CalvinBackup/anonymous_github
1
0
Fork 0
mirror of https://github.com/tdurieux/anonymous_github.git synced 2026-05-20 00:14:43 +02:00
Code Issues Packages Projects Releases Wiki Activity

feat: creates admin privileges

Browse Source
This commit is contained in:
tdurieux
2021-09-09 14:58:38 +02:00
parent 76b5d00fb8
commit 62fd9eca7d
6 changed files with 23 additions and 45 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/User.ts
+4
View File
@@ -22,6 +22,10 @@ export default class User {
return this._model.username; return this._model.username;
} }
get isAdmin(): boolean {
return !!this._model.isAdmin;
}
get accessToken(): string { get accessToken(): string {
return this._model.accessTokens.github; return this._model.accessTokens.github;
} }
src/database/users/users.schema.ts
+1
View File
@@ -18,6 +18,7 @@ const UserSchema = new Schema({
default: Boolean, default: Boolean,
}, },
], ],
isAdmin: { type: Boolean, default: false },
photo: String, photo: String,
repositories: [String], repositories: [String],
default: { default: {
src/database/users/users.types.ts
+1
View File
@@ -8,6 +8,7 @@ export interface IUser {
github: string; github: string;
}; };
username: string; username: string;
isAdmin: boolean;
emails: { emails: {
email: string; email: string;
default: boolean; default: boolean;
src/routes/conference.ts
+4 -16
View File
@@ -3,7 +3,7 @@ import AnonymousError from "../AnonymousError";
import Conference from "../Conference"; import Conference from "../Conference";
import ConferenceModel from "../database/conference/conferences.model"; import ConferenceModel from "../database/conference/conferences.model";
import { ensureAuthenticated } from "./connection"; import { ensureAuthenticated } from "./connection";
import { handleError, getUser } from "./route-utils"; import { handleError, getUser, isOwnerOrAdmin } from "./route-utils";
const router = express.Router(); const router = express.Router();
@@ -153,11 +153,7 @@ router.post(
model = await ConferenceModel.findOne({ model = await ConferenceModel.findOne({
conferenceID: req.params.conferenceID, conferenceID: req.params.conferenceID,
}); });
if (model.owners.indexOf(user.model.id) == -1) isOwnerOrAdmin(model.owners, user);
throw new AnonymousError("not_authorized", {
object: req.params.conferenceID,
httpStatus: 401,
});
} }
validateConferenceForm(req.body); validateConferenceForm(req.body);
model.name = req.body.name; model.name = req.body.name;
@@ -229,11 +225,7 @@ router.get(
httpStatus: 404, httpStatus: 404,
}); });
const conference = new Conference(data); const conference = new Conference(data);
if (conference.ownerIDs.indexOf(user.model.id) == -1) isOwnerOrAdmin(conference.ownerIDs, user);
throw new AnonymousError("not_authorized", {
object: req.params.conferenceID,
httpStatus: 401,
});
const o: any = conference.toJSON(); const o: any = conference.toJSON();
o.repositories = (await conference.repositories()).map((r) => r.toJSON()); o.repositories = (await conference.repositories()).map((r) => r.toJSON());
res.json(o); res.json(o);
@@ -257,11 +249,7 @@ router.delete(
httpStatus: 400, httpStatus: 400,
}); });
const conference = new Conference(data); const conference = new Conference(data);
if (conference.ownerIDs.indexOf(user.model.id) == -1) isOwnerOrAdmin(conference.ownerIDs, user);
throw new AnonymousError("not_authorized", {
object: req.params.conferenceID,
httpStatus: 401,
});
await conference.remove(); await conference.remove();
res.send("ok"); res.send("ok");
} catch (error) { } catch (error) {
src/routes/repository-private.ts
+5 -25
View File
@@ -2,7 +2,7 @@ import * as express from "express";
import { ensureAuthenticated } from "./connection"; import { ensureAuthenticated } from "./connection";
import * as db from "../database/database"; import * as db from "../database/database";
