npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

obj-perms-engine

v2.3.10

Published

Object engine with permissions

Downloads

22

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

sunnylancodersunnylancoder

Keywords

Readme

obj-perms-engine

obj-perms-engine is a library based upon object-path. It uses a simple user based model which allows control over which operations each user can apply on the object, and where in the object they can apply those operations.

Features:

  • Simple CRUD based operation model
  • Stores permissions for user IDs, and also allows wildcard permissions
  • Permissions are cascaded down the object tree
  • Allows individual control of users access to CRUD operations
  • Default permission module can be easily replaced
  • "Root/Nonroot" system allows permissions to be overridden

Written using NodeJS version: 6.10.3

Naming conventions (IMPORTANT)

state - the object that is being operated upon. Note that a PERM_KEY will be added to the object to store permissions

srcUser - the user that is performing the said operation

path - an array of keys, used by this package to represent locations within objects. For example, take a look at the following object:

{
  "a":{
    "b":10
  },
  "c":{
    "d":[12, 11, 15, 17],
    "e":true
  }
}

If we wanted to refer to the object at "e", we would use the path ["a", "c", "e"]. If we wanted to refer to the root, we simply use an empty array: [].

An integer value within a path will refer to an array index. For example, the path ["c", "d", 2] refers to the number 15 (inside array "d").

The operations

These are the operations that can be performed:

**The following examples will begin with the following snippet of code:

const ObjPermsEngine=require('obj-perms-engine').ObjPermsEngine;
const engine = new ObjPermsEngine();

let myState = {}; //this will store our state

// this is the object we will be operating on
const initialObject = {
    "a":{
        "b":10
    },
    "d":[12, 11, 15, 17]
};

//this will initialize our state to contain the object
engine.u_update(myState, [], initialObject);

Create

create(srcUser, state, path, newObjName, newObjVal) - creates a new object at specified path. Example:

Javascript:

engine.create("john", myState, ["a"], "money", 666);

Result:

object = {
  "a":{
    "b":10,
    "money":666
  },
   "d":[12, 11, 15, 17]
}

Read

read(srcUser, state, path) - returns the object located at specified path. Example:

Operation:

engine.read("john", myState, ["d", 1]);

Result:

returnValue = 11

Update

update(srcUser, state, path, value) - updates the value of the object located at specified path. Example:

Operation:

engine.update("john", myState, ["a", "b"], 456);

Result:

object = {
  "a":{
    "b":456
  },
   "d":[12, 11, 15, 17]
}

Delete

del(srcUser, state, path) - deletes the object located at specified path. Example:

Operation:

engine.del("john", myState, ["d"]);

Result:

object = {
  "a":{
    "b":456
  }
}

Basic permission system

By default, obj-perms-engine uses 5 permissions to control access to the object. They should be pretty self explanatory:

  • CREATE - ability to create an object - represented in the code as the string "CRT"
  • READ - ability to read a value - represented in the code as the string "RD"
  • UPDATE - ability to update a value - represented in the code as the string "UPD"
  • DELETE - the ability to delete an object - represented in the code as the string "DEL"
  • UPDATE_PERMS - the ability to change permissions - represented in the code as the string "UPD_P"

These permissions are stored together in an object like this one:

{
  "CRT": true,
  "DEL": true,
  "UPD_P": false
}

The object above would represent that CREATE and DELETE are allowed, while UPDATE_PERMS is not allowed. Permissions that are undefined (READ and UPDATE) will be set to their default values (see section on Permission cascading).

**The following examples will begin with the following snippet of code:

const objperms = require('obj-perms-engine');
const engine = new objperms.ObjPermsEngine();

//CRUDPerms is the name of the default permission module
const PERMS = objperms.CRUDPerms.PERMS; //CRUDPerms.PERMS contains the 5 permissions as constants

let myState = {}; //this will store our state

// this is the object we will be operating on
const initialObject = {
    "a":{
        "b":10
    },
    "d":[12, 11, 15, 17]
};

//ignore the following section for now
engine.u_update(myState, [], initialObject);
engine.u_updatePerm(myState,"john",["a", "b"], PERMS.UPDATE_PERMS,true );
engine.u_updatePerm(myState,"wendy", ["d"], PERMS.READ, true)

For reference, after the above section, our object will now look like this:

obj={
  "a":{
      "b":10 // john has UPDATE_PERMS permissions here
  },
  "d":[12, 11, 15, 17] // wendy has READ permissions here
};

Reading a permission

readPerms(state, path, user) - Reads the permissions for a certain user at a specified path. Note that calling readPerms requires no permissions at all.

Example 1:

Javascript:

engine.readPerms(myState, ["a", "b"], "john");

Result:

returnValue={
    "UPD_P": true
}

Example 2:

Javascript:

engine.readPerms(myState, ["a", "b"], "wendy");

Result:

returnValue={
}

Updating a permission

updatePerm(srcUser, state, path, user, perm, value) - Changes a permission for a certain user at a specified path.

Javascript:

engine.updatePerms("john", myState, ["a", "b"], "wendy", PERMS.READ, true);

Result:

The object will now look like this:

obj={
  "a":{
      "b":10 // john has UPDATE_PERMS permissions here, wendy has READ permissions here
  },
  "d":[12, 11, 15, 17] // wendy has READ permissions here
};

updatePerms(srcUser, state, path, user, perms) - Changes the permissions for a certain user at a specified path.

Javascript:

engine.updatePerms("john", myState, ["a", "b"], "wendy", {"UPD": true, "RD": true, "DEL": false});

Result:

The object will now look like this:

obj={
  "a":{
      "b":10 // john has UPDATE_PERMS permissions here, wendy has READ and UPDATE permissions here, but cannot DELETE
  },
  "d":[12, 11, 15, 17] // wendy has READ permissions here
};

Permission cascading

As mentioned before, permissions will cascade down the object tree. Take a look at this object, for an example:

obj={
      "a":{ // john has CREATE permissions here
          "b":10, //wendy has READ permissions here
          "c":{
              "e":5
          }
      },
      "d":[12, 11, 15, 17] // wendy has UPDATE permissions here
}

Because "b" is a child of "a", by default, "john" will have CREATE permissions on "b". Similarly, he will also have CREATE permissions on "c", and "e". This also applies to arrays; "wendy" will have UPDATE access to all the elements in array "d".

Configuration

The engine accepts a configuration object in its constructor:

const ObjPermsEngine=require('obj-perms-engine').ObjPermsEngine;

const config={
    // configuration options here
};

const engine = new ObjPermsEngine(config);

The default configuration for the engine looks like this:

config={
   PERM_KEY: '__permissions', //the key that the permission metadata will be stored in
   OBJ_KEY: '__obj', //the key that the actual object will be stored in
   USER_KEY: '__usr', //the key that the user levels will be stored in
   WILDCARD: '*', //the symbol to use to for wildcard

   USER_LEVEL: { //the availible user levels
       ROOT: 0,
       USER: 1
   },
   DEFAULT_USER_LEVEL: Number.MAX_VALUE, //the default user level

   permsModule: defaultPerms, //the permission module to use (CRUDPerms by default)
}

Any configuration value not provided by the user will be set to the value in the default config