2017-11-06 11:14:43 +01:00
|
|
|
'use strict';
|
|
|
|
|
|
2017-11-17 14:22:59 +01:00
|
|
|
const fs = require('fs')
|
|
|
|
|
const path = require('path');
|
|
|
|
|
const stringify = JSON.stringify;
|
2017-11-16 17:59:41 +01:00
|
|
|
const _ = require('lodash');
|
2017-11-17 16:36:57 +01:00
|
|
|
// const Service = strapi.plugins['users-permissions'].services;
|
2017-11-06 11:14:43 +01:00
|
|
|
/**
|
|
|
|
|
* UsersPermissions.js service
|
|
|
|
|
*
|
|
|
|
|
* @description: A set of functions similar to controller's actions to avoid code duplication.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
module.exports = {
|
2017-11-27 16:49:56 +01:00
|
|
|
createRole: (role) => {
|
|
|
|
|
const Service = strapi.plugins['users-permissions'].services.userspermissions;
|
2017-11-27 17:02:45 +01:00
|
|
|
const appRoles = require(Service.getRoleConfigPath());
|
|
|
|
|
const highestId = _.last(Object.keys(appRoles).reduce((acc, key) => {
|
2017-11-27 16:49:56 +01:00
|
|
|
acc.push(_.toNumber(key));
|
|
|
|
|
|
|
|
|
|
return acc;
|
|
|
|
|
}, []).sort()) + 1;
|
|
|
|
|
|
|
|
|
|
const newRole = _.pick(role, ['name', 'description', 'permissions']);
|
|
|
|
|
|
2017-11-27 17:02:45 +01:00
|
|
|
_.set(appRoles, highestId.toString(), newRole);
|
2017-11-27 16:49:56 +01:00
|
|
|
|
2017-11-27 17:02:45 +01:00
|
|
|
Service.writePermissions(appRoles);
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
deleteRole: (roleId) => {
|
|
|
|
|
const Service = strapi.plugins['users-permissions'].services.userspermissions;
|
|
|
|
|
const appRoles = require(Service.getRoleConfigPath());
|
2017-11-27 17:50:51 +01:00
|
|
|
|
2017-11-27 17:02:45 +01:00
|
|
|
Service.writePermissions(_.omit(appRoles, [roleId]))
|
2017-11-27 16:49:56 +01:00
|
|
|
},
|
|
|
|
|
|
2017-11-16 17:59:41 +01:00
|
|
|
getActions: () => {
|
2017-11-17 14:22:59 +01:00
|
|
|
const generateActions = (data) => (
|
|
|
|
|
Object.keys(data).reduce((acc, key) => {
|
|
|
|
|
acc[key] = { enabled: false, policy: '' };
|
2017-11-06 11:14:43 +01:00
|
|
|
|
2017-11-17 14:22:59 +01:00
|
|
|
return acc;
|
|
|
|
|
}, {}));
|
|
|
|
|
|
2017-11-17 17:49:50 +01:00
|
|
|
const appControllers = Object.keys(strapi.api || {}).reduce((acc, key) => {
|
2017-11-17 14:22:59 +01:00
|
|
|
acc.controllers[key] = generateActions(strapi.api[key].controllers[key]);
|
2017-11-16 17:59:41 +01:00
|
|
|
|
|
|
|
|
return acc;
|
2017-11-17 12:14:12 +01:00
|
|
|
}, { controllers: {} });
|
|
|
|
|
|
|
|
|
|
const pluginsPermissions = Object.keys(strapi.plugins).reduce((acc, key) => {
|
2017-11-20 14:35:24 +01:00
|
|
|
acc[key] = Object.keys(strapi.plugins[key].controllers).reduce((obj, k) => {
|
2017-11-17 14:22:59 +01:00
|
|
|
obj.controllers[k] = generateActions(strapi.plugins[key].controllers[k]);
|
2017-11-17 12:14:12 +01:00
|
|
|
|
|
|
|
|
return obj;
|
|
|
|
|
|
2017-11-20 14:35:24 +01:00
|
|
|
}, { controllers: {} });
|
2017-11-17 12:14:12 +01:00
|
|
|
|
|
|
|
|
return acc;
|
|
|
|
|
}, {});
|
2017-11-16 17:59:41 +01:00
|
|
|
|
|
|
|
|
const permissions = {
|
|
|
|
|
