nocodb/packages/nc-gui-v2/composables/useUIPermission/index.ts

import type { Permission } from './rolePermissions'
import rolePermissions from './rolePermissions'
import { useState } from '#app'
import { USER_PROJECT_ROLES } from '~/lib/constants'

export function useUIPermission() {
  const { $state } = useNuxtApp()
  const projectRoles = useState<Record<string, boolean>>(USER_PROJECT_ROLES, () => ({}))

  const isUIAllowed = (permission: Permission, _skipPreviewAs = false) => {
    const user = $state.user
    let userRoles = user?.value?.roles || {}
    // if string populate key-value paired object
    if (typeof userRoles === 'string') {
      userRoles = userRoles.split(',').reduce<Record<string, boolean>>((acc, role) => {
        acc[role] = true
        return acc
      }, {})
    }

    // merge user role and project specific user roles
    const roles = {
      ...userRoles,
      ...(projectRoles?.value || {}),
    }

    // todo: handle preview as
    // if (state.previewAs && !skipPreviewAs) {
    //   roles = {
    //     [state.previewAs]: true
    //   };
    // }

    return Object.entries<boolean>(roles).some(([role, hasRole]) => {
      const rolePermission = rolePermissions[role as keyof typeof rolePermissions] as '*' | Record<Permission, true>

      return hasRole && (rolePermission === '*' || rolePermission?.[permission])
    })
  }

  return { isUIAllowed }
}
fix(gui-v2): permission type not allowing wildcard # What's changed? * rename `RolePermissions` to `Permission` * allow wildcard permission for creator and owner roles 2 years ago			`import type { Permission } from './rolePermissions'`
feat: add isUIAllowed composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`import rolePermissions from './rolePermissions'`
feat(gui-v2): Load project specific role and use it in ui permission composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`import { useState } from '#app'`
			`import { USER_PROJECT_ROLES } from '~/lib/constants'`
feat: add isUIAllowed composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago
refactor(gui-v2): replace `useGlobalState` with `useGlobal` # What's changed? * `useGlobal` replaces `useGlobalState` * split into actions, getters, state * injects into nuxt app on init (regardless where it's called) 2 years ago			`export function useUIPermission() {`
feat: add isUIAllowed composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`const { $state } = useNuxtApp()`
feat(gui-v2): Load project specific role and use it in ui permission composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`const projectRoles = useState<Record<string, boolean>>(USER_PROJECT_ROLES, () => ({}))`
feat: add isUIAllowed composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago
fix(gui-v2): permission type not allowing wildcard # What's changed? * rename `RolePermissions` to `Permission` * allow wildcard permission for creator and owner roles 2 years ago			`const isUIAllowed = (permission: Permission, _skipPreviewAs = false) => {`
feat: add isUIAllowed composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`const user = $state.user`
feat(gui-v2): Load project specific role and use it in ui permission composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`let userRoles = user?.value?.roles \|\| {}`
			`// if string populate key-value paired object`
			`if (typeof userRoles === 'string') {`
			`userRoles = userRoles.split(',').reduce<Record<string, boolean>>((acc, role) => {`
			`acc[role] = true`
			`return acc`
			`}, {})`
			`}`

			`// merge user role and project specific user roles`
feat: add isUIAllowed composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`const roles = {`
feat(gui-v2): Load project specific role and use it in ui permission composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`...userRoles,`
			`...(projectRoles?.value \|\| {}),`
feat: add isUIAllowed composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`}`

			`// todo: handle preview as`
			`// if (state.previewAs && !skipPreviewAs) {`
			`// roles = {`
			`// [state.previewAs]: true`
			`// };`
			`// }`
feat(gui-v2): Load project specific role and use it in ui permission composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago
fix(gui-v2): permission type not allowing wildcard # What's changed? * rename `RolePermissions` to `Permission` * allow wildcard permission for creator and owner roles 2 years ago			`return Object.entries<boolean>(roles).some(([role, hasRole]) => {`
chore(gui-v2): properly type rolePermission and remove unnecessary check 2 years ago			`const rolePermission = rolePermissions[role as keyof typeof rolePermissions] as '*' \| Record<Permission, true>`
feat(gui-v2): add proper role permissions type 2 years ago
Update index.ts 2 years ago			`return hasRole && (rolePermission === '*' \|\| rolePermission?.[permission])`
feat: add isUIAllowed composable Signed-off-by: Pranav C <pranavxc@gmail.com> 2 years ago			`})`
			`}`

			`return { isUIAllowed }`
			`}`