mirrors/object-browser
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
725d6f96911389cae07071fb64772a2d742fe948
object-browser/portal-ui/src/common/SecureComponent/SecureComponent.tsx
Lenin Alevski 725d6f9691 Handle empty permissions arrays when console runs in operator mode (#1324) 
Signed-off-by: Lenin Alevski <alevsk.8772@gmail.com>
2021-12-15 10:11:43 -08:00

70 lines
2.0 KiB
TypeScript
Raw Blame History

// This file is part of MinIO Console Server
// Copyright (c) 2021 MinIO, Inc.
//
// This program is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with this program. If not, see <http://www.gnu.org/licenses/>.
import React, { cloneElement } from "react";
import { store } from "../../store";
import { hasAccessToResource } from "./permissions";
export const hasPermission = (
resource: string | undefined,
scopes: string[],
matchAll?: boolean
) => {
if (!resource) {
return false;
}
const state = store.getState();
const sessionGrants = state.console.session.permissions || {};
const resourceGrants =
sessionGrants[resource] ||
sessionGrants[`arn:aws:s3:::${resource}/*`] ||
[];
const globalGrants = sessionGrants["arn:aws:s3:::*"] || [];
return hasAccessToResource(
[...resourceGrants, ...globalGrants],
scopes,
matchAll
);
};
interface ISecureComponentProps {
errorProps?: any;
RenderError?: any;
matchAll?: boolean;
children: any;
scopes: string[];
resource: string;
}
const SecureComponent = ({
children,
RenderError = () => <></>,
errorProps = null,
matchAll = false,
scopes = [],
resource,
}: ISecureComponentProps) => {
const permissionGranted = hasPermission(resource, scopes, matchAll);
if (!permissionGranted && !errorProps) return <RenderError />;
if (!permissionGranted && errorProps) {
return cloneElement(children, { ...errorProps });
}
return <>{children}</>;
};
export default SecureComponent;
Reference in New Issue View Git Blame Copy Permalink