EpochtalkServerWeb.Helpers.ACL.html

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="utf-8">
    <meta http-equiv="x-ua-compatible" content="ie=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <meta name="generator" content="ExDoc v0.29.4">
    <meta name="project" content="epochtalk_server v0.1.0">

    <title>EpochtalkServerWeb.Helpers.ACL — epochtalk_server v0.1.0</title>
    <link rel="stylesheet" href="dist/html-elixir-HHVY3JYD.css" />


    <script src="dist/handlebars.runtime-NWIB6V2M.js"></script>
    <script src="dist/handlebars.templates-XWGFFSCD.js"></script>
    <script src="dist/sidebar_items-EA60E5D0.js"></script>

      <script src="docs_config.js"></script>

    <script async src="dist/html-JDI3AVDD.js"></script>


  </head>
  <body data-type="modules" class="page-module">
    <script>

      try {
        var settings = JSON.parse(localStorage.getItem('ex_doc:settings') || '{}');

        if (settings.theme === 'dark' ||
           ((settings.theme === 'system' || settings.theme == null) &&
             window.matchMedia('(prefers-color-scheme: dark)').matches)
           ) {
          document.body.classList.add('dark')
        }
      } catch (error) { }
    </script>

<div class="main">

<button class="sidebar-button sidebar-toggle" aria-label="toggle sidebar">
  <i class="ri-menu-line ri-lg" title="Collapse/expand sidebar"></i>
</button>

<section class="sidebar">
  <form class="sidebar-search" action="search.html">
    <button type="submit" class="search-button" aria-label="Submit Search">
      <i class="ri-search-2-line" aria-hidden="true" title="Submit search"></i>
    </button>
    <button type="button" tabindex="-1" class="search-close-button" aria-label="Cancel Search">
      <i class="ri-close-line ri-lg" aria-hidden="true" title="Cancel search"></i>
    </button>
    <label class="search-label">
      <p class="sr-only">Search</p>
      <input name="q" type="text" class="search-input" placeholder="Search..." aria-label="Input your search terms" autocomplete="off" autocorrect="off" autocapitalize="off" spellcheck="false" />
    </label>
  </form>

  <div class="autocomplete">
    <div class="autocomplete-results">
    </div>
  </div>

  <div class="sidebar-header">

    <div class="sidebar-projectDetails">
      <a href="api-reference.html" class="sidebar-projectName" translate="no">
epochtalk_server
      </a>
      <div class="sidebar-projectVersion" translate="no">
        v0.1.0
      </div>
    </div>
    <ul class="sidebar-listNav">
      <li><a id="extras-list-link" href="#full-list">Pages</a></li>

        <li><a id="modules-list-link" href="#full-list">Modules</a></li>


    </ul>
  </div>

  <div class="gradient"></div>
  <ul id="full-list"></ul>
</section>

<section class="content">
  <output role="status" id="toast"></output>
  <div class="content-outer">
    <div id="content" class="content-inner">

<h1>
<button class="icon-action display-settings">
  <i class="ri-settings-3-line"></i>
  <span class="sr-only">Settings</span>
</button>


  <span translate="no">EpochtalkServerWeb.Helpers.ACL</span> 
  <small class="app-vsn" translate="no">(epochtalk_server v0.1.0)</small>

</h1>


  <section id="moduledoc">
<p>Helper for checking authenticated user's permissions.</p>
  </section>


  <section id="summary" class="details-list">
    <h1 class="section-heading">
      <a class="hover-link" href="#summary">
        <i class="ri-link-m" aria-hidden="true"></i>
        <span class="sr-only">Link to this section</span>
      </a>
      Summary
    </h1>
<div class="summary-functions summary">
  <h2>
    <a href="#functions">Functions</a>
  </h2>

    <div class="summary-row">
      <div class="summary-signature">
        <a href="#allow!/2" translate="no">allow!(conn, permission_path)</a>

      </div>

        <div class="summary-synopsis"><p>Checks if authenticated <code class="inline">User</code> is allowed to perform a specific action.</p></div>

    </div>

    <div class="summary-row">
      <div class="summary-signature">
        <a href="#allow!/3" translate="no">allow!(conn, permission_path, error_msg)</a>

      </div>

        <div class="summary-synopsis"><p>Same as <code class="inline">ACL.allow!/2</code> but allows a custom error message to be raised if the
<code class="inline">User</code> does not have the proper permissions.</p></div>

