marketing-shibata50/tududi
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
tududi/backend/modules/tasks/utils/validation.js
Chris 542be2c1e9
Fix bug 366 (#764) 
* Optimize DB

* Clean up names

* fixup! Clean up names

* fixup! fixup! Clean up names
2026-01-07 18:18:07 +02:00

82 lines
2.1 KiB
JavaScript
Raw Blame History

const { Project, Task } = require('../../../models');
const permissionsService = require('../../../services/permissionsService');
async function validateProjectAccess(projectId, userId) {
if (!projectId || !projectId.toString().trim()) {
return null;
}
const project = await Project.findOne({ where: { id: projectId } });
if (!project) {
throw new Error('Invalid project.');
}
const projectAccess = await permissionsService.getAccess(
userId,
'project',
project.uid
);
const isOwner = project.user_id === userId;
const canWrite =
isOwner || projectAccess === 'rw' || projectAccess === 'admin';
if (!canWrite) {
throw new Error('Forbidden');
}
return projectId;
}
async function validateParentTaskAccess(parentTaskId, userId) {
if (!parentTaskId || !parentTaskId.toString().trim()) {
return null;
}
const parentTask = await Task.findOne({
where: { id: parentTaskId, user_id: userId },
});
if (!parentTask) {
throw new Error('Invalid parent task.');
}
const parentAccess = await permissionsService.getAccess(
userId,
'task',
parentTask.uid
);
const isOwner = parentTask.user_id === userId;
const canWrite =
isOwner || parentAccess === 'rw' || parentAccess === 'admin';
if (!canWrite) {
throw new Error('Invalid parent task.');
}
return parentTaskId;
}
function validateDeferUntilAndDueDate(deferUntil, dueDate) {
// Both must be present to validate
if (!deferUntil || !dueDate) {
return;
}
const deferDate = new Date(deferUntil);
const dueDateObj = new Date(dueDate);
// Check if dates are valid
if (isNaN(deferDate.getTime()) || isNaN(dueDateObj.getTime())) {
return;
}
// Defer until must be before or equal to due date
if (deferDate > dueDateObj) {
throw new Error('Defer until date cannot be after the due date.');
}
}
module.exports = {
validateProjectAccess,
validateParentTaskAccess,
validateDeferUntilAndDueDate,
};
Reference in a new issue View git blame Copy permalink