yujunjun/strapi
1
0
Fork 0
mirror of https://github.com/strapi/strapi.git synced 2025-12-24 13:43:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

Check if token user still exist

Browse Source
This commit is contained in:
Jim Laurie 2017-12-14 16:12:39 +01:00
parent c7ef225238
commit 2715f2693f
2 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
packages/strapi-plugin-users-permissions/config/policies/permissions.js
View File

@ -6,7 +6,14 @@ module.exports = async (ctx, next) => {
if (ctx.request && ctx.request.header && ctx.request.header.authorization) {
try {
ctx.state.user = await strapi.plugins['users-permissions'].services.jwt.getToken(ctx);
const tokenUser = await strapi.plugins['users-permissions'].services.jwt.getToken(ctx);
ctx.state.user = await strapi.plugins['users-permissions'].services.user.fetch(_.pick(tokenUser, ['_id', 'id']));
if (!ctx.state.user) {
ctx.unauthorized('This user doesn\'t exit.');
}
role = ctx.state.user.role;
if (role.toString() === '0') {

2
packages/strapi-plugin-users-permissions/config/queries/mongoose.js
View File

@ -19,6 +19,8 @@ module.exports = {
if (!params[this.primaryKey] && params.id) {
params[this.primaryKey] = params.id;
delete params.id;
} else if (params.id) {
delete params.id;
}
return this