Picsur/backend/src/decorators/permissions.decorator.ts

import {
  createParamDecorator,
  ExecutionContext,
  SetMetadata,
  UseGuards,
} from '@nestjs/common';
import { Fail, FT } from 'picsur-shared/dist/types';
import { CombineFCDecorators } from 'picsur-shared/dist/util/decorator';
import { LocalAuthGuard } from '../managers/auth/guards/local-auth.guard';
import { Permission, Permissions } from '../models/constants/permissions.const';
import AuthFastifyRequest from '../models/interfaces/authrequest.dto';

export const RequiredPermissions = (...permissions: Permissions) => {
  return SetMetadata('permissions', permissions);
};

// Just a verbose wrapper
export const NoPermissions = () => RequiredPermissions();

// This still requires permissions, but also allows the client to use user/pass authentication instead of JWT
export const UseLocalAuth = (...permissions: Permissions) =>
  CombineFCDecorators(
    RequiredPermissions(...permissions),
    UseGuards(LocalAuthGuard),
  );

export const HasPermission = createParamDecorator(
  (data: Permission, ctx: ExecutionContext) => {
    const req: AuthFastifyRequest = ctx.switchToHttp().getRequest();
    const permissions = req.userPermissions;
    if (!permissions) {
      throw Fail(
        FT.Internal,
        undefined,
        'Permissions are missing from request',
      );
    }

    return permissions.includes(data);
  },
);

export const GetPermissions = createParamDecorator(
  (data: Permission, ctx: ExecutionContext) => {
    const req: AuthFastifyRequest = ctx.switchToHttp().getRequest();
    const permissions = req.userPermissions;
    if (!permissions) {
      throw Fail(
        FT.Internal,
        undefined,
        'Permissions are missing from request',
      );
    }

    return permissions;
  },
);
rename permissions and add admin image list 2022-05-04 19:25:52 +00:00			`import {`
update packages and run prettier 2022-09-06 14:32:16 +00:00			`createParamDecorator,`
			`ExecutionContext,`
			`SetMetadata,`
			`UseGuards,`
rename permissions and add admin image list 2022-05-04 19:25:52 +00:00			`} from '@nestjs/common';`
change error behaviour 2022-08-26 18:40:16 +00:00			`import { Fail, FT } from 'picsur-shared/dist/types';`
relocate validator composer 2022-03-27 20:48:10 +00:00			`import { CombineFCDecorators } from 'picsur-shared/dist/util/decorator';`
refactor backend names 2022-04-18 12:34:53 +00:00			`import { LocalAuthGuard } from '../managers/auth/guards/local-auth.guard';`
rename permissions and add admin image list 2022-05-04 19:25:52 +00:00			`import { Permission, Permissions } from '../models/constants/permissions.const';`
Add support for deletekeys 2022-09-03 18:03:28 +00:00			`import AuthFastifyRequest from '../models/interfaces/authrequest.dto';`
add permissions to roles 2022-03-12 14:10:22 +00:00
			`export const RequiredPermissions = (...permissions: Permissions) => {`
			`return SetMetadata('permissions', permissions);`
			`};`

cleanup decorators 2022-03-28 10:44:00 +00:00			`// Just a verbose wrapper`
add permission endpoint 2022-03-12 20:13:58 +00:00			`export const NoPermissions = () => RequiredPermissions();`
add permissions to roles 2022-03-12 14:10:22 +00:00
cleanup decorators 2022-03-28 10:44:00 +00:00			`// This still requires permissions, but also allows the client to use user/pass authentication instead of JWT`
add permissions to roles 2022-03-12 14:10:22 +00:00			`export const UseLocalAuth = (...permissions: Permissions) =>`
relocate validator composer 2022-03-27 20:48:10 +00:00			`CombineFCDecorators(`
add permissions to roles 2022-03-12 14:10:22 +00:00			`RequiredPermissions(...permissions),`
			`UseGuards(LocalAuthGuard),`
			`);`
rename permissions and add admin image list 2022-05-04 19:25:52 +00:00
			`export const HasPermission = createParamDecorator(`
			`(data: Permission, ctx: ExecutionContext) => {`
Add support for deletekeys 2022-09-03 18:03:28 +00:00			`const req: AuthFastifyRequest = ctx.switchToHttp().getRequest();`
rename permissions and add admin image list 2022-05-04 19:25:52 +00:00			`const permissions = req.userPermissions;`
			`if (!permissions) {`
update packages and run prettier 2022-09-06 14:32:16 +00:00			`throw Fail(`
			`FT.Internal,`
			`undefined,`
			`'Permissions are missing from request',`
			`);`
rename permissions and add admin image list 2022-05-04 19:25:52 +00:00			`}`

			`return permissions.includes(data);`
			`},`
			`);`

			`export const GetPermissions = createParamDecorator(`
			`(data: Permission, ctx: ExecutionContext) => {`
Add support for deletekeys 2022-09-03 18:03:28 +00:00			`const req: AuthFastifyRequest = ctx.switchToHttp().getRequest();`
rename permissions and add admin image list 2022-05-04 19:25:52 +00:00			`const permissions = req.userPermissions;`
			`if (!permissions) {`
update packages and run prettier 2022-09-06 14:32:16 +00:00			`throw Fail(`
			`FT.Internal,`
			`undefined,`
			`'Permissions are missing from request',`
			`);`
rename permissions and add admin image list 2022-05-04 19:25:52 +00:00			`}`

			`return permissions;`
			`},`
			`);`