UNPKG

recoder-code

Version:

Complete AI-powered development platform with ML model training, plugin registry, real-time collaboration, monitoring, infrastructure automation, and enterprise deployment capabilities

recoder.xyz

caelum0x/recoder-code

105 lines (77 loc) 2.71 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
## sharedb-access [![NPM](https://nodei.co/npm/sharedb-access.png?downloads=true)](https://nodei.co/npm/sharedb-access/) Access-control plugin for [racer](https://github.com/derbyjs/racer) and [derby](https://github.com/derbyjs/derby) ### Installation - Install: `npm install sharedb-access` ### Usage Plug in the middleware: ```js derby.use(require('sharedb-access')); // Or racer.use(require('sharedb-access')); ``` Using `sharedb-access` you can control `create`, `read`, `update`, and `delete` database operation for every collection. You can use two types of rules: `allow` and `deny`. By default all the operations are denied. So, you should add some rules to allow them. If at least one `allow`-rule allows the write, and no `deny`-rules deny the write, then the write is allowed to proceed. You can call `allow` and `deny`-rules as many times as you like. The functions should return `true` if they think the operation should be allowed for `allow` rules and denied for `deny`-rules. Otherwise they should return `false`, or nothing at all (`undefined`). #### Create ```js // Allow create-operation for collection 'items' // docId - id of your doc for access-control // doc - document object // session - your connect session store.allowCreate('items', function(docId, doc, session){ return true; }); // Deny creation if user is not admin store.denyCreate('items', function(docId, doc, session){ return !session.isAdmin; }); // So, finally, only admins can create docs in 'items' collection // the same results is if you just write: store.allowCreate('items', function(docId, doc, session){ return session.isAdmin; }); ``` #### Read Interface is like `create`-operation ```js store.allowRead('items', function(docId, doc, session){ // Allow all operations return true; }); store.denyRead('items', function(docId, doc, session){ // But only if the reader is owner of the doc return doc.ownerId !== session.userId; }); ``` #### Delete Interface is like `create`-operation ```js store.allowDelete('items', function(docId, doc, session){ // Only owners can delete docs return doc.ownerId == session.userId; }); store.denyDelete('items', function(docId, doc, session){ // But deny deletion if it's a special type of docs return doc.type === 'liveForever'; }); ``` #### Update ```js // docId - id of your doc for access-control // oldDoc - document object (before update) // newDoc - document object (after update) // ops - array of OT operations // session - your connect session store.allowUpdate('items', allowUpdateAll); function allowUpdateAll(docId, oldDoc, newDoc, ops, session){ return true; } ``` ## MIT License 2015 by Artur Zayats