jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

user: load the resource with middleware

Browse Source
This commit is contained in:
Girish Ramakrishnan
2020-02-13 20:45:00 -08:00
parent 938ca6402c
commit d1911be28c
9 changed files with 120 additions and 134 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
src/server.js
View File

@@ -164,18 +164,18 @@ function initializeExpressSync() {
router.del ('/api/v1/tokens/:id', token, authorizeUser, routes.tokens.verifyOwnership, routes.tokens.del);
// user routes
router.get ('/api/v1/users', token, authorizeUser, routes.users.list);
router.get ('/api/v1/users', token, authorizeAdmin, routes.users.list);
router.post('/api/v1/users', token, authorizeAdmin, routes.users.create);
router.get ('/api/v1/users/:userId', token, authorizeAdmin, routes.users.get); // this is manage scope because it returns non-restricted fields
router.del ('/api/v1/users/:userId', token, authorizeAdmin, routes.users.remove);
router.post('/api/v1/users/:userId', token, authorizeAdmin, routes.users.update);
router.post('/api/v1/users/:userId/password', token, authorizeAdmin, routes.users.changePassword);
router.put ('/api/v1/users/:userId/groups', token, authorizeAdmin, routes.users.setGroups);
router.post('/api/v1/users/:userId/send_invite', token, authorizeAdmin, routes.users.sendInvite);
router.post('/api/v1/users/:userId/create_invite', token, authorizeAdmin, routes.users.createInvite);
router.get ('/api/v1/users/:userId', token, authorizeAdmin, routes.users.load, routes.users.get); // this is manage scope because it returns non-restricted fields
router.del ('/api/v1/users/:userId', token, authorizeAdmin, routes.users.load, routes.users.remove);
router.post('/api/v1/users/:userId', token, authorizeAdmin, routes.users.load, routes.users.update);
router.post('/api/v1/users/:userId/password', token, authorizeAdmin, routes.users.load, routes.users.changePassword);
router.put ('/api/v1/users/:userId/groups', token, authorizeAdmin, routes.users.load, routes.users.setGroups);
router.post('/api/v1/users/:userId/send_invite', token, authorizeAdmin, routes.users.load, routes.users.sendInvite);
router.post('/api/v1/users/:userId/create_invite', token, authorizeAdmin,routes.users.load, routes.users.createInvite);
// Group management
router.get ('/api/v1/groups', token, authorizeUser, routes.groups.list);
router.get ('/api/v1/groups', token, authorizeAdmin, routes.groups.list);
router.post('/api/v1/groups', token, authorizeAdmin, routes.groups.create);
router.get ('/api/v1/groups/:groupId', token, authorizeAdmin, routes.groups.get);
router.put ('/api/v1/groups/:groupId/members', token, authorizeAdmin, routes.groups.updateMembers);