Home Explore Help
Sign In
kris
/
MusareFork
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c4c0b20b90
Branches Tags
MusareFork
/
backend
/
logic
/
actions
/
hooks
/
adminRequired.js

adminRequired.js 1.1 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637 
  1. const cache = require('../../cache');
    2. 

  2. const db = require('../../db');
    3. 

  3. const utils = require('../../utils');
    4. 

  4. const logger = require('../../logger');
    5. 

  5. const async = require('async');
    6. 

  6. 

  7. module.exports = function(next) {
    8. 

  8. 	return function(session) {
    9. 

  9. 		let args = [];
    10. 

  10. 		for (let prop in arguments) args.push(arguments[prop]);
    11. 

  11. 		let cb = args[args.length - 1];
    12. 

  12. 		async.waterfall([
    13. 

  13. 			(next) => {
    14. 

  14. 				cache.hget('sessions', session.sessionId, next);
    15. 

  15. 			},
    16. 

  16. 			(session, next) => {
    17. 

  17. 				if (!session || !session.userId) return next('Login required.');
    18. 

  18. 				this.session = session;
    19. 

  19. 				db.models.user.findOne({_id: session.userId}, next);
    20. 

  20. 			},
    21. 

  21. 			(user, next) => {
    22. 

  22. 				if (!user) return next('Login required.');
    23. 

  23. 				if (user.role !== 'admin') return next('Insufficient permissions.');
    24. 

  24. 				next();
    25. 

  25. 			}
    26. 

  26. 		], (err) => {
    27. 

  27. 			if (err) {
    28. 

  28. 				err = utils.getError(err);
    29. 

  29. 				logger.info("ADMIN_REQUIRED", `User failed to pass admin required check. "${err}"`);
    30. 

  30. 				return cb({status: 'failure', message: err});
    31. 

  31. 			}
    32. 

  32. 			logger.info("ADMIN_REQUIRED", `User "${session.userId}" passed admin required check.`);
    33. 

  33. 			args.push(session.userId);
    34. 

  34. 			next.apply(null, args);
    35. 

  35. 		});
    36. 

  36. 	}
    37. 

  37. };
    38.