watson/umami
1
0
Fork 0
mirror of https://github.com/umami-software/umami.git synced 2026-02-04 12:47:13 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Added lib/types.

Browse source
This commit is contained in:
Mike Cao 2022-12-02 14:15:24 -08:00
parent 06bebadbb9
commit 4781a0cc8c
12 changed files with 247 additions and 242 deletions
Download patch file Download diff file Expand all files Collapse all files

21
lib/auth.ts
View file

@ -1,9 +1,10 @@
import { parseSecureToken, parseToken } from 'next-basics';
import { UserRole } from '@prisma/client';
import debug from 'debug';
import cache from 'lib/cache';
import { SHARE_TOKEN_HEADER, UmamiApi } from 'lib/constants';
import { SHARE_TOKEN_HEADER } from 'lib/constants';
import { secret } from 'lib/crypto';
import { parseSecureToken, parseToken } from 'next-basics';
import { Permission, Roles } from 'lib/types';
import { getTeamUser, getUserRoles } from 'queries';
const log = debug('umami:auth');
@ -59,7 +60,7 @@ export async function canViewWebsite(userId: string, websiteId: string) {
if (website.teamId) {
const teamUser = await getTeamUser({ userId, teamId: website.teamId });
checkPermission(UmamiApi.Permission.websiteUpdate, teamUser.role as keyof UmamiApi.Roles);
checkPermission(Permission.websiteUpdate, teamUser.role);
}
return checkAdmin(userId);
@ -75,7 +76,7 @@ export async function canUpdateWebsite(userId: string, websiteId: string) {
if (website.teamId) {
const teamUser = await getTeamUser({ userId, teamId: website.teamId });
checkPermission(UmamiApi.Permission.websiteUpdate, teamUser.role as keyof UmamiApi.Roles);
checkPermission(Permission.websiteUpdate, teamUser.role);
}
return checkAdmin(userId);
@ -91,7 +92,7 @@ export async function canDeleteWebsite(userId: string, websiteId: string) {
if (website.teamId) {
const teamUser = await getTeamUser({ userId, teamId: website.teamId });
if (checkPermission(UmamiApi.Permission.websiteDelete, teamUser.role as keyof UmamiApi.Roles)) {
if (checkPermission(Permission.websiteDelete, teamUser.role)) {
return true;
}
}
@ -113,7 +114,7 @@ export async function canViewTeam(userId: string, teamId) {
export async function canUpdateTeam(userId: string, teamId: string) {
const teamUser = await getTeamUser({ userId, teamId });
if (checkPermission(UmamiApi.Permission.teamUpdate, teamUser.role as keyof UmamiApi.Roles)) {
if (checkPermission(Permission.teamUpdate, teamUser.role)) {
return true;
}
}
@ -121,7 +122,7 @@ export async function canUpdateTeam(userId: string, teamId: string) {
export async function canDeleteTeam(userId: string, teamId: string) {
const teamUser = await getTeamUser({ userId, teamId });
if (checkPermission(UmamiApi.Permission.teamDelete, teamUser.role as keyof UmamiApi.Roles)) {
if (checkPermission(Permission.teamDelete, teamUser.role)) {
return true;
}
}
@ -158,8 +159,8 @@ export async function canDeleteUser(userId: string) {
return checkAdmin(userId);
}
export async function checkPermission(permission: UmamiApi.Permission, role: keyof UmamiApi.Roles) {
return UmamiApi.Roles[role].permissions.some(a => a === permission);
export async function checkPermission(permission: Permission, role: string) {
return Roles[role].permissions.some(a => a === permission);
}
export async function checkAdmin(userId: string, userRoles?: UserRole[]) {
@ -167,5 +168,5 @@ export async function checkAdmin(userId: string, userRoles?: UserRole[]) {
userRoles = await getUserRoles({ userId });
}
return userRoles.some(a => a.role === UmamiApi.Role.Admin);
return userRoles.some(a => a.role === Roles.admin.name);
}

60
lib/constants.ts
View file

@ -1,64 +1,4 @@
/* eslint-disable no-unused-vars */
export namespace UmamiApi {
export enum EventType {
Pageview = 1,
Event = 2,
}
export enum AuthType {
Website,
User,
Team,
}
export enum Permission {
all = 'all',
websiteCreate = 'website:create',
websiteUpdate = 'website:update',
websiteDelete = 'website:delete',
teamCreate = 'team:create',
teamUpdate = 'team:update',
teamDelete = 'team:delete',
}
export enum Role {
Admin = 'admin',
User = 'user',
TeamOwner = 'team-owner',
TeamMember = 'team-member',
TeamGuest = 'team-guest',
}
export const Roles = {
admin: { name: Role.Admin, permissions: [Permission.all] },
member: {
name: Role.User,
permissions: [
Permission.websiteCreate,
Permission.websiteUpdate,
Permission.websiteDelete,
Permission.teamCreate,
],
},
teamOwner: {
name: Role.TeamOwner,
permissions: [
Permission.teamUpdate,
Permission.teamDelete,
Permission.websiteCreate,
Permission.websiteUpdate,
Permission.websiteDelete,
],
},
teamMember: {
name: Role.TeamMember,
permissions: [Permission.websiteCreate, Permission.websiteUpdate, Permission.websiteDelete],
},
teamGuest: { name: Role.TeamGuest, permissions: [] },
};
export type Roles = typeof Roles;
}
export const CURRENT_VERSION = process.env.currentVersion;
export const AUTH_TOKEN = 'umami.auth';
export const LOCALE_CONFIG = 'umami.locale';

57
lib/types.ts Normal file
View file

@ -0,0 +1,57 @@
/* eslint-disable no-unused-vars */
export enum EventType {
Pageview = 1,
Event = 2,
}
export enum AuthType {
Website,
User,
Team,
}
export enum Permission {
all = 'all',
websiteCreate = 'website:create',
websiteUpdate = 'website:update',
websiteDelete = 'website:delete',
teamCreate = 'team:create',
teamUpdate = 'team:update',
teamDelete = 'team:delete',
}
export enum Role {
Admin = 'admin',
User = 'user',
TeamOwner = 'team-owner',
TeamMember = 'team-member',
TeamGuest = 'team-guest',
}
export const Roles = {
admin: { name: Role.Admin, permissions: [Permission.all] },
member: {
name: Role.User,
permissions: [
Permission.websiteCreate,
Permission.websiteUpdate,
Permission.websiteDelete,
Permission.teamCreate,
],
},
teamOwner: {
name: Role.TeamOwner,
permissions: [
Permission.teamUpdate,
Permission.teamDelete,
Permission.websiteCreate,
Permission.websiteUpdate,
Permission.websiteDelete,
],
},
teamMember: {
name: Role.TeamMember,
permissions: [Permission.websiteCreate, Permission.websiteUpdate, Permission.websiteDelete],
},
teamGuest: { name: Role.TeamGuest, permissions: [] },
};