2cd081234f
* chore: wip refacto in modules * fix: rollback port * fix: jwt guard in wrong folder * chore: rename folder exception-filter in filters * fix: tests are running * fix: excessive stack depth comparing types * fix: auth issue * chore: move createUser in UserService * fix: test * fix: guards * fix: jwt guard don't handle falsy user
50 lines
1.2 KiB
TypeScript
50 lines
1.2 KiB
TypeScript
import {
|
|
CanActivate,
|
|
ExecutionContext,
|
|
HttpException,
|
|
HttpStatus,
|
|
Injectable,
|
|
} from '@nestjs/common';
|
|
import { GqlExecutionContext } from '@nestjs/graphql';
|
|
import { PrismaService } from 'src/database/prisma.service';
|
|
|
|
@Injectable()
|
|
export class UpdateOneGuard implements CanActivate {
|
|
constructor(private prismaService: PrismaService) {}
|
|
|
|
async canActivate(context: ExecutionContext): Promise<boolean> {
|
|
const gqlContext = GqlExecutionContext.create(context);
|
|
const request = gqlContext.getContext().req;
|
|
const entity = gqlContext.getArgByIndex(3).returnType?.name;
|
|
const args = gqlContext.getArgs();
|
|
|
|
if (!entity || !args.where?.id) {
|
|
throw new HttpException(
|
|
{ reason: 'Invalid Request' },
|
|
HttpStatus.BAD_REQUEST,
|
|
);
|
|
}
|
|
|
|
const object = await this.prismaService[entity].findUniqueOrThrow({
|
|
where: { id: args.where.id },
|
|
});
|
|
|
|
if (!object) {
|
|
throw new HttpException(
|
|
{ reason: 'Record not found' },
|
|
HttpStatus.NOT_FOUND,
|
|
);
|
|
}
|
|
|
|
const workspace = request.user.workspace;
|
|
|
|
if (object.workspaceId !== workspace.id) {
|
|
throw new HttpException(
|
|
{ reason: 'Record not found' },
|
|
HttpStatus.NOT_FOUND,
|
|
);
|
|
}
|
|
return true;
|
|
}
|
|
}
|