@live-change/access-control-service 0.2.19

package/access.js

@@ -0,0 +1,19 @@
+
+module.exports = (definition) => {
+
+  const Access = definition.foreignModel('access-control', 'Access')
+  const PublicAccess = definition.foreignModel('access-control', 'PublicAccess')
+
+  function clientHasAnyAccess(client, toType, toId) {
+    /// TODO: access control
+    return true
+  }
+
+  function clientHasAdminAccess(client, toType, toId) {
+    /// TODO: access control
+    return true
+  }
+
+  return {clientHasAnyAccess, clientHasAdminAccess }
+
+}

package/definition.js

@@ -0,0 +1,11 @@
+const app = require("@live-change/framework").app()
+
+const relationsPlugin = require('@live-change/relations-plugin')
+const userService = require('@live-change/user-service')
+
+const definition = app.createServiceDefinition({
+  name: "accessControl",
+  use: [ relationsPlugin, userService ]
+})
+
+module.exports = definition

package/index.js

@@ -0,0 +1,7 @@
+const app = require("@live-change/framework").app()
+
+const definition = require('./definition.js')
+
+require('./model.js')
+
+module.exports = definition

package/model.js

@@ -0,0 +1,71 @@
+const definition = require('./definition.js')
+const config = definition.config
+const access = require('./access.js')(definition)
+
+const Access = definition.model({
+  name: 'Access',
+  sessionOrUserItem: {
+    ownerReadAccess: () => true
+  },
+  itemOfAny: {
+    to: 'object',
+    readAccess: (params, { client, context, visibilityTest }) =>
+        visibilityTest || access.clientHasAnyAccess(client, params.ownerType, params.owner),
+    writeAccess: (params, { client, context, visibilityTest }) =>
+        visibilityTest || access.clientHasAdminAccess(client, params.ownerType, params.owner)
+  },
+  properties: {
+    role: {
+      type: String,
+      validation: ['nonEmpty']
+    }
+  }
+})
+
+const PublicAccess = definition.model({
+  name: "PublicAccess",
+  propertyOfAny: {
+    to: 'object',
+    readAccess: (params, { client, context, visibilityTest }) =>
+        visibilityTest || access.clientHasAnyAccess(client, params.ownerType, params.owner),
+    writeAccess: (params, { client, context, visibilityTest }) =>
+        visibilityTest || access.clientHasAdminAccess(client, params.ownerType, params.owner)
+  },
+  properties: {
+    userRole: {
+      type: String,
+      validation: ['nonEmpty']
+    },
+    sessionRole: {
+      type: String,
+      validation: ['nonEmpty']
+    },
+  },
+  indexes: {
+  }
+})
+
+const AccessRequest = definition.model({
+  name: 'AccessRequest',
+  sessionOrUserItem: {
+  },
+  itemOfAny: {
+    to: 'object',
+    readAccess: (params, { client, context, visibilityTest }) =>
+        visibilityTest || access.clientHasAdminAccess(client, params.ownerType, params.owner)
+  },
+  properties: {
+    role: {
+      type: String,
+      validation: ['nonEmpty']
+    },
+    message: {
+      type: String,
+      validation: []
+    }
+  },
+  indexes: {
+  }
+})
+
+module.exports = { Access, PublicAccess, AccessRequest }

package/package.json

@@ -0,0 +1,27 @@
+{
+  "name": "@live-change/access-control-service",
+  "version": "0.2.19",
+  "description": "",
+  "main": "index.js",
+  "scripts": {
+    "test": "NODE_ENV=test tape tests/*"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/live-change/live-change-services.git"
+  },
+  "license": "MIT",
+  "bugs": {
+    "url": "https://github.com/live-change/live-change-services/issues"
+  },
+  "homepage": "https://github.com/live-change/live-change-services",
+  "author": {
+    "email": "michal@laszczewski.pl",
+    "name": "Michał Łaszczewski",
+    "url": "https://www.viamage.com/"
+  },
+  "dependencies": {
+    "@live-change/framework": "^0.5.7"
+  },
+  "gitHead": "c2833a9660374ee17dd3def99fd1cdf47f6b1531"
+}