groot/automatisch
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(authorization): add update flow checks

Browse Source
This commit is contained in:
Ali BARIN
2023-06-23 20:41:57 +00:00
parent 0d092b977f
commit 5d77f64e76
8 changed files with 16 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
packages/backend/src/graphql/mutations/create-step.ts
View File

@@ -22,6 +22,8 @@ const createStep = async (
params: Params,
context: Context
) => {
context.currentUser.can('update', 'Flow');
const { input } = params;
if (input.appKey && input.key) {

2
packages/backend/src/graphql/mutations/delete-step.ts
View File

@@ -11,6 +11,8 @@ const deleteStep = async (
params: Params,
context: Context
) => {
context.currentUser.can('update', 'Flow');
const step = await context.currentUser
.$relatedQuery('steps')
.withGraphFetched('flow')

2
packages/backend/src/graphql/mutations/execute-flow.ts
View File

@@ -12,6 +12,8 @@ const executeFlow = async (
params: Params,
context: Context
) => {
context.currentUser.can('update', 'Flow');
const { stepId } = params.input;
const untilStep = await context.currentUser

2
packages/backend/src/graphql/mutations/update-flow.ts
View File

@@ -12,6 +12,8 @@ const updateFlow = async (
params: Params,
context: Context
) => {
context.currentUser.can('update', 'Flow');
let flow = await context.currentUser
.$relatedQuery('flows')
.findOne({

2
packages/backend/src/graphql/mutations/update-step.ts
View File

@@ -23,6 +23,8 @@ const updateStep = async (
params: Params,
context: Context
) => {
context.currentUser.can('update', 'Flow');
const { input } = params;
let step = await context.currentUser

2
packages/backend/src/graphql/queries/get-dynamic-data.ts
View File

@@ -16,6 +16,8 @@ const getDynamicData = async (
params: Params,
context: Context
) => {
context.currentUser.can('update', 'Flow');
const step = await context.currentUser
.$relatedQuery('steps')
.withGraphFetched({

2
packages/backend/src/graphql/queries/get-dynamic-fields.ts
View File

@@ -14,6 +14,8 @@ const getDynamicFields = async (
params: Params,
context: Context
) => {
context.currentUser.can('update', 'Flow');
const step = await context.currentUser
.$relatedQuery('steps')
.withGraphFetched({

2
packages/backend/src/graphql/queries/get-step-with-test-executions.ts
View File

@@ -11,6 +11,8 @@ const getStepWithTestExecutions = async (
params: Params,
context: Context
) => {
context.currentUser.can('update', 'Flow');
const step = await context.currentUser
.$relatedQuery('steps')
.findOne({ 'steps.id': params.stepId })