DGNum/demarches-normaliennes
13
1
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

refactor(graphql): extract compute_demarche_authorization

Browse source
This commit is contained in:
Paul Chavard 2023-03-01 17:47:38 +01:00
parent 42e74dfc76
commit d481222110
1 changed files with 14 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

21
app/graphql/api/v2/context.rb
View file

@ -49,18 +49,25 @@ class API::V2::Context < GraphQL::Query::Context
self[:authorized] ||= {} self[:authorized] ||= {}
if self[:authorized][demarche.id].nil? if self[:authorized][demarche.id].nil?
self[:authorized][demarche.id] = if self[:procedure_ids].present? self[:authorized][demarche.id] = compute_demarche_authorization(demarche)
self[:procedure_ids].include?(demarche.id)
elsif self[:token].present?
APIToken.find_and_verify(self[:token], demarche.administrateurs).present?
else
false
end
end end
self[:authorized][demarche.id] self[:authorized][demarche.id]
end end
private
def compute_demarche_authorization(demarche)
# procedure_ids and token are passed from graphql controller
if self[:procedure_ids].present?
self[:procedure_ids].include?(demarche.id)
elsif self[:token].present?
APIToken.find_and_verify(self[:token], demarche.administrateurs).present?
else
false
end
end
# This is a query AST visitor that we use to check # This is a query AST visitor that we use to check
# if a fragment with a given name is used in the given document. # if a fragment with a given name is used in the given document.
# We check for both inline and standalone fragments. # We check for both inline and standalone fragments.