Gergő Jedlicska
4a2d85d68c
* feat(shared): rename user workspaces loader * feat(gatekeeper): intoduce the enterprise plan * chore(server): remove more "magic strings" * refactor(shared): extract user is workspace admin to an auth fragment * feat(shared): add can createWorkspacePolicy * feat(workspaces): WIP block workspace creation * feat(server): add can create workspace checks * feat(workspaces): enforce canCreateWorkspace policy on the workspace creation mutation * feat(shared): allow workspace admins and guests to create workspaces even if they are part of an exclusive workspace * test(shared): use test fake properly * fix(server): eligble workspace typing fixes * test(shared): fix more workspace fakes * fix(workspacesCore): add missing loader * fix(shared): use proper exhaustive switch cases, they stop bugs from happening * feat(shared): introduce workspacePlanHasAccessToFeature function with tests * chore(workspaces): fix more PR comments * fix(workspaces): naming * fix(workspaces): some more
77 lines
2.6 KiB
TypeScript
77 lines
2.6 KiB
TypeScript
import { StreamNotFoundError } from '@/modules/core/errors/stream'
|
|
import { WorkspacesModuleDisabledError } from '@/modules/core/errors/workspaces'
|
|
import {
|
|
BadRequestError,
|
|
BaseError,
|
|
ForbiddenError,
|
|
NotFoundError
|
|
} from '@/modules/shared/errors'
|
|
import { SsoSessionMissingOrExpiredError } from '@/modules/workspacesCore/errors'
|
|
import { Authz, ensureError, throwUncoveredError } from '@speckle/shared'
|
|
import { VError } from 'verror'
|
|
|
|
/**
|
|
* Resolve cause correctly depending on whether its a VError or basic Error
|
|
* object
|
|
*/
|
|
export function getCause(e: Error) {
|
|
if (e instanceof VError) {
|
|
return VError.cause(e)
|
|
} else {
|
|
const unknownCause = e.cause
|
|
return unknownCause ? ensureError(e.cause) : null
|
|
}
|
|
}
|
|
|
|
export { ensureError }
|
|
|
|
/**
|
|
* Global mapping for mapping any kind of auth error to a server thrown error
|
|
*/
|
|
export const mapAuthToServerError = (e: Authz.AllAuthErrors): BaseError => {
|
|
switch (e.code) {
|
|
case Authz.ProjectNotFoundError.code:
|
|
return new StreamNotFoundError(e.message)
|
|
case Authz.ProjectNoAccessError.code:
|
|
case Authz.WorkspaceNoAccessError.code:
|
|
case Authz.WorkspaceNotEnoughPermissionsError.code:
|
|
case Authz.WorkspaceReadOnlyError.code:
|
|
case Authz.WorkspaceLimitsReachedError.code:
|
|
case Authz.WorkspaceNoEditorSeatError.code:
|
|
case Authz.WorkspaceProjectMoveInvalidError.code:
|
|
case Authz.CommentNoAccessError.code:
|
|
case Authz.ProjectNotEnoughPermissionsError.code:
|
|
case Authz.WorkspaceNoFeatureAccessError.code:
|
|
case Authz.EligibleForExclusiveWorkspaceError.code:
|
|
return new ForbiddenError(e.message)
|
|
case Authz.WorkspaceSsoSessionNoAccessError.code:
|
|
throw new SsoSessionMissingOrExpiredError(e.message, {
|
|
info: {
|
|
workspaceSlug: e.payload.workspaceSlug
|
|
}
|
|
})
|
|
case Authz.ServerNoAccessError.code:
|
|
case Authz.ServerNoSessionError.code:
|
|
case Authz.ServerNotEnoughPermissionsError.code:
|
|
return new ForbiddenError(e.message)
|
|
case Authz.WorkspacesNotEnabledError.code:
|
|
return new WorkspacesModuleDisabledError()
|
|
case Authz.ProjectLastOwnerError.code:
|
|
case Authz.ReservedModelNotDeletableError.code:
|
|
return new BadRequestError(e.message)
|
|
case Authz.CommentNotFoundError.code:
|
|
case Authz.ModelNotFoundError.code:
|
|
case Authz.VersionNotFoundError.code:
|
|
return new NotFoundError(e.message)
|
|
case Authz.PersonalProjectsLimitedError.code:
|
|
return new BadRequestError(e.message)
|
|
default:
|
|
throwUncoveredError(e)
|
|
}
|
|
}
|
|
|
|
export const throwIfAuthNotOk = (result: Authz.AuthPolicyResult) => {
|
|
if (result.isOk) return
|
|
throw mapAuthToServerError(result.error)
|
|
}
|