2014-05-14 17:53:23 -04:00
|
|
|
|
|
|
|
|
'use strict';
|
|
|
|
|
|
2016-01-23 12:12:46 +02:00
|
|
|
var async = require('async');
|
2016-08-27 12:58:08 +03:00
|
|
|
var groups = require('../groups');
|
2014-05-14 17:53:23 -04:00
|
|
|
|
|
|
|
|
var helpers = {};
|
|
|
|
|
|
2016-10-13 11:43:39 +02:00
|
|
|
helpers.some = function (tasks, callback) {
|
|
|
|
|
async.some(tasks, function (task, next) {
|
|
|
|
|
task(function (err, result) {
|
2014-05-15 10:38:02 -04:00
|
|
|
next(!err && result);
|
|
|
|
|
});
|
2016-10-13 11:43:39 +02:00
|
|
|
}, function (result) {
|
2014-05-15 10:38:02 -04:00
|
|
|
callback(null, result);
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2016-10-13 11:43:39 +02:00
|
|
|
helpers.isUserAllowedTo = function (privilege, uid, cid, callback) {
|
2016-09-15 14:01:56 +03:00
|
|
|
if (Array.isArray(privilege) && !Array.isArray(cid)) {
|
|
|
|
|
isUserAllowedToPrivileges(privilege, uid, cid, callback);
|
|
|
|
|
} else if (Array.isArray(cid) && !Array.isArray(privilege)) {
|
|
|
|
|
isUserAllowedToCids(privilege, uid, cid, callback);
|
|
|
|
|
} else {
|
|
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
function isUserAllowedToCids(privilege, uid, cids, callback) {
|
2014-07-29 21:51:46 -04:00
|
|
|
if (parseInt(uid, 10) === 0) {
|
2016-09-15 14:01:56 +03:00
|
|
|
return isGuestAllowedToCids(privilege, cids, callback);
|
2014-07-29 21:51:46 -04:00
|
|
|
}
|
|
|
|
|
|
2017-02-17 20:20:42 -07:00
|
|
|
var userKeys = [];
|
|
|
|
|
var groupKeys = [];
|
2017-02-18 01:12:18 -07:00
|
|
|
for (var i = 0; i < cids.length; i += 1) {
|
2014-07-29 21:51:46 -04:00
|
|
|
userKeys.push('cid:' + cids[i] + ':privileges:' + privilege);
|
|
|
|
|
groupKeys.push('cid:' + cids[i] + ':privileges:groups:' + privilege);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async.parallel({
|
2016-10-13 11:43:39 +02:00
|
|
|
hasUserPrivilege: function (next) {
|
2014-07-29 21:51:46 -04:00
|
|
|
groups.isMemberOfGroups(uid, userKeys, next);
|
|
|
|
|
},
|
2016-10-13 11:43:39 +02:00
|
|
|
hasGroupPrivilege: function (next) {
|
2014-09-20 23:04:49 -04:00
|
|
|
groups.isMemberOfGroupsList(uid, groupKeys, next);
|
2017-02-17 19:31:21 -07:00
|
|
|
},
|
2016-10-13 11:43:39 +02:00
|
|
|
}, function (err, results) {
|
2014-05-14 17:53:23 -04:00
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-29 21:51:46 -04:00
|
|
|
var result = [];
|
2017-02-18 01:12:18 -07:00
|
|
|
for (var i = 0; i < cids.length; i += 1) {
|
2014-11-11 17:25:16 -05:00
|
|
|
result.push(results.hasUserPrivilege[i] || results.hasGroupPrivilege[i]);
|
2014-05-14 17:53:23 -04:00
|
|
|
}
|
|
|
|
|
|
2014-07-29 21:51:46 -04:00
|
|
|
callback(null, result);
|
2014-05-14 17:53:23 -04:00
|
|
|
});
|
2016-09-15 14:01:56 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function isUserAllowedToPrivileges(privileges, uid, cid, callback) {
|
|
|
|
|
if (parseInt(uid, 10) === 0) {
|
|
|
|
|
return isGuestAllowedToPrivileges(privileges, cid, callback);
|
|
|
|
|
}
|
|
|
|
|
|
2017-02-17 20:20:42 -07:00
|
|
|
var userKeys = [];
|
|
|
|
|
var groupKeys = [];
|
2017-02-18 01:12:18 -07:00
|
|
|
for (var i = 0; i < privileges.length; i += 1) {
|
2016-09-15 14:01:56 +03:00
|
|
|
