mirror of
https://github.com/BobbyWibowo/lolisafe.git
synced 2024-12-15 00:46:22 +00:00
f52493291a
Also Object.freeze() permissions object in permissionController. I don't think it's much to be worried about, as no "set" will be done to it during the service's operation, but oh well, might as well.
35 lines
986 B
JavaScript
35 lines
986 B
JavaScript
const self = {}
|
|
|
|
self.permissions = Object.freeze({
|
|
user: 0, // Upload & delete own files, create & delete albums
|
|
moderator: 50, // Delete other user's files
|
|
admin: 80, // Manage users (disable accounts) & create moderators
|
|
superadmin: 100 // Create admins
|
|
// Groups will inherit permissions from groups which have lower value
|
|
})
|
|
|
|
// returns true if user is in the group OR higher
|
|
self.is = (user, group) => {
|
|
// root bypass
|
|
if (user.username === 'root') return true
|
|
if (typeof group !== 'string' || !group) return false
|
|
const permission = user.permission || 0
|
|
return permission >= self.permissions[group]
|
|
}
|
|
|
|
self.higher = (user, target) => {
|
|
const userPermission = user.permission || 0
|
|
const targetPermission = target.permission || 0
|
|
return userPermission > targetPermission
|
|
}
|
|
|
|
self.mapPermissions = user => {
|
|
const map = {}
|
|
Object.keys(self.permissions).forEach(group => {
|
|
map[group] = self.is(user, group)
|
|
})
|
|
return map
|
|
}
|
|
|
|
module.exports = self
|