apitech
/
Rocket.Chat
mirror of https://github.com/RocketChat/Rocket.Chat
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The communications platform that puts data protection first.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19474 Commits
705 Branches
1182 Tags
2.0 GiB
 
 
 
 
 
Tag: Branch: Tree: cf917ec0b9
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'cf917ec0b9'
${ noResults }
Rocket.Chat/server/services/authorization/canAccessRoom.ts

60 lines
1.6 KiB
Raw Blame History

import { Authorization } from '../../sdk';
import { RoomAccessValidator } from '../../sdk/types/IAuthorization';
import { canAccessRoomLivechat } from './canAccessRoomLivechat';
import { canAccessRoomTokenpass } from './canAccessRoomTokenpass';
import { Subscriptions, Rooms, Settings } from './service';
const roomAccessValidators: RoomAccessValidator[] = [
async function(room, user): Promise<boolean> {
if (!room?._id || room.t !== 'c') {
return false;
}
if (!user?._id) {
// TODO: it was using cached version from /app/settings/server/raw.js
const anon = await Settings.getValueById('Accounts_AllowAnonymousRead');
return !!anon;
}
return Authorization.hasPermission(user._id, 'view-c-room');
},
async function(room, user): Promise<boolean> {
if (!room?._id || !user?._id) {
return false;
}
if (await Subscriptions.countByRoomIdAndUserId(room._id, user._id)) {
return true;
}
return false;
},
async function(room, user): Promise<boolean> {
if (!room?.prid) {
return false;
}
const parentRoom = await Rooms.findOne(room.prid);
if (!parentRoom) {
return false;
}
return Authorization.canAccessRoom(parentRoom, user);
},
canAccessRoomLivechat,
canAccessRoomTokenpass,
];
export const canAccessRoom: RoomAccessValidator = async (room, user, extraData): Promise<boolean> => {
// TODO livechat can send both as null, so they we need to validate nevertheless
// if (!room || !user) {
// return false;
// }
for await (const roomAccessValidator of roomAccessValidators) {
if (await roomAccessValidator(room, user, extraData)) {
return true;
}
}
return false;
};