feat: page Rules access check

2019-01-12 18:33:30 -05:00
parent 75eb277401
commit 7e62c01ed1
34 changed files with 581 additions and 725 deletions
--- a/server/graph/schemas/common.graphql
+++ b/server/graph/schemas/common.graphql
@@ -1,37 +1,32 @@
-
-
-# ENUMS
-
-enum FileType {
-  binary
-  image
-}
-
-enum RightRole {
-  read
-  write
-  manage
-}
+# ====================== #
+# Wiki.js GraphQL Schema #
+# ====================== #

 # DIRECTIVES
+# ----------

 directive @auth(requires: [String]) on QUERY | FIELD_DEFINITION | ARGUMENT_DEFINITION

 # TYPES
+# -----

+# Generic Key Value Pair
 type KeyValuePair {
  key: String!
  value: String!
 }
+# General Key Value Pair Input
 input KeyValuePairInput {
  key: String!
  value: String!
 }

+# Generic Mutation Response
 type DefaultResponse {
  responseResult: ResponseStatus
 }

+# Mutation Status
 type ResponseStatus {
  succeeded: Boolean!
  errorCode: Int!
@@ -39,220 +34,14 @@ type ResponseStatus {
  message: String
 }

-type Comment {
-  id: Int!
-  createdAt: Date
-  updatedAt: Date
-  content: String
-  document: Document!
-  author: User!
-}
-
-type Document {
-  id: Int!
-  createdAt: Date
-  updatedAt: Date
-  path: String!
-  title: String!
-  subtitle: String
-  parentPath: String
-  parentTitle: String
-  isDirectory: Boolean!
-  isEntry: Boolean!
-  searchContent: String
-  comments: [Comment]
-  tags: [Tag]
-}
-
-type File {
-  id: Int!
-  createdAt: Date
-  updatedAt: Date
-  category: FileType!
-  mime: String!
-  extra: String
-  filename: String!
-  basename: String!
-  filesize: Int!
-  folder: Folder
-}
-
-type Folder {
-  id: Int!
-  createdAt: Date
-  updatedAt: Date
-  name: String!
-  files: [File]
-}
-
-type Right {
-  id: Int!
-  createdAt: Date
-  updatedAt: Date
-  path: String!
-  role: RightRole!
-  exact: Boolean!
-  allow: Boolean!
-  group: Group!
-}
-
-type Setting {
-  id: Int!
-  createdAt: Date
-  updatedAt: Date
-  key: String!
-  config: String!
-}
-
-# Tags are attached to one or more documents
-type Tag {
-  id: Int!
-  createdAt: Date
-  updatedAt: Date
-  key: String!
-  documents: [Document]
-}
-
-type Translation {
-  key: String!
-  value: String!
-}
-
-type OperationResult {
-  succeeded: Boolean!
-  message: String
-  data: String
-}
+# ROOT
+# ----

 # Query (Read)
-type Query {
-  comments(id: Int): [Comment]
-  documents(id: Int, path: String): [Document]
-  files(id: Int): [File]
-  folders(id: Int, name: String): [Folder]
-  rights(id: Int): [Right]
-  settings(key: String): [Setting]
-  tags(key: String): [Tag]
-  translations(locale: String!, namespace: String!): [Translation]
-}
+type Query

 # Mutations (Create, Update, Delete)
-type Mutation {
-  addRightToGroup(
-    groupId: Int!
-    path: String!
-    role: RightRole!
-    exact: Boolean!
-    allow: Boolean!
-  ): Right
-
-  assignTagToDocument(
-    tagId: Int!
-    documentId: Int!
-  ): OperationResult
-
-  createComment(
-    userId: Int!
-    documentId: Int!
-    content: String!
-  ): Comment
-
-  createDocument(
-    path: String!
-    title: String!
-    subtitle: String
-  ): Document
-
-  createFolder(
-    name: String!
-  ): Folder
-
-  createTag(
-    name: String!
-  ): Tag
-
-  deleteComment(
-    id: Int!
-  ): OperationResult
-
-  deleteDocument(
-    id: Int!
-  ): OperationResult
-
-  deleteFile(
-    id: Int!
-  ): OperationResult
-
-  deleteFolder(
-    id: Int!
-  ): OperationResult
-
-  deleteTag(
-    id: Int!
-  ): OperationResult
-
-  modifyComment(
-    id: Int!
-    content: String!
-  ): Document
-
-  modifyDocument(
-    id: Int!
-    title: String
-    subtitle: String
-  ): Document
-
-  modifyRight(
-    id: Int!
-    path: String
-    role: RightRole
-    exact: Boolean
-    allow: Boolean
-  ): Right
-
-  moveDocument(
-    id: Int!
-    path: String!
-  ): OperationResult
-
-  moveFile(
-    id: Int!
-    folderId: Int!
-  ): OperationResult
-
-  renameFile(
-    id: Int!
-    name: String!
-  ): OperationResult
-
-  renameFolder(
-    id: Int!
-    name: String!
-  ): OperationResult
-
-  renameTag(
-    id: Int!
-    key: String!
-  ): OperationResult
-
-  removeTagFromDocument(
-    tagId: Int!
-    documentId: Int!
-  ): OperationResult
-
-  removeRightFromGroup(
-    rightId: Int!
-  ): OperationResult
-
-  setConfigEntry(
-    key: String!
-    value: String!
-  ): OperationResult
-
-  uploadFile(
-    category: FileType!
-    filename: String!
-  ): File
-}
+type Mutation

