shpaq/sct-overseerr
1
0
Fork 0
mirror of https://github.com/sct/overseerr.git synced 2025-09-17 17:24:35 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
f22f8c5d734be5cc0b1dcca869458a7321cd43a2
sct-overseerr/server/middleware/auth.ts
sct cfc84ce2f3 Permission System (#47) 
* feat(api): permissions system

Adds a permission system for isAuthenticated middleware. Also adds user CRUD.
2020-09-03 19:20:14 +09:00

35 lines
848 B
TypeScript
Raw Blame History

import { getRepository } from 'typeorm';
import { User } from '../entity/User';
import { Permission } from '../lib/permissions';
export const checkUser: Middleware = async (req, _res, next) => {
if (req.session?.userId) {
const userRepository = getRepository(User);
const user = await userRepository.findOne({
where: { id: req.session.userId },
});
if (user) {
req.user = user;
}
}
next();
};
export const isAuthenticated = (
permissions?: Permission | Permission[]
): Middleware => {
const authMiddleware: Middleware = (req, res, next) => {
if (!req.user || !req.user.hasPermission(permissions ?? 0)) {
res.status(403).json({
status: 403,
error: 'You do not have permisson to access this endpoint',
});
} else {
next();
}
};
return authMiddleware;
};
Reference in New Issue View Git Blame Copy Permalink