Kristaps Fabians Geikins
5cd573355d
* /graphql endpoint fix * app token creation seems to be done * added tests * more tests * cleaned up TS annotations * CR cleanup * TS type fixes * test fixes
48 lines
1.2 KiB
TypeScript
48 lines
1.2 KiB
TypeScript
import { TokenCreateError } from '@/modules/core/errors/user'
|
|
import { Scopes } from '@speckle/shared'
|
|
|
|
export const canCreateToken = (params: {
|
|
userScopes: string[]
|
|
tokenScopes: string[]
|
|
}) => {
|
|
const { userScopes, tokenScopes } = params
|
|
const hasAllScopes = tokenScopes.every((scope) => userScopes.includes(scope))
|
|
if (!hasAllScopes) {
|
|
throw new TokenCreateError(
|
|
"You can't create a token with scopes that you don't have"
|
|
)
|
|
}
|
|
|
|
return true
|
|
}
|
|
|
|
export const canCreatePAT = (params: {
|
|
userScopes: string[]
|
|
tokenScopes: string[]
|
|
}) => {
|
|
const { tokenScopes } = params
|
|
if (tokenScopes.includes(Scopes.Tokens.Write)) {
|
|
throw new TokenCreateError(
|
|
"You can't create a personal access token with the tokens:write scope"
|
|
)
|
|
}
|
|
|
|
return canCreateToken(params)
|
|
}
|
|
|
|
export const canCreateAppToken = (params: {
|
|
userScopes: string[]
|
|
tokenScopes: string[]
|
|
userAppId: string
|
|
tokenAppId: string
|
|
}) => {
|
|
const { userAppId, tokenAppId } = params
|
|
if (userAppId !== tokenAppId || !tokenAppId?.length || !userAppId?.length) {
|
|
throw new TokenCreateError(
|
|
'An app token can only create a new token for the same app'
|
|
)
|
|
}
|
|
|
|
return canCreateToken(params)
|
|
}
|