verdnatura/salix
verdnatura
/
salix
3
4
Fork 0
Code Issues Pull Requests 57 Releases Wiki Activity

refs #6023 Fix change rol bug
gitea/salix/pipeline/head There was a failure building this commit Details

This commit is contained in:
Guillermo Bonet 2023-08-29 10:52:05 +02:00
parent 1ad9a30848
commit d1df8009a6
2 changed files with 44 additions and 27 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

66
back/methods/vn-user/privileges.js
View File

@ -40,44 +40,56 @@ module.exports = Self => {
const userId = ctx.req.accessToken.userId; const userId = ctx.req.accessToken.userId;
const myOptions = {}; const myOptions = {};
let tx;
if (typeof options == 'object') if (typeof options == 'object')
Object.assign(myOptions, options); Object.assign(myOptions, options);
const user = await Self.findById(userId, {fields: ['hasGrant']}, myOptions); if (!myOptions.transaction) {
tx = await Self.beginTransaction({});
myOptions.transaction = tx;
};
const userToUpdate = await Self.findById(id, { try {
fields: ['id', 'name', 'hasGrant', 'roleFk', 'password', 'email'], const user = await Self.findById(userId, {fields: ['hasGrant']}, myOptions);
include: {
relation: 'role', const userToUpdate = await Self.findById(id, {
scope: { fields: ['id', 'name', 'hasGrant', 'roleFk', 'password', 'email'],
fields: ['name'] include: {
relation: 'role',
scope: {
fields: ['name']
}
} }
} }, myOptions);
}, myOptions);
if (!user.hasGrant) if (!user.hasGrant)
throw new UserError(`You don't have grant privilege`); throw new UserError(`You don't have grant privilege`);
const hasRoleFromUser = await Self.hasRole(userId, userToUpdate.role().name, myOptions); const hasRoleFromUser = await Self.hasRole(userId, userToUpdate.role().name, myOptions);
if (!hasRoleFromUser) if (!hasRoleFromUser)
throw new UserError(`You don't own the role and you can't assign it to another user`);
if (hasGrant != null)
userToUpdate.hasGrant = hasGrant;
if (roleFk) {
const role = await models.Role.findById(roleFk, {fields: ['name']}, myOptions);
const hasRole = await Self.hasRole(userId, role.name, myOptions);
if (!hasRole)
throw new UserError(`You don't own the role and you can't assign it to another user`); throw new UserError(`You don't own the role and you can't assign it to another user`);
userToUpdate.roleFk = roleFk; if (hasGrant != null)
} userToUpdate.hasGrant = hasGrant;
await userToUpdate.save(userToUpdate); if (roleFk) {
await models.Account.sync(userToUpdate.name); const role = await models.Role.findById(roleFk, {fields: ['name']}, myOptions);
const hasRole = await Self.hasRole(userId, role.name, myOptions);
if (!hasRole)
throw new UserError(`You don't own the role and you can't assign it to another user`);
userToUpdate.roleFk = roleFk;
}
await userToUpdate.save(myOptions);
await models.Account.sync(userToUpdate.name, null, null, myOptions);
await tx.commit();
} catch (err) {
await tx.rollback();
throw err;
};
}; };
}; };

5
modules/account/back/methods/account/sync.js
View File

@ -30,6 +30,11 @@ module.exports = Self => {
if (typeof options == 'object') if (typeof options == 'object')
Object.assign(myOptions, options); Object.assign(myOptions, options);
if (!myOptions.transaction) {
tx = await Self.beginTransaction({});
myOptions.transaction = tx;
};
const models = Self.app.models; const models = Self.app.models;
const user = await models.VnUser.findOne({ const user = await models.VnUser.findOne({
fields: ['id'], fields: ['id'],