Skip to content
Snippets Groups Projects
Select Git revision
  • main default protected
  • user-login-fix
  • v4.8.0
  • v4.7.0
  • v4.6.0
  • v4.5.0
  • v4.4.0
  • v4.3.0
  • v4.2.0
  • v4.1.1
  • v4.1.0
  • v4.0.2
  • v4.0.1
  • v4.0.0
  • v4.0.0-beta.7
  • v4.0.0-beta.6
  • v4.0.0-beta.5
  • v4.0.0-beta.4
  • v4.0.0-beta.3
  • v4.0.0-beta.2
  • v4.0.0-beta.1
  • v4.0.0-beta.0
22 results
Blame History Permalink
Code owners
Assign users and groups as approvers for specific file changes. Learn more.
authorization.js 555 B 
const {
  rule,
  inputRule,
  allow,
  deny,
  and,
  chain,
  or,
  not,
} = require('graphql-shield')

const User = require('./src/models/user/user.model')

const isAuthenticated = rule()(async (parent, args, ctx, info) => {
  return !!ctx.user
})

const isAdmin = rule()(async (parent, args, { user: userId }, info) => {
  if (!userId) {
    return false
  }

  const user = await User.model.findById(userId)
  return user.admin
})

module.exports = {
  rule,
  inputRule,
  allow,
  deny,
  and,
  chain,
  or,
  not,
  isAuthenticated,
  isAdmin,
}