inventree/inventree-app
2
0
Fork 0
mirror of https://github.com/inventree/inventree-app.git synced 2025-04-28 13:36:50 +00:00
Code

Functionality for getting and checking user permissions

Browse Source
This commit is contained in:
Oliver Walters 2021-02-27 19:51:57 +11:00
parent 960b55d4a4
commit 04f03188e2
1 changed files with 63 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

68
lib/api.dart
View File

@ -67,6 +67,8 @@ class InvenTreeAPI {
static const _URL_GET_TOKEN = "user/token/"; static const _URL_GET_TOKEN = "user/token/";
static const _URL_GET_VERSION = ""; static const _URL_GET_VERSION = "";
static const _URL_GET_ROLES = "user/roles/";
// Base URL for InvenTree API e.g. http://192.168.120.10:8000 // Base URL for InvenTree API e.g. http://192.168.120.10:8000
String _BASE_URL = ""; String _BASE_URL = "";
@ -101,6 +103,8 @@ class InvenTreeAPI {
UserProfile profile; UserProfile profile;
Map<String, dynamic> roles = {};
// Authentication token (initially empty, must be requested) // Authentication token (initially empty, must be requested)
String _token = ""; String _token = "";
@ -263,6 +267,8 @@ class InvenTreeAPI {
print("Error requesting token:"); print("Error requesting token:");
print(error); print(error);
response = null;
}); });
if (response == null) { if (response == null) {
@ -293,7 +299,8 @@ class InvenTreeAPI {
_token = data["token"]; _token = data["token"];
print("Received token - $_token"); print("Received token - $_token");
_connected = true; // Request user role information
await getUserRoles();
// Ok, probably pretty good... // Ok, probably pretty good...
return true; return true;
@ -330,13 +337,13 @@ class InvenTreeAPI {
_connecting = true; _connecting = true;
bool result = await _connect(context); _connected = await _connect(context);
print("_connect() returned result: ${result}"); print("_connect() returned result: ${_connected}");
_connecting = false; _connecting = false;
if (result) { if (_connected) {
showSnackIcon( showSnackIcon(
I18N.of(OneContext().context).serverConnected, I18N.of(OneContext().context).serverConnected,
icon: FontAwesomeIcons.server, icon: FontAwesomeIcons.server,
@ -344,9 +351,60 @@ class InvenTreeAPI {
); );
} }
return result; return _connected;
} }
Future<void> getUserRoles() async {
roles.clear();
// Next we request the permissions assigned to the current user
// Note: 2021-02-27 this "roles" feature for the API was just introduced.
// Any 'older' version of the server allows any API method for any logged in user!
// We will return immediately, but request the user roles in the background
await get(_URL_GET_ROLES).timeout(
Duration(seconds: 10)).catchError((error) {
print("Error requesting roles:");
print(error);
}).then((response) {
if (response.statusCode == 200) {
// Convert response to JSON representation
var data = json.decode(response.body);
if (data.containsKey('roles')) {
// Save a local copy of the user roles
roles = data['roles'];
}
}
});
}
bool checkPermission(String role, String permission) {
/*
* Check if the user has the given role.permission assigned
*
* e.g. 'part', 'change'
*/
// If we do not have enough information, assume permission is allowed
if (roles == null || roles.isEmpty) {
return true;
}
if (!roles.containsKey(role)) {
return true;
}
List<String> perms = List.from(roles[role]);
return perms.contains(permission);
}
// Perform a PATCH request // Perform a PATCH request
Future<http.Response> patch(String url, {Map<String, String> body}) async { Future<http.Response> patch(String url, {Map<String, String> body}) async {
var _url = makeApiUrl(url); var _url = makeApiUrl(url);