| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 |
- // Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/
- import type {
- NavigationGuard,
- RouteLocationNormalized,
- NavigationGuardNext,
- } from 'vue-router'
- import log from '#shared/utils/log.ts'
- import { useAuthenticationStore } from '#shared/stores/authentication.ts'
- import { useSessionStore } from '#shared/stores/session.ts'
- import { ErrorStatusCodes } from '#shared/types/error.ts'
- import { errorOptions } from '../../error.ts'
- const permissionGuard: NavigationGuard = (
- to: RouteLocationNormalized,
- from: RouteLocationNormalized,
- next: NavigationGuardNext,
- ) => {
- // When no required permission are defined or no authentication
- // exists, the permission check can be skipped.
- if (!to.meta.requiredPermission || !useAuthenticationStore().authenticated) {
- log.debug(`Route guard for '${to.path}': permission - skip.`)
- next()
- return
- }
- // check the permission for the current user...
- const hasPermission = useSessionStore().hasPermission(
- to.meta.requiredPermission,
- )
- if (!hasPermission) {
- log.debug(`Route guard for '${to.path}': permission - forbidden.`)
- errorOptions.value = {
- title: __('Forbidden'),
- message: __(
- "You don't have the necessary permissions to access this page.",
- ),
- statusCode: ErrorStatusCodes.Forbidden,
- route: to.fullPath,
- }
- next({
- name: 'Error',
- query: {
- redirect: '1',
- },
- replace: true,
- })
- return
- }
- log.debug(`Route guard for '${to.path}': permission - allowed.`)
- next()
- }
- export default permissionGuard
|
