-
Notifications
You must be signed in to change notification settings - Fork 3
Expand file tree
/
Copy pathpermissions.js
More file actions
55 lines (45 loc) · 1.49 KB
/
permissions.js
File metadata and controls
55 lines (45 loc) · 1.49 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
var mongoose = require('mongoose')
,async = require('async')
,_ = require('underscore');
var Schema = new mongoose.Schema({
name : {type:String, required:true}
});
Schema.methods.toString = function(){
return this.name;
};
exports.model = mongoose.model('_MongooseAdminPermission',Schema);
var permodel_permission = ['view','delete','create','update','order'];
var permissions_by_name = {};
exports.registerModel = function(modelName,permissions,callback)
{
if(typeof(permissions) == 'function' || typeof(permissions) == 'undefined')
{
callback = permissions;
permissions = permodel_permission;
}
async.forEach(permissions,function(action,callback)
{
exports.model.update({name:modelName + '_' + action},{$set:{name:modelName + '_' + action}},{upsert:true},function(err,count)
{
if(err)
callback(err);
else
exports.model.findOne({name:modelName + '_' + action},function(err,doc)
{
if(doc)
permissions_by_name[doc.name] = doc.id;
callback(err);
});
});
},callback||function(){});
};
exports.getPermission = function(modelName,action)
{
return permissions_by_name[modelName + '_' + action];
};
exports.hasPermissions = function(user,modelName,action)
{
if(user.fields)
user = user.fields;
return user.is_superuser || _.indexOf(user.permissions,exports.getPermission(modelName,action)) > -1;
};