next/lib/server/middlewareButNotReally/storyPrivileges.ts

import type { H3Event, EventHandlerRequest } from "h3";
import { IStory } from "@models/stories";
import { isLoggedIn } from "@server/middlewareButNotReally";
import { IDraft } from "@models/stories/draft";
import { IUser } from "@models/user";
export function canDelete(event: H3Event<EventHandlerRequest>, story: IStory) {
	isLoggedIn(event);
	return event.context.currentUser?.profile.isAdmin || (story.author as IUser)._id === event.context.currentUser?._id;
}
export function canDeleteDraft(event: H3Event<EventHandlerRequest>, story: IDraft) {
	isLoggedIn(event);
	return story.author === event.context.currentUser?._id;
}
export function canModify(event: H3Event<EventHandlerRequest>, story: IStory | IDraft) {
	isLoggedIn(event);
	return event.context.currentUser?._id === (story.author as IUser)._id || (story.coAuthor as IUser)?._id === event.context.currentUser?._id;
}
feat(api): :pencil2: add story api endpoints (update/create/delete) 2023-10-02 15:44:55 -04:00			`import type { H3Event, EventHandlerRequest } from "h3";`
refactor(*): refactor tsconfig paths looks/feels nicer 2023-12-20 17:23:31 -05:00			`import { IStory } from "@models/stories";`
refactor(server/utils): make paths and imports more concise and correct 2023-12-29 16:32:32 -05:00			`import { isLoggedIn } from "@server/middlewareButNotReally";`
refactor(*): refactor tsconfig paths looks/feels nicer 2023-12-20 17:23:31 -05:00			`import { IDraft } from "@models/stories/draft";`
refactor(db/models): update populatedDoc types - remove `& Document` qualifier - cast `T \| number` to T with the `as` keyword 2023-12-29 19:06:55 -05:00			`import { IUser } from "@models/user";`
feat(api): :pencil2: add story api endpoints (update/create/delete) 2023-10-02 15:44:55 -04:00			`export function canDelete(event: H3Event<EventHandlerRequest>, story: IStory) {`
refactor(api/utils): add `isLoggedIn` guard to story checks 2023-12-09 17:00:22 -05:00			`isLoggedIn(event);`
style(*): edit indents 2023-12-29 20:53:29 -05:00			`return event.context.currentUser?.profile.isAdmin \|\| (story.author as IUser)._id === event.context.currentUser?._id;`
feat(api): :pencil2: add story api endpoints (update/create/delete) 2023-10-02 15:44:55 -04:00			`}`
style(*): edit indents 2023-12-29 20:53:29 -05:00			`export function canDeleteDraft(event: H3Event<EventHandlerRequest>, story: IDraft) {`
refactor(*): refactor tsconfig paths looks/feels nicer 2023-12-20 17:23:31 -05:00			`isLoggedIn(event);`
			`return story.author === event.context.currentUser?._id;`
			`}`
style(*): edit indents 2023-12-29 20:53:29 -05:00			`export function canModify(event: H3Event<EventHandlerRequest>, story: IStory \| IDraft) {`
refactor(api/utils): add `isLoggedIn` guard to story checks 2023-12-09 17:00:22 -05:00			`isLoggedIn(event);`
style(*): edit indents 2023-12-29 20:53:29 -05:00			`return event.context.currentUser?._id === (story.author as IUser)._id \|\| (story.coAuthor as IUser)?._id === event.context.currentUser?._id;`
feat(api): :pencil2: add story api endpoints (update/create/delete) 2023-10-02 15:44:55 -04:00			`}`