This repository has been archived by the owner on Jun 4, 2022. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
permission.go
46 lines (42 loc) · 1.59 KB
/
permission.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
package user
import (
"fmt"
"github.com/MikMuellerDev/smarthome/core/database"
"github.com/MikMuellerDev/smarthome/core/event"
)
// Adds a permission to an arbitrary user.
// If the user already has the given permission, a database operation is omitted
// Does not validate the user's existence
func AddPermission(username string, permission database.PermissionType) (modified bool, err error) {
alreadyHasPermission, err := database.UserHasPermission(username, permission)
if err != nil {
return false, err
}
if alreadyHasPermission {
return false, nil
}
if err := database.AddUserPermission(username, permission); err != nil {
return false, err
}
// Log event in order to inform administrators about a possible security flaw
go event.Info("Added User Permission", fmt.Sprintf("Granted permission %s to user %s.", permission, username))
return true, nil
}
// Removes a permission from an arbitrary user.
// If the user does not have the given permission, a database operation is omitted
// Does not validate the user's existence
func RemovePermission(username string, permission database.PermissionType) (modified bool, err error) {
hasPermission, err := database.UserHasPermission(username, permission)
if err != nil {
return false, err
}
if !hasPermission {
return false, nil
}
if err := database.RemoveUserPermission(username, permission); err != nil {
return false, err
}
// Log event in order to inform administrators about a possible security flaw
go event.Info("Removed User Permission", fmt.Sprintf("Removed permission %s from user %s.", permission, username))
return true, nil
}