mirror/fosrl.pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2025-08-28 13:48:13 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Fix error

Browse source
This commit is contained in:
Owen Schwartz 2024-10-12 23:05:43 -04:00
parent 4facb91d7a
commit 62f94a7236
No known key found for this signature in database
GPG key ID: 8271FDFFD9E0CCBD
5 changed files with 53 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

1
server/auth/actions.ts
View file

@ -35,7 +35,6 @@ export enum ActionsEnum {
removeUser = "removeUser", removeUser = "removeUser",
listUsers = "listUsers", listUsers = "listUsers",
listSiteRoles = "listSiteRoles", listSiteRoles = "listSiteRoles",
listUserRoles = "listUserRoles",
listResourceRoles = "listResourceRoles", listResourceRoles = "listResourceRoles",
addRoleSite = "addRoleSite", addRoleSite = "addRoleSite",
addRoleResource = "addRoleResource", addRoleResource = "addRoleResource",

22
server/routers/role/addRoleAction.ts
View file

@ -7,9 +7,13 @@ import HttpCode from '@server/types/HttpCode';
import createHttpError from 'http-errors'; import createHttpError from 'http-errors';
import { ActionsEnum, checkUserActionPermission } from '@server/auth/actions'; import { ActionsEnum, checkUserActionPermission } from '@server/auth/actions';
import logger from '@server/logger'; import logger from '@server/logger';
import { eq } from 'drizzle-orm';
const addRoleActionParamSchema = z.object({
roleId: z.string().transform(Number).pipe(z.number().int().positive()),
});
const addRoleActionSchema = z.object({ const addRoleActionSchema = z.object({
roleId: z.string().transform(Number).pipe(z.number().int().positive()),
actionId: z.string(), actionId: z.string(),
}); });
@ -25,7 +29,19 @@ export async function addRoleAction(req: Request, res: Response, next: NextFunct
); );
} }
const { roleId, actionId } = parsedBody.data; const { actionId } = parsedBody.data;
const parsedParams = addRoleActionParamSchema.safeParse(req.params);
if (!parsedParams.success) {
return next(
createHttpError(
HttpCode.BAD_REQUEST,
parsedParams.error.errors.map(e => e.message).join(', ')
)
);
}
const { roleId } = parsedParams.data;
// Check if the user has permission to add role actions // Check if the user has permission to add role actions
const hasPermission = await checkUserActionPermission(ActionsEnum.addRoleAction, req); const hasPermission = await checkUserActionPermission(ActionsEnum.addRoleAction, req);
@ -42,7 +58,7 @@ export async function addRoleAction(req: Request, res: Response, next: NextFunct
const newRoleAction = await db.insert(roleActions).values({ const newRoleAction = await db.insert(roleActions).values({
roleId, roleId,
actionId, actionId,
orgId: role[0].orgId, orgId: role[0].orgId!,
}).returning(); }).returning();
return response(res, { return response(res, {

19
server/routers/role/addRoleResource.ts
View file

@ -8,8 +8,11 @@ import createHttpError from 'http-errors';
import { ActionsEnum, checkUserActionPermission } from '@server/auth/actions'; import { ActionsEnum, checkUserActionPermission } from '@server/auth/actions';
import logger from '@server/logger'; import logger from '@server/logger';
const addRoleResourceSchema = z.object({ const addRoleResourceParamsSchema = z.object({
roleId: z.string().transform(Number).pipe(z.number().int().positive()), roleId: z.string().transform(Number).pipe(z.number().int().positive()),
});
const addRoleResourceSchema = z.object({
resourceId: z.string(), resourceId: z.string(),
}); });
@ -25,7 +28,19 @@ export async function addRoleResource(req: Request, res: Response, next: NextFun
); );
} }
const { roleId, resourceId } = parsedBody.data; const { resourceId } = parsedBody.data;
const parsedParams = addRoleResourceParamsSchema.safeParse(req.params);
if (!parsedParams.success) {
return next(
createHttpError(
HttpCode.BAD_REQUEST,
parsedParams.error.errors.map(e => e.message).join(', ')
)
);
}
const { roleId } = parsedParams.data;
// Check if the user has permission to add role resources // Check if the user has permission to add role resources
const hasPermission = await checkUserActionPermission(ActionsEnum.addRoleResource, req); const hasPermission = await checkUserActionPermission(ActionsEnum.addRoleResource, req);

19
server/routers/role/removeRoleResource.ts
View file

@ -9,8 +9,11 @@ import createHttpError from 'http-errors';
import { ActionsEnum, checkUserActionPermission } from '@server/auth/actions'; import { ActionsEnum, checkUserActionPermission } from '@server/auth/actions';
import logger from '@server/logger'; import logger from '@server/logger';
const removeRoleResourceSchema = z.object({ const removeRoleResourceParamsSchema = z.object({
roleId: z.string().transform(Number).pipe(z.number().int().positive()), roleId: z.string().transform(Number).pipe(z.number().int().positive()),
});
const removeRoleResourceSchema = z.object({
resourceId: z.string(), resourceId: z.string(),
}); });
@ -26,7 +29,19 @@ export async function removeRoleResource(req: Request, res: Response, next: Next
); );
} }
const { roleId, resourceId } = parsedParams.data; const { resourceId } = parsedParams.data;
const parsedBody = removeRoleResourceParamsSchema.safeParse(req.body);
if (!parsedBody.success) {
return next(
createHttpError(
HttpCode.BAD_REQUEST,
parsedBody.error.errors.map(e => e.message).join(', ')
)
);
}
const { roleId } = parsedBody.data;
// Check if the user has permission to remove role resources // Check if the user has permission to remove role resources
const hasPermission = await checkUserActionPermission(ActionsEnum.removeRoleResource, req); const hasPermission = await checkUserActionPermission(ActionsEnum.removeRoleResource, req);

1
server/routers/user/index.ts
View file

@ -2,5 +2,4 @@ export * from "./getUser";
export * from "./removeUserOrg"; export * from "./removeUserOrg";
export * from "./addUserOrg"; export * from "./addUserOrg";
export * from "./listUsers"; export * from "./listUsers";
export * from "./listUserRoles";
export * from "./setUserRole"; export * from "./setUserRole";