hosseintaromi
/
admin
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat(auth): implement Super Admin permission system 

- Update AdminUser interface to match new API response structure
- Remove permissions/roles from AdminUser (they come separately)
- Update hasPermission logic: id=1 (AdminAll) = Super Admin access
- Fix localStorage handling to remove admin_all_permissions key
- Super Admin (permission id=1) now has access to everything
- Other users checked against their specific permissions
This commit is contained in:
hosseintaromi 2025-07-22 00:01:53 +03:30
parent bdfbef91ac
commit d06135824d
5 changed files with 11 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
src/contexts/AuthContext.tsx
View File

@ -67,20 +67,18 @@ export const AuthProvider = ({ children }: { children: React.ReactNode }) => {
const refreshToken = localStorage.getItem('admin_refresh_token');
const userStr = localStorage.getItem('admin_user');
const permissionsStr = localStorage.getItem('admin_permissions');
const allPermissionsStr = localStorage.getItem('admin_all_permissions');
if (token && userStr && permissionsStr) {
try {
const user = JSON.parse(userStr);
const permissions = JSON.parse(permissionsStr);
const allPermissions = allPermissionsStr ? JSON.parse(allPermissionsStr) : [];
dispatch({
type: 'RESTORE_SESSION',
payload: {
user,
permissions,
allPermissions,
allPermissions: permissions,
token,
refreshToken: refreshToken || ''
}
@ -90,7 +88,6 @@ export const AuthProvider = ({ children }: { children: React.ReactNode }) => {
localStorage.removeItem('admin_refresh_token');
localStorage.removeItem('admin_user');
localStorage.removeItem('admin_permissions');
localStorage.removeItem('admin_all_permissions');
}
}
};
@ -104,16 +101,25 @@ export const AuthProvider = ({ children }: { children: React.ReactNode }) => {
localStorage.removeItem('admin_refresh_token');
localStorage.removeItem('admin_user');
localStorage.removeItem('admin_permissions');
localStorage.removeItem('admin_all_permissions');
dispatch({ type: 'LOGOUT' });
toast.success('خروج موفقیت‌آمیز بود');
};
const hasPermission = (permissionId: number): boolean => {
// اگر Super Admin (id=1) باشد، به همه چیز دسترسی دارد
const isSuperAdmin = state.permissions.some(permission => permission.id === 1);
if (isSuperAdmin) return true;
// در غیر اینصورت چک کن permission مورد نیاز را دارد یا نه
return state.permissions.some(permission => permission.id === permissionId);
};
const hasPermissionByTitle = (title: string): boolean => {
// اگر Super Admin (AdminAll) باشد، به همه چیز دسترسی دارد
const isSuperAdmin = state.permissions.some(permission => permission.title === "AdminAll");
if (isSuperAdmin) return true;
// در غیر اینصورت چک کن permission مورد نیاز را دارد یا نه
return state.permissions.some(permission => permission.title === title);
};

4
src/pages/auth/core/_hooks.ts
View File

@ -17,10 +17,6 @@ export const useLogin = () => {
localStorage.setItem("admin_user", JSON.stringify(response.admin_user));
localStorage.setItem(
"admin_permissions",
JSON.stringify(response.admin_user.permissions)
);
localStorage.setItem(
"admin_all_permissions",
JSON.stringify(response.permissions)
);

1
src/pages/auth/core/_requests.ts
View File

@ -15,5 +15,4 @@ export const postLogout = () => {
localStorage.removeItem("admin_refresh_token");
localStorage.removeItem("admin_user");
localStorage.removeItem("admin_permissions");
localStorage.removeItem("admin_all_permissions");
};

1
src/pages/auth/index.ts
View File

@ -11,7 +11,6 @@ export const getAuth = async () => {
localStorage.removeItem("admin_refresh_token");
localStorage.removeItem("admin_user");
localStorage.removeItem("admin_permissions");
localStorage.removeItem("admin_all_permissions");
return null;
}
}

2
src/types/auth.ts
View File

@ -21,8 +21,6 @@ export interface AdminUser {
first_name: string;
last_name: string;
status: "active" | "inactive";
permissions: Permission[];
roles: Role[];
created_at: string;
updated_at: string;
}