h3n3/cadhub
1
0
Fork 0
Code Issues 35 Pull Requests Packages Projects Releases Wiki Activity

Add auth into who can edit a part

Browse Source
This commit is contained in:
Kurt Hutten
2020-11-07 21:44:12 +11:00
parent a009efafac
commit f6964c0f78
3 changed files with 41 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
api/src/services/parts/parts.js
View File

@@ -1,5 +1,7 @@
import { db } from 'src/lib/db'
import { foreignKeyReplacement } from 'src/services/helpers'
import { requireAuth } from 'src/lib/auth'
import { requireOwnership } from 'src/lib/owner'
import { user } from 'src/services/users/users'
export const parts = () => {
@@ -28,12 +30,15 @@ export const partByUserAndTitle = async ({ userName, partTitle }) => {
}
export const createPart = async ({ input }) => {
requireAuth()
return db.part.create({
data: foreignKeyReplacement(input),
})
}
export const updatePart = ({ id, input }) => {
export const updatePart = async ({ id, input }) => {
requireAuth()
await requireOwnership({partId: id})
return db.part.update({
data: foreignKeyReplacement(input),
where: { id },
@@ -41,6 +46,7 @@ export const updatePart = ({ id, input }) => {
}
export const deletePart = ({ id }) => {
requireAuth()
return db.part.delete({
where: { id },
})