@things-factory/lite-menu 6.2.49 → 6.2.51
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/client/pages/addon-menu-setting.js +0 -1
- package/dist-server/service/lite-menu/lite-menu-query.js +2 -17
- package/dist-server/service/lite-menu/lite-menu-query.js.map +1 -1
- package/dist-server/tsconfig.tsbuildinfo +1 -1
- package/package.json +8 -8
- package/server/service/lite-menu/lite-menu-query.ts +3 -36
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@things-factory/lite-menu",
|
|
3
|
-
"version": "6.2.
|
|
3
|
+
"version": "6.2.51",
|
|
4
4
|
"main": "dist-server/index.js",
|
|
5
5
|
"browser": "client/index.js",
|
|
6
6
|
"things-factory": true,
|
|
@@ -34,13 +34,13 @@
|
|
|
34
34
|
"@operato/shell": "^1.0.1",
|
|
35
35
|
"@operato/styles": "^1.0.0",
|
|
36
36
|
"@operato/utils": "^1.0.1",
|
|
37
|
-
"@things-factory/apptool-base": "^6.2.
|
|
38
|
-
"@things-factory/auth-base": "^6.2.
|
|
39
|
-
"@things-factory/board-service": "^6.2.
|
|
40
|
-
"@things-factory/board-ui": "^6.2.
|
|
41
|
-
"@things-factory/more-base": "^6.2.
|
|
42
|
-
"@things-factory/setting-base": "^6.2.
|
|
37
|
+
"@things-factory/apptool-base": "^6.2.51",
|
|
38
|
+
"@things-factory/auth-base": "^6.2.51",
|
|
39
|
+
"@things-factory/board-service": "^6.2.51",
|
|
40
|
+
"@things-factory/board-ui": "^6.2.51",
|
|
41
|
+
"@things-factory/more-base": "^6.2.51",
|
|
42
|
+
"@things-factory/setting-base": "^6.2.51",
|
|
43
43
|
"@things-factory/utils": "^6.2.48"
|
|
44
44
|
},
|
|
45
|
-
"gitHead": "
|
|
45
|
+
"gitHead": "365e8ae6475eede1a4fd51460c24569d13de14b6"
|
|
46
46
|
}
|
|
@@ -2,45 +2,12 @@ import { In } from 'typeorm'
|
|
|
2
2
|
import { Arg, Args, Ctx, FieldResolver, Query, Resolver, Root } from 'type-graphql'
|
|
3
3
|
|
|
4
4
|
import { Domain, getQueryBuilderFromListParams, getRepository, ListParam } from '@things-factory/shell'
|
|
5
|
-
import { PrivilegeObject, User } from '@things-factory/auth-base'
|
|
5
|
+
import { PrivilegeObject, User, checkPermission } from '@things-factory/auth-base'
|
|
6
6
|
import { Board } from '@things-factory/board-service'
|
|
7
7
|
|
|
8
8
|
import { LiteMenu } from './lite-menu'
|
|
9
9
|
import { LiteMenuList } from './lite-menu-type'
|
|
10
10
|
|
|
11
|
-
async function checkPermission(
|
|
12
|
-
privilegeObject: PrivilegeObject,
|
|
13
|
-
user: User,
|
|
14
|
-
domain: Domain,
|
|
15
|
-
protectedIP: boolean
|
|
16
|
-
): Promise<boolean> {
|
|
17
|
-
if (!privilegeObject) {
|
|
18
|
-
return true
|
|
19
|
-
}
|
|
20
|
-
|
|
21
|
-
const {
|
|
22
|
-
owner: domainOwnerGranted,
|
|
23
|
-
super: superUserGranted,
|
|
24
|
-
category,
|
|
25
|
-
privilege,
|
|
26
|
-
protected: protectedIPOnly
|
|
27
|
-
} = privilegeObject
|
|
28
|
-
|
|
29
|
-
if (protectedIPOnly && !protectedIP) {
|
|
30
|
-
return false
|
|
31
|
-
}
|
|
32
|
-
|
|
33
|
-
if (!privilege || !category) {
|
|
34
|
-
return true
|
|
35
|
-
}
|
|
36
|
-
|
|
37
|
-
return (
|
|
38
|
-
(domainOwnerGranted && (await process.domainOwnerGranted(domain, user))) ||
|
|
39
|
-
(superUserGranted && (await process.superUserGranted(domain, user))) ||
|
|
40
|
-
(category && privilege && (await User.hasPrivilege(privilege, category, domain, user)))
|
|
41
|
-
)
|
|
42
|
-
}
|
|
43
|
-
|
|
44
11
|
@Resolver(LiteMenu)
|
|
45
12
|
export class LiteMenuQuery {
|
|
46
13
|
@Query(returns => LiteMenu, { description: 'To fetch a LiteMenu' })
|
|
@@ -73,7 +40,7 @@ export class LiteMenuQuery {
|
|
|
73
40
|
|
|
74
41
|
@Query(returns => LiteMenuList, { description: 'To fetch my own LiteMenus' })
|
|
75
42
|
async myLiteMenus(@Args() params: ListParam, @Ctx() context: ResolverContext): Promise<LiteMenuList> {
|
|
76
|
-
const { domain, user,
|
|
43
|
+
const { domain, user, unsafeIP, prohibitedPrivileges } = context.state
|
|
77
44
|
|
|
78
45
|
const queryBuilder = getQueryBuilderFromListParams({
|
|
79
46
|
repository: getRepository(LiteMenu),
|
|
@@ -86,7 +53,7 @@ export class LiteMenuQuery {
|
|
|
86
53
|
const filtered = []
|
|
87
54
|
|
|
88
55
|
for (let item of items) {
|
|
89
|
-
if (await checkPermission(item.privilege, user, domain,
|
|
56
|
+
if (await checkPermission(item.privilege, user, domain, unsafeIP, prohibitedPrivileges)) {
|
|
90
57
|
filtered.push(item)
|
|
91
58
|
}
|
|
92
59
|
}
|