2017-10-30 15:31:04 +03:00
|
|
|
var _ = require('lodash'),
|
|
|
|
api = require('../../api'),
|
|
|
|
helpers = require('../../helpers/register'),
|
|
|
|
filters = require('../../filters'),
|
|
|
|
i18n = require('../../i18n'),
|
2017-10-31 12:46:59 +03:00
|
|
|
router = require('../route').appRouter,
|
2014-09-10 08:06:24 +04:00
|
|
|
generateProxyFunctions;
|
2013-11-15 06:17:33 +04:00
|
|
|
|
2016-04-14 20:32:43 +03:00
|
|
|
generateProxyFunctions = function (name, permissions, isInternal) {
|
2014-04-22 04:22:13 +04:00
|
|
|
var getPermission = function (perm) {
|
|
|
|
return permissions[perm];
|
|
|
|
},
|
|
|
|
getPermissionToMethod = function (perm, method) {
|
|
|
|
var perms = getPermission(perm);
|
|
|
|
|
|
|
|
if (!perms) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
return _.find(perms, function (name) {
|
|
|
|
return name === method;
|
|
|
|
});
|
|
|
|
},
|
|
|
|
runIfPermissionToMethod = function (perm, method, wrappedFunc, context, args) {
|
2016-04-14 20:32:43 +03:00
|
|
|
// internal apps get all permissions
|
|
|
|
if (isInternal) {
|
|
|
|
return wrappedFunc.apply(context, args);
|
|
|
|
}
|
|
|
|
|
2014-04-22 04:22:13 +04:00
|
|
|
var permValue = getPermissionToMethod(perm, method);
|
|
|
|
|
|
|
|
if (!permValue) {
|
2017-11-01 16:44:54 +03:00
|
|
|
throw new Error(i18n.t('errors.apps.accessResourceWithoutPermission.error', {name: name, perm: perm, method: method}));
|
2014-04-22 04:22:13 +04:00
|
|
|
}
|
|
|
|
|
|
|
|
return wrappedFunc.apply(context, args);
|
|
|
|
},
|
|
|
|
checkRegisterPermissions = function (perm, registerMethod) {
|
|
|
|
return _.wrap(registerMethod, function (origRegister, name) {
|
|
|
|
return runIfPermissionToMethod(perm, name, origRegister, this, _.toArray(arguments).slice(1));
|
|
|
|
});
|
|
|
|
},
|
|
|
|
passThruAppContextToApi = function (perm, apiMethods) {
|
|
|
|
var appContext = {
|
2017-11-01 16:44:54 +03:00
|
|
|
app: name
|
|
|
|
};
|
2014-04-22 04:22:13 +04:00
|
|
|
|
|
|
|
return _.reduce(apiMethods, function (memo, apiMethod, methodName) {
|
|
|
|
memo[methodName] = function () {
|
Refactor API arguments
closes #2610, refs #2697
- cleanup API index.js, and add docs
- all API methods take consistent arguments: object & options
- browse, read, destroy take options, edit and add take object and options
- the context is passed as part of options, meaning no more .call
everywhere
- destroy expects an object, rather than an id all the way down to the model layer
- route params such as :id, :slug, and :key are passed as an option & used
to perform reads, updates and deletes where possible - settings / themes
may need work here still
- HTTP posts api can find a post by slug
- Add API utils for checkData
2014-05-08 16:41:19 +04:00
|
|
|
var args = _.toArray(arguments),
|
|
|
|
options = args[args.length - 1];
|
|
|
|
|
|
|
|
if (_.isObject(options)) {
|
|
|
|
options.context = _.clone(appContext);
|
|
|
|
}
|
|
|
|
return apiMethod.apply({}, args);
|
2014-04-22 04:22:13 +04:00
|
|
|
};
|
|
|
|
|
|
|
|
return memo;
|
|
|
|
}, {});
|
|
|
|
},
|
|
|
|
proxy;
|
|
|
|
|
|
|
|
proxy = {
|
|
|
|
filters: {
|
|
|
|
register: checkRegisterPermissions('filters', filters.registerFilter.bind(filters)),
|
|
|
|
deregister: checkRegisterPermissions('filters', filters.deregisterFilter.bind(filters))
|
|
|
|
},
|
|
|
|
helpers: {
|
|
|
|
register: checkRegisterPermissions('helpers', helpers.registerThemeHelper.bind(helpers)),
|
|
|
|
registerAsync: checkRegisterPermissions('helpers', helpers.registerAsyncThemeHelper.bind(helpers))
|
|
|
|
},
|
2017-10-31 12:46:59 +03:00
|
|
|
// Expose the route service...
|
|
|
|
routeService: {
|
|
|
|
// This allows for mounting an entirely new Router at a path...
|
2017-11-09 13:08:11 +03:00
|
|
|
registerRouter: checkRegisterPermissions('routes', router.mountRouter.bind(router))
|
2017-10-31 12:46:59 +03:00
|
|
|
},
|
|
|
|
// Mini proxy to the API - needs review
|
2014-04-22 04:22:13 +04:00
|
|
|
api: {
|
Refactor API arguments
closes #2610, refs #2697
- cleanup API index.js, and add docs
- all API methods take consistent arguments: object & options
- browse, read, destroy take options, edit and add take object and options
- the context is passed as part of options, meaning no more .call
everywhere
- destroy expects an object, rather than an id all the way down to the model layer
- route params such as :id, :slug, and :key are passed as an option & used
to perform reads, updates and deletes where possible - settings / themes
may need work here still
- HTTP posts api can find a post by slug
- Add API utils for checkData
2014-05-08 16:41:19 +04:00
|
|
|
posts: passThruAppContextToApi('posts',
|
|
|
|
_.pick(api.posts, 'browse', 'read', 'edit', 'add', 'destroy')
|
|
|
|
),
|
|
|
|
tags: passThruAppContextToApi('tags',
|
|
|
|
_.pick(api.tags, 'browse')
|
|
|
|
),
|
|
|
|
notifications: passThruAppContextToApi('notifications',
|
|
|
|
_.pick(api.notifications, 'browse', 'add', 'destroy')
|
|
|
|
),
|
|
|
|
settings: passThruAppContextToApi('settings',
|
|
|
|
_.pick(api.settings, 'browse', 'read', 'edit')
|
|
|
|
)
|
2014-04-22 04:22:13 +04:00
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
return proxy;
|
2013-11-29 20:26:56 +04:00
|
|
|
};
|
2013-11-15 06:17:33 +04:00
|
|
|
|
2014-04-22 04:22:13 +04:00
|
|
|
function AppProxy(options) {
|
|
|
|
if (!options.name) {
|
2015-11-12 15:29:45 +03:00
|
|
|
throw new Error(i18n.t('errors.apps.mustProvideAppName.error'));
|
2014-04-22 04:22:13 +04:00
|
|
|
}
|
|
|
|
|
|
|
|
if (!options.permissions) {
|
2015-11-12 15:29:45 +03:00
|
|
|
throw new Error(i18n.t('errors.apps.mustProvideAppPermissions.error'));
|
2014-04-22 04:22:13 +04:00
|
|
|
}
|
|
|
|
|
2016-04-14 20:32:43 +03:00
|
|
|
_.extend(this, generateProxyFunctions(options.name, options.permissions, options.internal));
|
2014-04-22 04:22:13 +04:00
|
|
|
}
|
|
|
|
|
|
|
|
module.exports = AppProxy;
|