fix: auth role and rename dir

2023-11-29 17:18:08 +07:00 · 2023-11-29 17:18:08 +07:00 · d5e4cc7315
commit d5e4cc7315
parent 2dd8b2b92d
5 changed files with 13 additions and 5 deletions
--- a/Services/server/src/controllers/cabinetController.ts
+++ b/Services/server/src/controllers/cabinetController.ts
@ -138,7 +138,8 @@ export class CabinetController extends Controller {
            await esClient.update({
              index: DEFAULT_INDEX!,
              id: data._id,
-              doc: { pathname: destination },
+              doc: { pathname: destination, path },
+              refresh: "wait_for",
            });

            await minioClient.removeObject(DEFAULT_BUCKET!, current.name);
--- a/Services/server/src/controllers/drawerController.ts
+++ b/Services/server/src/controllers/drawerController.ts
@ -157,7 +157,8 @@ export class DrawerController extends Controller {
            await esClient.update({
              index: DEFAULT_INDEX!,
              id: data._id,
-              doc: { pathname: destination },
+              doc: { pathname: destination, path },
+              refresh: "wait_for",
            });

            await minioClient.removeObject(DEFAULT_BUCKET!, current.name);
--- a/Services/server/src/controllers/folderController.ts
+++ b/Services/server/src/controllers/folderController.ts
@ -164,7 +164,8 @@ export class FolderController extends Controller {
            await esClient.update({
              index: DEFAULT_INDEX!,
              id: data._id,
-              doc: { pathname: destination },
+              doc: { pathname: destination, path },
+              refresh: "wait_for",
            });

            await minioClient.removeObject(DEFAULT_BUCKET!, current.name);
--- a/Services/server/src/controllers/subFolderController.ts
+++ b/Services/server/src/controllers/subFolderController.ts
@ -165,7 +165,8 @@ export class SubFolderController extends Controller {
            await esClient.update({
              index: DEFAULT_INDEX!,
              id: data._id,
-              doc: { pathname: destination },
+              doc: { pathname: destination, path },
+              refresh: "wait_for",
            });

            await minioClient.removeObject(DEFAULT_BUCKET!, current.name);
--- a/Services/server/src/utils/auth.ts
+++ b/Services/server/src/utils/auth.ts
@ -35,7 +35,11 @@ export async function expressAuthentication(
    throw new HttpError(HttpStatusCode.UNAUTHORIZED, "Invalid token provided.");
  }

-  if (scopes && !scopes.some((v) => payload.resource_access[payload.azp].roles.includes(v))) {
+  if (
+    scopes &&
+    scopes.length > 0 &&
+    scopes.some((v) => !payload.resource_access[payload.azp].roles.includes(v))
+  ) {
    throw new HttpError(HttpStatusCode.FORBIDDEN, "You are not allowed to perform this action.");
  }