application: {
|
|
|
|
|
controllers: appControllers.controllers,
|
2017-11-17 12:14:12 +01:00
|
|
|
},
|
2017-11-16 17:59:41 +01:00
|
|
|
};
|
|
|
|
|
|
2017-11-17 12:14:12 +01:00
|
|
|
const allPermissions = _.merge(permissions, pluginsPermissions);
|
|
|
|
|
|
2017-11-17 16:36:57 +01:00
|
|
|
return allPermissions;
|
|
|
|
|
},
|
2017-11-17 14:22:59 +01:00
|
|
|
|
2017-11-30 16:52:28 +01:00
|
|
|
getRole: async (roleId) => {
|
2017-11-27 17:50:51 +01:00
|
|
|
const Service = strapi.plugins['users-permissions'].services.userspermissions;
|
|
|
|
|
const appRoles = require(Service.getRoleConfigPath());
|
2017-11-30 16:52:28 +01:00
|
|
|
appRoles[roleId].users = await strapi.query('user', 'users-permissions').find(strapi.utils.models.convertParams('user', { role: roleId }));
|
2017-11-27 17:50:51 +01:00
|
|
|
|
2017-11-30 16:52:28 +01:00
|
|
|
return appRoles[roleId];
|
2017-11-27 17:50:51 +01:00
|
|
|
},
|
|
|
|
|
|
2017-11-30 12:27:04 +01:00
|
|
|
getRoles: async () => {
|
2017-11-27 16:04:57 +01:00
|
|
|
const Service = strapi.plugins['users-permissions'].services.userspermissions;
|
|
|
|
|
const roles = require(Service.getRoleConfigPath());
|
2017-11-30 12:27:04 +01:00
|
|
|
const usersCount = await strapi.query('user', 'users-permissions').countByRoles();
|
2017-11-27 16:04:57 +01:00
|
|
|
const formattedRoles = Object.keys(roles).reduce((acc, key) => {
|
|
|
|
|
const role = _.pick(roles[key], ['name', 'description']);
|
|
|
|
|
|
|
|
|
|
_.set(role, 'id', key);
|
2017-11-30 16:52:28 +01:00
|
|
|
_.set(role, 'nb_users', _.get(_.find(usersCount, { _id: parseFloat(key) }), 'total', 0));
|
2017-11-27 16:04:57 +01:00
|
|
|
acc.push(role);
|
|
|
|
|
|
|
|
|
|
return acc;
|
|
|
|
|
}, []);
|
|
|
|
|
|
|
|
|
|
return formattedRoles;
|
|
|
|
|
},
|
|
|
|
|
|
2017-11-30 16:34:43 +01:00
|
|
|
getRoutes: async () => {
|
|
|
|
|
return Object.keys(strapi.plugins).reduce((acc, current) => {
|
|
|
|
|
acc[current] = strapi.plugins[current].config.routes;
|
|
|
|
|
|
|
|
|
|
return acc;
|
|
|
|
|
}, {});
|
|
|
|
|
},
|
|
|
|
|
|
2017-11-17 16:36:57 +01:00
|
|
|
getRoleConfigPath: () => (
|
|
|
|
|
path.join(
|
|
|
|
|
strapi.config.appPath,
|
|
|
|
|
'plugins',
|
|
|
|
|
'users-permissions',
|
|
|
|
|
'config',
|
|
|
|
|
'roles.json',
|
|
|
|
|
)
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
updateData: (data, diff = 'unset') => {
|
|
|
|
|
const dataToCompare = strapi.plugins['users-permissions'].services.userspermissions.getActions();
|
|
|
|
|
|
|
|
|
|
_.forEach(data, (roleData, roleId) => {
|
|
|
|
|
const obj = diff === 'unset' ? roleData.permissions : dataToCompare;
|
|
|
|
|
|
|
|
|
|
_.forEach(obj, (pluginData, pluginName) => {
|
|
|
|
|
_.forEach(pluginData.controllers, (controllerActions, controllerName) => {
|
|
|
|
|
_.forEach(controllerActions, (actionData, actionName) => {
|
|
|
|
|
if (diff === 'unset') {
|
|
|
|
|
if (!_.get(dataToCompare, [pluginName, 'controllers', controllerName])) {
|
|
|
|
|
