blob: 7d53e834125aeaa12226d6a055c5675a27a59cac (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
import express from 'express'
import { HttpStatusCode, UserRight } from '@shared/models'
import { logger } from '../helpers/logger'
function ensureUserHasRight (userRight: UserRight) {
return function (req: express.Request, res: express.Response, next: express.NextFunction) {
const user = res.locals.oauth.token.user
if (user.hasRight(userRight) === false) {
const message = `User ${user.username} does not have right ${userRight} to access to ${req.path}.`
logger.info(message)
return res.fail({
status: HttpStatusCode.FORBIDDEN_403,
message
})
}
return next()
}
}
// ---------------------------------------------------------------------------
export {
ensureUserHasRight
}
|
