verdnatura/salix
verdnatura
/
salix
3
4
Fork 0
Code Issues Pull Requests 57 Releases Wiki Activity
salix/modules/ticket/back/methods/sale/canEdit.js

91 lines
3.1 KiB
JavaScript
Raw Normal View History

refactor(ticket): isEditable, canEdit
2022-10-04 11:22:11 +00:00
const UserError = require('vn-loopback/util/user-error');
try
2022-10-19 06:22:36 +00:00
const loopBackCtx = require('vn-loopback/server/server');
refactor(ticket): isEditable, canEdit
2022-10-04 11:22:11 +00:00
sale module now has canEdit endpoint to check arrays of sales
2021-05-26 07:14:18 +00:00
module.exports = Self => {
Self.remoteMethodCtx('canEdit', {
description: 'Check if all the received sales are aditable',
accessType: 'READ',
accepts: [{
arg: 'sales',
type: ['object'],
required: true
}],
returns: {
type: 'boolean',
root: true
},
http: {
fix(ticket): canEdit use aclFunc
2022-10-04 13:02:00 +00:00
path: `/canEdit`,
sale module now has canEdit endpoint to check arrays of sales
2021-05-26 07:14:18 +00:00
verb: 'get'
}
});
Self.canEdit = async(ctx, sales, options) => {
const models = Self.app.models;
const myOptions = {};
if (typeof options == 'object')
Object.assign(myOptions, options);
try
2022-10-25 13:02:22 +00:00
console.log(ctx.req.accessToken);
const token = ctx.req.accessToken;
let canEditTracked = await models.ACL.checkAccessForToken(token, models.Sale, null, 'refund');
// const newCtx = ctx;
// newCtx.property = 'refund';
// newCtx.accessType = 'WRITE';
// newCtx.methodNames = ['refund'];
// newCtx.model = await models.Sale;
sale module now has canEdit endpoint to check arrays of sales
2021-05-26 07:14:18 +00:00
try
2022-10-25 13:02:22 +00:00
// let canEditTracked = await models.ACL.checkAccessForContext(newCtx);
console.log(canEditTracked);
try
2022-10-19 06:22:36 +00:00
use loopback
2022-10-18 09:50:16 +00:00
// let canEditTracked2 = await models.ACL.checkPermission('USER', 'developer', 'Sale', 'editTracked', 'READ');
try
2022-10-25 13:02:22 +00:00
/* const array = ['editTracked'];
try
2022-10-19 06:22:36 +00:00
const AccessContext = loopBackCtx.AccessContext;
const toFind = {
use loopback
2022-10-18 09:50:16 +00:00
principals: [{
type: 'ROLE',
id: 'employee'
}],
model: 'Sale',
property: 'editTracked',
try
2022-10-19 06:22:36 +00:00
methodNames: ['editTracked'],
accessType: 'WRITE'
};
const newContext = new AccessContext(toFind);
newContext.methodNames = ['editTracked'];
let canEditTracked3 = await models.ACL.checkAccessForContext(newContext);
let canEditTracked4 = await models.ACL.checkAccessForContext({
principals: [{
type: 'ROLE',
id: 'developer'
}],
model: 'Sale',
property: 'editTracked',
methodName: 'editTracked',
methodNames: ['editTracked'],
accessType: 'WRITE'
use loopback
2022-10-18 09:50:16 +00:00
});
try
2022-10-19 06:22:36 +00:00
// console.log(canEditTracked);
use loopback
2022-10-18 09:50:16 +00:00
// canEditTracked = await models.ACL.resolvePermission(canEditTracked);
// let canEditCloned = await models.ACL.checkPermission('ROLE', 'employee', 'Sale', 'editCloned', '*');
// let canEditWeekly = await models.ACL.checkPermission('ROLE', 'employee', 'Ticket', 'editWeekly', '*');
feat(canEdit): integrate isWeekly and adapt back tests and e2e
2022-10-10 11:06:49 +00:00
use loopback
2022-10-18 09:50:16 +00:00
// console.log(canEditTracked, canEditTracked2);
try
2022-10-19 06:22:36 +00:00
console.log('DENY: ', canEditTracked3.permission);
console.log('ALLOW: ', canEditTracked4.permission);
feat(canEdit): integrate isWeekly and adapt back tests and e2e
2022-10-10 11:06:49 +00:00
const shouldEditTracked = canEditTracked || !hasSaleTracking;
const shouldEditCloned = canEditCloned || !hasSaleCloned;
const shouldEditWeekly = canEditWeekly || !isTicketWeekly;
const canEdit = shouldEditTracked && shouldEditCloned && shouldEditWeekly;
sale module now has canEdit endpoint to check arrays of sales
2021-05-26 07:14:18 +00:00
use loopback
2022-10-18 09:50:16 +00:00
if (canEdit)
return true;
try
2022-10-25 13:02:22 +00:00
return false;*/
sale module now has canEdit endpoint to check arrays of sales
2021-05-26 07:14:18 +00:00
};
};