yujunjun/strapi
1
0
Fork 0
mirror of https://github.com/strapi/strapi.git synced 2025-07-25 18:05:07 +00:00
Code Issues Packages Projects Releases Wiki Activity
strapi/packages/core/content-manager/server/services/permission-checker.js
Pierre Noël d02c7ab741 Use new filters format in the upload plugin
2021-09-27 11:08:47 +02:00

71 lines
2.1 KiB
JavaScript
Raw Blame History

'use strict';
const ACTIONS = {
read: 'plugin::content-manager.explorer.read',
create: 'plugin::content-manager.explorer.create',
update: 'plugin::content-manager.explorer.update',
delete: 'plugin::content-manager.explorer.delete',
publish: 'plugin::content-manager.explorer.publish',
unpublish: 'plugin::content-manager.explorer.publish',
};
const createPermissionChecker = strapi => ({ userAbility, model }) => {
const permissionsManager = strapi.admin.services.permission.createPermissionsManager({
ability: userAbility,
model,
});
const toSubject = entity => (entity ? permissionsManager.toSubject(entity, model) : model);
const can = (action, entity, field) => {
return userAbility.can(action, toSubject(entity), field);
};
const cannot = (action, entity, field) => {
return userAbility.cannot(action, toSubject(entity), field);
};
const sanitizeOutput = (data, { action = ACTIONS.read } = {}) => {
return permissionsManager.sanitize(data, {
subject: toSubject(data),
action,
});
};
const sanitizeInput = (action, data, entity) => {
return permissionsManager.sanitize(data, {
subject: entity ? toSubject(entity) : model,
action,
isOutput: false,
});
};
const sanitizeCreateInput = data => sanitizeInput(ACTIONS.create, data);
const sanitizeUpdateInput = entity => data => sanitizeInput(ACTIONS.update, data, entity);
const buildPermissionQuery = (query, action) =>
permissionsManager.addPermissionsQueryTo(query, action);
const buildReadQuery = query => buildPermissionQuery(query, ACTIONS.read);
const buildDeleteQuery = query => buildPermissionQuery(query, ACTIONS.delete);
Object.keys(ACTIONS).forEach(action => {
can[action] = (...args) => can(ACTIONS[action], ...args);
cannot[action] = (...args) => cannot(ACTIONS[action], ...args);
});
return {
can,
cannot,
sanitizeOutput,
sanitizeCreateInput,
sanitizeUpdateInput,
buildReadQuery,
buildDeleteQuery,
};
};
module.exports = ({ strapi }) => ({
create: createPermissionChecker(strapi),
});
Reference in New Issue View Git Blame Copy Permalink