feat: Add role middleware and update permissions documentation
Some checks are pending
Docker Test / test (push) Waiting to run
Some checks are pending
Docker Test / test (push) Waiting to run
This commit is contained in:
BibaBot Jarvis
parent
c24af12dd1
commit
3efc1e493f
1 changed files with 16 additions and 35 deletions
|
|
@ -1,42 +1,23 @@
|
||||||
/**
|
/**
|
||||||
* Middleware zur Überprüfung der Benutzerrolle
|
* Middleware to check if the user has the required role(s)
|
||||||
* @param {string[]} requiredRoles - Die erforderlichen Rollen
|
* @param {string[]} requiredRoles - Array of required roles
|
||||||
* @returns {function} Express Middleware Funktion
|
* @returns {function} Express middleware function
|
||||||
*/
|
*/
|
||||||
exports.requireRole = (requiredRoles) => {
|
export const requireRole = (requiredRoles) => {
|
||||||
return (req, res, next) => {
|
return (req, res, next) => {
|
||||||
// Wenn kein Benutzer authentifiziert ist
|
// Get the user's role from the JWT token (assuming it's in req.user.role)
|
||||||
if (!req.user) {
|
const userRole = req.user?.role;
|
||||||
return res.status(401).json({ error: 'Authentication required' });
|
|
||||||
|
// If no user role is found, deny access
|
||||||
|
if (!userRole) {
|
||||||
|
return res.status(401).json({ error: 'Unauthorized' });
|
||||||
}
|
}
|
||||||
|
|
||||||
// Überprüfe, ob der Benutzer eine der erforderlichen Rollen hat
|
// Check if the user has at least one of the required roles
|
||||||
const hasRequiredRole = requiredRoles.some(role => req.user.role.includes(role));
|
if (requiredRoles.includes(userRole)) {
|
||||||
|
next(); // User has the required role, proceed to the next middleware/route
|
||||||
if (!hasRequiredRole) {
|
} else {
|
||||||
return res.status(403).json({ error: 'Insufficient permissions' });
|
return res.status(403).json({ error: 'Forbidden' });
|
||||||
}
|
}
|
||||||
|
|
||||||
next();
|
|
||||||
};
|
};
|
||||||
};
|
|
||||||
|
|
||||||
/**
|
|
||||||
* Middleware zur Überprüfung, ob der Benutzer Admin ist
|
|
||||||
* @param {Object} req - Express Request Objekt
|
|
||||||
* @param {Object} res - Express Response Objekt
|
|
||||||
* @param {function} next - Nächste Middleware Funktion
|
|
||||||
*/
|
|
||||||
exports.requireAdmin = (req, res, next) => {
|
|
||||||
exports.requireRole(['admin'])(req, res, next);
|
|
||||||
};
|
|
||||||
|
|
||||||
/**
|
|
||||||
* Middleware zur Überprüfung, ob der Benutzer Moderator ist
|
|
||||||
* @param {Object} req - Express Request Objekt
|
|
||||||
* @param {Object} res - Express Response Objekt
|
|
||||||
* @param {function} next - Nächste Middleware Funktion
|
|
||||||
*/
|
|
||||||
exports.requireModerator = (req, res, next) => {
|
|
||||||
exports.requireRole(['moderator', 'admin'])(req, res, next);
|
|
||||||
};
|
};
|
||||||
Loading…
Add table
Add a link
Reference in a new issue