32 lines
943 B
TypeScript
32 lines
943 B
TypeScript
import { Injectable, CanActivate, ExecutionContext } from '@nestjs/common';
|
|
import { Reflector } from '@nestjs/core';
|
|
import { UserRole } from '../entities';
|
|
|
|
@Injectable()
|
|
export class RolesGuard implements CanActivate {
|
|
constructor(private reflector: Reflector) {}
|
|
|
|
canActivate(context: ExecutionContext): boolean {
|
|
const requiredRoles = this.reflector.getAllAndOverride<UserRole[]>(
|
|
'roles',
|
|
[context.getHandler(), context.getClass()],
|
|
);
|
|
|
|
if (!requiredRoles) {
|
|
return true;
|
|
}
|
|
|
|
// eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
|
|
const request = context.switchToHttp().getRequest();
|
|
// eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
|
|
const user = request.user as
|
|
| { id: string; username: string; email: string; role: UserRole }
|
|
| undefined;
|
|
if (!user) {
|
|
return false;
|
|
}
|
|
|
|
return requiredRoles.includes(user.role);
|
|
}
|
|
}
|