| 123456789101112131415161718192021 |
- const cache = require('../../cache');
- const db = require('../../db');
- module.exports = function(next) {
- return function(session) {
- let args = [];
- for (let prop in arguments) {
- args.push(arguments[prop]);
- }
- let cb = args[args.length - 1];
- cache.hget('sessions', session.sessionId, (err, session) => {
- if (err || !session || !session.userId) return cb({ status: 'failure', message: 'Login required.' });
- db.models.user.findOne({_id: session.userId}, (err, user) => {
- if (err || !user) return cb({ status: 'failure', message: 'Login required.' });
- if (user.role !== 'admin') return cb({ status: 'failure', message: 'Admin required.' });
- args.push(session.userId);
- next.apply(null, args);
- });
- });
- }
- };
|
