UNPKG

verdaccio

Version:

Private npm repository server

github.com/verdaccio/verdaccio

verdaccio/verdaccio

43 lines (34 loc) 1.18 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
'use strict'; Object.defineProperty(exports, "__esModule", { value: true }); exports.allow_action = allow_action; exports.getDefaultPlugins = getDefaultPlugins; var _utils = require('./utils'); var _constants = require('./constants'); function allow_action(action) { return function (user, pkg, callback) { const { name, groups } = user; const hasPermission = pkg[action].some(group => name === group || groups.includes(group)); if (hasPermission) { return callback(null, true); } if (name) { callback(_utils.ErrorCode.getForbidden(`user ${name} is not allowed to ${action} package ${pkg.name}`)); } else { callback(_utils.ErrorCode.getForbidden(`unregistered users are not allowed to ${action} package ${pkg.name}`)); } }; } function getDefaultPlugins() { return { authenticate(user, password, cb) { cb(_utils.ErrorCode.getForbidden(_constants.API_ERROR.BAD_USERNAME_PASSWORD)); }, add_user(user, password, cb) { return cb(_utils.ErrorCode.getConflict(_constants.API_ERROR.BAD_USERNAME_PASSWORD)); }, allow_access: allow_action('access'), allow_publish: allow_action('publish') }; }