feat: check permissions in realtime code and frontend

Signed-off-by: Philip Molares <philip.molares@udo.edu>
Signed-off-by: Tilman Vatteroth <git@tilmanvatteroth.de>

frontend/src/hooks/common/use-is-owner.ts

@@ -4,6 +4,8 @@
  * SPDX-License-Identifier: AGPL-3.0-only
  */
 import { useApplicationState } from './use-application-state'
+import type { NotePermissions } from '@hedgedoc/commons'
+import { userIsOwner } from '@hedgedoc/commons'
 import { useMemo } from 'react'
 
 /**
@@ -12,8 +14,8 @@ import { useMemo } from 'react'
  * @return True, if the current user is owner.
  */
 export const useIsOwner = (): boolean => {
-  const owner = useApplicationState((state) => state.noteDetails.permissions.owner)
   const me: string | undefined = useApplicationState((state) => state.user?.username)
+  const permissions: NotePermissions = useApplicationState((state) => state.noteDetails.permissions)
 
-  return useMemo(() => !!me && owner === me, [owner, me])
+  return useMemo(() => userIsOwner(permissions, me), [permissions, me])
 }

frontend/src/hooks/common/use-may-edit.ts

@@ -0,0 +1,21 @@
+/*
+ * SPDX-FileCopyrightText: 2023 The HedgeDoc developers (see AUTHORS file)
+ *
+ * SPDX-License-Identifier: AGPL-3.0-only
+ */
+import { useApplicationState } from './use-application-state'
+import type { NotePermissions } from '@hedgedoc/commons'
+import { userCanEdit } from '@hedgedoc/commons'
+import { useMemo } from 'react'
+
+/**
+ * Determines if the current user is allowed to write to this note.
+ *
+ * @return True, if the current user is allowed to write.
+ */
+export const useMayEdit = (): boolean => {
+  const me: string | undefined = useApplicationState((state) => state.user?.username)
+  const permissions: NotePermissions = useApplicationState((state) => state.noteDetails.permissions)
+
+  return useMemo(() => userCanEdit(permissions, me), [permissions, me])
+}