mirror of
https://github.com/yu-i-i/overleaf-cep.git
synced 2026-05-31 21:01:33 +02:00
07c827e9fd
[web] last infrastructure conversions GitOrigin-RevId: ad1aff9b7df0610ed0303157d9e2c8032f32c02b
144 lines
4.7 KiB
JavaScript
144 lines
4.7 KiB
JavaScript
import UserMembershipMiddleware from './UserMembershipMiddleware.mjs'
|
|
import UserMembershipController from './UserMembershipController.mjs'
|
|
import SubscriptionGroupController from '../Subscription/SubscriptionGroupController.mjs'
|
|
import TeamInvitesController from '../Subscription/TeamInvitesController.mjs'
|
|
import { RateLimiter } from '../../infrastructure/RateLimiter.mjs'
|
|
import RateLimiterMiddleware from '../Security/RateLimiterMiddleware.mjs'
|
|
|
|
const rateLimiters = {
|
|
createTeamInvite: new RateLimiter('create-team-invite', {
|
|
points: 200,
|
|
duration: 60,
|
|
}),
|
|
exportTeamCsv: new RateLimiter('export-team-csv', {
|
|
points: 30,
|
|
duration: 60,
|
|
}),
|
|
}
|
|
|
|
export default {
|
|
apply(webRouter) {
|
|
// group members routes
|
|
webRouter.get(
|
|
'/manage/groups/:id/members',
|
|
UserMembershipMiddleware.requireEntityAccessOrAdminAccess('group'),
|
|
UserMembershipController.manageGroupMembers
|
|
)
|
|
webRouter.post(
|
|
'/manage/groups/:id/invites',
|
|
UserMembershipMiddleware.requireGroupMemberManagement('group'),
|
|
RateLimiterMiddleware.rateLimit(rateLimiters.createTeamInvite),
|
|
TeamInvitesController.createInvite
|
|
)
|
|
webRouter.post(
|
|
'/manage/groups/:id/resendInvite',
|
|
UserMembershipMiddleware.requireGroupMemberManagement('group'),
|
|
RateLimiterMiddleware.rateLimit(rateLimiters.createTeamInvite),
|
|
TeamInvitesController.resendInvite
|
|
)
|
|
webRouter.delete(
|
|
'/manage/groups/:id/user/:user_id',
|
|
UserMembershipMiddleware.requireGroupMemberManagement('group'),
|
|
SubscriptionGroupController.removeUserFromGroup
|
|
)
|
|
webRouter.delete(
|
|
'/manage/groups/:id/invites/:email',
|
|
UserMembershipMiddleware.requireGroupMemberManagement('group'),
|
|
TeamInvitesController.revokeInvite
|
|
)
|
|
webRouter.get(
|
|
'/manage/groups/:id/members/export',
|
|
UserMembershipMiddleware.requireEntityAccessOrAdminAccess('group'),
|
|
RateLimiterMiddleware.rateLimit(rateLimiters.exportTeamCsv),
|
|
UserMembershipController.exportCsv
|
|
)
|
|
|
|
// group managers routes
|
|
webRouter.get(
|
|
'/manage/groups/:id/managers',
|
|
UserMembershipMiddleware.requireEntityAccess({
|
|
entityName: 'groupManagers',
|
|
staffAccess: 'groupManagement',
|
|
adminCapability: 'view-group-manager',
|
|
}),
|
|
UserMembershipController.manageGroupManagers
|
|
)
|
|
webRouter.post(
|
|
'/manage/groups/:id/managers',
|
|
UserMembershipMiddleware.requireEntityAccess({
|
|
entityName: 'groupManagers',
|
|
staffAccess: 'groupManagement',
|
|
adminCapability: 'modify-group-manager',
|
|
}),
|
|
UserMembershipController.add
|
|
)
|
|
webRouter.delete(
|
|
'/manage/groups/:id/managers/:userId',
|
|
UserMembershipMiddleware.requireEntityAccess({
|
|
entityName: 'groupManagers',
|
|
staffAccess: 'groupManagement',
|
|
adminCapability: 'modify-group-manager',
|
|
}),
|
|
UserMembershipController.remove
|
|
)
|
|
|
|
// institution members routes
|
|
webRouter.get(
|
|
'/manage/institutions/:id/managers',
|
|
UserMembershipMiddleware.requireInstitutionManagementAccess,
|
|
UserMembershipController.manageInstitutionManagers
|
|
)
|
|
webRouter.post(
|
|
'/manage/institutions/:id/managers',
|
|
UserMembershipMiddleware.requireInstitutionManagementAccess,
|
|
UserMembershipController.add
|
|
)
|
|
webRouter.delete(
|
|
'/manage/institutions/:id/managers/:userId',
|
|
UserMembershipMiddleware.requireInstitutionManagementAccess,
|
|
UserMembershipController.remove
|
|
)
|
|
|
|
// publisher members routes
|
|
webRouter.get(
|
|
'/manage/publishers/:id/managers',
|
|
UserMembershipMiddleware.requirePublisherManagementAccess,
|
|
UserMembershipController.managePublisherManagers
|
|
)
|
|
webRouter.post(
|
|
'/manage/publishers/:id/managers',
|
|
UserMembershipMiddleware.requirePublisherManagementAccess,
|
|
UserMembershipController.add
|
|
)
|
|
webRouter.delete(
|
|
'/manage/publishers/:id/managers/:userId',
|
|
UserMembershipMiddleware.requirePublisherManagementAccess,
|
|
UserMembershipController.remove
|
|
)
|
|
|
|
// publisher creation routes
|
|
webRouter.get(
|
|
'/entities/publisher/create/:id',
|
|
UserMembershipMiddleware.requirePublisherCreationAccess,
|
|
UserMembershipController.new
|
|
)
|
|
webRouter.post(
|
|
'/entities/publisher/create/:id',
|
|
UserMembershipMiddleware.requirePublisherCreationAccess,
|
|
UserMembershipController.create
|
|
)
|
|
|
|
// institution creation routes
|
|
webRouter.get(
|
|
'/entities/institution/create/:id',
|
|
UserMembershipMiddleware.requireInstitutionCreationAccess,
|
|
UserMembershipController.new
|
|
)
|
|
webRouter.post(
|
|
'/entities/institution/create/:id',
|
|
UserMembershipMiddleware.requireInstitutionCreationAccess,
|
|
UserMembershipController.create
|
|
)
|
|
},
|
|
}
|