watson/umami
1
0
Fork 0
mirror of https://github.com/umami-software/umami.git synced 2026-02-04 12:47:13 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
umami/src/permissions/link.ts
Mike Cao fdafe13c35 Block share token from all editing permissions. 
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-24 19:13:49 -08:00

76 lines
1.4 KiB
TypeScript
Raw Blame History

import { hasPermission } from '@/lib/auth';
import { PERMISSIONS } from '@/lib/constants';
import type { Auth } from '@/lib/types';
import { getLink, getTeamUser } from '@/queries/prisma';
export async function canViewLink({ user }: Auth, linkId: string) {
if (!user) {
return false;
}
if (user.isAdmin) {
return true;
}
const link = await getLink(linkId);
if (link.userId) {
return user.id === link.userId;
}
if (link.teamId) {
const teamUser = await getTeamUser(link.teamId, user.id);
return !!teamUser;
}
return false;
}
export async function canUpdateLink({ user }: Auth, linkId: string) {
if (!user) {
return false;
}
if (user.isAdmin) {
return true;
}
const link = await getLink(linkId);
if (link.userId) {
return user.id === link.userId;
}
if (link.teamId) {
const teamUser = await getTeamUser(link.teamId, user.id);
return teamUser && hasPermission(teamUser.role, PERMISSIONS.websiteUpdate);
}
return false;
}
export async function canDeleteLink({ user }: Auth, linkId: string) {
if (!user) {
return false;
}
if (user.isAdmin) {
return true;
}
const link = await getLink(linkId);
if (link.userId) {
return user.id === link.userId;
}
if (link.teamId) {
const teamUser = await getTeamUser(link.teamId, user.id);
return teamUser && hasPermission(teamUser.role, PERMISSIONS.websiteDelete);
}
return false;
}
Reference in a new issue View git blame Copy permalink