sasjs/server
1
0
Fork 0
mirror of https://github.com/sasjs/server.git synced 2025-12-11 19:44:35 +00:00
Code Issues Projects Releases Wiki Activity

feat: add api endpoint for updating permission setting

Browse Source
This commit is contained in:
Sabir Hassan
2022-04-30 01:02:47 +05:00
parent bf906aa544
commit 540f54fb77
4 changed files with 135 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
api/public/swagger.yaml
View File

@@ -473,7 +473,7 @@ components:
- setting - setting
type: object type: object
additionalProperties: false additionalProperties: false
PermissionPayload: RegisterPermissionPayload:
properties: properties:
uri: uri:
type: string type: string
@@ -497,6 +497,16 @@ components:
- principalId - principalId
type: object type: object
additionalProperties: false additionalProperties: false
UpdatePermissionPayload:
properties:
setting:
type: string
description: 'The indication of whether (and to what extent) access is provided'
example: Grant
required:
- setting
type: object
additionalProperties: false
securitySchemes: securitySchemes:
bearerAuth: bearerAuth:
type: http type: http
@@ -1424,7 +1434,41 @@ paths:
content: content:
application/json: application/json:
schema: schema:
$ref: '#/components/schemas/PermissionPayload' $ref: '#/components/schemas/RegisterPermissionPayload'
'/SASjsApi/permission/{permissionId}':
patch:
operationId: UpdatePermission
responses:
'200':
description: Ok
content:
application/json:
schema:
$ref: '#/components/schemas/PermissionDetailsResponse'
examples:
'Example 1':
value: {permissionId: 123, uri: /SASjsApi/code/execute, setting: Grant, user: {id: 1, username: johnSnow01, displayName: 'John Snow'}}
summary: 'Update permission setting.'
tags:
- Permission
security:
-
bearerAuth: []
parameters:
-
description: 'The permission''s identifier'
in: path
name: permissionId
required: true
schema:
format: double
type: number
requestBody:
required: true
content:
application/json:
schema:
$ref: '#/components/schemas/UpdatePermissionPayload'
servers: servers:
- -
url: / url: /

65
api/src/controllers/permission.ts
View File

@@ -6,6 +6,7 @@ import {
Example, Example,
Get, Get,
Post, Post,
Patch,
Delete, Delete,
Body Body
} from 'tsoa' } from 'tsoa'
@@ -17,7 +18,7 @@ import Client from '../model/Client'
import { UserResponse } from './user' import { UserResponse } from './user'
import { GroupResponse } from './group' import { GroupResponse } from './group'
interface PermissionPayload { interface RegisterPermissionPayload {
/** /**
* Name of affected resource * Name of affected resource
* @example "/SASjsApi/code/execute" * @example "/SASjsApi/code/execute"
@@ -40,6 +41,14 @@ interface PermissionPayload {
principalId: any principalId: any
} }
interface UpdatePermissionPayload {
/**
* The indication of whether (and to what extent) access is provided
* @example "Grant"
*/
setting: string
}
interface PermissionDetailsResponse { interface PermissionDetailsResponse {
permissionId: number permissionId: number
uri: string uri: string
@@ -98,10 +107,29 @@ export class PermissionController {
}) })
@Post('/') @Post('/')
public async createPermission( public async createPermission(
@Body() body: PermissionPayload @Body() body: RegisterPermissionPayload
): Promise<PermissionDetailsResponse> { ): Promise<PermissionDetailsResponse> {
return createPermission(body) return createPermission(body)
} }
/**
* @summary Update permission setting.
* @param permissionId The permission's identifier
* @example userId "1234"
*/
@Example<PermissionDetailsResponse>({
permissionId: 123,
uri: '/SASjsApi/code/execute',
setting: 'Grant',
user: { id: 1, username: 'johnSnow01', displayName: 'John Snow' }
})
@Patch('{permissionId}')
public async updatePermission(
@Path() permissionId: number,
@Body() body: UpdatePermissionPayload
): Promise<PermissionDetailsResponse> {
return updatePermission(permissionId, body)
}
} }
const getAllPermissions = async (): Promise<PermissionDetailsResponse[]> => const getAllPermissions = async (): Promise<PermissionDetailsResponse[]> =>
@@ -127,7 +155,7 @@ const createPermission = async ({
setting, setting,
principalType, principalType,
principalId principalId
}: PermissionPayload): Promise<PermissionDetailsResponse> => { }: RegisterPermissionPayload): Promise<PermissionDetailsResponse> => {
const permission = new Permission({ const permission = new Permission({
uri, uri,
setting setting
@@ -174,3 +202,34 @@ const createPermission = async ({
clientId: !!client ? client.clientId : undefined clientId: !!client ? client.clientId : undefined
} }
} }
const updatePermission = async (
id: number,
data: UpdatePermissionPayload
): Promise<PermissionDetailsResponse> => {
const { setting } = data
const updatedPermission = (await Permission.findOneAndUpdate(
{ permissionId: id },
{ setting },
{ new: true }
)
.select({
_id: 0,
permissionId: 1,
uri: 1,
setting: 1
})
.populate({ path: 'user', select: 'id username displayName -_id' })
.populate({
path: 'group',
select: 'groupId name description -_id'
})
.populate({
path: 'client',
select: 'clientId -_id'
})) as unknown as PermissionDetailsResponse
if (!updatedPermission) throw new Error('Unable to update permission')
return updatedPermission
}

23
api/src/routes/api/permission.ts
View File

@@ -1,7 +1,10 @@
import express from 'express' import express from 'express'
import { PermissionController } from '../../controllers/' import { PermissionController } from '../../controllers/'
import { authenticateAccessToken, verifyAdmin } from '../../middlewares' import { authenticateAccessToken, verifyAdmin } from '../../middlewares'
import { registerPermissionValidation } from '../../utils' import {
registerPermissionValidation,
updatePermissionValidation
} from '../../utils'
const permissionRouter = express.Router() const permissionRouter = express.Router()
const controller = new PermissionController() const controller = new PermissionController()
@@ -32,4 +35,22 @@ permissionRouter.post(
} }
) )
permissionRouter.patch(
'/:permissionId',
authenticateAccessToken,
verifyAdmin,
async (req: any, res) => {
const { permissionId } = req.params
const { error, value: body } = updatePermissionValidation(req.body)
if (error) return res.status(400).send(error.details[0].message)
try {
const response = await controller.updatePermission(permissionId, body)
res.send(response)
} catch (err: any) {
res.status(403).send(err.toString())
}
}
)
export default permissionRouter export default permissionRouter

5
api/src/utils/validation.ts
View File

@@ -82,6 +82,11 @@ export const registerPermissionValidation = (data: any): Joi.ValidationResult =>
principalId: Joi.any().required() principalId: Joi.any().required()
}).validate(data) }).validate(data)
export const updatePermissionValidation = (data: any): Joi.ValidationResult =>
Joi.object({
setting: Joi.string().required()
}).validate(data)
export const deployValidation = (data: any): Joi.ValidationResult => export const deployValidation = (data: any): Joi.ValidationResult =>
Joi.object({ Joi.object({
appLoc: Joi.string().pattern(/^\//).required().min(2), appLoc: Joi.string().pattern(/^\//).required().min(2),