huanld/speckle-server
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
7906307a8fb559ab764b4bc41d4ebe21e83a31f5
speckle-server/packages/server/modules/auth/graph/resolvers/apps.js
T
Gergő Jedlicska d53df11f77 style(server): fix all eslint errors and break the tests
2022-03-31 14:18:44 +02:00

86 lines
2.3 KiB
JavaScript
Raw Blame History

'use strict'
const { ForbiddenError } = require('apollo-server-express')
const {
getApp,
getAllPublicApps,
getAllAppsCreatedByUser,
getAllAppsAuthorizedByUser,
createApp,
updateApp,
deleteApp,
revokeExistingAppCredentialsForUser,
} = require('../../services/apps')
module.exports = {
Query: {
async app(parent, args) {
let app = await getApp({ id: args.id })
return app
},
async apps() {
return await getAllPublicApps()
}
},
ServerApp: {
secret(parent, args, context) {
if (
context.auth &&
parent.author &&
parent.author.id &&
parent.author.id === context.userId
)
return parent.secret
return 'App secrets are only revealed to their author 😉'
}
},
User: {
async authorizedApps(parent, args, context) {
let res = await getAllAppsAuthorizedByUser({ userId: context.userId })
return res
},
async createdApps(parent, args, context) {
return await getAllAppsCreatedByUser({ userId: context.userId })
}
},
Mutation: {
async appCreate(parent, args, context) {
let { id } = await createApp({ ...args.app, authorId: context.userId })
return id
},
async appUpdate(parent, args, context) {
let app = await getApp({ id: args.app.id })
if (!app.author && context.role !== 'server:admin')
throw new ForbiddenError('You are not authorized to edit this app.')
if (app.author.id !== context.userId && context.role !== 'server:admin')
throw new ForbiddenError('You are not authorized to edit this app.')
await updateApp({ app: args.app })
return true
},
async appDelete(parent, args, context) {
let app = await getApp({ id: args.appId })
if (!app.author && context.role !== 'server:admin')
throw new ForbiddenError('You are not authorized to edit this app.')
if (app.author.id !== context.userId && context.role !== 'server:admin')
throw new ForbiddenError('You are not authorized to edit this app.')
return (await deleteApp({ id: args.appId })) === 1
},
async appRevokeAccess(parent, args, context) {
return await revokeExistingAppCredentialsForUser({
appId: args.appId,
userId: context.userId
})
}
}
}
Reference in New Issue View Git Blame Copy Permalink