UNPKG

maglev

Version:

Preconfigured NodeJS framework

github.com/seeden/maglev

seeden/maglev

134 lines (109 loc) 3.03 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
'use strict'; Object.defineProperty(exports, "__esModule", { value: true }); exports.getScope = getScope; exports.can = can; exports.addPermission = addPermission; exports.removePermission = removePermission; exports.hasRole = hasRole; exports.setRole = setRole; exports.removeRole = removeRole; var _webError = require('web-error'); var _webError2 = _interopRequireDefault(_webError); var _okay = require('okay'); var _okay2 = _interopRequireDefault(_okay); function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; } function getScope(req, res, next) { var rbac = req.server.rbac; var user = req.user; if (!user) { return next(new _webError2.default(401)); } user.getScope(rbac, (0, _okay2.default)(next, function (scope) { res.jsonp({ scope: scope }); })); } function can(req, res, next) { var rbac = req.server.rbac; var user = req.user; if (!user) { return next(new _webError2.default(401)); } var action = req.body.action; var resource = req.body.resource; if (!action || !resource) { return next(new _webError2.default(400)); } user.can(rbac, action, resource, (0, _okay2.default)(next, function (userCan) { res.jsonp({ can: userCan }); })); } function addPermission(req, res, next) { var rbac = req.server.rbac; var user = req.user; if (!user) { return next(new _webError2.default(401)); } var action = req.body.action; var resource = req.body.resource; if (!action || !resource) { return next(new _webError2.default(400)); } user.addPermission(rbac, action, resource, (0, _okay2.default)(next, function () { res.status(204).end(); })); } function removePermission(req, res, next) { var rbac = req.server.rbac; var user = req.user; if (!user) { return next(new _webError2.default(401)); } var permissionName = req.body.permissionName; if (!permissionName) { return next(new _webError2.default(400)); } user.removePermission(rbac, permissionName, (0, _okay2.default)(next, function () { res.status(204).end(); })); } function hasRole(req, res, next) { var rbac = req.server.rbac; var user = req.user; if (!user) { return next(new _webError2.default(401)); } var role = req.body.role; if (!role) { return next(new _webError2.default(400)); } user.hasRole(rbac, role, (0, _okay2.default)(next, function (has) { res.jsonp({ has: has }); })); } function setRole(req, res, next) { var rbac = req.server.rbac; var user = req.user; if (!user) { return next(new _webError2.default(401)); } var role = req.body.role; if (!role) { return next(new _webError2.default(400)); } user.setRole(rbac, role, (0, _okay2.default)(next, function () { res.status(204).end(); })); } function removeRole(req, res, next) { var user = req.user; if (!user) { return next(new _webError2.default(401)); } user.removeRole((0, _okay2.default)(next, function () { res.status(204).end(); })); }