Skip to content

Commit

Permalink
Fixing animals acl permissions
Browse files Browse the repository at this point in the history
  • Loading branch information
@lucasgehl3n
lucasgehl3n committed Nov 25, 2023
1 parent 634bbb0 commit 590f0ac
Show file tree
Hide file tree
Showing 3 changed files with 30 additions and 9 deletions.
24 changes: 24 additions & 0 deletions src/middlewares/acl/CheckAclAnimalsPermission.ts
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
import { NextFunction } from "express";
import { AuthenticatedRequest } from "../../..";
import { Request, Response } from 'express';
import { Roles } from "../../enums/Roles";
import Animal from "../../database/models/Animal";

export default function CheckAclAnimalsPermission(role: Roles) {
return async function (req: Request, res: Response, next: NextFunction) {
const authenticatedRequest = req as unknown as AuthenticatedRequest;
const { userRoles } = authenticatedRequest.user!;
const id = req.params.id || req.body.id;

const animal = await Animal.findByPk(id);
if (userRoles.some(x =>
x.idRole && x.idRole >= role &&
x.idInstitution?.toString() === animal?.idInstitution
)) {
return next();
}

return res.status(401).json({ message: 'Not allowed profile!' });
}
};

8 changes: 2 additions & 6 deletions src/middlewares/acl/CheckAclPermission.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,12 +7,8 @@ export default function CheckAclPermission(role: Roles) {
return function (req: Request, res: Response, next: NextFunction) {
const authenticatedRequest = req as unknown as AuthenticatedRequest;
const { userRoles } = authenticatedRequest.user!;
let id = req.params.id || req.body.id;

if(!req.path.includes('/institution')){
id = req.params.idInstitution || req.body.idInstitution;
}

const id = req.params.id || req.body.id;

if (userRoles.some(x =>
x.idRole && x.idRole >= role &&
x.idInstitution?.toString() === id
Expand Down
7 changes: 4 additions & 3 deletions src/routes.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,7 @@ import BreedController from "./controllers/BreedController";
import ColorController from "./controllers/ColorController";
import BehavioralProfileController from "./controllers/BehavioralProfileController";
import AnimalController from "./controllers/AnimalController";
import CheckAclAnimalsPermission from "./middlewares/acl/CheckAclAnimalsPermission";
const routes = Router();

const globalErrorHandler = (err: Error, req: Request, res: Response, next: NextFunction) => {
Expand Down Expand Up @@ -98,16 +99,16 @@ routes.post('/animal/save', upload.any(), (req, res) => {
});

routes.post('/animal/saveFiles', upload.any(), (req, res) => {
CheckUserPermission(Roles.Volunteer)
CheckAclAnimalsPermission(Roles.Volunteer)
return AnimalController.saveFiles(req, res)
});

routes.post('/temporaryHome/save', (req, res) => {
CheckUserPermission(Roles.Volunteer)
CheckAclAnimalsPermission(Roles.Volunteer)
return EntityTemporaryHomeController.save(req, res)
});

routes.get('/animal/:id', CheckUserPermission(Roles.Volunteer), (req, res) => {
routes.get('/animal/:id', CheckAclAnimalsPermission(Roles.Volunteer), (req, res) => {
return AnimalController.detail(req, res)
});

Expand Down

0 comments on commit 590f0ac

Please sign in to comment.