rockfic/next
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

refactor(api/utils): add isLoggedIn guard to story checks

Browse Source
This commit is contained in:
☙◦ The Tablet ❀ GamerGirlandCo ◦❧ 2023-12-09 17:00:22 -05:00
parent 3bc828ad5e
commit 46c9a07b7d
Signed by: tablet
GPG Key ID: 924A5F6AF051E87C
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
lib/server/middlewareButNotReally/storyPrivileges.ts
View File

@ -1,14 +1,17 @@
import type { H3Event, EventHandlerRequest } from "h3";
import { IStory } from "~/models/stories";
import isLoggedIn from "~/lib/server/middlewareButNotReally/isLoggedIn";
export function canDelete(event: H3Event<EventHandlerRequest>, story: IStory) {
isLoggedIn(event);
return (
event.context.currentUser?.profile.isAdmin ||
story.author._id === event.context.currentUser?._id
);
}
export function canModify(event: H3Event<EventHandlerRequest>, story: IStory) {
isLoggedIn(event);
return (
event.context.currentUser?._id === story.author._id ||
story.coAuthor._id === event.context.currentUser?._id
story.coAuthor?._id === event.context.currentUser?._id
);
}