@firecms/user_management 3.0.0-canary.16 → 3.0.0-canary.18

package/src/hooks/useBuildFirestoreUserManagement.tsx

@@ -1,5 +1,6 @@
 import React, { useCallback, useEffect, useRef } from "react";
 import {
+    addDoc,
     collection,
     deleteDoc,
     doc,
@@ -11,7 +12,7 @@ import {
 } from "firebase/firestore";
 import { FirebaseApp } from "firebase/app";
 import { UserManagement } from "../types";
-import { PermissionsBuilder, Role, User } from "@firecms/core";
+import { Authenticator, PermissionsBuilder, Role, User } from "@firecms/core";
 import { resolveUserRolePermissions } from "../utils";
 
 type UserWithRoleIds = User & { roles: string[] };
@@ -152,10 +153,15 @@ export function useBuildFirestoreUserManagement({
             uid,
             ...userData
         } = user;
-        return setDoc(doc(firestore, usersPath, uid), {
+        const data = {
             ...userData,
             roles: roleIds
-        }, { merge: true }).then(() => user);
+        };
+        if (uid) {
+            return setDoc(doc(firestore, usersPath, uid), data, { merge: true }).then(() => user);
+        } else {
+            return addDoc(collection(firestore, usersPath), data).then(() => user);
+        }
     }, [usersPath]);
 
     const saveRole = useCallback((role: Role): Promise<void> => {
@@ -202,6 +208,30 @@ export function useBuildFirestoreUserManagement({
         return mgmtUser?.roles;
     }, [userIds]);
 
+    const authenticator: Authenticator = useCallback(({ user }) => {
+        console.log("Authenticating user", user);
+        // return true;"
+
+        // console.log("authentication", user, userManagement);
+        if (loading) {
+            console.log("User management is still loading");
+            return false;
+        }
+
+        // This is an example of how you can link the access system to the user management plugin
+        if (users.length === 0) {
+            return true; // If there are no users created yet, we allow access to every user
+        }
+
+        const mgmtUser = users.find(u => u.email?.toLowerCase() === user?.email?.toLowerCase());
+        if (mgmtUser) {
+            // authController.setRoles(mgmtUser.roles ?? [])
+            return true;
+        }
+
+        throw Error("Could not find a user with the provided email");
+    }, [loading, users])
+
     return {
         loading,
         roles,
@@ -215,7 +245,8 @@ export function useBuildFirestoreUserManagement({
         allowDefaultRolesCreation: allowDefaultRolesCreation === undefined ? true : allowDefaultRolesCreation,
         includeCollectionConfigPermissions: Boolean(includeCollectionConfigPermissions),
         collectionPermissions,
-        defineRolesFor
+        defineRolesFor,
+        authenticator
     }
 }
 

package/src/types/user_management.tsx

@@ -1,4 +1,4 @@
-import { PermissionsBuilder, Role, User } from "@firecms/core";
+import { Authenticator, PermissionsBuilder, Role, User } from "@firecms/core";
 
 export type UserManagement<USER extends User = User> = {
 
@@ -39,9 +39,15 @@ export type UserManagement<USER extends User = User> = {
     collectionPermissions: PermissionsBuilder;
 
     /**
-     * Define the roles for a given user.
+     * Define the roles for a given user. You will typically want to plug this into your auth controller.
      * @param user
      */
     defineRolesFor: (user: User) => Promise<Role[]> | Role[] | undefined;
 
+    /**
+     * You can build an authenticator callback from the current configuration of the user management.
+     * It will only allow access to users with the required roles.
+     */
+    authenticator?: Authenticator;
+
 };