Merge pull request #95 from strongloop/fix/owner-delete-user

Fix/owner delete user

lib/models/access-token.js

@@ -174,13 +174,14 @@ function tokenIdForRequest(req, options) {
     }
   }
 
-  for(i = 0, length = headers.length; i < length; i++) {
+  if(req.signedCookies) {
-    id = req.signedCookies[cookies[i]];
+    for(i = 0, length = headers.length; i < length; i++) {
+      id = req.signedCookies[cookies[i]];
 
-    if(typeof id === 'string') {
+      if(typeof id === 'string') {
-      return id;
+        return id;
+      }
     }
   }
-
   return null;
 }

lib/models/acl.js

@@ -34,7 +34,7 @@
 var loopback = require('../loopback');
 var async = require('async');
 var assert = require('assert');
-var debug = require('debug')('acl');
+var debug = require('debug')('loopback:security:acl');
 
 var ctx = require('./access-context');
 var AccessContext = ctx.AccessContext;
@@ -242,7 +242,7 @@ ACL.getStaticACLs = function getStaticACLs(model, property) {
       }));
     });
   }
-  debug('getStaticACLs() returns: %s', staticACLs);
+  debug('getStaticACLs() returns: %j', staticACLs);
   return staticACLs;
 };
 

lib/models/role.js

@@ -1,5 +1,5 @@
 var loopback = require('../loopback');
-var debug = require('debug')('role');
+var debug = require('debug')('loopback:security:role');
 var assert = require('assert');
 var async = require('async');
 
@@ -200,7 +200,7 @@ Role.isOwner = function isOwner(modelClass, modelId, userId, callback) {
   // Is the modelClass User or a subclass of User?
   if(isUserClass(modelClass)) {
     process.nextTick(function() {
-      callback(null, modelId === userId);
+      callback(null, modelId == userId);
     });
     return;
   }