feathers-mongoose-casl
1.0.0
1.0.0Version 2.1.2Version 2 - Support feathers 4
1.0.0
1.0.0Version 2.1.2Version 2 - Support feathers 4
  • feathers-mongoose-casl
  • Docs
    • START A NEW PROJECT
      • Generate a new project.
      • install feathers-mongoose-casl
      • feathers-logger
      • Update config
      • Add mongoose
      • Email service
      • App hooks
      • Import required services
      • Verify user
      • Swagger, Logger, BodyParser
      • Email templates
      • public HTML
      • Run the server
      • Create you first user
      • vs code snippet extension
      • Test Login
      • Dashboard
      • Update posts service
      • Posts Postman snippet
      • Add Admin role
      • Done!
    • Advanced
      • Security - eslint-plugin-security
      • Security - rate limiting
      • Development tools
    • Guides
      • Throw errors
      • Auth Flow
      • Authentication
      • Authouriztion
      • /me
      • Rules Cache
      • Create a new service
      • Custom service validtor client data
      • validators
        • Example of use
        • Types
        • Mongoose schema
      • Default value
      • $Populate
      • Upload service
      • Upload files
        • Create upload service
        • Sign File After Populate
        • Storage support
          • Google-cloud
      • Error
      • feathers Client examples
      • Dashboard
        • Online dashboard
        • Add to your react app
        • Service Configuration
        • Field configuration
      • customized feathers-mongoose-casl/services
      • Redis - in progress
      • S3
      • Postman
      • Swagger
      • debug
    • Production
    • Feathers wiki
      • Good links
    • utils
      • send email example
      • Async For Each
      • Create heroku server
      • pick
      • vs code snippet extension
      • Persist user request
    • Ecosystem
    • TODO
    • Versions updates
Powered by GitBook
On this page
  • 1 - Inside the src/validators folder create this file posts.validators.js
  • 2 - Update Posts model
  • 3 - Update posts.service
  • Add serviceRules to service options
  • Remove authenticate from posts.hooks

Was this helpful?

  1. Docs
  2. START A NEW PROJECT

Update posts service

Update posts service Now we want to add JOI and CASL to posts service.

with JOI we going to:

1- validate user request 2- generate a mongoose schema 3- generate a dashboard screen 4- generate a swaager doc

with CASL we going to handle user abilities

We do this by create a validators file and by replace the createService from feathers-mongoose with .createService from feathers-mongoose-casl

1 - Inside the src/validators folder create this file posts.validators.js

const {Joi} = require('feathers-mongoose-casl');
​
const getJoiObject = function(withRequired){
  const required = withRequired ? 'required' : 'optional';
  return Joi.object({
    author: Joi.objectId().meta({
      type: 'ObjectId',
      ref: 'users',
      displayKey: 'email'
    })[required](),
    title: Joi.string().min(5)[required]().meta({
      dashboard: {
        label: 'Post title',
        inputProps: JSON.stringify({style: {background: 'red'}})
      }
    }),
    body: Joi.string()[required](),
    rating: Joi.number().max(5).meta({
      dashboard: {
        hideOnUpdate: true,
        hideOnCreate: true,
      }
    }),
    image: Joi.objectId().meta({
      type: 'ObjectId',
      ref: 'files',
      displayKey: 'name'
    })
  });
};
module.exports = getJoiObject;

2 - Update Posts model

open src > models > posts.models.js

// posts-model.js - A mongoose model
// 
// See http://mongoosejs.com/docs/models.html
// for more of what you can do here.
​
const postsValidators = require('../validators/posts.validators.js');
const {createModelFromJoi} = require('feathers-mongoose-casl');
​
module.exports = function (app) {
  return createModelFromJoi(app, 'posts', postsValidators);
};

3 - Update posts.service

open src > services > posts > posts.service.js and replace createService from feathers-mongoose with createService from feathers-mongoose-casl

Before

const createService = require('feathers-mongoose')

After

const {createService} = require('feathers-mongoose-casl');

Add serviceRules to service options

const options = {  
      serviceRules: [
      {'actions': ['read'], 'anonymousUser': true, fields: ['title']}, // anonymousUser can read posts
      {'actions': ['create','read','update'], 'conditions': { 'author': '{{ user._id }}' }}, // user can CRUD only his own posts
      { 'actions': ['manage'], 'roles': ['admin']}, // admin can manage all posts
      ],

Remove authenticate from posts.hooks

// before
module.exports = {
  before: {
    all: [ authenticate('jwt') ],
​
// after
module.exports = {
  before: {
    all: [],

we use a global authenticate then we didn't need this hook,

src\services\posts\posts.hooks.js

PreviousDashboardNextPosts Postman snippet

Last updated 5 years ago

Was this helpful?