    </div>

    <div class="summary-row">
      <div class="summary-signature">
        <a href="#bypass_post_owner/7" translate="no">bypass_post_owner(user, post, permission, bypass_type, custom_condition, check_priority_bypass \\ false, compare_mod_priorities \\ false)</a>

      </div>

        <div class="summary-synopsis"><p>Used to check route authorization when modifying a <code class="inline">Post</code> or related models (e.g. <code class="inline">Thread</code> or <code class="inline">Poll</code>).
This function returns a boolean indicating if the authenticated <code class="inline">User</code> can bypass the <code class="inline">Post</code> owner, given
a <code class="inline">User</code> map, <code class="inline">Post</code> map, <code class="inline">Permission</code> string, <code class="inline">bypass_type</code> string, a <code class="inline">custom_condition</code> boolean, and optionally a boolean
indicating whether or not to compare moderator priorities if both users are moderators and lastly another optional boolean
to indicating if priority based bypasses should be checked.</p></div>

    </div>

    <div class="summary-row">
      <div class="summary-signature">
        <a href="#get_user_priority/1" translate="no">get_user_priority(user)</a>

      </div>

        <div class="summary-synopsis"><p>Helper which returns the active User's priority.</p></div>

    </div>

    <div class="summary-row">
      <div class="summary-signature">
        <a href="#has_permission/2" translate="no">has_permission(conn, permission_path)</a>

      </div>

        <div class="summary-synopsis"><p>Returns boolean indicating if supplied <code class="inline">User</code> or authenticated <code class="inline">Plug.Conn.t()</code> has the
a role with the supplied <code class="inline">Permission</code> path.</p></div>

    </div>

    <div class="summary-row">
      <div class="summary-signature">
        <a href="#has_priority_bypass_or_is_owner/4" translate="no">has_priority_bypass_or_is_owner(user, permission, post, self_mod \\ false)</a>

      </div>

        <div class="summary-synopsis"><p>This function returns a boolean indicating if the auth <code class="inline">User</code> has the permission and priority to
modify the <code class="inline">Post</code> given an authed<code class="inline">User</code>, a <code class="inline">Permission</code> string, the <code class="inline">Post</code> attempting to be
modified and a boolean indicating if self moderation should be taken into consideration, this
function will return a boolean indicating if the auth <code class="inline">User</code> has priority to modify the <code class="inline">Post</code></p></div>

    </div>

    <div class="summary-row">
      <div class="summary-signature">
        <a href="#has_role/2" translate="no">has_role(user, role_lookup)</a>

      </div>

        <div class="summary-synopsis"><p>Returns boolean indicating if supplied <code class="inline">User</code> has the role with the supplied
<code class="inline">lookup</code> path.</p></div>

    </div>

</div>

  </section>


  <section id="functions" class="details-list">
    <h1 class="section-heading">
      <a class="hover-link" href="#functions">
        <i class="ri-link-m" aria-hidden="true"></i>
        <span class="sr-only">Link to this section</span>
      </a>
Functions
    </h1>
    <div class="functions-list">
<section class="detail" id="allow!/2">

  <div class="detail-header">
    <a href="#allow!/2" class="detail-link" title="Link to this function">
      <i class="ri-link-m" aria-hidden="true"></i>
      <span class="sr-only">Link to this function</span>
    </a>
    <h1 class="signature" translate="no">allow!(conn, permission_path)</h1>


  </div>

  <section class="docstring">

      <div class="specs">

          <pre translate="no"><span class="attribute">@spec</span> allow!(
  <a href="https://hexdocs.pm/plug/1.16.1/Plug.Conn.html#t:t/0">Plug.Conn.t</a>() | <a href="EpochtalkServer.Models.User.html#t:t/0">EpochtalkServer.Models.User.t</a>(),
  permission_path :: <a href="https://hexdocs.pm/elixir/String.html#t:t/0">String.t</a>()
) ::
  <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">no_return</a>() | :ok</pre>

      </div>

<p>Checks if authenticated <code class="inline">User</code> is allowed to perform a specific action.</p><p>Compares a mask all of user's roles into a masked permission set and checks
if that permission set contains the specified <code class="inline">permission_path</code>.</p><p>Raises <code class="inline">CustomErrors.InvalidPermission</code> exception if the <code class="inline">User</code> does not have
the proper permissions.</p>
  </section>
</section>
<section class="detail" id="allow!/3">

  <div class="detail-header">
    <a href="#allow!/3" class="detail-link" title="Link to this function">
      <i class="ri-link-m" aria-hidden="true"></i>
      <span class="sr-only">Link to this function</span>
    </a>
    <h1 class="signature" translate="no">allow!(conn, permission_path, error_msg)</h1>


