backend/app/models/api/Page.model.js

const Model = require("flitter-orm/src/model/Model");
const { ObjectId } = require("mongodb");
const uuid = require('uuid/v4');

const ActiveScope = require('../scopes/Active.scope')

/*
 * Page Model
 * -------------------------------------------------------------
 * Put some description here!
 */
class Page extends Model {
	static get services() {
		return [...super.services, "models"];
	}
	static get schema() {
		// Return a flitter-orm schema here.
		return {
			UUID: {type: String, default: () => uuid()},
			Name: String,
			OrgUserId: ObjectId,
			IsPublic: {type: Boolean, default: true},
			IsVisibleInMenu: {type: Boolean, default: true},
			ParentId: String,
			NodeIds: [String],
			CreatedAt: {type: Date, default: () => new Date},
			UpdatedAt: {type: Date, default: () => new Date},
			DeletedAt: Date,
			Active: {type: Boolean, default: true},
			CreatedUserId: {type: String},
			UpdateUserId: {type: String},
			ChildPageIds: [String],

			// Menu flags
			noDelete: { type: Boolean, default: false },
			virtual: { type: Boolean, default: false },

			// Sharing properties
			shared_users_view: [ObjectId],
			shared_users_update: [ObjectId],
			shared_users_manage: [ObjectId],
		};
	}

	static scopes = [new ActiveScope]

	is_shared() {
		return this.shared_users_view.length > 0 || this.shared_users_update.length > 0 || this.shared_users_manage.length > 0
	}

	// ================= RELATIONSHIPS =================
	get user() {
		const User = this.models.get("auth:User")
		return this.belongs_to_one(User, "OrgUserId", "_id")
	}

	get nodes() {
		const Node = this.models.get("api:Node")
		return this.has_many(Node, "NodeIds", "UUID")
	}
	get childPages() {
		const Page = this.models.get("api:Page")
		return this.has_many(Page, "ChildPageIds", "UUID")
	}

	get parent() {
		const Parent = this.models.get("api:Page")
		return this.belongs_to_one(Parent, "ParentId", "UUID")
	}

	get view_users() {
		const User = this.models.get('auth:User')
		return this.has_many(User, 'shared_users_view', '_id')
	}

	get update_users() {
		const User = this.models.get('auth:User')
		return this.has_many(User, 'shared_users_update', '_id')
	}

	get manage_users() {
		const User = this.models.get('auth:User')
		return this.has_many(User, 'shared_users_manage', '_id')
	}

	// ================= SECURITY =================
	accessible_by(user, mode = 'view') {
		const base_access = user.can(`page:${this.UUID}:${mode}`)
	}

	async is_accessible_by(user, mode = 'view') {
		const can_manage = user.can(`page:${this.UUID}:manage`)
		const can_update = user.can(`page:${this.UUID}:update`)
		const can_view = user.can(`page:${this.UUID}:view`)
		const can_all = user.can(`page:${this.UUID}`)

		// Allow universal access
		if ( can_all ) return true
		// deny if blocked
		else if ( user.can(`page:${this.UUID}:block`) ) return false
		// manage, update, view can view
		else if ( mode === 'view' && (can_manage || can_update || can_view) ) return true
		// manage, update can update
		else if ( mode === 'update' ) {
			if ( can_manage || can_update ) return true
			// If other permissions are explicitly set for this page, use those
			else if ( can_view ) return false
		}
		// manage can manage
		else if ( mode === 'manage' ) {
			if ( can_manage ) return true
			// If other permissions are explicitly set for this page, use those
			else if ( can_update || can_view ) return false
		}

		// allow universal access
		// deny blocked users

		// If there are no explicit permissions set for this node, check the parent
		const parent = await this.parent
		if ( parent ) return (await this.parent).is_accessible_by(user, mode)
		else return false
	}

	async access_level_for(user) {
		if ( await this.is_accessible_by(user, 'manage') ) return 'manage'
		else if ( await this.is_accessible_by(user, 'update') ) return 'update'
		else if ( await this.is_accessible_by(user, 'view') ) return 'view'
		else return false
	}

	async share_with(user, level = 'view') {
		if ( !['view', 'update', 'manage'].includes(level) ) {
			throw new Error(`Invalid share level: ${level}`)
		}

		// Remove existing sharing info
		await this.unshare_with(user)

