diff options
Diffstat (limited to 'app/models/Access.js')
| -rw-r--r-- | app/models/Access.js | 129 |
1 files changed, 129 insertions, 0 deletions
diff --git a/app/models/Access.js b/app/models/Access.js new file mode 100644 index 0000000..b9570e6 --- /dev/null +++ b/app/models/Access.js @@ -0,0 +1,129 @@ + +/** + * Module dependencies + */ + +var mongoose = require('mongoose') + , Schema = mongoose.Schema; + + +/** + * Schema + * + * Permissions: + * 3 = normal + * 6 = admin + * 9 = owner + * These permissions are set in steps of three, in case + * we need to add more permissions later. + */ + +var AccessSchema = new Schema({ + user: { type: Schema.ObjectId, ref: 'User' }, + creator: { type: Schema.ObjectId, ref: 'User' }, + project: { type: Schema.ObjectId, ref: 'Project' }, + permissions: { type: Number, default: '3' }, + randomToken: { type: String }, + created: { type: Date, default: Date.now }, + updated: { type: Date, default: Date.now } +}); + + +// the four validations below only apply if you are signing up traditionally + +AccessSchema.methods = { + + /** + * Generate random access token for Remember Me function + * + * @param {Number} length + * @return {String} + * @api public + */ + + generateRandomToken: function(length) { + if (typeof(length) === undefined) length = 16; // default length of token + var chars = '_-abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890' + , token = ''; + for (var i = 0; i < length; i++) { + var x = Math.floor(Math.random() * chars.length); + token += chars.charAt(x); + } + console.log('token ' + token); + return token; + } + +} + +AccessSchema.statics = { + + /** + * Load ALL accesses for a single user + * + * @param {ObjectId} id + * @param {Function} callback + * @api private + */ + + loadUser: function(id, callback) { + this.find({ user: id }) + .populate('project') + .sort({ 'created': -1 }) // sort by date + .exec(callback); + }, + + + /** + * Load all users associated with a project + * + * @param {ObjectId} project + * @param {Function} callback + * @api private + */ + + loadProject: function(project, callback) { + this.find({ project: project }) + .populate({path: 'user', select: '_id name'}) + .sort({ 'created': 1 }) // sort by date + .exec(callback); + }, + + + /** + * Load all users associated with several projects + * + * @param {Arrau[ObjectId]} projects + * @param {Function} callback + * @api private + */ + + loadProjects: function(projects, callback) { + this.find({ project: { $in: projects } }) + .populate({ path: 'user', select: '_id name' }) + .sort({ 'created': -1 }) + .exec(callback); + }, + + + /** + * Check to see if user has access to a particular project + * + * @param {ObjectId} user + * @param {ObjectId} project + * @param {Number} permissisons + * @param {Function} callback + * @api private + */ + + checkAccess: function(user, project, permissions, callback) { + if (typeof(permissions) === 'undefined') permissions = 0; + console.log('inni checkPermissions!') + this.findOne({ user: user }) + .where('project').equals(project) + .where('permissions').gte(permissions) + .exec(callback); + } + +} + +mongoose.model('Access', AccessSchema); |