2022-02-10 17:04:10 +01:00
|
|
|
import { ReactElement, ReactNode, useCallback, useMemo } from 'react';
|
|
|
|
import AccessContext, { IAccessContext } from '../../../contexts/AccessContext';
|
2021-05-04 09:59:42 +02:00
|
|
|
import { ADMIN } from './permissions';
|
2022-02-10 17:04:10 +01:00
|
|
|
import { IPermission } from '../../../interfaces/user';
|
|
|
|
import { useAuthPermissions } from '../../../hooks/api/getters/useAuth/useAuthPermissions';
|
2021-04-20 19:13:31 +02:00
|
|
|
|
2022-02-10 17:04:10 +01:00
|
|
|
interface IAccessProviderProps {
|
|
|
|
children: ReactNode;
|
2022-02-11 11:19:55 +01:00
|
|
|
permissions?: IPermission[];
|
2021-04-20 19:13:31 +02:00
|
|
|
}
|
|
|
|
|
2022-02-10 17:04:10 +01:00
|
|
|
// TODO(olav): Mock useAuth instead of using props.permissions in tests.
|
|
|
|
const AccessProvider = (props: IAccessProviderProps): ReactElement => {
|
|
|
|
const auth = useAuthPermissions();
|
|
|
|
const permissions = props.permissions ?? auth.permissions;
|
|
|
|
|
|
|
|
const isAdmin: boolean = useMemo(() => {
|
|
|
|
return checkAdmin(permissions);
|
|
|
|
}, [permissions]);
|
|
|
|
|
|
|
|
const hasAccess = useCallback(
|
|
|
|
(permission: string, project?: string, environment?: string) => {
|
|
|
|
return checkPermissions(
|
|
|
|
permissions,
|
|
|
|
permission,
|
|
|
|
project,
|
|
|
|
environment
|
2021-07-16 15:41:54 +02:00
|
|
|
);
|
2022-02-10 17:04:10 +01:00
|
|
|
},
|
|
|
|
[permissions]
|
|
|
|
);
|
2021-07-16 15:41:54 +02:00
|
|
|
|
2022-02-10 17:04:10 +01:00
|
|
|
const value: IAccessContext = useMemo(
|
|
|
|
() => ({
|
|
|
|
isAdmin,
|
|
|
|
hasAccess,
|
|
|
|
}),
|
|
|
|
[isAdmin, hasAccess]
|
|
|
|
);
|
2021-05-04 09:59:42 +02:00
|
|
|
|
|
|
|
return (
|
2022-02-10 17:04:10 +01:00
|
|
|
<AccessContext.Provider value={value}>
|
|
|
|
{props.children}
|
2021-05-04 09:59:42 +02:00
|
|
|
</AccessContext.Provider>
|
|
|
|
);
|
|
|
|
};
|
|
|
|
|
2022-02-10 17:04:10 +01:00
|
|
|
const checkAdmin = (permissions: IPermission[] | undefined): boolean => {
|
|
|
|
if (!permissions) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
return permissions.some(p => {
|
|
|
|
return p.permission === ADMIN;
|
|
|
|
});
|
|
|
|
};
|
|
|
|
|
|
|
|
const checkPermissions = (
|
|
|
|
permissions: IPermission[] | undefined,
|
|
|
|
permission: string,
|
|
|
|
project?: string,
|
|
|
|
environment?: string
|
|
|
|
): boolean => {
|
|
|
|
if (!permissions) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
return permissions.some(p => {
|
|
|
|
return checkPermission(p, permission, project, environment);
|
|
|
|
});
|
|
|
|
};
|
|
|
|
|
|
|
|
const checkPermission = (
|
|
|
|
p: IPermission,
|
|
|
|
permission: string,
|
|
|
|
project?: string,
|
|
|
|
environment?: string
|
|
|
|
): boolean => {
|
|
|
|
if (!permission) {
|
2022-02-11 11:19:55 +01:00
|
|
|
console.warn(`Missing permission for AccessProvider: ${permission}`);
|
|
|
|
return false;
|
2022-02-10 17:04:10 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
if (p.permission === ADMIN) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (
|
|
|
|
p.permission === permission &&
|
|
|
|
(p.project === project || p.project === '*') &&
|
|
|
|
(p.environment === environment || p.environment === '*')
|
|
|
|
) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (
|
|
|
|
p.permission === permission &&
|
|
|
|
(p.project === project || p.project === '*') &&
|
|
|
|
p.environment === null
|
|
|
|
) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
return (
|
|
|
|
p.permission === permission &&
|
|
|
|
p.project === undefined &&
|
|
|
|
p.environment === null
|
|
|
|
);
|
|
|
|
};
|
|
|
|
|
2021-05-04 09:59:42 +02:00
|
|
|
export default AccessProvider;
|