mirror of
https://github.com/strapi/strapi.git
synced 2025-07-23 17:10:08 +00:00
34 lines
835 B
JavaScript
34 lines
835 B
JavaScript
'use strict';
|
|
|
|
const {
|
|
policy: { createPolicyFactory },
|
|
} = require('@strapi/utils');
|
|
const { validateHasPermissionsInput } = require('../../validation/policies/hasPermissions');
|
|
|
|
module.exports = createPolicyFactory(
|
|
(actions, { hasAtLeastOne = false } = {}) => (ctx, next) => {
|
|
const {
|
|
state: { userAbility, isAuthenticatedAdmin },
|
|
params: { model },
|
|
} = ctx;
|
|
|
|
if (!isAuthenticatedAdmin || !userAbility) {
|
|
return next();
|
|
}
|
|
|
|
const isAuthorized = hasAtLeastOne
|
|
? actions.some(action => userAbility.can(action, model))
|
|
: actions.every(action => userAbility.can(action, model));
|
|
|
|
if (!isAuthorized) {
|
|
throw strapi.errors.forbidden();
|
|
}
|
|
|
|
return next();
|
|
},
|
|
{
|
|
validator: validateHasPermissionsInput,
|
|
name: 'plugins::content-manager.hasPermissions',
|
|
}
|
|
);
|