tweak roles

This commit is contained in:
Quaternions 2024-12-05 19:10:01 -08:00
parent 0c2ee16bde
commit ee7e5371a8
2 changed files with 11 additions and 8 deletions

View File

@ -21,8 +21,11 @@ var (
) )
type Roles struct { type Roles struct {
Admin bool // human roles
Reviewer bool SubmissionPublish bool
SubmissionReview bool
ScriptWrite bool
// automated roles
Maptest bool Maptest bool
Validator bool Validator bool
} }
@ -77,10 +80,10 @@ func (svc SecurityHandler) HandleCookieAuth(ctx context.Context, operationName a
// fix this when roblox udpates group roles // fix this when roblox udpates group roles
for r := range role.Roles{ for r := range role.Roles{
if RoleAdmin<=r{ if RoleAdmin<=r{
roles.Admin = true roles.SubmissionPublish = true
} }
if RoleReviewer<=r{ if RoleReviewer<=r{
roles.Reviewer = true roles.SubmissionReview = true
} }
} }

View File

@ -195,7 +195,7 @@ func (svc *Service) ActionSubmissionReject(ctx context.Context, params api.Actio
} }
// check if caller has required role // check if caller has required role
if !userInfo.Roles.Reviewer{ if !userInfo.Roles.SubmissionReview{
return ErrPermissionDenied return ErrPermissionDenied
} }
@ -216,7 +216,7 @@ func (svc *Service) ActionSubmissionRequestChanges(ctx context.Context, params a
} }
// check if caller has required role // check if caller has required role
if !userInfo.Roles.Reviewer{ if !userInfo.Roles.SubmissionReview{
return ErrPermissionDenied return ErrPermissionDenied
} }
@ -291,7 +291,7 @@ func (svc *Service) ActionSubmissionTriggerPublish(ctx context.Context, params a
} }
// check if caller has required role // check if caller has required role
if !userInfo.Roles.Admin{ if !userInfo.Roles.SubmissionPublish{
return ErrPermissionDenied return ErrPermissionDenied
} }
@ -312,7 +312,7 @@ func (svc *Service) ActionSubmissionTriggerValidate(ctx context.Context, params
} }
// check if caller has required role // check if caller has required role
if !userInfo.Roles.Reviewer{ if !userInfo.Roles.SubmissionReview{
return ErrPermissionDenied return ErrPermissionDenied
} }