hrms-api-org/src/middlewares/role.ts

import * as express from "express";
import HttpError from "../interfaces/http-error";
import HttpStatus from "../interfaces/http-status";
import { RequestWithUser } from "./user";

export function authRole(role: string, errorMessage = "คุณไม่มีสิทธิในการเข้าถึงทรัพยากรดังกล่าว") {
  return (req: RequestWithUser, _res: express.Response, next: express.NextFunction) => {
    if (!req.user.role.includes(role)) {
      throw new HttpError(HttpStatus.FORBIDDEN, errorMessage);
    }
    next();
  };
}
Add middleware for role check 2024-03-11 09:28:59 +07:00			`import * as express from "express";`
			`import HttpError from "../interfaces/http-error";`
			`import HttpStatus from "../interfaces/http-status";`
			`import { RequestWithUser } from "./user";`

Add custom error msg param for role auth 2024-03-11 09:30:28 +07:00			`export function authRole(role: string, errorMessage = "คุณไม่มีสิทธิในการเข้าถึงทรัพยากรดังกล่าว") {`
Add middleware for role check 2024-03-11 09:28:59 +07:00			`return (req: RequestWithUser, _res: express.Response, next: express.NextFunction) => {`
			`if (!req.user.role.includes(role)) {`
Add custom error msg param for role auth 2024-03-11 09:30:28 +07:00			`throw new HttpError(HttpStatus.FORBIDDEN, errorMessage);`
Add middleware for role check 2024-03-11 09:28:59 +07:00			`}`
			`next();`
			`};`
			`}`