userKeys.push('cid:' + cid + ':privileges:' + privileges[i]);
|
|
|
|
|
groupKeys.push('cid:' + cid + ':privileges:groups:' + privileges[i]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async.parallel({
|
2016-10-13 11:43:39 +02:00
|
|
|
hasUserPrivilege: function (next) {
|
2016-09-15 14:01:56 +03:00
|
|
|
groups.isMemberOfGroups(uid, userKeys, next);
|
|
|
|
|
},
|
2016-10-13 11:43:39 +02:00
|
|
|
hasGroupPrivilege: function (next) {
|
2016-09-15 14:01:56 +03:00
|
|
|
groups.isMemberOfGroupsList(uid, groupKeys, next);
|
2017-02-17 19:31:21 -07:00
|
|
|
},
|
2016-10-13 11:43:39 +02:00
|
|
|
}, function (err, results) {
|
2016-09-15 14:01:56 +03:00
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var result = [];
|
2017-02-18 01:12:18 -07:00
|
|
|
for (var i = 0; i < privileges.length; i += 1) {
|
2016-09-15 14:01:56 +03:00
|
|
|
result.push(results.hasUserPrivilege[i] || results.hasGroupPrivilege[i]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
callback(null, result);
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
2014-05-14 17:53:23 -04:00
|
|
|
|
2016-10-13 11:43:39 +02:00
|
|
|
helpers.isUsersAllowedTo = function (privilege, uids, cid, callback) {
|
2014-09-09 15:19:57 -04:00
|
|
|
async.parallel({
|
2016-10-13 11:43:39 +02:00
|
|
|
hasUserPrivilege: function (next) {
|
2014-09-09 15:19:57 -04:00
|
|
|
groups.isMembers(uids, 'cid:' + cid + ':privileges:' + privilege, next);
|
|
|
|
|
},
|
2016-10-13 11:43:39 +02:00
|
|
|
hasGroupPrivilege: function (next) {
|
2014-09-09 15:19:57 -04:00
|
|
|
groups.isMembersOfGroupList(uids, 'cid:' + cid + ':privileges:groups:' + privilege, next);
|
2017-02-17 19:31:21 -07:00
|
|
|
},
|
2016-10-13 11:43:39 +02:00
|
|
|
}, function (err, results) {
|
2014-09-09 15:19:57 -04:00
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var result = [];
|
2017-02-18 01:52:56 -07:00
|
|
|
for (var i = 0; i < uids.length; i += 1) {
|
2014-11-11 17:25:16 -05:00
|
|
|
result.push(results.hasUserPrivilege[i] || results.hasGroupPrivilege[i]);
|
2014-09-09 15:19:57 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
callback(null, result);
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2016-09-15 14:01:56 +03:00
|
|
|
function isGuestAllowedToCids(privilege, cids, callback) {
|
2014-11-11 17:25:16 -05:00
|
|
|
var groupKeys = [];
|
2017-02-18 01:12:18 -07:00
|
|
|
for (var i = 0; i < cids.length; i += 1) {
|
2014-07-29 21:51:46 -04:00
|
|
|
groupKeys.push('cid:' + cids[i] + ':privileges:groups:' + privilege);
|
|
|
|
|
}
|
2016-08-27 12:58:08 +03:00
|
|
|
|
2014-11-11 17:25:16 -05:00
|
|
|
groups.isMemberOfGroups('guests', groupKeys, callback);
|
2014-07-29 21:51:46 -04:00
|
|
|
}
|
2014-05-14 17:53:23 -04:00
|
|
|
|
2016-09-15 14:01:56 +03:00
|
|
|
function isGuestAllowedToPrivileges(privileges, cid, callback) {
|
|
|
|
|
var groupKeys = [];
|
2017-02-18 01:12:18 -07:00
|
|
|
for (var i = 0; i < privileges.length; i += 1) {
|
2016-09-15 14:01:56 +03:00
|
|
|
groupKeys.push('cid:' + cid + ':privileges:groups:' + privileges[i]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
groups.isMemberOfGroups('guests', groupKeys, callback);
|
|
|
|
|
}
|
2014-05-14 17:53:23 -04:00
|
|
|
|
|
|
|
|
module.exports = helpers;
|
