Home Esplora Aiuto
Accedi
mirrors
/
wikijs
mirror da https://github.com/Requarks/wiki.git
2
0
Forka 0
File Problemi 0 Wiki
Sfoglia il codice sorgente

fix: page rules role check (#1447)

* Check rule.roles against permissions

* Added Role Check to EXACT matching

* Code Review Fixes
BobbyB 5 anni fa
parent
a694d26290
commit
7d23344c7a
1 ha cambiato i file con 34 aggiunte e 32 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 34 32
      server/core/auth.js

+ 34 - 32
server/core/auth.js
Vedi File 

@@ -173,39 +173,41 @@ module.exports = {
 
       user.groups.forEach(grp => {
 
         const grpId = _.isObject(grp) ? _.get(grp, 'id', 0) : grp
 
         _.get(WIKI.auth.groups, `${grpId}.pageRules`, []).forEach(rule => {
 
-          switch (rule.match) {
 
-            case 'START':
 
-              if (_.startsWith(`/${page.path}`, `/${rule.path}`)) {
 
-                checkState = this._applyPageRuleSpecificity({ rule, checkState, higherPriority: ['END', 'REGEX', 'EXACT', 'TAG'] })
 
-              }
 
-              break
 
-            case 'END':
 
-              if (_.endsWith(page.path, rule.path)) {
 
-                checkState = this._applyPageRuleSpecificity({ rule, checkState, higherPriority: ['REGEX', 'EXACT', 'TAG'] })
 
-              }
 
-              break
 
-            case 'REGEX':
 
-              const reg = new RegExp(rule.path)
 
-              if (reg.test(page.path)) {
 
-                checkState = this._applyPageRuleSpecificity({ rule, checkState, higherPriority: ['EXACT', 'TAG'] })
 
-              }
 
-              break
 
-            case 'TAG':
 
-              _.get(page, 'tags', []).forEach(tag => {
 
-                if (tag.tag === rule.path) {
 
-                  checkState = this._applyPageRuleSpecificity({
 
-                    rule,
 
-                    checkState,
 
-                    higherPriority: ['EXACT']
 
-                  })
 
+          if(_.intersection(rule.roles, permissions).length > 0) {
 
+            switch (rule.match) {
 
+              case 'START':
 
+                if (_.startsWith(`/${page.path}`, `/${rule.path}`)) {
 
+                  checkState = this._applyPageRuleSpecificity({ rule, checkState, higherPriority: ['END', 'REGEX', 'EXACT', 'TAG'] })
 
                 }
 
-              })
 
-              break
 
-            case 'EXACT':
 
-              if (`/${page.path}` === `/${rule.path}`) {
 
-                checkState = this._applyPageRuleSpecificity({ rule, checkState, higherPriority: [] })
 
-              }
 
-              break
 
+                break
 
+              case 'END':
 
+                if (_.endsWith(page.path, rule.path)) {
 
+                  checkState = this._applyPageRuleSpecificity({ rule, checkState, higherPriority: ['REGEX', 'EXACT', 'TAG'] })
 
+                }
 
+                break
 
+              case 'REGEX':
 
+                const reg = new RegExp(rule.path)
 
+                if (reg.test(page.path)) {
 
+                  checkState = this._applyPageRuleSpecificity({ rule, checkState, higherPriority: ['EXACT', 'TAG'] })
 
+                }
 
+                break
 
+              case 'TAG':
 
+                _.get(page, 'tags', []).forEach(tag => {
 
+                  if (tag.tag === rule.path) {
 
+                    checkState = this._applyPageRuleSpecificity({
 
+                      rule,
 
+                      checkState,
 
+                      higherPriority: ['EXACT']
 
+                    })
 
+                  }
 
+                })
 
+                break
 
+              case 'EXACT':
 
+                if (`/${page.path}` === `/${rule.path}`) {
 
+                  checkState = this._applyPageRuleSpecificity({ rule, checkState, higherPriority: [] })
 
+                }
 
+                break
 
+            }
 
           }
 
         })
 
       })