How to blacklist all routes to use a plugin config?

[toymachiner62]

I'm curious what the best approach is to blacklist all routes by default to use a plugin config. I'm working on my hapi-authorization plugin which works great for routes you add the plugin config to, but this could easily be missed by a developer.

I'm wondering if there is an option or something so that I can have all my routes automatically use this in their config plugins: {'hapiAuthorization': {roles: ['AUTHORIZED']}}, without having to specify it on every route, but then I would be able to override or disable this on each route individually if required.

[hueniverse]

In version 8.0 you can easily specify the default when you setup the server or add a connection:

var server = new Hapi.Server({
    connections: {
        routes: {
            plugins: {
                hapiAuthorization: { roles: ['AUTHORIZED'] }
            }
        }
    }
});

[toymachiner62]

Awesome. How would you disable it completely on an individual route?

like this?

config: {
  plugins: {
    hapiAuthorization: false
  }
}

[hueniverse]

yep

[toymachiner62]

I don't think this is working to disable a plugin for an individual route:

var server = new Hapi.Server();
server.connection({
    host: '0.0.0.0',
    port: 3000,
    routes: {
        plugins: {
            hapiAuthorization: { roles: ['AUTHORIZED'] }
        }
    },
});

Route config:

config: {
  plugins: {
    hapiAuthorization: false
  }
}

When access this route, it's still calling code for the plugin which should be disabled.

[hueniverse]

What's the route plugin config for this route?

[toymachiner62]

What do you mean? I'm trying to make all routes have this plugin config by default:

plugins: {
  hapiAuthorization: { roles: ['AUTHORIZED'] }
}

But I'm trying to disable the plugin for this one route.

[hueniverse]

hapi doesn't do anything with this config. Your plugin has to check route.settings.plugins.hapiAuthorization and decide what to do.

[toymachiner62]

Oh ok thanks.