bigbluebutton-Github/bigbluebutton-html5/imports/api/acl/Acl.js

76 lines
2.0 KiB
JavaScript
Raw Normal View History

2017-06-19 21:13:35 +08:00
import { check } from 'meteor/check';
import deepMerge from '/imports/utils/deepMerge';
export class Acl {
constructor(config, Users) {
this.Users = Users;
this.config = config;
}
can(permission, credentials) {
check(permission, String);
const permissions = this.getPermissions(credentials);
if (permissions) {
return this.fetchPermission(permission, permissions);
}
return false;
}
fetchPermission(permission, permissions) {
if (!permission) return false;
if (Match.test(permissions, String)) {
return permissions.indexOf(permission) > -1;
} else if (Match.test(permissions, Array)) {
return permissions.some(internalAcl => (this.fetchPermission(permission, internalAcl)));
} else if (Match.test(permissions, Object)) {
if (permission.indexOf('.') > -1) {
return this.fetchPermission(permission.substring(permission.indexOf('.') + 1),
permissions[permission.substring(0, permission.indexOf('.'))]);
}
return permissions[permission];
}
return false;
}
getPermissions(credentials) {
if (!credentials) {
return false;
}
const meetingId = credentials.meetingId;
const userId = credentials.requesterUserId;
const user = this.Users.findOne({
meetingId,
userId,
});
2017-06-07 21:02:31 +08:00
const containRole = Acl.containsRole(user);
2017-06-19 21:13:35 +08:00
2017-06-07 21:02:31 +08:00
if (containRole) {
2017-07-26 22:31:35 +08:00
const roles = user.roles;
2017-06-07 21:02:31 +08:00
let permissions = {};
2017-06-19 21:13:35 +08:00
2017-06-07 21:02:31 +08:00
roles.forEach((role) => {
// There is a big issue here, if we just send the content from the this.config
// inside the deepMerge, we change both permissions and the config.
// Couldn't find a better way to prevent the changing.
// The problems occurs in the `sources.shift()`.
permissions = deepMerge(permissions, JSON.parse(JSON.stringify(this.config[role])));
2017-06-07 21:02:31 +08:00
});
return permissions;
}
return false;
}
2017-06-19 21:13:35 +08:00
2017-06-07 21:02:31 +08:00
static containsRole(user) {
return Match.test(user, Object) &&
Match.test(user.roles, Array);
2017-06-19 21:13:35 +08:00
}
}