Home Explore Help
Sign In
kris
/
MusareFork
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 19faaffbfc
Branches Tags
MusareFork
/
backend
/
logic
/
actions
/
hooks
/
adminRequired.js

adminRequired.js 2.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. const async = require("async");
    2. 

  2. 

  3. const db = require("../../db");
    4. 

  4. const cache = require("../../cache");
    5. 

  5. const utils = require("../../utils");
    6. 

  6. 

  7. module.exports = function(next) {
    8. 

  8.     return async function(session) {
    9. 

  9.         const userModel = await db.runJob("GET_MODEL", { modelName: "user" });
    10. 

  10.         let args = [];
    11. 

  11.         for (let prop in arguments) args.push(arguments[prop]);
    12. 

  12.         let cb = args[args.length - 1];
    13. 

  13.         async.waterfall(
    14. 

  14.             [
    15. 

  15.                 (next) => {
    16. 

  16.                     cache
    17. 

  17.                         .runJob("HGET", {
    18. 

  18.                             table: "sessions",
    19. 

  19.                             key: session.sessionId,
    20. 

  20.                         })
    21. 

  21.                         .then((session) => next(null, session))
    22. 

  22.                         .catch(next);
    23. 

  23.                 },
    24. 

  24.                 (session, next) => {
    25. 

  25.                     if (!session || !session.userId)
    26. 

  26.                         return next("Login required.");
    27. 

  27.                     this.session = session;
    28. 

  28.                     userModel.findOne({ _id: session.userId }, next);
    29. 

  29.                 },
    30. 

  30.                 (user, next) => {
    31. 

  31.                     if (!user) return next("Login required.");
    32. 

  32.                     if (user.role !== "admin")
    33. 

  33.                         return next("Insufficient permissions.");
    34. 

  34.                     next();
    35. 

  35.                 },
    36. 

  36.             ],
    37. 

  37.             async (err) => {
    38. 

  38.                 if (err) {
    39. 

  39.                     err = await utils.runJob("GET_ERROR", { error: err });
    40. 

  40.                     console.log(
    41. 

  41.                         "INFO",
    42. 

  42.                         "ADMIN_REQUIRED",
    43. 

  43.                         `User failed to pass admin required check. "${err}"`
    44. 

  44.                     );
    45. 

  45.                     return cb({ status: "failure", message: err });
    46. 

  46.                 }
    47. 

  47.                 console.log(
    48. 

  48.                     "INFO",
    49. 

  49.                     "ADMIN_REQUIRED",
    50. 

  50.                     `User "${session.userId}" passed admin required check.`,
    51. 

  51.                     false
    52. 

  52.                 );
    53. 

  53.                 next.apply(null, args);
    54. 

  54.             }
    55. 

  55.         );
    56. 

  56.     };
    57. 

  57. };
    58.