66 lines
1.8 KiB
JavaScript
66 lines
1.8 KiB
JavaScript
const md5 = require('md5');
|
|
|
|
module.exports = Self => {
|
|
// Validations
|
|
|
|
Self.validatesUniquenessOf('name', {
|
|
message: 'A user with that name already exists'
|
|
});
|
|
|
|
Self.observe('before save', (ctx, next) => {
|
|
if (ctx.currentInstance && ctx.currentInstance.id && ctx.data && ctx.data.password) {
|
|
ctx.data.password = md5(ctx.data.password);
|
|
}
|
|
next();
|
|
});
|
|
|
|
Self.remoteMethod('getCurrentUserName', {
|
|
description: 'Gets the current user name',
|
|
accepts: [
|
|
{
|
|
arg: 'context',
|
|
type: 'object',
|
|
http: function(ctx) {
|
|
return ctx;
|
|
}
|
|
}
|
|
],
|
|
returns: {
|
|
type: 'string',
|
|
root: true
|
|
},
|
|
http: {
|
|
verb: 'GET',
|
|
path: '/getCurrentUserName'
|
|
}
|
|
});
|
|
|
|
Self.getCurrentUserName = async function(ctx) {
|
|
let filter = {fields: ['name']};
|
|
let userId = ctx.req.accessToken.userId;
|
|
let account = await Self.findById(userId, filter);
|
|
|
|
return account.name;
|
|
};
|
|
|
|
/**
|
|
* Checks if user has a role.
|
|
*
|
|
* @param {Integer} userId The user id
|
|
* @param {String} role The role name
|
|
* @return {Boolean} %true if user has the role, %false otherwise
|
|
*/
|
|
Self.hasRole = async function(userId, role) {
|
|
let result = await Self.rawSql(
|
|
`SELECT COUNT(*) AS roleCount
|
|
FROM account.user u
|
|
JOIN account.roleRole rr ON rr.role = u.role
|
|
JOIN account.role r ON r.id = rr.inheritsFrom
|
|
WHERE u.id = ?
|
|
AND r.name = ?`,
|
|
[userId, role]
|
|
);
|
|
return result[0].roleCount > 0;
|
|
};
|
|
};
|