mirror of
https://github.com/umami-software/umami.git
synced 2026-02-04 04:37:11 +01:00
64 lines
1.3 KiB
TypeScript
64 lines
1.3 KiB
TypeScript
import { Auth } from '@/lib/types';
|
|
import { getLink, getTeamUser } from '@/queries';
|
|
import { hasPermission } from '@/lib/auth';
|
|
import { PERMISSIONS } from '@/lib/constants';
|
|
|
|
export async function canViewLink({ user }: Auth, linkId: string) {
|
|
if (user?.isAdmin) {
|
|
return true;
|
|
}
|
|
|
|
const link = await getLink(linkId);
|
|
|
|
if (link.userId) {
|
|
return user.id === link.userId;
|
|
}
|
|
|
|
if (link.teamId) {
|
|
const teamUser = await getTeamUser(link.teamId, user.id);
|
|
|
|
return !!teamUser;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
export async function canUpdateLink({ user }: Auth, linkId: string) {
|
|
if (user.isAdmin) {
|
|
return true;
|
|
}
|
|
|
|
const link = await getLink(linkId);
|
|
|
|
if (link.userId) {
|
|
return user.id === link.userId;
|
|
}
|
|
|
|
if (link.teamId) {
|
|
const teamUser = await getTeamUser(link.teamId, user.id);
|
|
|
|
return teamUser && hasPermission(teamUser.role, PERMISSIONS.websiteUpdate);
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
export async function canDeleteLink({ user }: Auth, linkId: string) {
|
|
if (user.isAdmin) {
|
|
return true;
|
|
}
|
|
|
|
const link = await getLink(linkId);
|
|
|
|
if (link.userId) {
|
|
return user.id === link.userId;
|
|
}
|
|
|
|
if (link.teamId) {
|
|
const teamUser = await getTeamUser(link.teamId, user.id);
|
|
|
|
return teamUser && hasPermission(teamUser.role, PERMISSIONS.websiteDelete);
|
|
}
|
|
|
|
return false;
|
|
}
|