  </div>

  <section class="docstring">

      <div class="specs">

          <pre translate="no"><span class="attribute">@spec</span> allow!(
  <a href="https://hexdocs.pm/plug/1.16.1/Plug.Conn.html#t:t/0">Plug.Conn.t</a>() | <a href="EpochtalkServer.Models.User.html#t:t/0">EpochtalkServer.Models.User.t</a>() | <a href="https://hexdocs.pm/elixir/typespecs.html#basic-types">any</a>(),
  permission_path :: <a href="https://hexdocs.pm/elixir/String.html#t:t/0">String.t</a>(),
  error_msg :: <a href="https://hexdocs.pm/elixir/String.html#t:t/0">String.t</a>() | nil
) :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">no_return</a>() | :ok</pre>

      </div>

<p>Same as <code class="inline">ACL.allow!/2</code> but allows a custom error message to be raised if the
<code class="inline">User</code> does not have the proper permissions.</p>
  </section>
</section>
<section class="detail" id="bypass_post_owner/7">

    <span id="bypass_post_owner/5"></span>

    <span id="bypass_post_owner/6"></span>

  <div class="detail-header">
    <a href="#bypass_post_owner/7" class="detail-link" title="Link to this function">
      <i class="ri-link-m" aria-hidden="true"></i>
      <span class="sr-only">Link to this function</span>
    </a>
    <h1 class="signature" translate="no">bypass_post_owner(user, post, permission, bypass_type, custom_condition, check_priority_bypass \\ false, compare_mod_priorities \\ false)</h1>


  </div>

  <section class="docstring">

      <div class="specs">

          <pre translate="no"><span class="attribute">@spec</span> bypass_post_owner(
  user :: <a href="https://hexdocs.pm/elixir/typespecs.html#basic-types">map</a>(),
  post :: <a href="https://hexdocs.pm/elixir/typespecs.html#basic-types">map</a>(),
  permission :: <a href="https://hexdocs.pm/elixir/String.html#t:t/0">String.t</a>(),
  bypass_type :: <a href="https://hexdocs.pm/elixir/String.html#t:t/0">String.t</a>(),
  custom_condition :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">boolean</a>(),
  check_priority_bypass :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">boolean</a>() | nil,
  compare_mod_priorities :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">boolean</a>() | nil
) :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">boolean</a>()</pre>

      </div>

<p>Used to check route authorization when modifying a <code class="inline">Post</code> or related models (e.g. <code class="inline">Thread</code> or <code class="inline">Poll</code>).
This function returns a boolean indicating if the authenticated <code class="inline">User</code> can bypass the <code class="inline">Post</code> owner, given
a <code class="inline">User</code> map, <code class="inline">Post</code> map, <code class="inline">Permission</code> string, <code class="inline">bypass_type</code> string, a <code class="inline">custom_condition</code> boolean, and optionally a boolean
indicating whether or not to compare moderator priorities if both users are moderators and lastly another optional boolean
to indicating if priority based bypasses should be checked.</p>
  </section>
</section>
<section class="detail" id="get_user_priority/1">

  <div class="detail-header">
    <a href="#get_user_priority/1" class="detail-link" title="Link to this function">
      <i class="ri-link-m" aria-hidden="true"></i>
      <span class="sr-only">Link to this function</span>
    </a>
    <h1 class="signature" translate="no">get_user_priority(user)</h1>


  </div>

  <section class="docstring">

      <div class="specs">

          <pre translate="no"><span class="attribute">@spec</span> get_user_priority(<a href="https://hexdocs.pm/plug/1.16.1/Plug.Conn.html#t:t/0">Plug.Conn.t</a>() | <a href="EpochtalkServer.Models.User.html#t:t/0">EpochtalkServer.Models.User.t</a>()) ::
  <a href="https://hexdocs.pm/elixir/typespecs.html#basic-types">non_neg_integer</a>()</pre>

      </div>

<p>Helper which returns the active User's priority.</p><p>Will return priority of role with highest permissions if the user is authenticated, otherwise anonymous priority
is returned if <code class="inline">frontend_config[:login_required]</code> is false otherwise private role priority is returned. If
user is banned the Banned role priority is returned.</p>
  </section>
</section>
<section class="detail" id="has_permission/2">

