yujunjun/strapi
1
0
Fork 0
mirror of https://github.com/strapi/strapi.git synced 2025-07-09 01:52:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
strapi/packages/plugins/users-permissions/server/controllers/role.js
Jean-Sébastien Herbaux 7f39880265
Make locale/localizations private for non-localized cts (#21495)
2024-10-14 14:07:09 +02:00

91 lines
2.1 KiB
JavaScript
Raw Permalink Blame History

'use strict';
const _ = require('lodash');
const { async, errors } = require('@strapi/utils');
const { getService } = require('../utils');
const { validateDeleteRoleBody } = require('./validation/user');
const { ApplicationError, ValidationError } = errors;
const sanitizeOutput = async (role) => {
const { sanitizeLocalizationFields } = strapi.plugin('i18n').service('sanitize');
const schema = strapi.getModel('plugin::users-permissions.role');
return async.pipe(sanitizeLocalizationFields(schema))(role);
};
module.exports = {
/**
* Default action.
*
* @return {Object}
*/
async createRole(ctx) {
if (_.isEmpty(ctx.request.body)) {
throw new ValidationError('Request body cannot be empty');
}
await getService('role').createRole(ctx.request.body);
ctx.send({ ok: true });
},
async findOne(ctx) {
const { id } = ctx.params;
const role = await getService('role').findOne(id);
if (!role) {
return ctx.notFound();
}
const safeRole = await sanitizeOutput(role);
ctx.send({ role: safeRole });
},
async find(ctx) {
const roles = await getService('role').find();
const safeRoles = await Promise.all(roles.map(sanitizeOutput));
ctx.send({ roles: safeRoles });
},
async updateRole(ctx) {
const roleID = ctx.params.role;
if (_.isEmpty(ctx.request.body)) {
throw new ValidationError('Request body cannot be empty');
}
await getService('role').updateRole(roleID, ctx.request.body);
ctx.send({ ok: true });
},
async deleteRole(ctx) {
const roleID = ctx.params.role;
if (!roleID) {
await validateDeleteRoleBody(ctx.params);
}
// Fetch public role.
const publicRole = await strapi.db
.query('plugin::users-permissions.role')
.findOne({ where: { type: 'public' } });
const publicRoleID = publicRole.id;
// Prevent from removing the public role.
if (roleID.toString() === publicRoleID.toString()) {
throw new ApplicationError('Cannot delete public role');
}
await getService('role').deleteRole(roleID, publicRoleID);
ctx.send({ ok: true });
},
};
Reference in New Issue View Git Blame Copy Permalink