npm - groupcore-utils - Versions diffs - 2.0.0 → 2.1.0 - Mend

groupcore-utils 2.0.0 → 2.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -324,6 +324,19 @@ Initialize db with this and pass the object to the CRUD class constructor
    */
 ```
+### RBAC
+```
+  require('@groupcollab/core-utils/rbac')
+  /**
+   * @method validateAction()
+   * @description validate the action to be carried out
+   * @param {number} id - the main id
+   * @param {number} compareId - id to be compared
+   * @returns {Promise<void>}
+   */
+```
 ### Testing
 ```
 npm run test

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "groupcore-utils",
-  "version": "2.0.0",
+  "version": "2.1.0",
   "description": "Utilities for working with some core features",
   "main": "Utils.js",
   "scripts": {

package/rbac/index.js ADDED Viewed

@@ -0,0 +1,32 @@
+const EasyRbac = require('easy-rbac');
+module.exports = class {
+  /**
+   * @method validateAction()
+   * @description validate the action to be carried out
+   * @param {number} id - the main id
+   * @param {number} compareId - id to be compared
+   * @returns {Promise<void>}
+   */
+  async validateAction({ id, compareId }) {
+    const rbac = new EasyRbac({
+      user: {
+        can: [
+          {
+            name: 'do',
+            when: async (params) => params.id === params.compareId,
+          },
+        ],
+      },
+    });
+    const response = await rbac.can('user', 'do', {
+      id,
+      compareId,
+    });
+    if (!response) {
+      throw new Error('User not authorized to perform this action!');
+    }
+  }
+};