Lightemerald/hsp-gdh
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
f1553c3d8c2c4cc528f707d6758b4c582fd3a8c8
hsp-gdh/modules/permissionManager.js
gringoelpepito 6071d1180b Adding services routes
2024-04-14 19:53:16 +00:00

84 lines
2.3 KiB
JavaScript
Raw Blame History

import { pool } from './databaseManager.js';
import { respondWithStatus } from './requestHandler.js';
import { error } from './logManager.js';
export async function userExists(userId) {
try {
const [user] = await pool.execute('SELECT * FROM users WHERE id = ? LIMIT 1', [userId]);
if (user.length === 0) return false;
return true;
}
catch (err) {
error(err);
return false;
}
}
export async function isBanned(userId) {
try {
const [bannedUser] = await pool.execute('SELECT * FROM bans WHERE user_id = ? LIMIT 1', [userId]);
if (bannedUser.length) return true;
return false;
}
catch (err) {
error(err);
return true;
}
}
// permissionType is bitfield
// 1 = read
// 2 = write
// 4 = delete
export async function verifyPermissions(userId, permissionName, permissionType) {
try {
const [perms] = await pool.execute(`SELECT r.${permissionName}_bitfield AS permissionBitfield FROM users u INNER JOIN user_roles ur ON u.id = ur.user_id INNER JOIN roles r ON ur.role_id = r.id WHERE u.id = ?`, [userId]);
for (const row of perms) {
if (row.permissionBitfield & permissionType) {
return true;
}
}
}
catch (err) {
error(err);
return false;
}
}
export async function checkIfUserEmailIsVerified(userId) {
if(process.env.DISABLE_EMAIL_VERIFICATION) return true;
try {
const [user] = await pool.execute('SELECT email_verified FROM users WHERE id = ? LIMIT 1', [userId]);
if (user.length === 0) return false;
return user[0].email_verified;
}
catch (err) {
error(err);
return false;
}
}
export async function checkUserExists(req, res, next) {
const userId = req.userId;
if (!await userExists(userId)) return await respondWithStatus(res, 404, 'User not found');
next();
}
export async function checkBanned(req, res, next) {
const userId = req.userId;
if (await isBanned(userId)) return await respondWithStatus(res, 403, 'User is banned');
next();
}
export const checkPermissions = (permissionName, permissionType) => async (req, res, next) => {
const userId = req.userId;
if (!await verifyPermissions(userId, permissionName, permissionType)) return await respondWithStatus(res, 403, 'Missing permission');
next();
};
export const checkEmailVerified = async (req, res, next) => {
const userId = req.userId;
if (!await checkIfUserEmailIsVerified(userId)) return await respondWithStatus(res, 403, 'Email not verified');
next();
};
Reference in New Issue View Git Blame Copy Permalink