PermissionManager.ts is a utility library that allows for simpler and more expressive management of permissions in JavaScript.
If you have worked with permissions, you might be familiar with the following peace of code.
if (user.permissions.includes("create.task")) {
// Create your task here
}
/* Or maybe you used a constant instead a literal... */
if (user.permissions.includes(PERMISSIONS.CREATE_TASK)) {
// Create your task here
}
Doing this way you may have a lot of repited code fragments.
PermissionManager.ts proposes a cleaner, more pleasant, and automatic way to perform this same validation. How? As easy as this:
if (canCreateTask()) {
// Create the most awesome task ever!
}
I know, beautiful. But let's see how to make that awesome function work, I promise it's much easier than you might think.
Install from npm
npm i permission-manager.ts
Or install from yarn
yarn add permission-manager.ts
Simply import the definePermissions function, then define the list of permissions of your project (or import it from another file) and finally pass it straight to definePermissions.
import { definePermissions } from "permission-manager.ts";
const projectPermissions = [
'list.tasks',
'create.tasks',
'update.tasks',
'delete.tasks',
// ...other permissions
] as const;
const permissionManager = definePermissions(projectPermissions);
And that's all to define the manager. For the next step, we will see what we can use it for.
With the manager defined, the only thing we need now, are the permissions that the user of our application currently have in possesion of and pass it straight to the "grant" function provided by the manager.
const permissions = permissionManager.grant(user.permissions);
Voilá, now we have access to a list of functions that represents our inicial set of permissions (projectPermissions). What's the best part?
You can now just type "permissions." and get all those functions as typescript recommendations.
permissions.canListTasks();
permissions.canCreateTasks();
permissions.canUpdateTasks();
permissions.canDeleteTasks();
Here is the full example, in a shortened form.
import { definePermissions } from "permission-manager.ts";
const projectPermissions = [
'list.tasks',
'create.tasks',
'update.tasks',
'delete.tasks',
// ...other permissions
] as const;
const {
canListTasks,
canCreateTasks,
canUpdateTasks,
canDeleteTasks,
// ...other formatted permission functions
} = definePermissions(projectPermissions).grant(user.permissions);
if (canCreateTasks()) {
// Create the most awesome task ever!
}
Sometimes, you have a permission that represents a set of permissions. For example, the permission "all.tasks" may indicate that the user has all the permissions for the tasks module, which includes "list.tasks", "create.tasks", "update.tasks" and "delete.tasks".
PermissionManager.ts allows you to create those kinds of groups by simply passing the "groups" property to the "options" parameter of definePermissions.
const groups = {
"all.tasks": ['list.tasks', 'create.tasks', 'update.tasks', 'delete.tasks']
};
const permissions = definePermissions(projectPermissions, { groups }).grant(user.permissions);
This way, you are not adding a new permission to your project permissions set, so you will not receive a recommendation like "canAllTasks()" which doesn't make any sense in this scenario.
Now, assuming that the user has the "all.tasks" permission, it will be granted all the permissions of the group.
// user.permissions = ["all.tasks"]
permissions.canListTasks(); // true
permissions.canCreateTasks(); // true
permissions.canUpdateTasks(); // true
permissions.canDeleteTasks(); // true
Maybe your project doesn´t work with a format of permissions that can be easily readed, such as "module:tasks-action:list" that would literaly be formatted as "canModuleTasksActionList()". In this case, you can use permission aliases.
An alias converts your source permission into the declared permission, so let's say that you manage the following permissions in your database:
"module:tasks-action:list"
"module:tasks-action:create"
"module:tasks-action:update"
"module:tasks-action:delete"
If you want to have pretty function names like "canListTasks", so you have to define your project permissions as the alias you want to use, and then declare the actual permission name to match both of them.
const projectPermissions = [
'list.tasks',
'create.tasks',
'update.tasks',
'delete.tasks',
] as const;
const alias = {
'list.tasks': "module:tasks-action:list",
'create.tasks': "module:tasks-action:create",
'update.tasks': "module:tasks-action:update",
'delete.tasks': "module:tasks-action:delete",
}
const permissions = definePermissions(projectPermissions, { alias }).grant(user.permissions);
// Assuming user.permissions = ['module:tasks-action:list']
permissions.canListTasks(); // true
permissions.canCreateTasks(); // false
permissions.canUpdateTasks(); // false
permissions.canDeleteTasks(); // false
As this is a JavaScript library, you can also use it in your ReactJS or React Native projects the same way you would in vanilla JavaScript.
I strongly recommend creating a hook to manage the permission definition. Here is a basic example.
import { definePermissions } from "permission-manager.ts";
const projectPermissions = [
'list.tasks',
'create.tasks',
'update.tasks',
'delete.tasks',
] as const;
const manager = definePermissions(projectPermissions);
export function usePermissions() {
const user = useGetUser(); // Get the application user
return manager.grant(user.permissions);
}
So now, you can import the hook into any component you need to validate permissions.
In this example, the visibility of the button for creating a new task is validated using the canCreateTask function defined by PermissionManager.ts.
import { usePermissions } from '...';
export default TaskDetail() {
const { canCreateTask } = usePermissions();
return (
{/* ... */}
{ canCreateTask() && <CreateTaskButton /> }
{/* ... */}
)
}
As this is a JavaScript library, you can also use it in your VueJS projects the same way you would in vanilla JavaScript.
I strongly recommend creating a hook to manage the permission definition. Here is a basic example.
import { definePermissions } from "permission-manager.ts";
const projectPermissions = [
'list.tasks',
'create.tasks',
'update.tasks',
'delete.tasks',
] as const;
const manager = definePermissions(projectPermissions);
export function usePermissions() {
const user = useGetUser(); // Get the application user
return manager.grant(user.value.permissions);
}
So now you can import the hook in any component you need to validate permissions.
In this example, the visibility of the button for creating a new task is validated using the canCreateTask function defined by PermissionManager.ts.
<script setup lang="ts">
import { usePermissions } from '...';
const { canCreateTask } = usePermissions();
</script>
<template>
<!-- ... -->
<CreateTaskButton v-if="canCreateTask()" />
<!-- ... -->
</template>