strapi/packages/core/content-manager/server/policies/hasPermissions.js

'use strict';

const {
  policy: { createPolicy },
} = require('@strapi/utils');
const { validateHasPermissionsInput } = require('../validation/policies/hasPermissions');

module.exports = createPolicy({
  name: 'plugin::content-manager.hasPermissions',
  validator: validateHasPermissionsInput,
  handler(ctx, config = {}) {
    const { actions = [], hasAtLeastOne = false } = config;

    const {
      state: { userAbility },
      params: { model },
    } = ctx;

    const isAuthorized = hasAtLeastOne
      ? actions.some((action) => userAbility.can(action, model))
      : actions.every((action) => userAbility.can(action, model));

    return isAuthorized;
  },
});
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`'use strict';`

			`const {`
Refactor policies to have a consistent factory API like middlewares 2021-11-05 12:19:49 +01:00			`policy: { createPolicy },`
Rename import & requires, fix tests 2021-04-29 13:51:12 +02:00			`} = require('@strapi/utils');`
Move CM files into the new structure 2021-09-24 09:04:44 +02:00			`const { validateHasPermissionsInput } = require('../validation/policies/hasPermissions');`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00
Refactor policies to have a consistent factory API like middlewares 2021-11-05 12:19:49 +01:00			`module.exports = createPolicy({`
			`name: 'plugin::content-manager.hasPermissions',`
			`validator: validateHasPermissionsInput,`
			`handler(ctx, config = {}) {`
			`const { actions = [], hasAtLeastOne = false } = config;`

Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`const {`
Fix users-permissions user controllers permissions 2021-11-04 15:18:09 +01:00			`state: { userAbility },`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`params: { model },`
			`} = ctx;`

Allow multiple args in policies Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-07-02 17:52:27 +02:00			`const isAuthorized = hasAtLeastOne`
Prettier and backend fix 2022-08-08 23:33:39 +02:00			`? actions.some((action) => userAbility.can(action, model))`
			`: actions.every((action) => userAbility.can(action, model));`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00
refactor error handling 2021-10-20 17:30:05 +02:00			`return isAuthorized;`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`},`
Refactor policies to have a consistent factory API like middlewares 2021-11-05 12:19:49 +01:00			`});`