socrates/duty-schedule-api
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

added login / logout functionality and authorization rules via bouncer

Browse Source
This commit is contained in:
Sockenklaus
2021-10-17 17:11:21 +02:00
parent 43ee300bd2
commit 4b222c9921
14 changed files with 665 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
app/Controllers/Http/EmployeesController.ts
View File

@@ -7,10 +7,8 @@ import Database from '@ioc:Adonis/Lucid/Database'
// TODO: #1 Implement paginator for Employee-Index
export default class EmployeesController {
public async index ({}: HttpContextContract) {
const report = Database.manager.report()
console.log(report)
public async index ({bouncer}: HttpContextContract) {
await bouncer.authorize('employees.index')
return await Database.from('employees').select('*')
}
@@ -35,8 +33,14 @@ export default class EmployeesController {
}
public async show ({params}: HttpContextContract) {
return await Employee.find(params.id)
public async show ({params, bouncer}: HttpContextContract) {
const emp = await Employee.findOrFail(params.id)
if (await bouncer.denies('employees.show', emp)){
return 'Not admin or wrong user'
}
return emp
}
public async update ({params, request}: HttpContextContract) {