mongoose-permission
This is a mongoose plugin to add permissions to a model :
- A model can have multiple permissions at once
- "Master" permissions can be defined by having children permissions
- If a children permission is revoked then master will be revoked too.
- Granting a master permission also grant all children
It may not be the best logic, but it suited to my personnal needs. It gives the possibility to easely grant or revoke permissions to an user and handle automatically master permissions. This way I can avoid the fact that an user doesn't have all permissions needed to make a task.
Installation
npm install --save mongoose-permissionUsage
'use strict'; var UserSchema = 'mongoose'; //Permission tree initializationUserSchema; var User = mongoose; var chris= name: 'chris pi' ... ; chris; //Pass any number of permissions separated by ',' : chris.grant('read','write',...) console; // trueconsole; // trueconsole; // falseconsole; // true chris; console; // falseconsole; // trueconsole; // falseconsole; // true ... chris;console; // trueconsole; // trueconsole; // trueconsole; // true ... //Revoking children if neededchris;console; // falseconsole; // falseconsole; // false => write need read, but lost by revoking childrenconsole; // false This plugin adds a permissions String array to a schema, containing all permissions granted, plus a bunch of methods :
- Granting :
grant(permission1[, permission2[, permission3 ...]]) - Revoking :
revoke(permission, revokeChildren) - Chicking:
can(permission) - Getting possibilities :
getAvailablePermissions()
It it required that you pass in permissions to the plugin. This way you cannot grant a user to generated permissions, I may add a possibility to do this later, but my main goal by doing it this way is to have to think to all possibility and not to deviate and invent new ones every now and then...
You can use this in a middleware function to check if an user can perform or access a specific page or functionnality.