kylefang/firecms
1
0
Fork 0
mirror of https://github.com/zhigang1992/firecms.git synced 2026-06-15 01:58:59 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
fix/callback
firecms/website/docs/collections/permissions.md
francesco a62c4e9a93 Navigation drawer indicator and 404 page added.
2021-12-11 15:10:26 +01:00

2.6 KiB
Raw Permalink Blame History

id, title, sidebar_label
id title sidebar_label
permissions Permissions Permissions

You can define the edit, create and delete permissions at the collection level, also depending on the logged-in user.

These define the actions that the logged user can perform over an entity.

Simple permissions

In the simpler case, you can directly assign the permissions

import { buildCollection } from "@camberi/firecms";

buildCollection({
    path: "products",
    schema: productSchema,
    name: "Products",
    permissions: {
        edit: true,
        create: true,
        delete: false
    }
});

Advanced permissions

You can customise the permissions based on the user that is logged in, or any other criteria that fits your use case.

You can use a PermissionBuilder, like in the example below, to customise the actions based on the logged user.

In the example below we check if we have previously saved the role "admin" in the extras field in the AuthController.

import { buildCollection } from "@camberi/firecms";

buildCollection({
    path: "products",
    schema: productSchema,
    name: "Products",
    permissions: ({
                      entity,
                      path,
                      user,
                      authController,
                      context
                  }) => {
        const isAdmin = authController.extra?.roles.includes("admin");
        return ({
            edit: isAdmin,
            create: isAdmin,
            delete: isAdmin
        });
    }
});

Note that you can set the extra parameter in the AuthController to any data that makes sense to you. Suggested places where you may want to set that parameter are Authenticator or NavigationBuilder since they are initialised before the rest of the app.

Quick example of how the extra.roles field in the previous example is initialised:

import { User as FirebaseUser } from "firebase/auth";
import { Authenticator } from "@camberi/firecms";

const myAuthenticator: Authenticator<FirebaseUser> = async ({
                                                                user,
                                                                authController,
                                                                dataSource
                                                            }) => {
    // This is an example of retrieving async data related to the user
    // and storing it in the user extra field
    const sampleUserData = await Promise.resolve({
        roles: ["admin"]
    });
    authController.setExtra(sampleUserData);

    console.log("Allowing access to", user);
    return true; // Allow
};