huanld/speckle-server
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
3ff772e34235dfffc417be3bbd0a7e77fde51629
speckle-server/packages/server/modules/core/rest/authUtils.js
T
Gergő Jedlicska 0ac118e05c (refactor) server for less app-root-path
2022-05-03 13:10:00 +02:00

69 lines
1.7 KiB
JavaScript
Raw Blame History

'use strict'
const {
validateScopes,
validateServerRole,
authorizeResolver
} = require('@/modules/shared')
const { getStream } = require('../services/streams')
module.exports = {
async validatePermissionsReadStream(streamId, req) {
const stream = await getStream({ streamId, userId: req.context.userId })
if (stream?.isPublic) return { result: true, status: 200 }
try {
await validateServerRole(req.context, 'server:user')
} catch (err) {
return { result: false, status: 401 }
}
if (!stream) return { result: false, status: 404 }
if (!stream.isPublic && req.context.auth === false) {
return { result: false, status: 401 }
}
if (!stream.isPublic) {
try {
await validateScopes(req.context.scopes, 'streams:read')
} catch (err) {
return { result: false, status: 401 }
}
try {
await authorizeResolver(req.context.userId, streamId, 'stream:reviewer')
} catch (err) {
return { result: false, status: 401 }
}
}
return { result: true, status: 200 }
},
async validatePermissionsWriteStream(streamId, req) {
if (!req.context || !req.context.auth) {
return { result: false, status: 401 }
}
try {
await validateServerRole(req.context, 'server:user')
} catch (err) {
return { result: false, status: 401 }
}
try {
await validateScopes(req.context.scopes, 'streams:write')
} catch (err) {
return { result: false, status: 401 }
}
try {
await authorizeResolver(req.context.userId, streamId, 'stream:contributor')
} catch (err) {
return { result: false, status: 401 }
}
return { result: true, status: 200 }
}
}
Reference in New Issue View Git Blame Copy Permalink