UNPKG

maglev

Version:

Preconfigured NodeJS framework

github.com/seeden/maglev

seeden/maglev

116 lines (92 loc) 2.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
'use strict'; Object.defineProperty(exports, "__esModule", { value: true }); exports.loadPermission = loadPermission; exports.create = create; exports.remove = remove; exports.exists = exists; exports.get = get; var _webError = require('web-error'); var _webError2 = _interopRequireDefault(_webError); var _okay = require('okay'); var _okay2 = _interopRequireDefault(_okay); function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; } function loadPermission(req, res, next, name) { var rbac = req.server.rbac; if (!name) { return next(new _webError2.default(400)); } rbac.getPermissionByName(name, (0, _okay2.default)(next, function (permission) { if (!permission) { return next(new _webError2.default(404)); } req.objects.permission = permission; next(); })); } /** * Create new permission */ function create(req, res, next) { var rbac = req.server.rbac; if (!req.body.action || !req.body.resource) { return next(new _webError2.default(400, 'Permission action or resource is undefined')); } rbac.createPermission(req.body.action, req.body.resource, (0, _okay2.default)(next, function (permission) { if (!permission) { return next(new _webError2.default(400)); } return res.jsonp({ permission: { action: permission.action, resource: permission.resource, name: permission.name } }); })); } /** * Remove existing permission */ function remove(req, res, next) { var User = req.models.User; if (!req.objects.permission) { return next(new _webError2.default(404)); } var permission = req.objects.permission; // unassign permission from all users User.removePermissionFromCollection(permission.name, (0, _okay2.default)(next, function () { permission.remove((0, _okay2.default)(next, function (isDeleted) { if (!isDeleted) { return next(new _webError2.default(400)); } return res.status(204).end(); })); })); } /** * Return true if poermission exists */ function exists(req, res, next) { if (!req.objects.permission) { return next(new _webError2.default(404)); } return res.status(204).end(); } /** * Get permission details */ function get(req, res, next) { if (!req.objects.permission) { return next(new _webError2.default(404)); } var perm = req.objects.permission; return res.jsonp({ permission: { action: perm.action, resource: perm.resource, name: perm.name } }); }