UNPKG

kongadmin

Version:

Kong admin GUI

github.com/pantsel/konga

pantsel/konga

120 lines (101 loc) 5.47 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
(function () { 'use strict'; angular.module('frontend.core.auth.services') .factory('AuthService', [ '$http', '$state', '$localStorage', '$rootScope', 'AccessLevels', 'BackendConfig', 'MessageService', function factory($http, $state, $localStorage, $rootScope, AccessLevels, BackendConfig, MessageService) { return { /** * Method to authorize current user with given access level in application. * * @param {Number} accessLevel Access level to check * * @returns {Boolean} */ authorize: function authorize(accessLevel) { if (accessLevel === AccessLevels.user) { return this.isAuthenticated(); } else if (accessLevel === AccessLevels.admin) { return this.isAuthenticated() && Boolean($localStorage.credentials.user.admin); } else { return accessLevel === AccessLevels.anon; } }, hasPermission: function (context, action) { // If user is admin or context is not a permissions Object key, grant permission if (($localStorage.credentials && $localStorage.credentials.user.admin) || Object.keys(KONGA_CONFIG.user_permissions).indexOf(context) < 0) { return true; } action = action || 'read'; // Default action is 'read' /** * ====================================================================================== * Monkey patches. * ====================================================================================== */ // Transform 'edit' action to 'update' // because permissions object complies to CRUD naming. // ToDo : Change 'edit' route uri segments to 'update' if(action === 'edit') { action = 'update' } /** * ====================================================================================== * End monkey patches. * ====================================================================================== */ return KONGA_CONFIG.user_permissions[context] && KONGA_CONFIG.user_permissions[context][action] === true }, /** * Method to check if current user is authenticated or not. This will just * simply call 'Storage' service 'get' method and returns it results. * * @returns {Boolean} */ isAuthenticated: function isAuthenticated() { return Boolean($localStorage.credentials); }, token: function token() { return $localStorage.credentials ? $localStorage.credentials.token : null; }, /** * Method make login request to backend server. Successfully response from * server contains user data and JWT token as in JSON object. After successful * authentication method will store user data and JWT token to local storage * where those can be used. * * @param {*} credentials * * @returns {*|Promise} */ login: function login(credentials) { return $http .post('login', credentials, {withCredentials: true}) .then( function (response) { MessageService.success('You have logged in successfully!'); $localStorage.credentials = response.data; $rootScope.$broadcast('user.login', $localStorage.credentials) } ) ; }, /** * The backend doesn't care about actual user logout, just delete the token * and you're good to go. * * Question still: Should we make logout process to backend side? */ logout: function logout() { $localStorage.$reset(); MessageService.success('You have logged out.'); $state.go('auth.login'); } }; } ]) ; }());