apitech
/
Rocket.Chat
mirror of https://github.com/RocketChat/Rocket.Chat
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The communications platform that puts data protection first.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
17290 Commits
706 Branches
1176 Tags
2.1 GiB
 
 
 
 
 
Tag: Branch: Tree: alpha/blocketchat
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'alpha/blocketchat'
${ noResults }
Rocket.Chat/app/authorization/server/methods/addPermissionToRole.js

25 lines
945 B
Raw Permalink Blame History

import { Meteor } from 'meteor/meteor';
import { Permissions } from '../../../models/server';
import { hasPermission } from '../functions/hasPermission';
import { CONSTANTS } from '../../lib';
Meteor.methods({
'authorization:addPermissionToRole'(permissionId, role) {
const uid = Meteor.userId();
const permission = Permissions.findOneById(permissionId);
if (!uid || !hasPermission(uid, 'access-permissions') || (permission.level === CONSTANTS.SETTINGS_LEVEL && !hasPermission(uid, 'access-setting-permissions'))) {
throw new Meteor.Error('error-action-not-allowed', 'Adding permission is not allowed', {
method: 'authorization:addPermissionToRole',
action: 'Adding_permission',
});
}
// for setting-based-permissions, authorize the group access as well
if (permission.groupPermissionId) {
Permissions.addRole(permission.groupPermissionId, role);
}
return Permissions.addRole(permission._id, role);
},
});