_.unset(data, [roleId, 'permissions', pluginName, 'controllers', controllerName]);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!_.get(dataToCompare, [pluginName, 'controllers', controllerName, actionName])) {
|
|
|
|
|
_.unset(data, [roleId, 'permissions', pluginName, 'controllers', controllerName, actionName]);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
if (!_.get(data, [roleId, 'permissions', pluginName, 'controllers', controllerName, actionName])) {
|
2017-11-28 16:37:23 +01:00
|
|
|
const isCallback = actionName === 'callback' && controllerName === 'auth' && pluginName === 'users-permissions' && roleId === '1';
|
|
|
|
|
const isRegister = actionName === 'register' && controllerName === 'auth' && pluginName === 'users-permissions' && roleId === '1';
|
2017-11-29 15:42:11 +01:00
|
|
|
const isInit = actionName === 'init' && controllerName === 'userspermissions';
|
|
|
|
|
const isModelContentManager = actionName === 'models' && controllerName === 'contentmanager';
|
|
|
|
|
const enabled = isCallback || isRegister || roleId === '0' || isInit || isModelContentManager;
|
2017-11-28 16:37:23 +01:00
|
|
|
|
|
|
|
|
_.set(data, [roleId, 'permissions', pluginName, 'controllers', controllerName, actionName], { enabled, policy: '' })
|
2017-11-17 16:36:57 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
return data;
|
|
|
|
|
},
|
|
|
|
|
|
2017-11-20 14:35:24 +01:00
|
|
|
updatePermissions: async (cb) => {
|
|
|
|
|
const Service = strapi.plugins['users-permissions'].services.userspermissions;
|
2017-11-17 16:36:57 +01:00
|
|
|
const appActions = Service.getActions();
|
|
|
|
|
const roleConfigPath = Service.getRoleConfigPath();
|
|
|
|
|
const writePermissions = Service.writePermissions;
|
|
|
|
|
const currentRoles = require(roleConfigPath);
|
|
|
|
|
const remove = await Service.updateData(_.cloneDeep(currentRoles));
|
|
|
|
|
const added = await Service.updateData(_.cloneDeep(remove), 'set');
|
|
|
|
|
|
|
|
|
|
if (!_.isEqual(currentRoles, added)) {
|
|
|
|
|
writePermissions(added);
|
2017-11-17 14:22:59 +01:00
|
|
|
}
|
2017-11-20 14:35:24 +01:00
|
|
|
|
|
|
|
|
if (cb) {
|
|
|
|
|
cb();
|
|
|
|
|
}
|
2017-11-17 16:36:57 +01:00
|
|
|
},
|
2017-11-17 14:22:59 +01:00
|
|
|
|
2017-11-27 17:50:51 +01:00
|
|
|
updateRole: (roleId, body) => {
|
|
|
|
|
const Service = strapi.plugins['users-permissions'].services.userspermissions;
|
|
|
|
|
const appRoles = require(Service.getRoleConfigPath());
|
|
|
|
|
const updatedRole = _.pick(body, ['name', 'description', 'permissions']);
|
|
|
|
|
_.set(appRoles, [roleId], updatedRole);
|
|
|
|
|
|
|
|
|
|
Service.writePermissions(appRoles);
|
|
|
|
|
},
|
|
|
|
|
|
2017-11-17 16:36:57 +01:00
|
|
|
writePermissions: (data) => {
|
|
|
|
|
const roleConfigPath = strapi.plugins['users-permissions'].services.userspermissions.getRoleConfigPath();
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
fs.writeFileSync(roleConfigPath, stringify(data, null, 2), 'utf8');
|
|
|
|
|
} catch(err) {
|
|
|
|
|
strapi.log.error(err);
|
|
|
|
|
}
|
2017-11-17 12:14:12 +01:00
|
|
|
}
|
2017-11-06 11:14:43 +01:00
|
|
|
};
|
