2020-05-18 16:21:02 +02:00
|
|
|
'use strict';
|
|
|
|
|
|
2020-06-15 19:11:36 +02:00
|
|
|
const _ = require('lodash');
|
2020-06-16 13:51:34 +02:00
|
|
|
const { yup, formatYupErrors } = require('strapi-utils');
|
2020-05-19 16:11:19 +02:00
|
|
|
const { validateRoleUpdateInput } = require('../validation/role');
|
2020-05-28 11:29:59 +02:00
|
|
|
const { validatedUpdatePermissionsInput } = require('../validation/permission');
|
2020-05-19 16:11:19 +02:00
|
|
|
|
2020-05-18 16:21:02 +02:00
|
|
|
module.exports = {
|
2020-05-27 17:15:58 +02:00
|
|
|
/**
|
|
|
|
|
* Returns on role by id
|
|
|
|
|
* @param {KoaContext} ctx - koa context
|
|
|
|
|
*/
|
2020-05-18 16:21:02 +02:00
|
|
|
async findOne(ctx) {
|
|
|
|
|
const { id } = ctx.params;
|
2020-06-01 09:56:53 +02:00
|
|
|
const role = await strapi.admin.services.role.findOneWithUsersCount({ id });
|
2020-05-18 16:21:02 +02:00
|
|
|
|
|
|
|
|
if (!role) {
|
|
|
|
|
return ctx.notFound('role.notFound');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ctx.body = {
|
|
|
|
|
data: role,
|
|
|
|
|
};
|
|
|
|
|
},
|
2020-05-27 17:15:58 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Returns every roles
|
|
|
|
|
* @param {KoaContext} ctx - koa context
|
|
|
|
|
*/
|
2020-05-19 15:40:04 +02:00
|
|
|
async findAll(ctx) {
|
2020-05-29 18:19:12 +02:00
|
|
|
const roles = await strapi.admin.services.role.findAllWithUsersCount();
|
2020-05-29 17:23:42 +02:00
|
|
|
|
2020-05-18 16:29:32 +02:00
|
|
|
ctx.body = {
|
|
|
|
|
data: roles,
|
|
|
|
|
};
|
|
|
|
|
},
|
2020-05-27 17:15:58 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Updates a role by id
|
|
|
|
|
* @param {KoaContext} ctx - koa context
|
|
|
|
|
*/
|
2020-05-19 16:11:19 +02:00
|
|
|
async update(ctx) {
|
|
|
|
|
const { id } = ctx.params;
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
await validateRoleUpdateInput(ctx.request.body);
|
|
|
|
|
} catch (err) {
|
|
|
|
|
return ctx.badRequest('ValidationError', err);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const role = await strapi.admin.services.role.update({ id }, ctx.request.body);
|
|
|
|
|
|
|
|
|
|
if (!role) {
|
|
|
|
|
return ctx.notFound('role.notFound');
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-29 11:09:17 +02:00
|
|
|
const sanitizedRole = strapi.admin.services.role.sanitizeRole(role);
|
|
|
|
|
|
2020-05-19 16:11:19 +02:00
|
|
|
ctx.body = {
|
2020-05-29 11:09:17 +02:00
|
|
|
data: sanitizedRole,
|
2020-05-19 16:11:19 +02:00
|
|
|
};
|
|
|
|
|
},
|
2020-05-27 17:15:58 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Returns the permissions assigned to a role
|
|
|
|
|
* @param {KoaContext} ctx - koa context
|
|
|
|
|
*/
|
|
|
|
|
async getPermissions(ctx) {
|
|
|
|
|
const { id } = ctx.params;
|
|
|
|
|
|
|
|
|
|
const role = await strapi.admin.services.role.findOne({ id });
|
|
|
|
|
|
|
|
|
|
if (!role) {
|
|
|
|
|
return ctx.notFound('role.notFound');
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-28 11:29:59 +02:00
|
|
|
const permissions = await strapi.admin.services.permission.find({ role: role.id, _limit: -1 });
|
2020-05-27 17:15:58 +02:00
|
|
|
|
|
|
|
|
ctx.body = {
|
|
|
|
|
data: permissions,
|
|
|
|
|
};
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Updates the permissions assigned to a role
|
|
|
|
|
* @param {KoaContext} ctx - koa context
|
|
|
|
|
*/
|
|
|
|
|
async updatePermissions(ctx) {
|
|
|
|
|
const { id } = ctx.params;
|
2020-06-15 19:11:36 +02:00
|
|
|
const input = _.cloneDeep(ctx.request.body);
|
2020-05-28 11:29:59 +02:00
|
|
|
|
|
|
|
|
try {
|
2020-06-16 13:51:34 +02:00
|
|
|
const superAdminRole = await strapi.admin.services.role.getAdmin();
|
2020-06-16 18:49:49 +02:00
|
|
|
if (superAdminRole && String(superAdminRole.id) === String(id)) {
|
2020-06-16 13:51:34 +02:00
|
|
|
const err = new yup.ValidationError("Super admin permissions can't be edited.");
|
|
|
|
|
throw formatYupErrors(err);
|
|
|
|
|
}
|
2020-05-28 11:29:59 +02:00
|
|
|
await validatedUpdatePermissionsInput(input);
|
|
|
|
|
} catch (err) {
|
2020-06-16 18:49:49 +02:00
|
|
|
return ctx.badRequest('ValidationError', err);
|
2020-05-28 11:29:59 +02:00
|
|
|
}
|
2020-05-27 17:15:58 +02:00
|
|
|
|
|
|
|
|
const role = await strapi.admin.services.role.findOne({ id });
|
|
|
|
|
|
|
|
|
|
if (!role) {
|
|
|
|
|
return ctx.notFound('role.notFound');
|
|
|
|
|
}
|
|
|
|
|
|
2020-06-15 19:11:36 +02:00
|
|
|
let existingPermissions = strapi.admin.services.permission.actionProvider.getAllByMap();
|
|
|
|
|
if (['strapi-author', 'strapi-editor'].includes(role.code)) {
|
|
|
|
|
input.permissions
|
|
|
|
|
.filter(p => existingPermissions.get(p.action).section === 'contentTypes')
|
|
|
|
|
.forEach(p => {
|
|
|
|
|
p.conditions = role.code === 'strapi-author' ? ['isOwner'] : [];
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-28 11:29:59 +02:00
|
|
|
const permissions = await strapi.admin.services.permission.assign(role.id, input.permissions);
|
|
|
|
|
|
2020-05-27 17:15:58 +02:00
|
|
|
ctx.body = {
|
2020-05-28 11:29:59 +02:00
|
|
|
data: permissions,
|
2020-05-27 17:15:58 +02:00
|
|
|
};
|
|
|
|
|
},
|
2020-05-18 16:21:02 +02:00
|
|
|
};
|
