Acasă Explorează Ajutor
Înregistrare Autentificare
alancnet
/
material-framework
1
0
Bifurcare 0
Fisiere Probleme 0 Trageți solicitările 0 Wiki
Arbore: b2391274cf
Ramuri Etichete
material-framew...
/
lib
/
controllers
/
auth
/
verify.js

verify.js 982 B
Istoric Crud

1234567891011121314151617181920212223242526272829303132333435363738 
  1. /**
    2. 

  2.  * 
    3. 

  3.  * @param {*} permissions Series of permissions or arrays of permissions, any of which must be fully satisfied to pass.
    4. 

  4.  * 
    5. 

  5.  * Example: verify('A', ['B', 'C']) means: A OR (B AND C)
    6. 

  6.  */
    7. 

  7. 

  8. const verify = (...permissions) => (req, res, next) => {
    9. 

  9.   const verified = !!req.user
    10. 

  10.   if (!verified) {
    11. 

  11.     if (process.env.SKIP_AUTH) {
    12. 

  12.       console.warn(`Skipping auth on ${req.path}`)
    13. 

  13.       if (next) next()
    14. 

  14.       return true
    15. 

  15.     }
    16. 

  16.     if (res) res.status(403).end()
    17. 

  17.     return false
    18. 

  18.   } else {
    19. 

  19.     if (permissions && permissions.length) {
    20. 

  20.       for (let permission of permissions) {
    21. 

  21.         if (
    22. 

  22.           (typeof permission === 'string' && req.claims[permission])
    23. 

  23.           || (Array.isArray(permission) && permission.every(p => req.claims[permission]))
    24. 

  24.         ) {
    25. 

  25.           if (next) next()
    26. 

  26.           return true
    27. 

  27.         }
    28. 

  28.       }
    29. 

  29.       if (res) res.status(401).end()
    30. 

  30.       return false
    31. 

  31.     }
    32. 

  32.     if (next) next()
    33. 

  33.     return true
    34. 

  34.   }
    35. 

  35.   return verified
    36. 

  36. }
    37. 

  37. 

  38. module.exports = verify
    39.