UNPKG

passbolt-styleguide

Version:

Passbolt styleguide contains common styling assets used by the different sites, plugin, etc.

www.passbolt.com

passbolt/passbolt_styleguide

69 lines (62 loc) 2.73 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
/** * Passbolt ~ Open source password manager for teams * Copyright (c) Passbolt SA (https://www.passbolt.com) * * Licensed under GNU Affero General Public License version 3 of the or any later version. * For full copyright and license information, please see the LICENSE.txt * Redistributions of files must retain the above copyright notice. * * @copyright Copyright (c) Passbolt SA (https://www.passbolt.com) * @license https://opensource.org/licenses/AGPL-3.0 AGPL License * @link https://www.passbolt.com Passbolt(tm) * @since 4.1.0 */ import GetControlFunctionService from "./getControlFunctionService"; import RoleEntity from "../../../shared/models/entity/role/roleEntity"; export default class CanUse { /** * Check if a role can use a action * @param {object} user The logged in user. * @param {RbacsCollection} rbacs The collection of rbacs * @param {string} actionName The action name to check the control function * @returns {boolean} */ static canRoleUseAction(user, rbacs, actionName) { // Desktop action should always be driven by rbac if defined if (window.chrome?.webview) { const rbac = rbacs.findRbacByActionName(actionName); if (rbac) { // Prior we check if the desktop app has defined rbac limitation // if not we do not need to go further const rbacControlFunction = GetControlFunctionService.getByRbac(rbac); return rbacControlFunction.execute(user); } // If no rbac defined for desktop, fall through to normal role-based logic } const role = new RoleEntity(user.role); // Administrator action are not controlled by rbac. if (role.isAdmin()) { const adminControlFunction = GetControlFunctionService.getDefaultForAdminAndAction(actionName); return adminControlFunction.execute(); } // If the action is controlled by rbac for the given role. const rbac = rbacs.findRbacByRoleAndActionName(role, actionName); return this.getByRbacOrDefault(rbac, actionName, user); } /** * Check if a role can use a UI action or return the default userr * @param {RbacEntity} rbac The rbac entity * @param {string} actionName The action name to check the control function * @param {object} user The logged in user. * @returns {boolean} */ static getByRbacOrDefault(rbac, actionName, user) { if (rbac) { const rbacControlFunction = GetControlFunctionService.getByRbac(rbac); return rbacControlFunction.execute(user); } // Fallback on user default. const fallbackControlFunction = GetControlFunctionService.getDefaultForUserAndAction(actionName); return fallbackControlFunction.execute(); } }