chamomind/jws-backend
chamomind/jws-backend
7
0
Fork 0
Code Issues Projects 1 Releases Packages 1 Wiki Activity Actions

feat: remove some roles from manage some endpoints

Browse source
This commit is contained in:
Methapon Metanipat 2024-09-06 11:47:07 +07:00
parent 806968e3dd
commit dec2722670
5 changed files with 10 additions and 90 deletions
Download patch file Download diff file Expand all files Collapse all files

20
src/controllers/03-customer-branch-controller.ts
View file

@ -25,25 +25,9 @@ if (!process.env.MINIO_BUCKET) {
}
const MINIO_BUCKET = process.env.MINIO_BUCKET;
const MANAGE_ROLES = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"sale",
"head_of_account",
"account",
];
const MANAGE_ROLES = ["system", "head_of_admin", "admin", "head_of_account", "account"];
function globalAllow(user: RequestWithUser["user"]) {
const allowList = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"head_of_account",
];
const allowList = ["system", "head_of_admin", "admin", "head_of_account"];
return allowList.some((v) => user.roles?.includes(v));
}

20
src/controllers/03-customer-controller.ts
View file

@ -25,26 +25,10 @@ if (!process.env.MINIO_BUCKET) {
}
const MINIO_BUCKET = process.env.MINIO_BUCKET;
const MANAGE_ROLES = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"sale",
"head_of_account",
"account",
];
const MANAGE_ROLES = ["system", "head_of_admin", "admin", "head_of_account", "account"];
function globalAllow(user: RequestWithUser["user"]) {
const allowList = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"head_of_account",
];
const allowList = ["system", "head_of_admin", "admin", "head_of_account"];
return allowList.some((v) => user.roles?.includes(v));
}

20
src/controllers/03-employee-controller.ts
View file

@ -25,25 +25,9 @@ if (!process.env.MINIO_BUCKET) {
}
const MINIO_BUCKET = process.env.MINIO_BUCKET;
const MANAGE_ROLES = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"sale",
"head_of_account",
"account",
];
const MANAGE_ROLES = ["system", "head_of_admin", "admin", "head_of_account", "account"];
function globalAllow(user: RequestWithUser["user"]) {
const allowList = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"head_of_account",
];
const allowList = ["system", "head_of_admin", "admin", "branch_manager", "head_of_account"];
return allowList.some((v) => user.roles?.includes(v));
}

20
src/controllers/03-employee-other-info-controller.ts
View file

@ -19,25 +19,9 @@ import HttpStatus from "../interfaces/http-status";
import { RequestWithUser } from "../interfaces/user";
import { permissionCheck } from "../middlewares/employee";
const MANAGE_ROLES = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"sale",
"head_of_account",
"account",
];
const MANAGE_ROLES = ["system", "head_of_admin", "admin", "head_of_account", "account"];
function globalAllow(user: RequestWithUser["user"]) {
const allowList = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"head_of_account",
];
const allowList = ["system", "head_of_admin", "admin", "branch_manager", "head_of_account"];
return allowList.some((v) => user.roles?.includes(v));
}

20
src/controllers/03-employee-work-controller.ts
View file

@ -18,25 +18,9 @@ import HttpStatus from "../interfaces/http-status";
import HttpError from "../interfaces/http-error";
import { permissionCheck } from "../middlewares/employee";
const MANAGE_ROLES = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"sale",
"head_of_account",
"account",
];
const MANAGE_ROLES = ["system", "head_of_admin", "admin", "head_of_account", "account"];
function globalAllow(user: RequestWithUser["user"]) {
const allowList = [
"system",
"head_of_admin",
"admin",
"branch_manager",
"head_of_sale",
"head_of_account",
];
const allowList = ["system", "head_of_admin", "admin", "branch_manager", "head_of_account"];
return allowList.some((v) => user.roles?.includes(v));
}