+# Subscriptions (Push, Real-time)
 type Subscription
--- a/server/graph/schemas/group.graphql
+++ b/server/graph/schemas/group.graphql
@@ -89,7 +89,7 @@ type PageRule {
  id: String!
  deny: Boolean!
  match: PageRuleMatch!
-  roles: [PageRuleRole]!
+  roles: [String]!
  path: String!
  locales: [String]!
 }
@@ -98,24 +98,11 @@ input PageRuleInput {
  id: String!
  deny: Boolean!
  match: PageRuleMatch!
-  roles: [PageRuleRole]!
+  roles: [String]!
  path: String!
  locales: [String]!
 }

-enum PageRuleRole {
-  READ
-  WRITE
-  MANAGE
-  DELETE
-  AS_READ
-  AS_WRITE
-  AS_MANAGE
-  CM_READ
-  CM_WRITE
-  CM_MANAGE
-}
-
 enum PageRuleMatch {
  START
  EXACT
--- a/server/graph/schemas/localization.graphql
+++ b/server/graph/schemas/localization.graphql
@@ -17,6 +17,7 @@ extend type Mutation {
 type LocalizationQuery {
  locales: [LocalizationLocale]
  config: LocalizationConfig
+  translations(locale: String!, namespace: String!): [Translation]
 }

 # -----------------------------------------------
@@ -57,3 +58,8 @@ type LocalizationConfig {
  namespacing: Boolean!
  namespaces: [String]!
 }
+
+type Translation {
+  key: String!
+  value: String!
+}
--- a/server/graph/schemas/page.graphql
+++ b/server/graph/schemas/page.graphql
@@ -19,19 +19,7 @@ type PageQuery {
    id: Int!
    offsetPage: Int
    offsetSize: Int
-  ): PageHistoryResult
-
-  list(
-    filter: String
-    orderBy: String
-  ): [PageMinimal]
-
-  single(
-    id: Int
-    path: String
-    locale: String
-    isPrivate: Boolean
-  ): Page
+  ): PageHistoryResult @auth(requires: ["manage:system", "read:pages"])
 }

 # -----------------------------------------------
@@ -82,21 +70,8 @@ type PageResponse {
  page: Page
 }

-type PageMinimal {
-  id: Int!
-  name: String!
-  userCount: Int
-  createdAt: Date!
-  updatedAt: Date!
-}
-
 type Page {
  id: Int!
-  name: String!
-  rights: [Right]
-  users: [User]
-  createdAt: Date!
-  updatedAt: Date!
 }

 type PageHistory {
--- a/server/graph/schemas/site.graphql
+++ b/server/graph/schemas/site.graphql
@@ -49,7 +49,7 @@ type SiteConfig {
  description: String!
  robots: [String]!
  analyticsService: String!
-    analyticsId: String!
+  analyticsId: String!
  company: String!
  hasLogo: Boolean!
  logoIsSquare: Boolean!
--- a/server/graph/schemas/system.graphql
+++ b/server/graph/schemas/system.graphql
@@ -6,50 +6,42 @@ extend type Query {
  system: SystemQuery
 }

-extend type Mutation {
-  system: SystemMutation
-}
-
 # -----------------------------------------------
 # QUERIES
 # -----------------------------------------------

 type SystemQuery {
-  info: SystemInfo @auth(requires: ["manage:system"])
+  info: SystemInfo
 }

 # -----------------------------------------------
 # MUTATIONS
 # -----------------------------------------------

-type SystemMutation {
-  todo: String
-}
-
 # -----------------------------------------------
 # TYPES
 # -----------------------------------------------

 type SystemInfo {
-  configFile: String
-  cpuCores: Int
-  currentVersion: String
-  dbHost: String
-  dbType: String
-  dbVersion: String
-  groupsTotal: Int
-  hostname: String
-  latestVersion: String
-  latestVersionReleaseDate: Date
-  nodeVersion: String
-  operatingSystem: String
-  pagesTotal: Int
-  platform: String
-  ramTotal: String
-  redisHost: String
-  redisTotalRAM: String
-  redisUsedRAM: String
-  redisVersion: String
-  usersTotal: Int
-  workingDirectory: String
+  configFile: String @auth(requires: ["manage:system"])
+  cpuCores: Int @auth(requires: ["manage:system"])
+  currentVersion: String @auth(requires: ["manage:system"])
+  dbHost: String @auth(requires: ["manage:system"])
+  dbType: String @auth(requires: ["manage:system"])
+  dbVersion: String @auth(requires: ["manage:system"])
+  groupsTotal: Int @auth(requires: ["manage:system", "manage:navigation", "manage:groups", "write:groups", "manage:users", "write:users"])
+  hostname: String @auth(requires: ["manage:system"])
+  latestVersion: String @auth(requires: ["manage:system"])
+  latestVersionReleaseDate: Date @auth(requires: ["manage:system"])
+  nodeVersion: String @auth(requires: ["manage:system"])
+  operatingSystem: String @auth(requires: ["manage:system"])
+  pagesTotal: Int @auth(requires: ["manage:system", "manage:navigation", "manage:pages", "delete:pages"])
+  platform: String @auth(requires: ["manage:system"])
+  ramTotal: String @auth(requires: ["manage:system"])
+  redisHost: String @auth(requires: ["manage:system"])
+  redisTotalRAM: String @auth(requires: ["manage:system"])
+  redisUsedRAM: String @auth(requires: ["manage:system"])
+  redisVersion: String @auth(requires: ["manage:system"])
+  usersTotal: Int @auth(requires: ["manage:system", "manage:navigation", "manage:groups", "write:groups", "manage:users", "write:users"])
+  workingDirectory: String @auth(requires: ["manage:system"])
 }