effendy/antrean-operasi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b3ac3a6b1ae4de6d44527ddd2be8f419f0da48dd
antrean-operasi/server/utils/roleChecker.ts
Yusron alamsyah 466dc076c3 feat(FE) : json role
2026-02-18 08:21:58 +07:00

88 lines
2.4 KiB
TypeScript
Raw Blame History

// server/utils/roleChecker.ts
// Utility functions for role-based access control
import { getSessionFromCookie } from './sessionStore';
/**
* Check if user has a specific role
*/
export async function hasRole(event: any, role: string): Promise<boolean> {
const session = await getSessionFromCookie(event);
if (!session || !session.user) {
return false;
}
const userRoles = session.user.roles || [];
return userRoles.includes(role);
}
/**
* Check if user has any of the specified roles
*/
export async function hasAnyRole(event: any, roles: string[]): Promise<boolean> {
const session = await getSessionFromCookie(event);
if (!session || !session.user) {
return false;
}
const userRoles = session.user.roles || [];
return roles.some(role => userRoles.includes(role));
}
/**
* Check if user has all of the specified roles
*/
export async function hasAllRoles(event: any, roles: string[]): Promise<boolean> {
const session = await getSessionFromCookie(event);
if (!session || !session.user) {
return false;
}
const userRoles = session.user.roles || [];
return roles.every(role => userRoles.includes(role));
}
/**
* Get all user roles
*/
export async function getUserRoles(event: any): Promise<string[]> {
const session = await getSessionFromCookie(event);
if (!session || !session.user) {
return [];
}
return session.user.roles || [];
}
/**
* Middleware helper to require specific role
* Throws error if user doesn't have the required role
*/
export async function requireRole(event: any, role: string): Promise<void> {
const hasRequiredRole = await hasRole(event, role);
if (!hasRequiredRole) {
throw createError({
statusCode: 403,
statusMessage: 'Forbidden',
message: `Access denied. Required role: ${role}`
});
}
}
/**
* Middleware helper to require any of the specified roles
* Throws error if user doesn't have any of the required roles
*/
export async function requireAnyRole(event: any, roles: string[]): Promise<void> {
const hasRequiredRole = await hasAnyRole(event, roles);
if (!hasRequiredRole) {
throw createError({
statusCode: 403,
statusMessage: 'Forbidden',
message: `Access denied. Required roles: ${roles.join(', ')}`
});
}
}
Reference in New Issue View Git Blame Copy Permalink