-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathservers.js.js
60 lines (51 loc) · 1.59 KB
/
servers.js.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
const express = require('express');
const acl = require('express-acl');
const app = express();
app.use(express.json());
// Debugging Middleware to Log Requests
app.use((req, res, next) => {
console.log("Received Headers:", req.headers);
req.user = { role: req.headers["role"] || "guest" }; // Default to "guest"
console.log("Assigned Role:", req.user.role);
next();
});
// ACL Configuration
acl.config({
baseUrl: "", // Set to "" so it applies to all routes correctly
rules: [
{
group: "admin",
permissions: [
{ resource: "admin", methods: ["GET", "POST", "DELETE"], action: "allow" },
{ resource: "user", methods: ["GET"], action: "allow" }
]
},
{
group: "user",
permissions: [
{ resource: "user", methods: ["GET"], action: "allow" },
{ resource: "admin", methods: ["GET"], action: "deny" }
]
},
{
group: "guest",
permissions: [
{ resource: "guest", methods: ["GET"], action: "allow" }
]
}
]
});
// Apply ACL middleware AFTER role assignment
app.use(acl.authorize);
// Protected Routes
app.get('/admin', (req, res) => {
res.send("Welcome to Admin Dashboard");
});
app.get('/user', (req, res) => {
res.send("Welcome User");
});
app.get('/guest', (req, res) => {
res.send("Welcome Guest");
});
// Start Server
app.listen(3000, () => console.log("🚀 Server running on port 3000"));