fix(repository): Move backend code into subdirectory

Signed-off-by: Tilman Vatteroth <git@tilmanvatteroth.de>
2025-05-22 03:05:19 -04:00 · 2022-10-02 20:10:32 +02:00 · 2022-10-02 20:10:32 +02:00 · bf30cbcf48
commit bf30cbcf48
parent 86584e705f
272 changed files with 87 additions and 67 deletions
--- a/src/api/utils/permissions.guard.ts
+++ b/src/api/utils/permissions.guard.ts
@ -1,66 +0,0 @@
-/*
- * SPDX-FileCopyrightText: 2021 The HedgeDoc developers (see AUTHORS file)
- *
- * SPDX-License-Identifier: AGPL-3.0-only
- */
-import { CanActivate, ExecutionContext, Injectable } from '@nestjs/common';
-import { Reflector } from '@nestjs/core';
-import { Request } from 'express';
-
-import { ConsoleLoggerService } from '../../logger/console-logger.service';
-import { NotesService } from '../../notes/notes.service';
-import { Permission } from '../../permissions/permissions.enum';
-import { PermissionsService } from '../../permissions/permissions.service';
-import { User } from '../../users/user.entity';
-import { getNote } from './get-note.interceptor';
-
-/**
- * This guards controller methods from access, if the user has not the appropriate permissions.
- * The permissions are set via the {@link Permissions} decorator in addition to this guard.
- */
-@Injectable()
-export class PermissionsGuard implements CanActivate {
-  constructor(
-    private readonly logger: ConsoleLoggerService,
-    private reflector: Reflector,
-    private permissionsService: PermissionsService,
-    private noteService: NotesService,
-  ) {
-    this.logger.setContext(PermissionsGuard.name);
-  }
-
-  async canActivate(context: ExecutionContext): Promise<boolean> {
-    const permissions = this.reflector.get<Permission[]>(
-      'permissions',
-      context.getHandler(),
-    );
-    // If no permissions are set this is probably an error and this guard should not let the request pass
-    if (!permissions) {
-      this.logger.error(
-        'Could not find permission metadata. This should never happen. If you see this, please open an issue at https://github.com/hedgedoc/hedgedoc/issues',
-      );
-      return false;
-    }
-    const request: Request & { user: User } = context
-      .switchToHttp()
-      .getRequest();
-    const user = request.user;
-    // handle CREATE permissions, as this does not need any note
-    if (permissions[0] === Permission.CREATE) {
-      return this.permissionsService.mayCreate(user);
-    }
-    // Get the note from the parameter noteIdOrAlias
-    // Attention: This gets the note an additional time if used in conjunction with GetNoteInterceptor
-    const noteIdOrAlias = request.params['noteIdOrAlias'];
-    const note = await getNote(this.noteService, noteIdOrAlias);
-    switch (permissions[0]) {
-      case Permission.READ:
-        return await this.permissionsService.mayRead(user, note);
-      case Permission.WRITE:
-        return await this.permissionsService.mayWrite(user, note);
-      case Permission.OWNER:
-        return await this.permissionsService.isOwner(user, note);
-    }
-    return false;
-  }
-}