github-mirrors/netris-nestri
1
0
Fork 0
mirror of https://github.com/nestriness/nestri.git synced 2025-12-12 08:45:38 +02:00
Code Issues Packages Projects Releases Wiki Activity

feat: Make sure friends can see their friends

Browse Source
This commit is contained in:
Wanjohi
2025-05-09 16:22:28 +03:00
parent b86fc625ba
commit d933c1e61d
1 changed files with 19 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

33
packages/zero/schema.ts
View File

@@ -19,10 +19,10 @@ const timestamps = {
const users = table("users") const users = table("users")
.columns({ .columns({
id: string(), id: string(),
email: string(),
avatar_url: string().optional(),
last_login: number(),
name: string(), name: string(),
email: string(),
last_login: number(),
avatar_url: string().optional(),
polar_customer_id: string().optional(), polar_customer_id: string().optional(),
...timestamps ...timestamps
}) })
@@ -30,16 +30,16 @@ const users = table("users")
const steam_accounts = table("steam_accounts") const steam_accounts = table("steam_accounts")
.columns({ .columns({
steam_id: string(), name: string(),
user_id: string(),
status: string(), status: string(),
user_id: string(),
username: string(),
steam_id: string(),
avatar_hash: string(),
member_since: number(),
last_synced_at: number(), last_synced_at: number(),
real_name: string().optional(), real_name: string().optional(),
member_since: number(),
name: string(),
profile_url: string().optional(), profile_url: string().optional(),
username: string(),
avatar_hash: string(),
limitations: json<Limitations>(), limitations: json<Limitations>(),
...timestamps, ...timestamps,
}) })
@@ -49,9 +49,9 @@ const teams = table("teams")
.columns({ .columns({
id: string(), id: string(),
name: string(), name: string(),
slug: string(),
owner_id: string(), owner_id: string(),
invite_code: string(), invite_code: string(),
slug: string(),
max_members: number(), max_members: number(),
...timestamps, ...timestamps,
}) })
@@ -59,10 +59,10 @@ const teams = table("teams")
const members = table("members") const members = table("members")
.columns({ .columns({
team_id: string(),
user_id: string().optional(),
steam_id: string(),
role: string(), role: string(),
team_id: string(),
steam_id: string(),
user_id: string().optional(),
...timestamps, ...timestamps,
}) })
.primaryKey("team_id", "steam_id"); .primaryKey("team_id", "steam_id");
@@ -178,7 +178,8 @@ export const permissions = definePermissions<Auth, Schema>(schema, () => {
row: { row: {
select: [ select: [
(auth: Auth, q: ExpressionBuilder<Schema, 'members'>) => q.exists("user", (u) => u.where("id", auth.sub)), (auth: Auth, q: ExpressionBuilder<Schema, 'members'>) => q.exists("user", (u) => u.where("id", auth.sub)),
(auth: Auth, q: ExpressionBuilder<Schema, 'members'>) => q.exists("steamAccount", (u) => u.where("user_id", auth.sub)), //allow other team members to view other members
(auth: Auth, q: ExpressionBuilder<Schema, 'members'>) => q.exists("team", (u) => u.related("members", (m) => m.where("user_id", auth.sub))),
] ]
}, },
}, },
@@ -193,6 +194,10 @@ export const permissions = definePermissions<Auth, Schema>(schema, () => {
row: { row: {
select: [ select: [
(auth: Auth, q: ExpressionBuilder<Schema, 'steam_accounts'>) => q.exists("user", (u) => u.where("id", auth.sub)), (auth: Auth, q: ExpressionBuilder<Schema, 'steam_accounts'>) => q.exists("user", (u) => u.where("id", auth.sub)),
//Allow friends to view friends steam accounts
(auth: Auth, q: ExpressionBuilder<Schema, 'steam_accounts'>) => q.exists("friends", (u) => u.related("friend", (f) => f.where("user_id", auth.sub))),
//allow other team members to see a user's steam account
(auth: Auth, q: ExpressionBuilder<Schema, 'steam_accounts'>) => q.exists("memberEntries", (u) => u.related("team",(t) => t.related("members", (m) => m.where("user_id", auth.sub)))),
] ]
}, },
}, },