github
/
nocodb
mirror of https://github.com/nocodb/nocodb
1
0
Fork 0
Code Issues Releases Wiki Activity
Browse Source

fix: include isAuthorized prop

pull/7444/head
Pranav C 10 months ago
parent
67a13da1af
commit
9f34b6d602
2 changed files with 7 additions and 7 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 9
      packages/nocodb/src/middlewares/extract-ids/extract-ids.middleware.ts
  2. 5
      packages/nocodb/src/strategies/jwt.strategy.ts

9
packages/nocodb/src/middlewares/extract-ids/extract-ids.middleware.ts
Unescape View File

@ -216,16 +216,15 @@ export class AclMiddleware implements NestInterceptor {
const req = context.switchToHttp().getRequest();
if (!req.user?.isAuthorized) {
NcError.unauthorized('Invalid token');
}
const userScopeRole =
req.user.roles?.[OrgUserRoles.SUPER_ADMIN] === true
? OrgUserRoles.SUPER_ADMIN
: getUserRoleForScope(req.user, scope);
if (!userScopeRole) {
if (!userScopeRole)
if (!req.user?.isAuthorized) {
NcError.unauthorized('Invalid token');
}
NcError.forbidden("You don't have permission to access this resource");
}

5
packages/nocodb/src/strategies/jwt.strategy.ts
Unescape View File

@ -25,10 +25,11 @@ export class JwtStrategy extends PassportStrategy(Strategy) {
) {
throw new Error('Token Expired. Please login again.');
}
return User.getWithRoles(user.id, {
const userWithRoles = await User.getWithRoles(user.id, {
user,
baseId: req.ncBaseId,
});
return userWithRoles && { ...userWithRoles, isAuthorized: true };
}
}

Write Preview
Loading…
Cancel
Save