mirror of
https://github.com/taobataoma/meanTorrent.git
synced 2026-03-02 18:20:59 +01:00
57 lines
1.8 KiB
JavaScript
57 lines
1.8 KiB
JavaScript
'use strict';
|
|
|
|
/**
|
|
* Module dependencies
|
|
*/
|
|
var acl = require('acl');
|
|
|
|
// Using the memory backend
|
|
acl = new acl(new acl.memoryBackend());
|
|
|
|
/**
|
|
* Invoke Articles Permissions
|
|
*/
|
|
exports.invokeRolesPolicies = function () {
|
|
acl.allow([{
|
|
roles: ['admin'],
|
|
allows: [
|
|
{resources: '/api/systems/systemConfigContent', permissions: '*'},
|
|
{resources: '/api/systems/systemEnvConfigFiles', permissions: '*'},
|
|
{resources: '/api/systems/systemAssetsConfigFiles', permissions: '*'},
|
|
{resources: '/api/systems/systemTransConfigFiles', permissions: '*'},
|
|
{resources: '/api/systems/systemTemplateFrontConfigFiles', permissions: '*'},
|
|
{resources: '/api/systems/systemTemplateBackConfigFiles', permissions: '*'},
|
|
{resources: '/api/systems/shellCommand', permissions: '*'},
|
|
{resources: '/api/systems/initExaminationData', permissions: '*'},
|
|
{resources: '/api/systems/getExaminationStatus', permissions: '*'},
|
|
{resources: '/api/systems/listFinishedUsers', permissions: '*'},
|
|
{resources: '/api/systems/listUnfinishedUsers', permissions: '*'},
|
|
{resources: '/api/systems/banAllUnfinishedUser', permissions: '*'}
|
|
]
|
|
}]);
|
|
};
|
|
|
|
/**
|
|
* Check If Articles Policy Allows
|
|
*/
|
|
exports.isAllowed = function (req, res, next) {
|
|
var roles = (req.user) ? req.user.roles : ['guest'];
|
|
|
|
// Check for user roles
|
|
acl.areAnyRolesAllowed(roles, req.route.path, req.method.toLowerCase(), function (err, isAllowed) {
|
|
if (err) {
|
|
// An authorization error occurred
|
|
return res.status(500).send('Unexpected authorization error');
|
|
} else {
|
|
if (isAllowed) {
|
|
// Access granted! Invoke next middleware
|
|
return next();
|
|
} else {
|
|
return res.status(403).json({
|
|
message: 'User is not authorized'
|
|
});
|
|
}
|
|
}
|
|
});
|
|
};
|