]>
Commit | Line | Data |
---|---|---|
41fb13c3 | 1 | import express from 'express' |
d17c7b4e | 2 | import { HttpStatusCode, UserRight } from '@shared/models' |
4c7e60bc | 3 | import { logger } from '../helpers/logger' |
954605a8 C |
4 | |
5 | function ensureUserHasRight (userRight: UserRight) { | |
6 | return function (req: express.Request, res: express.Response, next: express.NextFunction) { | |
dae86118 | 7 | const user = res.locals.oauth.token.user |
954605a8 | 8 | if (user.hasRight(userRight) === false) { |
bd45d503 | 9 | const message = `User ${user.username} does not have right ${userRight} to access to ${req.path}.` |
eec63bbc C |
10 | logger.info(message) |
11 | ||
76148b27 RK |
12 | return res.fail({ |
13 | status: HttpStatusCode.FORBIDDEN_403, | |
14 | message | |
15 | }) | |
954605a8 C |
16 | } |
17 | ||
18 | return next() | |
19 | } | |
20 | } | |
21 | ||
22 | // --------------------------------------------------------------------------- | |
23 | ||
24 | export { | |
25 | ensureUserHasRight | |
26 | } |