import { getRepo, getUser, handleError } from "./route-utils"; import { getRepo, getUser, handleError, isOwnerOrAdmin } from "./route-utils";
import { getRepositoryFromGitHub } from "../source/GitHubRepository"; import { getRepositoryFromGitHub } from "../source/GitHubRepository";
import gh = require("parse-github-url"); import gh = require("parse-github-url");
import GitHubBase from "../source/GitHubBase"; import GitHubBase from "../source/GitHubBase";
@@ -81,12 +81,7 @@ router.post(
if (repo.status == "preparing" || repo.status == "removing") return; if (repo.status == "preparing" || repo.status == "removing") return;
const user = await getUser(req); const user = await getUser(req);
if (repo.owner.id != user.id) { isOwnerOrAdmin([repo.owner.id], user);
throw new AnonymousError("not_authorized", {
object: req.params.repoId,
httpStatus: 401,
});
}
await repo.updateIfNeeded({ force: true }); await repo.updateIfNeeded({ force: true });
res.json({ status: repo.status }); res.json({ status: repo.status });
} catch (error) { } catch (error) {
@@ -109,12 +104,7 @@ router.delete(
httpStatus: 410, httpStatus: 410,
}); });
const user = await getUser(req); const user = await getUser(req);
if (repo.owner.id != user.id) { isOwnerOrAdmin([repo.owner.id], user);
throw new AnonymousError("not_authorized", {
object: req.params.repoId,
httpStatus: 401,
});
}
await repo.updateStatus("removing"); await repo.updateStatus("removing");
await removeQueue.add(repo, { jobId: repo.repoId }); await removeQueue.add(repo, { jobId: repo.repoId });
return res.json({ status: repo.status }); return res.json({ status: repo.status });
@@ -200,12 +190,7 @@ router.get("/:repoId/", async (req: express.Request, res: express.Response) => {
if (!repo) return; if (!repo) return;
const user = await getUser(req); const user = await getUser(req);
if (repo.owner.id != user.id) { isOwnerOrAdmin([repo.owner.id], user);
throw new AnonymousError("not_authorized", {
object: req.params.repoId,
httpStatus: 401,
});
}
res.json((await db.getRepository(req.params.repoId)).toJSON()); res.json((await db.getRepository(req.params.repoId)).toJSON());
} catch (error) { } catch (error) {
handleError(error, res); handleError(error, res);
@@ -295,12 +280,7 @@ router.post(
if (!repo) return; if (!repo) return;
const user = await getUser(req); const user = await getUser(req);
if (repo.owner.id != user.id) { isOwnerOrAdmin([repo.owner.id], user);
throw new AnonymousError("not_authorized", {
object: req.params.repoId,
httpStatus: 401,
});
}
const repoUpdate = req.body; const repoUpdate = req.body;
src/routes/route-utils.ts
+8 -4
View File
@@ -1,11 +1,7 @@
import * as express from "express"; import * as express from "express";
import AnonymizedFile from "../AnonymizedFile";
import AnonymousError from "../AnonymousError"; import AnonymousError from "../AnonymousError";
import * as db from "../database/database"; import * as db from "../database/database";
import UserModel from "../database/users/users.model"; import UserModel from "../database/users/users.model";
import Repository from "../Repository";
import GitHubBase from "../source/GitHubBase";
import { GitHubRepository } from "../source/GitHubRepository";
import User from "../User"; import User from "../User";
import * as io from "@pm2/io"; import * as io from "@pm2/io";
@@ -37,6 +33,14 @@ export async function getRepo(
} }
} }
export function isOwnerOrAdmin(authorizedUsers: string[], user: User) {
if (authorizedUsers.indexOf(user.model.id) == -1 && !user.isAdmin) {
throw new AnonymousError("not_authorized", {
httpStatus: 401,
});
}
}
function printError(error: any) { function printError(error: any) {
io.notifyError(error, error.value); io.notifyError(error, error.value);
if (error instanceof AnonymousError) { if (error instanceof AnonymousError) {