Accueil Explorer Aide
Connexion
herton
/
sails-test
Suivre 1
Voter 0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Branche: master
Branches Tags
sails-test
/
api
/
policies
/
is-super-admin.js

is-super-admin.js 799 B
Lien permanent Historique Raw

1234567891011121314151617181920212223242526272829 
  1. /**
    2. 

  2.  * is-super-admin
    3. 

  3.  *
    4. 

  4.  * A simple policy that blocks requests from non-super-admins.
    5. 

  5.  *
    6. 

  6.  * For more about how to use policies, see:
    7. 

  7.  *   https://sailsjs.com/config/policies
    8. 

  8.  *   https://sailsjs.com/docs/concepts/policies
    9. 

  9.  *   https://sailsjs.com/docs/concepts/policies/access-control-and-permissions
    10. 

  10.  */
    11. 

  11. module.exports = async function (req, res, proceed) {
    12. 

  12. 

  13.   // First, check whether the request comes from a logged-in user.
    14. 

  14.   // > For more about where `req.me` comes from, check out this app's
    15. 

  15.   // > custom hook (`api/hooks/custom/index.js`).
    16. 

  16.   if (!req.me) {
    17. 

  17.     return res.unauthorized();
    18. 

  18.   }//•
    19. 

  19. 

  20.   // Then check that this user is a "super admin".
    21. 

  21.   if (!req.me.isSuperAdmin) {
    22. 

  22.     return res.forbidden();
    23. 

  23.   }//•
    24. 

  24. 

  25.   // IWMIH, we've got ourselves a "super admin".
    26. 

  26.   return proceed();
    27. 

  27. 

  28. };
    29. 

  29.