groot/automatisch
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0d126a8e2b92f169d70ad3b9d3d26967a344c71b
automatisch/packages/backend/src/helpers/authorization.js
Ali BARIN 0d126a8e2b feat: write REST API endpoint to duplicate flow
2024-09-17 12:49:13 +03:00

140 lines
3.2 KiB
JavaScript
Raw Blame History

import NotAuthorizedError from '../errors/not-authorized.js';
const authorizationList = {
'GET /api/v1/users/:userId': {
action: 'read',
subject: 'User',
},
'GET /api/v1/users/': {
action: 'read',
subject: 'User',
},
'GET /api/v1/users/:userId/apps': {
action: 'read',
subject: 'Connection',
},
'GET /api/v1/flows/:flowId': {
action: 'read',
subject: 'Flow',
},
'GET /api/v1/flows/': {
action: 'read',
subject: 'Flow',
},
'POST /api/v1/flows/': {
action: 'create',
subject: 'Flow',
},
'DELETE /api/v1/flows/:flowId': {
action: 'delete',
subject: 'Flow',
},
'GET /api/v1/steps/:stepId/connection': {
action: 'read',
subject: 'Flow',
},
'POST /api/v1/steps/:stepId/test': {
action: 'update',
subject: 'Flow',
},
'GET /api/v1/steps/:stepId/previous-steps': {
action: 'update',
subject: 'Flow',
},
'POST /api/v1/steps/:stepId/dynamic-fields': {
action: 'update',
subject: 'Flow',
},
'POST /api/v1/steps/:stepId/dynamic-data': {
action: 'update',
subject: 'Flow',
},
'GET /api/v1/connections/:connectionId/flows': {
action: 'read',
subject: 'Flow',
},
'POST /api/v1/connections/:connectionId/test': {
action: 'update',
subject: 'Connection',
},
'POST /api/v1/connections/:connectionId/verify': {
action: 'create',
subject: 'Connection',
},
'GET /api/v1/apps/:appKey/flows': {
action: 'read',
subject: 'Flow',
},
'GET /api/v1/apps/:appKey/connections': {
action: 'read',
subject: 'Connection',
},
'GET /api/v1/executions/:executionId': {
action: 'read',
subject: 'Execution',
},
'GET /api/v1/executions/': {
action: 'read',
subject: 'Execution',
},
'GET /api/v1/executions/:executionId/execution-steps': {
action: 'read',
subject: 'Execution',
},
'DELETE /api/v1/steps/:stepId': {
action: 'update',
subject: 'Flow',
},
'PATCH /api/v1/connections/:connectionId': {
action: 'update',
subject: 'Connection',
},
'DELETE /api/v1/connections/:connectionId': {
action: 'delete',
subject: 'Connection',
},
'POST /api/v1/connections/:connectionId/reset': {
action: 'create',
subject: 'Connection',
},
'PATCH /api/v1/flows/:flowId': {
action: 'update',
subject: 'Flow',
},
'POST /api/v1/flows/:flowId/duplicate': {
action: 'create',
subject: 'Flow',
},
'POST /api/v1/flows/:flowId/steps': {
action: 'update',
subject: 'Flow',
},
'POST /api/v1/apps/:appKey/connections': {
action: 'create',
subject: 'Connection',
},
'POST /api/v1/connections/:connectionId/auth-url': {
action: 'create',
subject: 'Connection',
},
};
export const authorizeUser = async (request, response, next) => {
const currentRoute =
request.method + ' ' + request.baseUrl + request.route.path;
const currentRouteRule = authorizationList[currentRoute];
request.currentUser.can(currentRouteRule.action, currentRouteRule.subject);
next();
};
export const authorizeAdmin = async (request, response, next) => {
const role = await request.currentUser.$relatedQuery('role');
if (role?.isAdmin) {
next();
} else {
throw new NotAuthorizedError();
}
};
Reference in New Issue View Git Blame Copy Permalink