UNPKG

dvp-common

Version:

Common data models and scripts for DVP

github.com/DuoSoftware/DVP-Common

DuoSoftware/DVP-Common

107 lines (54 loc) 2.27 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
module.exports = function(options) { //{resource:"cluster", action:"read"}// var middleware = function(req, res, next) { var resource = options.resource; var action = options.action; ///////////////////////fix company info///////////////////////////////////////////////////////////////////////////////// if(req.user.company && req.user.tenant && req.user.company == -1 && req.user.tenant == -1 && req.headers['companyinfo'] ){ var arr = req.headers['companyinfo'].split(":"); if(arr.length > 1){ req.user.tenant = arr[0]; req.user.company = arr[1]; } } if(req.user.scope ) { /* var index = req.user.scope.indexOf("all"); if(index > 0){ next(); }*/ var globalselector = req.user.scope.filter(function (item) { return item.resource == "all"; }); if(globalselector && globalselector.length > 0){ next(); }else { if (resource) { var selected = req.user.scope.filter(function (item) { return item.resource == resource; }); if (selected && selected.length > 0) { var actions = selected[0].actions; if (action) { var index1 = actions.indexOf(action); if (index1 > -1) { next(); } else { next(new Error('insufficient scopes')); } } else { next(); } } else { next(new Error('insufficient scopes')); } } else { next(); } } }else{ next(new Error('insufficient scopes')); } }; return middleware; };