		// Add the page to the user's permissions:
		user.allow(`page:${this.UUID}:${level}`)

		// Add the user to the appropriate access list
		this[`shared_users_${level}`].push(user._id)

		await this.save()
		await user.save()
	}

	async unshare_with(user) {
		// Remove this page from the user's permissions
		if ( user.can(`page:${this.UUID}`) ) user.disallow(`page:${this.UUID}`)
		for ( const level of ['view', 'update', 'manage'] ) {
			if ( user.can(`page:${this.UUID}:${level}`) ) user.disallow(`page:${this.UUID}:${level}`)
		}

		// Remove the user from this page's access lists
		this.shared_users_view = this.shared_users_view.filter(x => String(x) !== user.id)
		this.shared_users_update = this.shared_users_update.filter(x => String(x) !== user.id)
		this.shared_users_manage = this.shared_users_manage.filter(x => String(x) !== user.id)

		await this.save()
		await user.save()
	}

}

module.exports = exports = Page;
task #20 Added models for Node and Page. 4 years ago			`const Model = require("flitter-orm/src/model/Model");`
			`const { ObjectId } = require("mongodb");`
update ORM, refactor models, add Page API endpoints 4 years ago			`const uuid = require('uuid/v4');`
task #20 Added models for Node and Page. 4 years ago
Add delete for pages, active scope to model 4 years ago			`const ActiveScope = require('../scopes/Active.scope')`

task #20 Added models for Node and Page. 4 years ago			`/*`
			`* Page Model`
			`* -------------------------------------------------------------`
			`* Put some description here!`
			`*/`
			`class Page extends Model {`
			`static get services() {`
			`return [...super.services, "models"];`
			`}`
			`static get schema() {`
			`// Return a flitter-orm schema here.`
			`return {`
update ORM, refactor models, add Page API endpoints 4 years ago			`UUID: {type: String, default: () => uuid()},`
task #20 Added models for Node and Page. 4 years ago			`Name: String,`
Update page model relationships 4 years ago			`OrgUserId: ObjectId,`
update ORM, refactor models, add Page API endpoints 4 years ago			`IsPublic: {type: Boolean, default: true},`
			`IsVisibleInMenu: {type: Boolean, default: true},`
			`ParentId: String,`
			`NodeIds: [String],`
			`CreatedAt: {type: Date, default: () => new Date},`
			`UpdatedAt: {type: Date, default: () => new Date},`
Add delete for pages, active scope to model 4 years ago			`DeletedAt: Date,`
			`Active: {type: Boolean, default: true},`
update ORM, refactor models, add Page API endpoints 4 years ago			`CreatedUserId: {type: String},`
			`UpdateUserId: {type: String},`
			`ChildPageIds: [String],`
Update ORM to fix relationship bug 4 years ago
Permissions refactor; create sharing API; update dependencies 4 years ago			`// Menu flags`
Update ORM to fix relationship bug 4 years ago			`noDelete: { type: Boolean, default: false },`
			`virtual: { type: Boolean, default: false },`
Permissions refactor; create sharing API; update dependencies 4 years ago
			`// Sharing properties`
			`shared_users_view: [ObjectId],`
			`shared_users_update: [ObjectId],`
			`shared_users_manage: [ObjectId],`
task #20 Added models for Node and Page. 4 years ago			`};`
			`}`

Add delete for pages, active scope to model 4 years ago			`static scopes = [new ActiveScope]`

Permissions refactor; create sharing API; update dependencies 4 years ago			`is_shared() {`
			`return this.shared_users_view.length > 0 \|\| this.shared_users_update.length > 0 \|\| this.shared_users_manage.length > 0`
			`}`

			`// ================= RELATIONSHIPS =================`
task #20 Added models for Node and Page. 4 years ago			`get user() {`
Update ORM to fix relationship bug 4 years ago			`const User = this.models.get("auth:User")`
			`return this.belongs_to_one(User, "OrgUserId", "_id")`
task #20 Added models for Node and Page. 4 years ago			`}`

			`get nodes() {`
Update ORM to fix relationship bug 4 years ago			`const Node = this.models.get("api:Node")`
			`return this.has_many(Node, "NodeIds", "UUID")`
task #20 Added models for Node and Page. 4 years ago			`}`
			`get childPages() {`
			`const Page = this.models.get("api:Page")`
Update page model relationships 4 years ago			`return this.has_many(Page, "ChildPageIds", "UUID")`
task #20 Added models for Node and Page. 4 years ago			`}`

