2020-05-22 01:31:23 +12:00
|
|
|
const CouchDB = require("../../db")
|
|
|
|
const {
|
2020-11-14 04:35:20 +13:00
|
|
|
BUILTIN_LEVELS,
|
|
|
|
AccessLevel,
|
|
|
|
} = require("../../utilities/security/accessLevels")
|
2020-10-02 05:22:08 +13:00
|
|
|
const {
|
|
|
|
generateAccessLevelID,
|
|
|
|
getAccessLevelParams,
|
|
|
|
} = require("../../db/utils")
|
2020-05-22 01:31:23 +12:00
|
|
|
|
|
|
|
exports.fetch = async function(ctx) {
|
2020-10-29 23:28:27 +13:00
|
|
|
const db = new CouchDB(ctx.user.appId)
|
2020-10-02 05:22:08 +13:00
|
|
|
const body = await db.allDocs(
|
|
|
|
getAccessLevelParams(null, {
|
|
|
|
include_docs: true,
|
|
|
|
})
|
|
|
|
)
|
2020-05-22 01:31:23 +12:00
|
|
|
const customAccessLevels = body.rows.map(row => row.doc)
|
|
|
|
|
2020-11-14 04:35:20 +13:00
|
|
|
const staticAccessLevels = [BUILTIN_LEVELS.ADMIN, BUILTIN_LEVELS.POWER]
|
2020-05-22 01:31:23 +12:00
|
|
|
ctx.body = [...staticAccessLevels, ...customAccessLevels]
|
|
|
|
}
|
|
|
|
|
|
|
|
exports.find = async function(ctx) {
|
2020-10-29 23:28:27 +13:00
|
|
|
const db = new CouchDB(ctx.user.appId)
|
2020-05-22 01:31:23 +12:00
|
|
|
ctx.body = await db.get(ctx.params.levelId)
|
|
|
|
}
|
|
|
|
|
2020-11-14 04:35:20 +13:00
|
|
|
exports.save = async function(ctx) {
|
2020-10-29 23:28:27 +13:00
|
|
|
const db = new CouchDB(ctx.user.appId)
|
2020-05-22 01:31:23 +12:00
|
|
|
|
2020-11-14 04:35:20 +13:00
|
|
|
let id = ctx.request.body._id || generateAccessLevelID()
|
|
|
|
const level = new AccessLevel(
|
|
|
|
id,
|
|
|
|
ctx.request.body.name,
|
|
|
|
ctx.request.body.inherits
|
|
|
|
)
|
|
|
|
if (ctx.request.body._rev) {
|
|
|
|
level._rev = ctx.request.body._rev
|
2020-05-22 01:31:23 +12:00
|
|
|
}
|
|
|
|
const result = await db.put(level)
|
|
|
|
level._rev = result.rev
|
|
|
|
ctx.body = level
|
|
|
|
ctx.message = `Access Level '${level.name}' created successfully.`
|
|
|
|
}
|
|
|
|
|
|
|
|
exports.destroy = async function(ctx) {
|
2020-10-29 23:28:27 +13:00
|
|
|
const db = new CouchDB(ctx.user.appId)
|
2020-05-22 01:31:23 +12:00
|
|
|
await db.remove(ctx.params.levelId, ctx.params.rev)
|
|
|
|
ctx.message = `Access Level ${ctx.params.id} deleted successfully`
|
|
|
|
ctx.status = 200
|
|
|
|
}
|