npm i custom-roles-mock
This is a mock package that contains non-working components and functions for the Custom Roles project. By non-working I mean that it will not check against real Clerk permissions, but it will perform authorization logic based on the following assumed role and permissions:
- Role:
admin - Permissions:
organization_members:listorganization_members:manageorganization_invitations:manageorganization:manage_attributesorganization:deleteorganization_domains:manageorganization_enrollment:manage
Here are some different scenarios on how the <Gate/> can behave. Its default behavior is to hide everything and progressively display the content if any of the provided roles or permissions match the user's R&P above.
The component accepts two parameters:
permissions?: string | string[], which accepts a list of permissions and if ANY of them matches with a user's permission, the contents are rendered.isAuthorized?: Function, which accepts a function that returns true or false. If both parameters are present, isAuthorize() wins. Within the function you can access theorganizationobject.
<div>
<Gate>This is hidden by default.</Gate>
<Gate
permissions={["organization:members:read", "organization:members:manage"]}
>
This is visible for users with the organization:members:read,
organization:members:manage permissions.
</Gate>
<Gate
isAuthorized={(organization: any) => {
return !organization.memberships[0].permissions.includes(
"organization:documents:manage"
);
}}
>
This is visible for users who dont have the role
organization:documents:manage.
</Gate>
</div>You can use the helper function gateAccess() which follows the same logic as above or access your roles and permissions directly.
Note that your roles and permissions include a scope attribute, which for now will be "organization".
import { getAuth } from "custom-roles-mock";
import { NextResponse } from "next/server";
export async function GET() {
// 1. Access your information and a helper via the getAuth()
const { gateAccess, roles, permissions } = getAuth();
// 2. You can access your role information
console.log(
"roles: " +
JSON.stringify(roles) +
"\n" +
"permissions:" +
JSON.stringify(permissions)
);
// 3. Or go straight to the helper function
let gatedMessages = [];
if (gateAccess()) {
gatedMessages.push("This is hidden by default.");
}
if (
gateAccess({
permissions: ["organization:members:read", "organization:members:manage"],
})
) {
gatedMessages.push(
"This is visible for users with the 'organization:members:read', 'organization:members:manage' permissions"
);
}
if (
gateAccess({
isAuthorized: (organization: any) => {
return !organization.memberships[0].permissions.includes(
"organization:documents:manage"
);
},
})
) {
gatedMessages.push(
"This is visible for users who don't have the role 'organization:members:read'."
);
}
if (
gateAccess({
permissions: "organizations:organization:delete",
})
) {
// ✅ Authorized, do data fetching and return result
return NextResponse.json({ gatedMessages: gatedMessages });
}
{
// ❌ Unauthorized, return error message
return NextResponse.json({
error: "You don't have access to Billing resources.",
});
}
}Use the /test folder to install a next.js app or any other type of app of your choice. You can then import the components locally from ./src/index and make changes directly.
If you make a change you like, don't forget to push it :).