Passport/pkg/internal/services/perms.go

package services

import (
	"fmt"
	"reflect"
	"regexp"
	"strings"
)

func HasPermNode(perms map[string]any, requiredKey string, requiredValue any) bool {
	if heldValue, ok := perms[requiredKey]; ok {
		return ComparePermNode(heldValue, requiredValue)
	}
	return false
}

func HasPermNodeWithDefault(perms map[string]any, requiredKey string, requiredValue any, defaultValue any) bool {
	if heldValue, ok := perms[requiredKey]; ok {
		return ComparePermNode(heldValue, requiredValue)
	}
	return ComparePermNode(defaultValue, requiredValue)
}

func ComparePermNode(held any, required any) bool {
	heldValue := reflect.ValueOf(held)
	requiredValue := reflect.ValueOf(required)

	switch heldValue.Kind() {
	case reflect.Int, reflect.Float64:
		if heldValue.Float() >= requiredValue.Float() {
			return true
		}
	case reflect.String:
		if heldValue.String() == requiredValue.String() {
			return true
		}
	case reflect.Slice, reflect.Array:
		for i := 0; i < heldValue.Len(); i++ {
			if reflect.DeepEqual(heldValue.Index(i).Interface(), required) {
				return true
			}
		}
	default:
		if reflect.DeepEqual(held, required) {
			return true
		}
	}

	return false
}

func FilterPermNodes(tree map[string]any, claims []string) map[string]any {
	filteredTree := make(map[string]any)

	match := func(claim, permission string) bool {
		regex := strings.ReplaceAll(claim, "*", ".*")
		match, _ := regexp.MatchString(fmt.Sprintf("^%s$", regex), permission)
		return match
	}

	for _, claim := range claims {
		for key, value := range tree {
			if match(claim, key) {
				filteredTree[key] = value
			}
		}
	}

	return filteredTree
}
:sparkles: Basis perm nodes feature 2024-05-17 09:13:11 +00:00			`package services`

			`import (`
:sparkles: Bug fixes of permission check 2024-05-17 11:53:47 +00:00			`"fmt"`
:sparkles: Basis perm nodes feature 2024-05-17 09:13:11 +00:00			`"reflect"`
			`"regexp"`
			`"strings"`
			`)`

:sparkles: Permission check 2024-05-17 11:24:14 +00:00			`func HasPermNode(perms map[string]any, requiredKey string, requiredValue any) bool {`
			`if heldValue, ok := perms[requiredKey]; ok {`
			`return ComparePermNode(heldValue, requiredValue)`
			`}`
			`return false`
			`}`

:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`func HasPermNodeWithDefault(perms map[string]any, requiredKey string, requiredValue any, defaultValue any) bool {`
			`if heldValue, ok := perms[requiredKey]; ok {`
			`return ComparePermNode(heldValue, requiredValue)`
			`}`
			`return ComparePermNode(defaultValue, requiredValue)`
			`}`

:sparkles: Permission check 2024-05-17 11:24:14 +00:00			`func ComparePermNode(held any, required any) bool {`
:sparkles: Basis perm nodes feature 2024-05-17 09:13:11 +00:00			`heldValue := reflect.ValueOf(held)`
			`requiredValue := reflect.ValueOf(required)`

			`switch heldValue.Kind() {`
			`case reflect.Int, reflect.Float64:`
			`if heldValue.Float() >= requiredValue.Float() {`
			`return true`
			`}`
			`case reflect.String:`
			`if heldValue.String() == requiredValue.String() {`
			`return true`
			`}`
			`case reflect.Slice, reflect.Array:`
			`for i := 0; i < heldValue.Len(); i++ {`
			`if reflect.DeepEqual(heldValue.Index(i).Interface(), required) {`
			`return true`
			`}`
			`}`
			`default:`
			`if reflect.DeepEqual(held, required) {`
			`return true`
			`}`
			`}`

			`return false`
			`}`

			`func FilterPermNodes(tree map[string]any, claims []string) map[string]any {`
			`filteredTree := make(map[string]any)`

			`match := func(claim, permission string) bool {`
:sparkles: Bug fixes of permission check 2024-05-17 11:53:47 +00:00			`regex := strings.ReplaceAll(claim, "", ".")`
			`match, _ := regexp.MatchString(fmt.Sprintf("^%s$", regex), permission)`
:sparkles: Basis perm nodes feature 2024-05-17 09:13:11 +00:00			`return match`
			`}`

			`for _, claim := range claims {`
			`for key, value := range tree {`
			`if match(claim, key) {`
			`filteredTree[key] = value`
			`}`
			`}`
			`}`

			`return filteredTree`
			`}`