UNPKG

taichi-orm

Version:

Object Relation Mapper for SQL Database. Flexible and Strong

github.com/thfai2000/taichi-orm

thfai2000/taichi-orm

93 lines (71 loc) 2.62 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
# Access Control Imagine your Entity Product can be accessible by certain users. You can define a property that indicate it is accessible or not. ```ts export default class Product extends Model { id = this.field(PrimaryKeyType) isAccessibleByUserId = Product.compute((parent, userId: number): CFReturn<boolean> => { // here we use a query builder to query another Model 'UserProduct' to find out if the product can be accessed by a user return new DScalar(context => context.dataset() .from( UserProduct.datasource('up') ) .where({ 'up.userId': userId, 'up.productId': parent.id }).exists() ) }) ``` Then you can use it like a function. ```ts const currentUserId = 1 let targetProducts = await Product.find({ where: ({root, And}) => And( { isActive: true }, root.isAccessibleByUserId(currentUserId) // the function call return a boolean Scalar ) }) ``` ## Role-Based Access Control If you find some logics are often repeated on many Models. It is suggested to create a util function. Let say you want all Entities has Role-Based Access Control. Here are the related tables Role, User, RoleEntity. ``` User - id - roleId Role - id RoleEntity - roleId - entityName (Model which that role can access) ``` We define a Model class as a base class of the other models you want to be protected with Access Control ```ts //rbacModel.ts export default class RBACModel extends Model { static propertyOfEditableByUserId(entityName: string){ return Product.compute((parent, userId: number): CFReturn<boolean> => { // here we use a query builder to query another Model 'UserProduct' to find out if the product can be accessed by a user return new DScalar(context => context.dataset() .from( Role.datasource('role') ) .innerJoin( User.datasource('user'), ({role, user}) => user.roleId.equals(role.id)) .innerJoin( RoleEntity.datasource('re'), ({role, re}) => role.id.equals(re.roleId) ) .where( ({re}) => re.entityName.equals( entityName )) .exists() ) }) } } ``` ```ts //product.ts export default class Product extends RBACModel { id = this.field(PrimaryKeyType) //use the static method to create a property isEditableByUserId = Product.propertyOfEditableByUserId('product') } ``` ```ts const currentUserId = 1 let products = await Product.find({ where: ({root}) => root.isEditableByUserId(currentUserId) // the function call return a boolean Scalar }) ```