mirror of
https://github.com/taobataoma/meanTorrent.git
synced 2026-01-14 11:22:21 +01:00
67 lines
1.7 KiB
JavaScript
67 lines
1.7 KiB
JavaScript
'use strict';
|
|
|
|
/**
|
|
* Module dependencies
|
|
*/
|
|
var acl = require('acl');
|
|
|
|
// Using the memory backend
|
|
acl = new acl(new acl.memoryBackend());
|
|
|
|
/**
|
|
* Invoke Invitations Permissions
|
|
*/
|
|
exports.invokeRolesPolicies = function () {
|
|
acl.allow(
|
|
[
|
|
{
|
|
roles: ['admin', 'oper'],
|
|
allows: [
|
|
{resources: '/api/admin/forums', permissions: '*'},
|
|
{resources: '/api/admin/forums/:forumId', permissions: '*'},
|
|
{resources: '/api/admin/forums/:forumId/addModerator/:username', permissions: '*'},
|
|
{resources: '/api/admin/forums/:forumId/removeModerator/:username', permissions: '*'}
|
|
]
|
|
},
|
|
{
|
|
roles: ['user'],
|
|
allows: [
|
|
{resources: '/api/admin/forums', permissions: ['get']},
|
|
{resources: '/api/admin/forums/:forumId', permissions: ['get']}
|
|
]
|
|
},
|
|
{
|
|
roles: ['guest'],
|
|
allows: [
|
|
{resources: '/api/admin/forums', permissions: ['get']},
|
|
{resources: '/api/admin/forums/:forumId', permissions: ['get']}
|
|
]
|
|
}
|
|
]
|
|
);
|
|
};
|
|
|
|
/**
|
|
* Check If Invitations Policy Allows
|
|
*/
|
|
exports.isAllowed = function (req, res, next) {
|
|
var roles = (req.user) ? req.user.roles : ['guest'];
|
|
|
|
// Check for user roles
|
|
acl.areAnyRolesAllowed(roles, req.route.path, req.method.toLowerCase(), function (err, isAllowed) {
|
|
if (err) {
|
|
// An authorization error occurred
|
|
return res.status(500).send('Unexpected authorization error');
|
|
} else {
|
|
if (isAllowed) {
|
|
// Access granted! Invoke next middleware
|
|
return next();
|
|
} else {
|
|
return res.status(403).json({
|
|
message: 'User is not authorized'
|
|
});
|
|
}
|
|
}
|
|
});
|
|
};
|