yvachot/PolyNotFound
Archived
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update: Admin can create Admin or Advertiser

Browse source
This commit is contained in:
Yûki VACHOT 2022-01-10 12:22:03 +01:00
parent a428e5cff2
commit 5e9e049cfc
1 changed files with 2 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

6
controllers/user.controller.js
View file

@ -71,10 +71,10 @@ exports.create = (req, res) => {
let user; let user;
let var_role; let var_role;
if(typeof req.body.role !== 'undefined'){ if(typeof req.body.role !== 'undefined'){
switch(req.body.role){
case 'admin':
const token = checkLogin(req, res); const token = checkLogin(req, res);
const role = roles.Admin; const role = roles.Admin;
switch(req.body.role){
case 'admin':
if(token && typeof token.role !== 'undefined' && if(token && typeof token.role !== 'undefined' &&
((Array.isArray(role) && role.includes(token.role)) || ((Array.isArray(role) && role.includes(token.role)) ||
( typeof role === 'object' && typeof token.role.permission !== 'undefined' && token.role.permission >= role.permission && token.role.isAccepted === true))){ ( typeof role === 'object' && typeof token.role.permission !== 'undefined' && token.role.permission >= role.permission && token.role.isAccepted === true))){
@ -85,8 +85,6 @@ exports.create = (req, res) => {
} }
break; break;
case 'advertiser': case 'advertiser':
const token = checkLogin(req, res);
const role = roles.Admin;
if(token && typeof token.role !== 'undefined' && if(token && typeof token.role !== 'undefined' &&
((Array.isArray(role) && role.includes(token.role)) || ((Array.isArray(role) && role.includes(token.role)) ||
( typeof role === 'object' && typeof token.role.permission !== 'undefined' && token.role.permission >= role.permission && token.role.isAccepted === true))){ ( typeof role === 'object' && typeof token.role.permission !== 'undefined' && token.role.permission >= role.permission && token.role.isAccepted === true))){