|
|
|
@ -46,19 +46,13 @@ export class AccessController { |
|
|
|
}); |
|
|
|
|
|
|
|
return accessesWithGranteeUser.map( |
|
|
|
({ |
|
|
|
alias, |
|
|
|
granteeUser, |
|
|
|
id, |
|
|
|
permissions: accessPermissions, |
|
|
|
settings |
|
|
|
}) => { |
|
|
|
({ alias, granteeUser, id, permissions, settings }) => { |
|
|
|
if (granteeUser) { |
|
|
|
return { |
|
|
|
alias, |
|
|
|
grantee: granteeUser?.id, |
|
|
|
id, |
|
|
|
permissions: accessPermissions, |
|
|
|
permissions, |
|
|
|
grantee: granteeUser?.id, |
|
|
|
settings: settings as AccessSettings, |
|
|
|
type: 'PRIVATE' |
|
|
|
}; |
|
|
|
@ -66,9 +60,9 @@ export class AccessController { |
|
|
|
|
|
|
|
return { |
|
|
|
alias, |
|
|
|
grantee: 'Public', |
|
|
|
id, |
|
|
|
permissions: accessPermissions, |
|
|
|
permissions, |
|
|
|
grantee: 'Public', |
|
|
|
settings: settings as AccessSettings, |
|
|
|
type: 'PUBLIC' |
|
|
|
}; |
|
|
|
@ -114,6 +108,27 @@ export class AccessController { |
|
|
|
} |
|
|
|
} |
|
|
|
|
|
|
|
@Delete(':id') |
|
|
|
@HasPermission(permissions.deleteAccess) |
|
|
|
@UseGuards(AuthGuard('jwt'), HasPermissionGuard) |
|
|
|
public async deleteAccess(@Param('id') id: string): Promise<AccessModel> { |
|
|
|
const originalAccess = await this.accessService.access({ |
|
|
|
id, |
|
|
|
userId: this.request.user.id |
|
|
|
}); |
|
|
|
|
|
|
|
if (!originalAccess) { |
|
|
|
throw new HttpException( |
|
|
|
getReasonPhrase(StatusCodes.FORBIDDEN), |
|
|
|
StatusCodes.FORBIDDEN |
|
|
|
); |
|
|
|
} |
|
|
|
|
|
|
|
return this.accessService.deleteAccess({ |
|
|
|
id |
|
|
|
}); |
|
|
|
} |
|
|
|
|
|
|
|
@HasPermission(permissions.updateAccess) |
|
|
|
@Put(':id') |
|
|
|
@UseGuards(AuthGuard('jwt'), HasPermissionGuard) |
|
|
|
@ -166,25 +181,4 @@ export class AccessController { |
|
|
|
); |
|
|
|
} |
|
|
|
} |
|
|
|
|
|
|
|
@Delete(':id') |
|
|
|
@HasPermission(permissions.deleteAccess) |
|
|
|
@UseGuards(AuthGuard('jwt'), HasPermissionGuard) |
|
|
|
public async deleteAccess(@Param('id') id: string): Promise<AccessModel> { |
|
|
|
const originalAccess = await this.accessService.access({ |
|
|
|
id, |
|
|
|
userId: this.request.user.id |
|
|
|
}); |
|
|
|
|
|
|
|
if (!originalAccess) { |
|
|
|
throw new HttpException( |
|
|
|
getReasonPhrase(StatusCodes.FORBIDDEN), |
|
|
|
StatusCodes.FORBIDDEN |
|
|
|
); |
|
|
|
} |
|
|
|
|
|
|
|
return this.accessService.deleteAccess({ |
|
|
|
id |
|
|
|
}); |
|
|
|
} |
|
|
|
} |
|
|
|
|