UNPKG

solid-permissions

Version:

Web Access Control based permissions library

github.com/solid/solid-permissions

solid/solid-permissions

124 lines (116 loc) 3.66 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
const vocab = require('solid-namespace') const debug = require('debug')('solid:permissions') /** * ACL Group Listing * @see https://github.com/solid/web-access-control-spec#groups-of-agents * @class GroupListing */ class GroupListing { /** * @constructor * @param [options={}] {Object} Options hashmap * @param [options.uri] {string|NamedNode} Group URI as appears in ACL file * (e.g. `https://example.com/groups#management`) * @param [options.uid] {string} Value of `vcard:hasUID` object * @param [options.members={}] {Set} Set of group members, by webId * @param [options.listing] {string|NamedNode} Group listing document URI * @param [options.rdf] {RDF} RDF library * @param [options.graph] {Graph} Parsed graph of the group listing document */ constructor (options = {}) { this.uri = options.uri this.uid = options.uid this.members = options.members || new Set() this.listing = options.listing this.rdf = options.rdf this.graph = options.graph if (this.rdf && this.graph) { this.initFromGraph(this.graph, this.rdf) } } /** * Factory function, returns a group listing, loaded and initialized * with the graph from its uri. Will return null if parsing fails, * which can be used to deny access to the resource. * @static * @param uri {string} * @param fetchGraph {Function} * @param rdf {RDF} * @param options {Object} Options hashmap, passed through to fetchGraph() * @return {Promise<GroupListing|null>} */ static loadFrom (uri, fetchGraph, rdf, options = {}) { debug('Trying to find a Group Listing in ' + uri) let group = new GroupListing({ uri, rdf }) return fetchGraph(uri, options) .then(graph => { return group.initFromGraph(uri, graph) }) .catch(err => { // Returning null will result in deny, which is suitable in this case console.error(err) return null }) } /** * Adds a member's web id uri to the listing * @param webId {string|NamedNode} * @return {GroupListing} Chainable */ addMember (webId) { if (webId.value) { webId = webId.value } this.members.add(webId) return this } /** * Returns the number of members in this listing * @return {Number} */ get count () { return this.members.size } /** * Tests if a webId uri is present in the members list * @param webId {string|NamedNode} * @return {Boolean} */ hasMember (webId) { if (webId.value) { webId = webId.value } return this.members.has(webId) } /** * @method initFromGraph * @param [uri] {string|NamedNode} Group URI as appears in ACL file * (e.g. `https://example.com/groups#management`) * @param [graph] {Graph} Parsed graph * @param [rdf] {RDF} * @throws {Error} * @return {GroupListing} Chainable */ initFromGraph (uri = this.uri, graph = this.graph, rdf = this.rdf) { if (!uri) { throw new Error('Group URI required to init from graph') } if (!graph || !rdf) { throw new Error('initFromGraph() - graph or rdf library missing') } let ns = vocab(rdf) let group = rdf.namedNode(uri) let rdfType = graph.any(group, null, ns.vcard('Group')) if (!rdfType) { console.warn(`Possibly invalid group '${uri}', missing type vcard:Group`) } this.uid = graph.anyValue(group, ns.vcard('hasUID')) debug('Found Group Listing with ' + group) graph.match(group, ns.vcard('hasMember')) .forEach(memberMatch => { this.addMember(memberMatch.object) }) return this } } module.exports = GroupListing