budibase/packages/server/src/api/controllers/role.js

const CouchDB = require("../../db")
const {
  BUILTIN_ROLES,
  Role,
  getRole,
} = require("../../utilities/security/roles")
const { generateRoleID, getRoleParams } = require("../../db/utils")

exports.fetch = async function(ctx) {
  const db = new CouchDB(ctx.user.appId)
  const body = await db.allDocs(
    getRoleParams(null, {
      include_docs: true,
    })
  )
  const customRoles = body.rows.map(row => row.doc)

  // exclude internal roles like builder
  const staticRoles = [
    BUILTIN_ROLES.ADMIN,
    BUILTIN_ROLES.POWER,
    BUILTIN_ROLES.BASIC,
    BUILTIN_ROLES.PUBLIC,
  ]
  ctx.body = [...staticRoles, ...customRoles]
}

exports.find = async function(ctx) {
  ctx.body = await getRole(ctx.user.appId, ctx.params.roleId)
}

exports.save = async function(ctx) {
  const db = new CouchDB(ctx.user.appId)
  let { _id, name, inherits, permissionId } = ctx.request.body
  if (!_id) {
    _id = generateRoleID()
  }
  const role = new Role(_id, name)
    .addPermission(permissionId)
    .addInheritance(inherits)
  if (ctx.request.body._rev) {
    role._rev = ctx.request.body._rev
  }
  const result = await db.put(role)
  role._rev = result.rev
  ctx.body = role
  ctx.message = `Role '${role.name}' created successfully.`
}

exports.destroy = async function(ctx) {
  const db = new CouchDB(ctx.user.appId)
  await db.remove(ctx.params.roleId, ctx.params.rev)
  ctx.message = `Role ${ctx.params.id} deleted successfully`
  ctx.status = 200
}
Changing the naming of access levels to be roles. 2020-12-02 14:20:56 +01:00			`const CouchDB = require("../../db")`
			`const {`
			`BUILTIN_ROLES,`
			`Role,`
			`getRole,`
			`} = require("../../utilities/security/roles")`
			`const { generateRoleID, getRoleParams } = require("../../db/utils")`

			`exports.fetch = async function(ctx) {`
			`const db = new CouchDB(ctx.user.appId)`
			`const body = await db.allDocs(`
			`getRoleParams(null, {`
			`include_docs: true,`
			`})`
			`)`
			`const customRoles = body.rows.map(row => row.doc)`

Making public and basic roles accessible. 2020-12-03 13:28:30 +01:00			`// exclude internal roles like builder`
			`const staticRoles = [`
			`BUILTIN_ROLES.ADMIN,`
			`BUILTIN_ROLES.POWER,`
			`BUILTIN_ROLES.BASIC,`
			`BUILTIN_ROLES.PUBLIC,`
			`]`
Changing the naming of access levels to be roles. 2020-12-02 14:20:56 +01:00			`ctx.body = [...staticRoles, ...customRoles]`
			`}`

			`exports.find = async function(ctx) {`
			`ctx.body = await getRole(ctx.user.appId, ctx.params.roleId)`
			`}`

			`exports.save = async function(ctx) {`
			`const db = new CouchDB(ctx.user.appId)`
Changing the role system to have permissions integrated rather than the permissions being per user. 2020-12-02 18:08:25 +01:00			`let { _id, name, inherits, permissionId } = ctx.request.body`
			`if (!_id) {`
			`_id = generateRoleID()`
			`}`
			`const role = new Role(_id, name)`
			`.addPermission(permissionId)`
			`.addInheritance(inherits)`
Changing the naming of access levels to be roles. 2020-12-02 14:20:56 +01:00			`if (ctx.request.body._rev) {`
			`role._rev = ctx.request.body._rev`
			`}`
			`const result = await db.put(role)`
			`role._rev = result.rev`
			`ctx.body = role`
			ctx.message = `Role '${role.name}' created successfully.`
			`}`

			`exports.destroy = async function(ctx) {`
			`const db = new CouchDB(ctx.user.appId)`
			`await db.remove(ctx.params.roleId, ctx.params.rev)`
			ctx.message = `Role ${ctx.params.id} deleted successfully`
			`ctx.status = 200`
			`}`