14 lines
428 B
JavaScript
14 lines
428 B
JavaScript
|
function sessionCheck(permission) {
|
||
|
return (req, res, next) => {
|
||
|
if (!req.session.user) {
|
||
|
req.session.lastUrl = req.originalUrl;
|
||
|
req.session.save(() => res.redirect("/login"));
|
||
|
} else if (req.session.user.permissions < permission)
|
||
|
res.render("error", {message: "Permission denied !", "error": {}});
|
||
|
else
|
||
|
next();
|
||
|
}
|
||
|
}
|
||
|
|
||
|
module.exports = sessionCheck;
|