stylist module
This commit is contained in:
@@ -5,10 +5,21 @@ import { Permission } from './entities/permission.entity';
|
||||
import { UserPermission } from './entities/user-permission.entity';
|
||||
import { CustomerPolicy } from './policies/customer.policy';
|
||||
import { SalonPolicy } from './policies/salon.policy';
|
||||
import { StylistPolicy } from './policies/stylist.policy';
|
||||
|
||||
@Module({
|
||||
imports: [TypeOrmModule.forFeature([Permission, UserPermission])],
|
||||
providers: [AuthorizationService, SalonPolicy, CustomerPolicy],
|
||||
exports: [AuthorizationService, SalonPolicy, CustomerPolicy],
|
||||
providers: [
|
||||
AuthorizationService,
|
||||
SalonPolicy,
|
||||
CustomerPolicy,
|
||||
StylistPolicy,
|
||||
],
|
||||
exports: [
|
||||
AuthorizationService,
|
||||
SalonPolicy,
|
||||
CustomerPolicy,
|
||||
StylistPolicy,
|
||||
],
|
||||
})
|
||||
export class AuthorizationModule {}
|
||||
|
||||
@@ -7,4 +7,7 @@ export enum PermissionCode {
|
||||
SALONS_DELETE = 'salons:delete',
|
||||
CUSTOMERS_READ = 'customers:read',
|
||||
CUSTOMERS_WRITE = 'customers:write',
|
||||
STYLISTS_READ = 'stylists:read',
|
||||
STYLISTS_WRITE = 'stylists:write',
|
||||
STYLISTS_DELETE = 'stylists:delete',
|
||||
}
|
||||
|
||||
@@ -0,0 +1,31 @@
|
||||
import { Injectable } from '@nestjs/common';
|
||||
import { AuthUser } from '../../auth/interfaces/auth-user.interface';
|
||||
import { Salon } from '../../salons/entities/salon.entity';
|
||||
import { Stylist } from '../../stylists/entities/stylist.entity';
|
||||
import { UserRole } from '../../users/enums/user-role.enum';
|
||||
import { AuthorizationService } from '../authorization.service';
|
||||
|
||||
@Injectable()
|
||||
export class StylistPolicy {
|
||||
constructor(private readonly authorizationService: AuthorizationService) {}
|
||||
|
||||
canManageSalon(user: AuthUser, salon: Salon): boolean {
|
||||
if (this.authorizationService.isAdmin(user)) {
|
||||
return true;
|
||||
}
|
||||
return user.role === UserRole.SALON && salon.ownerId === user.id;
|
||||
}
|
||||
|
||||
canUpdate(user: AuthUser, stylist: Stylist): boolean {
|
||||
if (this.authorizationService.isAdmin(user)) {
|
||||
return true;
|
||||
}
|
||||
return (
|
||||
user.role === UserRole.SALON && stylist.salon.ownerId === user.id
|
||||
);
|
||||
}
|
||||
|
||||
canDelete(user: AuthUser, stylist: Stylist): boolean {
|
||||
return this.canUpdate(user, stylist);
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user