			`get parent() {`
			`const Parent = this.models.get("api:Page")`
Update page model relationships 4 years ago			`return this.belongs_to_one(Parent, "ParentId", "UUID")`
task #20 Added models for Node and Page. 4 years ago			`}`

Permissions refactor; create sharing API; update dependencies 4 years ago			`get view_users() {`
			`const User = this.models.get('auth:User')`
			`return this.has_many(User, 'shared_users_view', '_id')`
			`}`

			`get update_users() {`
			`const User = this.models.get('auth:User')`
			`return this.has_many(User, 'shared_users_update', '_id')`
			`}`

			`get manage_users() {`
			`const User = this.models.get('auth:User')`
			`return this.has_many(User, 'shared_users_manage', '_id')`
			`}`

			`// ================= SECURITY =================`
update ORM, refactor models, add Page API endpoints 4 years ago			`accessible_by(user, mode = 'view') {`
Permissions refactor; create sharing API; update dependencies 4 years ago			const base_access = user.can(`page:${this.UUID}:${mode}`)
			`}`

			`async is_accessible_by(user, mode = 'view') {`
			const can_manage = user.can(`page:${this.UUID}:manage`)
			const can_update = user.can(`page:${this.UUID}:update`)
			const can_view = user.can(`page:${this.UUID}:view`)
			const can_all = user.can(`page:${this.UUID}`)

			`// Allow universal access`
			`if ( can_all ) return true`
			`// deny if blocked`
			else if ( user.can(`page:${this.UUID}:block`) ) return false
			`// manage, update, view can view`
			`else if ( mode === 'view' && (can_manage \|\| can_update \|\| can_view) ) return true`
			`// manage, update can update`
			`else if ( mode === 'update' ) {`
			`if ( can_manage \|\| can_update ) return true`
			`// If other permissions are explicitly set for this page, use those`
			`else if ( can_view ) return false`
			`}`
			`// manage can manage`
			`else if ( mode === 'manage' ) {`
			`if ( can_manage ) return true`
			`// If other permissions are explicitly set for this page, use those`
			`else if ( can_update \|\| can_view ) return false`
			`}`

			`// allow universal access`
			`// deny blocked users`

			`// If there are no explicit permissions set for this node, check the parent`
			`const parent = await this.parent`
			`if ( parent ) return (await this.parent).is_accessible_by(user, mode)`
			`else return false`
			`}`

			`async access_level_for(user) {`
			`if ( await this.is_accessible_by(user, 'manage') ) return 'manage'`
			`else if ( await this.is_accessible_by(user, 'update') ) return 'update'`
			`else if ( await this.is_accessible_by(user, 'view') ) return 'view'`
			`else return false`
			`}`

			`async share_with(user, level = 'view') {`
			`if ( !['view', 'update', 'manage'].includes(level) ) {`
			throw new Error(`Invalid share level: ${level}`)
			`}`

			`// Remove existing sharing info`
			`await this.unshare_with(user)`

			`// Add the page to the user's permissions:`
			user.allow(`page:${this.UUID}:${level}`)

			`// Add the user to the appropriate access list`
			this[`shared_users_${level}`].push(user._id)

			`await this.save()`
			`await user.save()`
			`}`

			`async unshare_with(user) {`
			`// Remove this page from the user's permissions`
			if ( user.can(`page:${this.UUID}`) ) user.disallow(`page:${this.UUID}`)
			`for ( const level of ['view', 'update', 'manage'] ) {`
			if ( user.can(`page:${this.UUID}:${level}`) ) user.disallow(`page:${this.UUID}:${level}`)
			`}`

			`// Remove the user from this page's access lists`
			`this.shared_users_view = this.shared_users_view.filter(x => String(x) !== user.id)`
			`this.shared_users_update = this.shared_users_update.filter(x => String(x) !== user.id)`
			`this.shared_users_manage = this.shared_users_manage.filter(x => String(x) !== user.id)`

			`await this.save()`
			`await user.save()`
update ORM, refactor models, add Page API endpoints 4 years ago			`}`

task #20 Added models for Node and Page. 4 years ago			`}`

			`module.exports = exports = Page;`