor: IActor, roleName: string): Promise<void> { const entityId = _entity.id.toString() const actor = _actor.id.toString() let entityEntry = this.roleAssignmentDatabase[entityId] if (!entityEntry) { entityEntry = {[actor]: [roleName]} this.roleAssignmentDatabase[entityId] = entityEntry return } let actorRoles = entityEntry[actor] if (!actorRoles) { entityEntry[actor] = [roleName] return } actorRoles.push(roleName) } async getRolesForUser(_actor: IActor, entity: IPrivilegeManaged, metadata: PermissionsMetaData): Promise<Role[]> { const entityId = entity.id.toString() const actorId = _actor.id.toString() let entry = this.roleAssignmentDatabase[entityId] if (!entry) return [] const roleNames = entry[actorId] if (!roleNames) return [] return roleNames.map(rName => metadata.roles[rName]) } async removeRole(entity: IPrivilegeManaged, _actor: IActor, roleName: string): Promise<void> { const entityId = entity.id.toString() const actorId = _actor.id.toString() let entry = this.roleAssignmentDatabase[entityId] if (!entry) return const roleNames = entry[actorId] if (!roleNames) return const i = roleNames.indexOf(roleName) if (i === -1) return roleNames.splice(i, 1) } deleteRole(roleName: string, entityTypeName: string) { delete this.roleRegistry[entityTypeName + '.' + roleName] } async saveRole(entityTypeName: string, role: Role): Promise<void> { this.roleRegistry[entityTypeName + '.' + role.roleName] = role } async getRoleOwners(entity: IPrivilegeManaged): Promise<{ [actorId: string]: string[] }> { return this.roleAssignmentDatabase[entity.id] } async getActorRoles(_actor: IActor, skip: number, limit: number): Promise<{ [p: string]: string[] }> { const actorId = _actor.id.toString() const entries: { [entityId: string]: string[] } = {} let counter = 0 for (let [e, assignments] of Object.entries(this.roleAssignmentDatabase)) { if (counter < skip) continue if (counter >= limit) break const actorAssignments = assignments[actorId]; if (actorAssignments) { entries[e] = actorAssignments } } return entries } }