  <div class="detail-header">
    <a href="#has_permission/2" class="detail-link" title="Link to this function">
      <i class="ri-link-m" aria-hidden="true"></i>
      <span class="sr-only">Link to this function</span>
    </a>
    <h1 class="signature" translate="no">has_permission(conn, permission_path)</h1>


  </div>

  <section class="docstring">

      <div class="specs">

          <pre translate="no"><span class="attribute">@spec</span> has_permission(
  <a href="https://hexdocs.pm/plug/1.16.1/Plug.Conn.html#t:t/0">Plug.Conn.t</a>() | <a href="EpochtalkServer.Models.User.html#t:t/0">EpochtalkServer.Models.User.t</a>() | <a href="https://hexdocs.pm/elixir/typespecs.html#basic-types">any</a>(),
  permission_path :: <a href="https://hexdocs.pm/elixir/String.html#t:t/0">String.t</a>()
) :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">boolean</a>()</pre>

      </div>

<p>Returns boolean indicating if supplied <code class="inline">User</code> or authenticated <code class="inline">Plug.Conn.t()</code> has the
a role with the supplied <code class="inline">Permission</code> path.</p>
  </section>
</section>
<section class="detail" id="has_priority_bypass_or_is_owner/4">

    <span id="has_priority_bypass_or_is_owner/3"></span>

  <div class="detail-header">
    <a href="#has_priority_bypass_or_is_owner/4" class="detail-link" title="Link to this function">
      <i class="ri-link-m" aria-hidden="true"></i>
      <span class="sr-only">Link to this function</span>
    </a>
    <h1 class="signature" translate="no">has_priority_bypass_or_is_owner(user, permission, post, self_mod \\ false)</h1>


  </div>

  <section class="docstring">

      <div class="specs">

          <pre translate="no"><span class="attribute">@spec</span> has_priority_bypass_or_is_owner(
  user :: <a href="https://hexdocs.pm/elixir/typespecs.html#basic-types">map</a>(),
  permission :: <a href="https://hexdocs.pm/elixir/String.html#t:t/0">String.t</a>(),
  post :: <a href="https://hexdocs.pm/elixir/typespecs.html#basic-types">map</a>(),
  self_mod :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">boolean</a>() | nil
) :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">boolean</a>()</pre>

      </div>

<p>This function returns a boolean indicating if the auth <code class="inline">User</code> has the permission and priority to
modify the <code class="inline">Post</code> given an authed<code class="inline">User</code>, a <code class="inline">Permission</code> string, the <code class="inline">Post</code> attempting to be
modified and a boolean indicating if self moderation should be taken into consideration, this
function will return a boolean indicating if the auth <code class="inline">User</code> has priority to modify the <code class="inline">Post</code></p>
  </section>
</section>
<section class="detail" id="has_role/2">

  <div class="detail-header">
    <a href="#has_role/2" class="detail-link" title="Link to this function">
      <i class="ri-link-m" aria-hidden="true"></i>
      <span class="sr-only">Link to this function</span>
    </a>
    <h1 class="signature" translate="no">has_role(user, role_lookup)</h1>


  </div>

  <section class="docstring">

      <div class="specs">

          <pre translate="no"><span class="attribute">@spec</span> has_role(
  user :: <a href="EpochtalkServer.Models.User.html#t:t/0">EpochtalkServer.Models.User.t</a>() | <a href="https://hexdocs.pm/elixir/typespecs.html#basic-types">map</a>(),
  role_lookup :: <a href="https://hexdocs.pm/elixir/String.html#t:t/0">String.t</a>()
) :: <a href="https://hexdocs.pm/elixir/typespecs.html#built-in-types">boolean</a>()</pre>

      </div>

<p>Returns boolean indicating if supplied <code class="inline">User</code> has the role with the supplied
<code class="inline">lookup</code> path.</p>
  </section>
</section>

    </div>
  </section>

      <footer class="footer">
        <p>

          <span class="line">
            <button class="a-main footer-button display-quick-switch" title="Search HexDocs packages">
              Search HexDocs
            </button>

              <a href="epochtalk_server.epub" title="ePub version">
                Download ePub version
              </a>

          </span>
        </p>

        <p class="built-using">
          Built using
          <a href="https://github.com/elixir-lang/ex_doc" title="ExDoc" target="_blank" rel="help noopener" translate="no">ExDoc</a> (v0.29.4) for the

            <a href="https://elixir-lang.org" title="Elixir" target="_blank" translate="no">Elixir programming language</a>

        </p>
      </footer>
    </div>
  </div>
</section>
</div>


  </body>
</html>