UNPKG

backendless-console-sdk

Version:

Backendless Console SDK for Node.js and browser

github.com/Backendless/Console-SDK

Backendless/Console-SDK

154 lines (131 loc) 6.59 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
/** * This class is created to resolve a huge amount of inconsistency between various security REST endpoints * Someday, all these inconsistency, hopefully will be resolved on server and we will be able to delete * this class or some part of it */ import urls from './urls' import * as qs from 'backendless-request/lib/qs' import _isEmpty from 'lodash/isEmpty' import { PermissionPolicies, PermissionServices, ALL_OBJECTS } from './constants/security' const baseUrl = appId => urls.security(appId) /** * Returns calculated GET url in form of 'security/:stickingPoint?:queryParams' * * The stickingPoint value is calculated by the folliwing rules * * default => :service/:serviceItemId/:policy * service=files, policy=users => :service/:policy/:serviceItemId (BKNDLSS-13008) * service=files, policy=roles => :policy/:service/:serviceItemId (BKNDLSS-13008) * policy=owner => :service/ownerpolicy/:serviceItemId * policy=columns => :service/:serviceItemId/:policy/permissions * objectId != ALL_OBJECTS => :service/:serviceItemName/objectAcl/:objectId/:policy * * @returns {string} */ export const buildGetUrl = (appId, policy, service, serviceItemId, serviceItemName, objectId, filterParams) => { const isFilesService = service === PermissionServices.FILES const isRolesPolicy = policy === PermissionPolicies.ROLES const isOwnerPolicy = policy === PermissionPolicies.OWNER const isColumnsPolicy = policy === PermissionPolicies.COLUMNS const isObjectACL = objectId !== ALL_OBJECTS let stickingPoint = `${service}/${serviceItemId}/${policy}` if (filterParams.identity != null) { filterParams.name = filterParams.identity } if (isOwnerPolicy) { stickingPoint = `${service}/ownerpolicy/${serviceItemId}` } else if (isFilesService && isRolesPolicy) { stickingPoint = `roles/${service}/${encodeURIComponent(serviceItemId)}` } else if (isFilesService) { if (filterParams.name) { stickingPoint = `users/search/${encodeURI(filterParams.name)}/${service}/${encodeURIComponent(serviceItemId)}` } else { stickingPoint = `${service}/users/${encodeURIComponent(serviceItemId)}` } } else if (isColumnsPolicy) { stickingPoint = `${service}/${serviceItemId}/${policy}/permissions` } else if (isObjectACL) { stickingPoint = `${service}/${serviceItemName}/objectAcl/${objectId}/${policy}` } return `${baseUrl(appId)}/${stickingPoint}${_isEmpty(filterParams) ? '' : `?${qs.stringify(filterParams)}`}` } /** * Returns calculated PUT url according to rules : * * default : 'security/:service/:serviceItemId/:policy/:policyItemId' * policy=owner : 'security/:service/ownerpolicy/{serviceItemId} * service=file & policy=users : 'security/:policy/:policyItemId/file/:serviceItemId' * service=file & policy=roles : 'security/:policy/:policyItemId/files/:serviceItemId' * objectId!=all : 'security/:service/:serviceItemName/objectAcl/:objectID/users/:policyItemId' * service=api & operation=all : 'security/:service/:serviceItemId/:policy/:policyItemId/:access' * * @returns {string} */ export const buildPutUrl = (appId, policy, service, serviceItemId, serviceItemName, objectId, policyItemId, permission) => { const { OWNER, USERS, ROLES, COLUMNS } = PermissionPolicies const isOwnerPolicy = policy === OWNER const isUserPolicy = policy === USERS const isRolesPolicy = policy === ROLES const isColumnsPolicy = policy === COLUMNS const isFilesService = service === PermissionServices.FILES const isApiService = service === PermissionServices.API_SERVICES const isObjectACL = objectId !== ALL_OBJECTS let stickingPoint = `${service}/${serviceItemId}/${policy}/${policyItemId}` if (isOwnerPolicy) { stickingPoint = `${service}/ownerpolicy/${serviceItemId}` } else if (isObjectACL) { stickingPoint = `${service}/${serviceItemName}/objectAcl/${objectId}/${policy}/${policyItemId}` } else if (isFilesService) { if (isUserPolicy) { stickingPoint = `${policy}/${policyItemId}/file/${serviceItemId}` } else if (isRolesPolicy) { stickingPoint = `${policy}/${policyItemId}/files/${serviceItemId}` } } else if (isApiService && permission.operation === 'all') { stickingPoint += '/access/' + permission.access } else if (isColumnsPolicy) { stickingPoint = `${service}/${serviceItemId}/${policy}/permissions/${permission.operation}/${policyItemId}` } return `${baseUrl(appId)}/${stickingPoint}` } /** * Returns calculated DELETE url according to rules : * * default : security/:service/:serviceItemId/:policy/:policyItemId:(/:operation) * policy=owner : security/:service/ownerpolicy/:serviceItemId/:operation * objectId!=all & policy=roles : security/:service/:serviceItemName/objectAcl/:objectId/:policy/:operation * objectId!=all & policy=users : security/:service/:serviceItemName/objectAcl/:objectId/:policy/:policyItemId * service=files : security/:policy/:policyItemId/:service/:serviceItemId * * @returns {string} */ export const buildDeleteUrl = (appId, policy, policyItemId, service, serviceItemId, serviceItemName, objectId, operation) => { const isFilesService = service === PermissionServices.FILES const isOwnerPolicy = policy === PermissionPolicies.OWNER const isRolesPolicy = policy === PermissionPolicies.ROLES const isObjectACL = objectId !== ALL_OBJECTS const operationEscaped = operation && encodeURIComponent(operation) if (isOwnerPolicy) { return `${baseUrl(appId)}/${service}/ownerpolicy/${serviceItemId}/${operationEscaped}` } if (isObjectACL) { const stickingPoint = isRolesPolicy ? operationEscaped : encodeURIComponent(policyItemId) return `${baseUrl(appId)}/${service}/${serviceItemName}/objectAcl/${objectId}/${policy}/${stickingPoint}` } if (isObjectACL && isRolesPolicy) { return `${baseUrl(appId)}/${service}/${serviceItemName}/ownerpolicy/${policyItemId}/${operationEscaped}` } if (isFilesService) { if (isRolesPolicy) { return `${baseUrl(appId)}/${policy}/${policyItemId}/${service}/${serviceItemId}` } return `${baseUrl(appId)}/${service}/${policy}/${policyItemId}/${serviceItemId}` } let result = `${baseUrl(appId)}/${service}/${serviceItemId}/${policy}/${policyItemId}` if (operationEscaped && operationEscaped !== 'all') { result += '/' + operationEscaped } return result }