1
0
Fork 0
This repository has been archived on 2024-02-17. You can view files and clone it, but cannot push or open issues or pull requests.
letu/routes/utils/sessionCheck.js

18 lines
597 B
JavaScript
Raw Normal View History

2020-10-12 23:34:51 +02:00
let error = require("./error");
function sessionCheck(permission) {
return (req, res, next) => {
if (permission === -1 && req.session.user) {
res.redirect(req.session.lastUrl);
} else if (permission !== -1 && !req.session.user) {
2020-10-12 23:34:51 +02:00
req.session.lastUrl = req.originalUrl;
req.session.save(() => res.redirect("/login"));
} else if (req.session.user && req.session.user.permissions < permission) {
2020-10-12 23:34:51 +02:00
return error(req, res, "Permission denied !", 403);
} else
2020-10-12 23:34:51 +02:00
next();
}
}
module.exports = sessionCheck;