WiP on permissions

Table of shares per user
2017-07-27 17:11:22 +03:00 · 2017-07-27 17:11:22 +03:00 · 89256d62bd
commit 89256d62bd
parent 89c9615592
20 changed files with 354 additions and 171 deletions
--- a/setup/knex/migrations/20170507084114_create_permissions.js
+++ b/setup/knex/migrations/20170507084114_create_permissions.js
@ -1,39 +1,46 @@
-const shareableEntityTypes = ['list', 'report', 'report_template', 'namespace'];
-
-exports.up = function(knex, Promise) {
-    let schema = knex.schema;
-
-    for (const entityType of shareableEntityTypes) {
-        schema = schema
-            .createTable(`shares_${entityType}`, table => {
-                table.increments('id').primary();
-                table.integer('entity').unsigned().notNullable().references(`${entityType}s.id`).onDelete('CASCADE');
-                table.integer('user').unsigned().notNullable().references('users.id').onDelete('CASCADE');
-                table.string('role', 64).notNullable();
-                table.unique(['entity', 'user']);
-            })
-            .createTable(`permissions_${entityType}`, table => {
-                table.increments('id').primary();
-                table.integer('entity').unsigned().notNullable().references(`${entityType}s.id`).onDelete('CASCADE');
-                table.integer('user').unsigned().notNullable().references('users.id').onDelete('CASCADE');
-                table.string('operation', 64).notNullable();
-                table.unique(['entity', 'user', 'operation']);
-            });
-    }
-
-    /* The global share for admin is set automatically in rebuild permissions, which is called upon every start */
-
-    return schema;
-};
-
-exports.down = function(knex, Promise) {
-    let schema = knex.schema;
-
-    for (const entityType of shareableEntityTypes) {
-        schema = schema
-            .dropTable(`shares_${entityType}`)
-            .dropTable(`permissions_${entityType}`);
-    }
-
-    return schema;
+const shareableEntityTypes = ['list', 'report', 'report_template', 'namespace'];
+
+exports.up = function(knex, Promise) {
+    let schema = knex.schema;
+
+    for (const entityType of shareableEntityTypes) {
+        schema = schema
+            .createTable(`shares_${entityType}`, table => {
+                table.integer('entity').unsigned().notNullable().references(`${entityType}s.id`).onDelete('CASCADE');
+                table.integer('user').unsigned().notNullable().references('users.id').onDelete('CASCADE');
+                table.string('role', 128).notNullable();
+                table.primary(['entity', 'user']);
+            })
+            .createTable(`permissions_${entityType}`, table => {
+                table.integer('entity').unsigned().notNullable().references(`${entityType}s.id`).onDelete('CASCADE');
+                table.integer('user').unsigned().notNullable().references('users.id').onDelete('CASCADE');
+                table.string('operation', 128).notNullable();
+                table.primary(['entity', 'user', 'operation']);
+            });
+    }
+    /* The global share for admin is set automatically in rebuildPermissions, which is called upon every start */
+
+    schema = schema
+        .createTable('generated_role_names', table => {
+            table.string('entity_type', 32).notNullable();
+            table.string('role', 128).notNullable();
+            table.string('name');
+            table.string('description');
+            table.primary(['entity_type', 'role']);
+        });
+    /* The generate_role_names table is repopulated in regenerateRoleNamesTable, which is called upon every start */
+
+    return schema;
+};
+
+exports.down = function(knex, Promise) {
+    let schema = knex.schema;
+
+    for (const entityType of shareableEntityTypes) {
+        schema = schema
+            .dropTable(`shares_${entityType}`)
+            .dropTable(`permissions_${entityType}`);
+    }
+
+    return schema;
 };