strapi/packages/core/content-manager/server/policies/hasPermissions.js

'use strict';

const {
  policy: { createPolicyFactory },
} = require('@strapi/utils');
const { validateHasPermissionsInput } = require('../validation/policies/hasPermissions');

module.exports = createPolicyFactory(
  ({ actions = [], hasAtLeastOne = false } = {}) => ({ ctx, strapi }) => {
    const {
      state: { userAbility, isAuthenticatedAdmin },
      params: { model },
    } = ctx;

    if (!isAuthenticatedAdmin || !userAbility) {
      return true;
    }

    const isAuthorized = hasAtLeastOne
      ? actions.some(action => userAbility.can(action, model))
      : actions.every(action => userAbility.can(action, model));

    if (!isAuthorized) {
      throw strapi.errors.forbidden();
    }

    return true;
  },
  {
    validator: validateHasPermissionsInput,
    name: 'plugin::content-manager.hasPermissions',
  }
);
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`'use strict';`

			`const {`
			`policy: { createPolicyFactory },`
Rename import & requires, fix tests 2021-04-29 13:51:12 +02:00			`} = require('@strapi/utils');`
Move CM files into the new structure 2021-09-24 09:04:44 +02:00			`const { validateHasPermissionsInput } = require('../validation/policies/hasPermissions');`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00
			`module.exports = createPolicyFactory(`
refactor policy API 2021-09-24 09:35:25 +02:00			`({ actions = [], hasAtLeastOne = false } = {}) => ({ ctx, strapi }) => {`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`const {`
Add basis for upload controllers permissions Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-02 15:58:12 +02:00			`state: { userAbility, isAuthenticatedAdmin },`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`params: { model },`
			`} = ctx;`

Add basis for upload controllers permissions Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-02 15:58:12 +02:00			`if (!isAuthenticatedAdmin \|\| !userAbility) {`
refactor policy API 2021-09-24 09:35:25 +02:00			`return true;`
Add basis for upload controllers permissions Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-07-02 15:58:12 +02:00			`}`

Allow multiple args in policies Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-07-02 17:52:27 +02:00			`const isAuthorized = hasAtLeastOne`
			`? actions.some(action => userAbility.can(action, model))`
			`: actions.every(action => userAbility.can(action, model));`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00
			`if (!isAuthorized) {`
			`throw strapi.errors.forbidden();`
			`}`

refactor policy API 2021-09-24 09:35:25 +02:00			`return true;`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`},`
			`{`
			`validator: validateHasPermissionsInput,`
refactor with module approach 2021-08-06 18:09:49 +02:00			`name: 'plugin::content-manager.hasPermissions',`
Add plugins::content-manager.hasPermissions policy Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-29 18:30:35 +02:00			`}`
			`);`