request.user.roles und neue Auth-Hooks implementieren #110
Labels
No labels
component/backend
component/docs
component/e2e
component/frontend
component/infra
component/keycloak
prio/high
prio/low
prio/medium
type/bug
type/chore
type/feature
type/refactor
type/test
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
WompSchmiede/FamilienFeierPlaner#110
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Aufgaben
oles: string[] erweitern
equest.user.roles speichern
7 neue Hooks in ackend/src/lib/auth.ts implementieren:
equireOwnDataOrGroupMember(param) - ersetzt
equireOwnDataOrDelegation
equireGroupMember(groupIdParam)
equireOrganizerOrEventAdmin(param) - wie requireOrganizer, auch event-admin erlaubt
equireSelfOrGroupMember(eventIdParam, personIdParam) - ersetzt
equireSelfOrOrganizer
equireCompositeRole(permission)
equireOwnDataOrCompositeRole(permission, param)
equireAddressAccess(personIdParam)
equireOwnDataOrDelegation,
equireSelfOrOrganizer
Siehe Autorisierungsmatrix in docs/design.md �5.1.