github/umami
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Add grant to create website/team.

Browse Source
This commit is contained in:
Brian Cao
2023-08-22 15:37:22 -07:00
parent 84236c0cd9
commit 280f6a9113
3 changed files with 31 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
src/lib/auth.ts
View File

@@ -4,11 +4,12 @@ import debug from 'debug';
import { PERMISSIONS, ROLE_PERMISSIONS, SHARE_TOKEN_HEADER } from 'lib/constants';
import { secret } from 'lib/crypto';
import { createSecureToken, ensureArray, getRandomChars, parseToken } from 'next-basics';
import { getTeamUser, getTeamWebsite, findTeamWebsiteByUserId } from 'queries';
import { findTeamWebsiteByUserId, getTeamUser, getTeamWebsite, getWebsitesByUserId } from 'queries';
import { loadWebsite } from './load';
import { Auth } from './types';
const log = debug('umami:auth');
const cloudMode = process.env.CLOUD_MODE;
export async function setAuthKey(user, expire = 0) {
const authKey = `auth:${getRandomChars(32)}`;
@@ -57,7 +58,15 @@ export async function canViewWebsite({ user, shareToken }: Auth, websiteId: stri
return !!(await findTeamWebsiteByUserId(websiteId, user.id));
}
export async function canCreateWebsite({ user }: Auth) {
export async function canCreateWebsite({ user, grant }: Auth) {
if (cloudMode) {
if (grant.find(a => a === PERMISSIONS.websiteCreate)) {
return true;
}
return (await getWebsitesByUserId(user.id)).count < Number(process.env.WEBSITE_LIMIT);
}
if (user.isAdmin) {
return true;
}
@@ -109,7 +118,15 @@ export async function canDeleteReport(auth: Auth, report: Report) {
return canUpdateReport(auth, report);
}
export async function canCreateTeam({ user }: Auth) {
export async function canCreateTeam({ user, grant }: Auth) {
if (cloudMode) {
if (grant.find(a => a === PERMISSIONS.teamCreate)) {
return true;
}
return false;
}
if (user.isAdmin) {
return true;
}