-
Notifications
You must be signed in to change notification settings - Fork 0
/
roles.go
83 lines (65 loc) · 1.36 KB
/
roles.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
package robotic
import (
"errors"
"github.com/glide-im/glide/pkg/messages"
)
type Perm int64
type Role int64
func (r Role) isAllow(perms ...Perm) bool {
for _, m := range perms {
if r.isDenied(m) {
return false
}
}
return true
}
func (r Role) isDenied(perm Perm) bool {
b := perm >> r
return b&1 != 1
}
func (r Role) IsApply(other Role) bool {
result := r & other
return result != 0
}
func (r Role) allow(perm Perm) {
// todo
}
type UserId interface{}
var RoleController = &roleController{
defaultRole: 1,
userRole: map[UserId]Role{},
}
type RoleControllerInterface interface {
GetRules(id UserId) Role
Apply(id UserId, role Role) error
SetUserRole(id UserId, name Perm, enable bool)
}
type roleController struct {
defaultRole Role
userRole map[UserId]Role
}
func (r *roleController) GetRules(id UserId) Role {
roles, ok := r.userRole[id]
if ok {
return roles
}
return r.defaultRole
}
func (r *roleController) SetUserRole(id UserId, name Perm, enable bool) {
role := r.userRole[id]
if enable {
role.isAllow(name)
} else {
role.isDenied(name)
}
}
func (r *roleController) Apply(id UserId, role Role) error {
rules := r.GetRules(id)
if rules.IsApply(role) {
return nil
}
return errors.New("permission denied")
}
func GetUserRoleFromMessage(message *messages.ChatMessage) Role {
return RoleController.GetRules(message.From)
}